AusweisApp2

This article or the following section is not adequately provided with supporting documents ( e.g. individual evidence ). Information without sufficient evidence could be removed soon. Please help Wikipedia by researching the information and including good evidence.

The AusweisApp2 (since November 2014 successor to the AusweisApp is) a free application software for the PC to the electronic authentication over the Internet with the new German ID card and the electronic residence permit or their online ID function to use. This enables citizens in Germany to identify themselves easily and securely online - for example, to deal with administrative procedures online.

The software creates an encrypted connection between the identity card or the electronic residence permit, the card reader and the eID server on the other side. The AusweisApp2 is used to securely carry out the certificate and authenticity checks and to offer citizens a surface for using the online identification function.

AusweisApp2 has been available for download since November 2014.

development

AusweisApp2 was developed by Governikus GmbH & Co. KG on behalf of the federal government.

Certification

AusweisApp2 is certified by the Federal Office for Information Security (BSI) according to TR-03124.

features

With AusweisApp2, improvements in user-friendliness, performance and compatibility have been achieved compared to its predecessor AusweisApp. Operation tests accompanying the development (“usability tests”) were carried out, which were significantly incorporated into the new development of the application. AusweisApp2 runs browser-independently, plug-ins are not required. AusweisApp2 uses the call mechanism redesigned by the Federal Ministry of the Interior, which is automatically triggered after activation of the application when the user calls up a service and thus enables the ID data to be read out and transmitted to the service provider. In addition to the eID function, it offers the user an insight into all the data stored on his ID (with the exception of biometric features, which may only be viewed by government agencies). The history of authentication processes that have already been carried out can be viewed in the app. The source code of the app is published on github.com.

Procedure

In the technical definition, AusweisApp2 is middleware in accordance with the eCard API Framework TR-03112 of the BSI, which establishes communication with the card reader , online ID document and the eID server. Users can use it to identify themselves to portals and platforms on the Internet. First, the "authenticity" of the Internet provider is determined: After checking his identity and granting authorization, he receives an authorization certificate (the validity of the certificate is limited to two days) from the Federal Administration Office . This authorization certificate is displayed to the user before his data is released by entering the PIN . This procedure is called mutual authentication. H. the Internet provider proves his authorization to read out the online identification document by displaying the authorization certificate, and only then does the owner confirm the reading of the data by entering the six-digit PIN. AusweisApp2 reads the data from his ID card or electronic residence permit via the card reader and secures communication with an eID server. The selected data is then transmitted in encrypted form. This mutual authentication makes the online ID function unique.

AusweisApp2 supports the pseudonym function of the online ID card. The pseudonym is generated from a sequence of characters consisting of the ID of the ID and an ID supplied by the online service provider. The pseudonym guarantees the provider that a real person is hiding behind it, as he has already entered his identity with the ID application, but without knowing who this person is. It is structured by the character sequence in such a way that it is mathematically not possible to calculate back to the real person. Each portal automatically generates a new pseudonym for a user. The merging of user profiles from several websites ( tracking ), for example to determine the purchasing behavior of the user, is thus prevented.

If only age verification is required for a certain internet service (for example for online games or film portals ), no personal data need to be released by the user. Even the age is not transmitted, only information as to whether the ID card holder is over or under the required minimum age.

Further information on the online ID function can be found on the ID card portal.

Technical framework

AusweisApp2 is currently available for the operating systems Windows (7 from Service Pack 1, 8, 10), macOS (10.10 to 10.14), Android (from 5.0) and iOS (from 13.1). The Android version is not only available in the Playstore , but also on Github or, alternatively, directly from support as an apk file . AusweisApp2 does not officially support Linux. Since the source code of AusweisApp2 is freely available, it can also be adapted and compiled for Linux; an unofficial build of AusweisApp2 is available in Canonical's Snapstore. The open source client PersoApp is also recommended. With Open eCard, there is another vendor and platform-independent open source alternative programmed in Java . This was certified by the BSI in early 2016 .

A basic reader can already be used to read out the data. It is advisable to use a device certified by the BSI. However, we recommend using a security level 3 comfort reader.

Many companies and public administrations support the online identification function. A regularly updated overview of the services that support the online identification function is contained in AusweisApp2. There is a further overview on the ID card portal of the Federal Ministry of the Interior.

Web links

• Official AusweisApp portal
• Download AusweisApp2
• GitHub AusweisApp2

Individual evidence

1. ↑ Release 1.20.1 . June 23, 2020 (accessed June 24, 2020).
2. ↑ AusweisApp2 Release Notes. Governikus GmbH & Co. KG, May 7, 2020, accessed on June 4, 2020 . 
3. ^ "Apps for the online ID card" from the online report of the specialist journal Kommune21 from February 10, 2015.
4. ↑ "New AusweisApp2 from November 1, 2014" press release on the BSI website from October 31, 2014.
5. ↑ "New AusweisApp2 from 01.11.2014" press release on the website of Governikus KG of 31 October, 2014.
6. ↑ AusweisApp on the BSI website ( memento of July 13, 2015 in the Internet Archive ), accessed on July 13, 2015
7. ^ Website of the Federal Ministry of the Interior (BMI) , accessed on June 30, 2015
8. ↑ Frequently asked questions - FAQ: Which operating systems does AusweisApp2 support? In: AusweisApp2 website. Retrieved November 16, 2019 . 
9. ↑ AusweisApp2 on Github. Governikus GmbH & Co. KG, June 17, 2019, accessed on June 18, 2019 . 
10. ↑ Frequently asked questions. Retrieved November 16, 2019 . 
11. ↑ AusweisApp2 as Snap - Glasens Blog. Accessed January 2, 2019 (German). 
12. ↑ Frequently asked questions from the AusweisApp2 website , accessed on October 16, 2016
13. ↑ heise online : Open eCard app 1.1 for smart cards and ID cards released
14. ↑ BSI certifies Open Source eID Client for the first time - Certificate according to BSI TR-03124 for Open eCard App
15. ↑ AusweisApp2 requirements