Germany's implementation of the European eIDAS digital identity framework will require Apple and Google accounts to function, according to technical documentation. The system uses a Wallet Unit that binds public/private key pairs to multiple identification means, including the Personal Identification Document (PID), through cryptographic attestation.

The architecture mandates that authentication means meet high-security requirements against attackers with significant attack potential, as specified in ISO/IEC 18045 and EU regulations. This includes protection against duplication and tampering attacks on key stores, as well as safeguarding user authentication mechanisms. The system employs hardware security modules (HSMs) for key creation and processing, providing assurance independent of user devices.

To address mobile device vulnerabilities, the implementation includes a mobile device vulnerability management (MDVM) system that monitors identified security flaws during operation. The MDVM verifies device integrity, identifies device classes, checks for known vulnerabilities, and decides whether to allow device usage based on security posture. This approach acknowledges that mobile devices frequently contain exploitable vulnerabilities, making continuous monitoring essential for maintaining the security assurances required by the eIDAS framework.