Germany Announces AusweisApp EUDI Wallet Launch Timeline - Early 2027

German government confirms AusweisApp EUDI Wallet launch for early 2027, building on 15 years of eID infrastructure.

AusweisApp History: From eID Pioneer to EUDI Wallet

Germany's journey toward a digital identity wallet began well before the European Commission proposed the EUDI framework. The AusweisApp was first launched in 2017 as a companion application for the online identification (eID) function embedded in the German Personalausweis (national identity card). The Personalausweis itself had been equipped with an NFC chip since the new format was introduced in November 2010, making Germany one of the earliest EU member states to deploy chip-based national ID cards with electronic identification capabilities.

The AusweisApp enables citizens to use the eID function on their Personalausweis or electronic residence permit (elektronischer Aufenthaltstitel) to authenticate themselves online. By holding the card to an NFC-capable smartphone or using a card reader connected to a computer, users can securely prove their identity to government agencies, banks, insurance companies, and other service providers. Over the years, AusweisApp has been downloaded millions of times, although actual usage of the eID function has lagged behind the distribution of NFC-enabled ID cards. This adoption gap is one of the challenges Germany aims to address through the EUDI Wallet transition.

The evolution from a basic eID reader application to a full EUDI Wallet represents a significant expansion in scope. While the original AusweisApp only supported authentication using the Personalausweis chip, the EUDI version will support storing and presenting verifiable credentials, digital driving licences, educational qualifications, health insurance cards, and other documents that citizens need in their daily lives. This transformation positions AusweisApp as a complete digital identity platform rather than a single-purpose authentication tool.

Bundesdruckerei and the Secure Hardware Foundation

At the heart of Germany's eID infrastructure lies Bundesdruckerei (the Federal Printing Office), a state-owned company responsible for producing the physical Personalausweis, passports, and other high-security identity documents. Bundesdruckerei has been instrumental in developing the NFC chip technology embedded in the Personalausweis, which stores personal data in a tamper-resistant secure element and enables the eID function used by AusweisApp.

The company's expertise extends beyond physical card production. Bundesdruckerei has invested heavily in digital identity technologies, including the development of secure enrolment processes, PKI (Public Key Infrastructure) systems, and trust service infrastructure. Their subsidiary D-Trust operates as a qualified trust service provider under the eIDAS regulation, issuing certificates for electronic signatures and seals. This existing trust infrastructure provides a critical foundation for the EUDI Wallet, as it ensures that credentials stored in the wallet can be cryptographically verified and trusted across borders.

For the EUDI Wallet specifically, Bundesdruckerei is involved in developing the secure credential issuance pipeline. When a citizen receives a verifiable credential, such as a digital driving licence, the issuing authority must cryptographically sign it using infrastructure that meets the highest security standards. Bundesdruckerei's decades of experience in high-security document production positions it uniquely to deliver this capability at national scale.

Smart-eID and the OPTIMOS 2.0 Project

One of Germany's most innovative contributions to digital identity has been the Smart-eID initiative, which aimed to move the eID function from the physical Personalausweis chip directly onto the secure element of a smartphone. This concept, if fully realized, would eliminate the need for citizens to hold their physical ID card against the phone during authentication. Instead, the identity data would reside securely within the phone's hardware-backed secure enclave.

The Smart-eID was initially piloted on Samsung Galaxy smartphones in Germany, using Samsung's embedded secure element (eSE) technology. The pilot demonstrated the technical feasibility of storing eID credentials directly on consumer smartphones, though it also revealed the challenges of working with device-specific hardware security modules across different manufacturers. The requirement for manufacturer cooperation and device certification added complexity that limited the rollout to specific Samsung models.

Closely related to Smart-eID is the OPTIMOS 2.0 project (Open Standard for a Trustworthy Mobile Identity Management for Mobile Services), a research and development initiative funded by the German Federal Ministry of Education and Research (BMBF). OPTIMOS 2.0 explored the technical and organizational prerequisites for managing digital identities securely on mobile devices, including the use of Trusted Execution Environments (TEE), embedded secure elements, and external secure elements such as SIM cards. The findings from OPTIMOS 2.0 have directly informed the technical architecture of Germany's EUDI Wallet implementation, particularly the C-Prime credential approach which balances local security with cloud flexibility.

