Summary

The Digital Green Certificate Gateway (DGCG) has the purpose to support the EU trust framework. It provides the capability to securely share validation and verification across the connected national backends. With the usage of DGCG Each national backend is free to distribute the keys via any preferred technology to support the national verification devices in the best way. If the Digital Green Certificate is in a correctly formatted 2D code, each verifier device can verify each code from other countries, if the verifier is connected to the backend (online verification) or if it has downloaded and stored the necessary public keys beforehand (offline verification) (more information here).

Primary sources of information

The DGCG is detailed in a number of repositories which can be found here. The specific repository for the digital COVID certificate gateway is here. The document 'Interoperability of health certificates Trust framework' details the overarching framework and structure. The document 'Technical Specifications for Digital Green Certificates Volume 2' defines the high-level architecture of the gateway. The latest versions of these documents were saved as attachments here and here on August 10 2021.

Authors and contributors

The available DGCG-repositories and source code have been provided by Deutsche Telekom (T-Systems), SAP and other contributors. More information can be found here and here.

Open source licensing

Apache License 2.0.

Dependencies and components

The dependencies of the DGCG are detailed here and the third-party software under different licenses than the DGCG are detailed here.

Dataflow description

The DGCG-repository offers a diagram showing the API-endpoints from the DGC Gateway and the dataflow to and from the national backends.

Intended scope and function

The document 'Technical Specifications for Digital Green Certificates Volume 2' details in chapter 2.1 'Approach' that the approach of the DGCG is to exchange different kinds of information to support the validation of vaccination status, test result or recovery status of a citizen based on a test. For this purpose the EU Trust Framework, detailed in the document 'Interoperability of health certificates Trust framework' introduces a standardized signed CBOR (concise binary object representation) which is represented in a 2D code. To validate this data structure in each country cryptographic public keys must be shared across the European Union. The DGCG is designed to distribute this information this information to all member states and act as an achor of trust for all participants. Furthermore the document 'Technical Specifications for Digital Green Certificates Volume 2' details severalĀ  assumptions of underlying this architecture.

Backend technology

The DGCG-repository offers an infographic detailing a 'generic deployment view', including amongst others the reverse proxy BlueCoat, a load balancer, http proxy, various Tomcat-instances, Apache web servers, Splunk Agents and a mySQL-database.

Tags:
Created by Joost Agterhoek on 2021/08/10 11:36
    

Need help?

If you need help with XWiki you can contact: