At A-SIT Plus GmbH, we are committed to advancing information security in complex system, prominently in eGovernment and identity management. We tackle challenges in these areas with research and innovation, and we give its outcomes back to the community. Our goal: Make the connected world a more secure place. Below is an excerpt of our recent activities.
Identity Management Security Tooling Security in Healthcare Research Projects Other
We contribute to Austria’s national identity ecosystem through projects like ID Austria, which ensures secure and centralized identity management for citizens. Key components of this system are developed by A-SIT Plus. Additionally, our work on eIDAS1 nodes enables efficient matching of cross-border users in compliance with European eID regulations, supporting seamless digital identity usage beyond borders.
Our efforts in decentralized identity focus on developing the Austrian strategy towards a EU Digital Identity Wallet, a secure digital solution empowering users to manage their identity and credentials across the EU. We also support Austria’s Ausweisplattform, with the eAusweise apps, creating platforms for digital ID cards and broader use cases. For younger users, we’ve worked on the Schülerausweis (Pupil ID) to provide a digital identity solution tailored to schools and educational institutions.
Warden is a server-side library designed for mobile client attestation, ensuring that only authenticated devices can access critical services. It enhances the security of services accessed by mobile applications as it verifying the integrity and trustworthiness of client devices and mobile apps. Warden supports verification key and app attestation on Android and iOS through unified interface. Creation of attestation statements is directly supported by Signum.
Signum is a Kotlin Multiplatform Crypto/PKI Library providing cryptographic functionalities efficiently across different platforms. Its type-safe API and deep integration with hardware-backed crypto and attestation makes it ideal for developing end-to-end cryptographic solutions. The custom-developed ASN.1 engine ensures a unified experience across all KMP targets. Signum provides first-class integration with Warden!
The HSM Facade acts as an intermediary component that simplifies access to hardware security modules (HSMs). By providing a streamlined interface, it facilitates the secure management of cryptographic keys and operations for critical applications.
To address a time-critical need, we developed the core validation logic of the Austrian Grüner Pass, a solution for COVID certificates, which was also adopted in other EU member states. This project ensured flexible, secure, and reliable verification of digital health credentials, enabling smooth operations during the pandemic.
Our team conducted comprehensive security analyses of ELGA, Austria’s electronic health record system. By identifying and mitigating risks, we helped enhance the overall security and resilience of this vital healthcare infrastructure.
The EU-funded pilot project POTENTIAL focuses on the EU Digital Identity Wallet (EUDI Wallet), implemented across 19 states for six use cases, including eGovernment and digital signatures. In this project we implement proof-of-concept services and apps that align with the EU’s architecture reference framework. Furthermore, we support our Austrian project partners to test-drive Wallet functionalities in various use cases. This project paves the way for secure and convenient identification and authentication in digital spaces, supporting tasks such as bank account openings, qualified document signing, and digital driving licenses.
mGov4EU explored mobile governance solutions that are secure, inclusive, and aligned with EU eIDAS regulations. The project developed innovative tools for mobile identity management, document exchange, and secure communication, enabling cross-border services for citizens and businesses.
Our work in digital sovereignty focuses on developing independent and secure digital infrastructure. By promoting technological self-reliance, we contribute to strengthening Austria’s control over its digital future.
Quantum computing poses a risk to current cryptographic solutions. Therefore we are researching how to apply quantum-secure cryptography to ensure that new and existing systems remain secure even in a post-quantum era.
We work on improving network security, which enhance the resilience and security of network infrastructures against modern threats.
For Austria’s Registrierkassen, we developed security concepts and proof-of-concept implementations. These efforts ensure compliance with regulatory standards while providing robust protection against fraud.
By applying our expertise in smartcard technology we integrated various smartcard models into solutions to generate signatures and authenticate users.
With the Seal Generation Service we have developed a system to securely sign governmental documents, particularly emergency passports. This ensures the strong authenticity and integrity of such electronic documents.