Demystifying COVID-19 Digital Contact Tracing: A Survey on Frameworks and Mobile Apps

<table class="table-group" id="tab1"><tr><td><table class="table"><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr class="thead"><td class="align_left">Subsystem</td><td class="align_center">Data</td></tr><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr><td class="align_left" rowspan="4">Smartphone</td><td class="align_center">Set of current and future ephemeral BLE IDs (EBIDs) to broadcast</td></tr><tr><td class="align_center">Proximity history of the last 21 days (containing the observed EBIDs and timestamps)</td></tr><tr><td class="align_center">OAuth2 [<a href="/journals/wcmc/2020/8851429/#B122" target="_blank">122</a>] client secret for access to backend services (long term)</td></tr><tr><td class="align_center">OAuth2 access token for access to backend services (short lived)</td></tr><tr><td class="align_center" colspan="2"><hr/></td></tr><tr><td class="align_left" rowspan="5">Backend</td><td class="align_center">Persistent user ID (PUID)</td></tr><tr><td class="align_center">OAuth2 client credentials of an app</td></tr><tr><td class="align_center">OAuth2 temporary client access token (short term, 1 h)</td></tr><tr><td class="align_center">Medium term (days to weeks): backend keys (<span class="nowrap"><svg height="11.8161pt" id="M13" style="vertical-align:-3.291121pt" version="1.1" viewbox="-0.0498162 -8.52498 20.2218 11.8161" width="20.2218pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M372 352C427 368 507 407 507 502C507 548 486 592 451 616C420 638 376 650 301 650H44V622C124 616 128 610 128 527V123C128 40 122 34 36 28V0H257C336 0 402 12 453 40C512 72 548 124 548 191C548 291 471 335 372 350V352ZM213 362V558C213 591 216 602 226 608C235 614 258 618 282 618C377 618 415 558 415 490C415 406 369 362 260 362H213ZM213 328H258C380 328 450 283 450 181C450 76 377 35 296 34C231 34 213 53 213 125V328Z"></path></g><g transform="matrix(.013,0,0,-0.013,7.673,0)"><path d="M667 0V28C619 34 599 43 546 100C496 154 386 277 311 372C378 440 449 512 488 547C551 605 575 615 650 622V650H410V622L433 619C478 614 479 604 449 568C404 513 337 443 282 390C254 364 234 350 212 345V520C212 609 222 616 299 622V650H41V622C120 616 128 611 128 520V128C128 41 120 34 44 28V0H304V28C221 34 212 41 212 128V318C229 321 242 318 266 291C355 185 436 87 514 0H667Z"></path></g><g transform="matrix(.0091,0,0,-0.0091,16.454,3.132)"><path d="M329 433H203L239 587L230 596L147 534L123 433H57L30 395L34 388H115L61 129C37 16 59 -12 85 -12C147 -12 222 58 260 98L241 125C212 95 160 62 144 62C132 62 127 71 138 126L192 386L305 394L329 433Z"></path></g></svg>),</span> EBIDs, observed EBID lists</td></tr><tr><td class="align_center">Push notification service ID (PID)</td></tr><tr><td class="align_center" colspan="2"><hr/></td></tr><tr><td class="align_left">Not stored</td><td class="align_center">Transaction Authentication Number (TAN): one-time password for uploading the observed EBID list to the backend</td></tr><tr class="table-tr"><td colspan="2"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>Data storage in PEPP-PT subsystems.</div>

Wireless Communications and Mobile Computing

tab1

Table 1

Table 1: Demystifying COVID-19 Digital Contact Tracing: A Survey on Frameworks and Mobile Apps 