BSI Certification and Security Requirements

The Bundesamt fur Sicherheit in der Informationstechnik (BSI) - Germany's Federal Office for Information Security - plays a central oversight role in the development of the EUDI Wallet. BSI is responsible for defining and certifying the security requirements that AusweisApp and its underlying infrastructure must meet. This includes Common Criteria certification for cryptographic components, penetration testing requirements, and ongoing security audits of the wallet application and its backend systems.

Germany's approach to EUDI Wallet security is notably rigorous compared to many other EU member states. BSI requires that the wallet's cryptographic operations, including key generation, credential storage, and signature creation, take place within a certified secure environment. This can be a hardware-backed secure element on the smartphone, a cloud-based Hardware Security Module (HSM), or a combination of both. The C-Prime architecture adopted by Germany supports this flexibility by allowing credentials to be signed locally while optionally backed up in a cloud environment protected by certified HSMs.

BSI also oversees the certification of relying parties - the organizations that verify credentials presented through the wallet. In the current eID system, every service provider that wants to accept the Personalausweis eID function must obtain a specific authorization certificate from the Vergabestelle fur Berechtigungszertifikate (VfB). This model of controlled access is expected to carry over into the EUDI Wallet ecosystem, ensuring that only authorized parties can request and verify specific credentials.

Integration with German Verwaltungscloud

Germany is pursuing a broader digital government transformation through the Verwaltungscloud (administrative cloud) initiative, which aims to provide standardized cloud infrastructure for all levels of government - federal, state (Lander), and municipal. The EUDI Wallet is being designed to integrate smoothly with this cloud ecosystem, enabling citizens to use their wallet credentials to access digital government services hosted across different administrative levels.

The Verwaltungscloud integration is particularly significant given Germany's federal structure. With 16 Bundeslander (federal states), each with substantial administrative autonomy, Germany faces the unique challenge of creating a unified digital identity experience across a highly decentralized government environment. The EUDI Wallet, through its standardized credential formats and verification protocols, promises to bridge these administrative silos by providing a single citizen-held identity that works everywhere - from a federal tax return to a local parking permit application.

The Online Access Act (Onlinezugangsgesetz, OZG) mandates that all federal, state, and municipal administrative services be available digitally. The EUDI Wallet is expected to become the primary authentication mechanism for accessing these digitized services, replacing the patchwork of login systems and service accounts that currently frustrate citizens and limit uptake of digital government offerings.

SPRIND Leadership and the Development Model

The development of Germany's EUDI Wallet is led by SPRIND (Bundesagentur fur Sprunginnovationen), the Federal Agency for Disruptive Innovation. SPRIND's involvement signals Germany's intent to approach the EUDI Wallet not as a routine government IT project but as a transformative innovation initiative. SPRIND was established in 2019 to identify and fund breakthrough technologies, and its selection as the lead agency reflects the strategic importance Germany places on digital identity.

Under SPRIND's coordination, the development follows an agile methodology with regular public code releases on the OpenCoDE GitLab platform, Germany's official open-source code repository for government software. This transparency is a deliberate choice to build public trust and allow the security research community to identify vulnerabilities before the wallet reaches production. The OpenCoDE publication also aligns with Germany's broader commitment to open-source government software, as mandated by updated procurement guidelines that favor open-source solutions where feasible.

The development team includes contributions from established German IT security companies, academic research institutions, and public administration bodies. BSI provides continuous security oversight, while Bundesdruckerei contributes expertise on credential issuance and hardware security. This multi-stakeholder approach ensures that the wallet benefits from diverse perspectives and deep domain expertise, though it also contributes to the complexity that has pushed Germany's timeline slightly beyond the EU-wide deadline.

Despite the early 2027 launch date being after the formal EU deadline, Germany's approach reflects a deliberate prioritization of security and interoperability over speed. With 83 million citizens and Europe's largest economy, Germany's EUDI Wallet implementation will serve as a critical reference point for the entire EU ecosystem. The additional development time allows for thorough BSI certification, extensive interoperability testing with other member states' wallets, and complete user testing to ensure the wallet delivers a smooth experience from day one.