Two years after major European CPOs began their ISO 15118 Plug & Charge rollouts, the technology has reached a critical inflection point. While early adopters celebrate streamlined user experiences and reduced payment friction, the reality of large-scale deployment has exposed complex technical challenges that extend far beyond initial proof-of-concept implementations. The gap between laboratory success and commercial deployment continues to test even the most prepared charging network operators.
PKI Infrastructure: The Hidden Complexity
Public Key Infrastructure remains the most underestimated challenge in Plug & Charge deployment. Unlike traditional payment systems, ISO 15118 requires a complete certificate hierarchy spanning OEMs, CPOs, and mobility service providers. German networks like EnBW and Ionity have invested heavily in robust PKI architectures, but smaller operators often struggle with certificate lifecycle management and cross-border interoperability. The recent establishment of Hubject's interoperability hubs has helped, but managing certificate revocation and renewal at scale remains a significant operational burden for most CPOs.
OCPP Integration Challenges
The integration of ISO 15118 with existing OCPP implementations has proven more complex than anticipated. While OCPP 2.0.1 provides the necessary framework for Plug & Charge communication, many deployed charging stations still rely on OCPP 1.6 with vendor-specific extensions. This creates a fragmented landscape where CSMS and OCPP expertise becomes crucial for successful implementation. Nordic operators like Fortum and Vattenfall have reported significant development efforts to bridge legacy OCPP systems with modern ISO 15118 requirements, often requiring hardware upgrades that weren't originally planned.
Vehicle Compatibility and OEM Readiness
Vehicle-side implementation remains inconsistent across manufacturers, creating unpredictable user experiences. While premium German brands like BMW, Mercedes, and Audi have largely delivered functional ISO 15118 support, implementation quality varies significantly. Tesla's proprietary approach continues to create market fragmentation, though recent announcements suggest gradual alignment with European standards. French operators report success rates varying from 60% to 85% depending on vehicle model and software version, highlighting the ongoing challenges in achieving universal compatibility.
Commercial Model Complexities
Beyond technical challenges, Plug & Charge deployment has revealed significant commercial complexity around roaming and settlement. Traditional eMSP-CPO relationships require restructuring to accommodate direct vehicle-to-charger authentication. The existing Hubject ecosystem provides a foundation, but contract negotiations and revenue-sharing models often take months to finalize. Our analysis of charging infrastructure trends shows that successful deployments require careful balance between technical capability and commercial viability, particularly for multi-country operators.
Cybersecurity Considerations
ISO 15118's enhanced connectivity introduces new attack vectors that require sophisticated security monitoring. The protocol's reliance on TLS communication and certificate-based authentication creates multiple points of potential vulnerability. Recent penetration testing by European cybersecurity firms has identified concerns around certificate spoofing and man-in-the-middle attacks, leading to enhanced security requirements from major CPOs. This has driven increased investment in security operations centers and real-time threat monitoring systems.
Regulatory and Standardization Progress
European regulatory bodies have begun incorporating ISO 15118 considerations into upcoming legislation, though mandatory requirements remain limited. The European Commission's recent consultations suggest potential Plug & Charge mandates for high-power charging by 2028, creating urgency for operators to accelerate deployment. However, standardization bodies continue refining the specification, with ISO 15118-20 addressing wireless charging and enhanced grid integration scenarios that weren't considered in earlier versions.
Implications for CPOs
Successful ISO 15118 deployment requires a comprehensive architecture and integration approach that addresses both immediate technical requirements and long-term scalability. CPOs should prioritize PKI infrastructure investment, establish clear OEM partnership strategies, and develop robust testing protocols for vehicle compatibility. The most successful operators are treating Plug & Charge as a multi-year transformation program rather than a simple technical upgrade. For networks considering deployment, starting with pilot programs on specific corridors or customer segments allows for controlled learning while building operational capabilities. Ready to discuss your Plug & Charge strategy? The window for competitive advantage through early adoption is narrowing as the technology moves toward mainstream deployment.