Navigation and service

BSI - Federal Office for Information Security (Link to homepage)

eID-Infrastruktur

The term eID-Infrastruktur refers to the infrastructure required for the Online-Ausweisfunktion that ID holders can use in connection with a corresponding service provider. It comprises the following components:

eID-Infrastruktur – Kommunikations-Beziehungen im Kontext des Prozesses der Online-Authentifizierung eID-Infrastruktur – Kommunikations-Beziehungen im Kontext des Prozesses der Online-Authentifizierung
eID-Infrastruktur – Kommunikations-Beziehungen im Kontext des Prozesses der Online-Authentifizierung

User environment

The user environment consists of a stationary (a desktop PC or laptop) or mobile device (a tablet or smartphone), an eID client, and a card reader. The eID client coordinates the process of the eID function in this environment. It serves as an interface between the user, their ID card, and the service provider in question.

A certified eID client –- AusweisApp2 –- is provided free of charge by the German Federal Government. A list of all the certified eID clients can be found on the BSI website under Zertifizierte Produkte - eID-Clients.

In addition, the user needs an external card reader or a suitable smartphone to communicate with the chip on their ID card. Different types of card readers support flexible integration into a variety of user environments. A list of suitable card readers is available on the AusweisApp-Portal under Kartenlesegeräte and Smartphones & Tablets.

Eine Person hält ein Smartphone und einen Personalausweis in der Hand, um sich elektronisch auszuweisen.
Mit dem Personalausweis können sich Bürgerinnen und Bürger online ausweisen. Source: Bundesamt für Sicherheit in der Informationstechnik

Service provider

A service provider that wants to integrate the eID function into its IT systems will need to set up an eID server. This server will then communicate with the service provider's application, users' eID clients, and the corresponding background system. The National ID Card Portal provides detailed information on the steps required to become a Service provider.

The background system

The background system consists of a Documenten-PKI, an authorisation PKI, and a service that blocks ID cards that are lost or stolen: Blocking the eID Function.

The DIF-eID working group

The Deutsches Industrieforum für Technologie (DIF) working group on the eID infrastructure (DIF-eID for short) deals with process-related and organisational issues in connection with the coordinated ongoing development of the eID infrastructure. Its participants include manufacturers and operators of eID infrastructure components, eID service providers, certificate authorities, and corresponding public authorities.

In addition to serving as an information and communication platform, the DIF-eID working group initiates specialised workshops for multiple organisations when required. During these workshops (which are moderated by the BSI), changes that affect multiple components are coordinated with and evaluated by all those involved.

Contact

If you have questions or feedback regarding the eID infrastructure or wish to contact the DIF-eID working group, please send an e-mail to: dif-eid@bsi.bund.de.

Similar topics

Back to German eID