The European Federation Gateway Service (EFGS) is a pan-European solution to allow national backends of proximity tracing apps, which generally use the Exposure Notification API from Google and Apple, to upload keys of newly infected people and download diagnosis keys from other participating countries (more information here).

Primary sources of information

The implementation of the EFGS adds detail to the document 'European Proximity Tracing An Interoperability Architecture' and the document 'European Interoperability Certificate Governance' of the eHealth Network, a voluntary network of European national authorities on digital health. The most recent version of these documents were attached (here and here) to this page on August 10 2021.

Authors and contributors

Deutsche Telekom (T-Systems) and others contributors (more information here and here).

Open source licensing

Apache License 2.0.

Dependencies and components

More information on third-party notices of dependency licenses here and dependencies here.

Build environment

Open JDK and Maven (more information here).

Backend technology

The backend technology expected to be used for the EFGS include:

  • A load balancer to terminate TLS (Transport Layer Security), execute mutual TLS authentication and forward http requests to worker nodes while adding header attributes containing meta-data information about client certificates used to authenticate requests.
  • A reverse proxy to distribute load over Tomcat-server instances.
  • Tomcat-server instances.
  • A database implemented using mySQL 5.7.

Dataflow description

The repository provides a diagram visualizing the dataflow from and to national backends.

Intended scope and function

The document 'European Proximity Tracing An Interoperability Architecture for contact tracing and warning apps' in chapter 2.1 'Approach' states the developers advocate for a federation gateway service where all participating national backends upload all diagnosis keys received from their respective users and each participating backend downloads all diagnostic keys from all other countries. The EFGS stores information of currently infected citizens plus the countries they visited but it does not know the identity of citizens and does not know who came into close proximity of infected citizens. Chapter 2.1 'Assumptions' of this document details the main assumptions of the architecture, including the typical daily data volume, the format of diagnosis key information and the rate of data transfer.


Created by Joost Agterhoek on 2021/08/10 10:17

Need help?

If you need help with XWiki you can contact: