You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I tried to find technical information/documentation about how that new feature was implemented, but could not find any information.
Suggested change
This very likely includes at least:
…how the apps handle this (do they even handle it differently, or is it just some "ghost user" who is the health authority which is then added or what?)
How the server infrastructure was changed/is currently, to allow this feature? (if so)
How the TAN is generated and how it is assured that only authenticated parties (health authorities) can do this?
What happens if the key or whatever is used for one health authority is compromised?
Where to find the issue
https://github.com/corona-warn-app/cwa-documentation/blob/master/event_registration.md
Possibly https://github.com/corona-warn-app/cwa-verification-server/blob/master/docs/architecture-overview.md (last changed in 2020, so nothing new here).
Describe the issue
Since the latest v2.9 of the CWA, the health can warn users of the CWA even if the person who was tested positive cannot or does not warn others.
I tried to find technical information/documentation about how that new feature was implemented, but could not find any information.
Suggested change
This very likely includes at least: