After a robust evaluation process, Aventra becomes the only Nordic company to currently hold this certification for smart cards. Digitalization of services in both private and public sectors, as well as the increased security threats affecting all industries, have made high security, user-friendly authentication of individuals, and protection of sensitive data a top priority for organizations.
Aventra, a global leading provider of secure identity solutions, has announced today that its MyEID PKI Smart Card for secure data authentication and protection has achieved Common Criteria EAL4+ certification.
Aventra’s MyEID smart card uses Public Key Infrastructure (PKI) to support a wide range of applications, including logging into workstations and websites, securing VPN connections, and managing IoT devices remotely. Organizations that receive the certification have passed stringent external security audits in which the product, its production process, and building facilities are assessed to ensure all potential vulnerabilities have been eliminated.
While new AI technologies are creating waves of unprecedented change in company and organizational processes, they also present increased security threats. AI both enables improved defensive capabilities and attacks at scale, including increasingly convincing phishing email campaigns and deepfake content.
“Digital identities are constantly under threat. In 2024, Microsoft estimated that the number of cyber attacks was 600 million per day, and more than 72% of organizations experienced ransomware attacks in 2025. Concern is increasing about preserving the integrity of key systems, as well as protecting access to critical information and physical premises. The certification we have now achieved provides our customers across critical industries with the assurance that their most sensitive data is protected by a globally recognized solution,” says Jan Sjöblom, CEO and Founder of Aventra .
“In Europe, we’ve seen major attacks on banks and targeted assaults on power grids, for example, in Portugal and Spain. We’re also experiencing significant geopolitical tensions, meaning that the number and frequency of attacks cannot be expected to decrease for a long time,” continues Sjöblom.
Protecting and limiting access to sensitive data is also a priority within organizations such as hospitals, where healthcare professionals need to access patient data and healthcare history through computer terminals. Additionally, Aventra works with organizations across governments, the defense sector, industry, and ICT, where the expectation to deliver the highest level of security services is mandated. Typically, smart card providers require customers to submit an initial batch order for thousands of cards, whereas Aventra provides as few as 1–2 cards for a new customer to test before committing to a large order.
“Our customers are increasingly demanding certified and future-proof identity solutions,” said Juha Luukkanen, Director of Secure Digital Identity at Insta Advance Oy. “Common Criteria EAL4+ and eIDAS certification make Aventra’s MyEID smart card stand out in the market as a proven, secure, standards-based product that meets the highest expectations for authentication, digital signatures, and encryption across critical environments.”
The regulation ensures that people and businesses can use their national electronic identification schemes (eIDs) to access public online services and sign legally binding documents securely in other EU countries.
Product Adopted:Cards