How do I choose between DigiD and eHerkenning?

DigiD is for individual citizens; eHerkenning is for organizational actors and partner services. Choose based on whether your audience is people or organizations.

Does this cover NIS2 compliance?

The DON Security skill references standards including NIS1 and NIS2; for compliance you should follow official NIS2 guidance and ensure alignment with government security standards.

Where can I find official documentation?

See the References section and the standard pages (DigiD, eHerkenning, OAuth, OIDC, PKIoverheid) in the DON Security skill.

don-security

Scanned

npx machina-cli add skill dstotijn/developer-overheid-nl-agent-skills/don-security --openclaw

Files (1)

SKILL.md

1.5 KB

DON Security

When to Use This Skill

Use this skill when you need guidance on:

DigiD
eHerkenning
OAuth
OIDC
PKIoverheid

How to Navigate

This skill contains documentation organized by topic. Browse the references below or ask about specific topics.

References

Security

Standaarden

Tools

Source: https://github.com/developer-overheid-nl/don-site/tree/main/docs/security

Source

git clone https://github.com/dstotijn/developer-overheid-nl-agent-skills/blob/main/skills/don-security/SKILL.mdView on GitHub

Overview

DON Security offers guidance on using major Dutch government authentication and security standards. It helps teams implement DigiD, eHerkenning, OAuth, OIDC, PKIoverheid, and related standards, with topic-based documentation to navigate quickly. This supports building compliant, secure government software.

How This Skill Works

The content is organized by standard and topic, with links to official reference pages. Browse the DigiD, eHerkenning, OAuth, OIDC, and PKIoverheid pages or ask for guidance on a specific topic to obtain concrete implementation steps.

When to Use It

Implementing DigiD authentication in a Dutch government app
Integrating eHerkenning for partner access
Adding OAuth 2.0 authentication flow
Implementing OpenID Connect (OIDC) for user SSO
Applying PKIoverheid or related government PKI standards

Quick Start

Step 1: Determine which Dutch government standard applies (DigiD, eHerkenning, OAuth, OIDC, PKIoverheid)
Step 2: Open the corresponding standard page under references/standaarden to review requirements
Step 3: Implement with approved libraries, configure endpoints, and validate tokens/certificates (use OpenKAT if available)

Best Practices

Start with the official standard pages for DigiD, eHerkenning, OAuth, OIDC, and PKIoverheid
Use the OpenKAT tool for testing and validation when available
Validate tokens, signatures, and certificates using recommended libraries and practices
Align implementation with related standards (eIDAS, NIS1/NIS2) where applicable
Document the chosen standard in security documentation and security-txt

Example Use Cases

Citizen-facing portal authenticating users via DigiD
Partner API access secured with eHerkenning
Service integrating OAuth 2.0 for API authorization
Single sign-on using OpenID Connect (OIDC) for government services
Internal tool using PKIoverheid certificates for strong identity verification

Frequently Asked Questions

Add this skill to your agents