Skip to content

Commit 70c1fb3

Browse files
fix: 3 typos found by fossies.org
1 parent e9d20b2 commit 70c1fb3

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

overview-security.md

+1-1
Original file line numberDiff line numberDiff line change
@@ -355,7 +355,7 @@ The following chapters contain a brief introduction to each capability.
355355

356356
### Technical Cyber Resilience
357357
#### Subject
358-
- Technical Cyber Resilience solutions defend against specific threats. They are planed, built and operated based on threat exposure. This includes reaction processes for alerts.
358+
- Technical Cyber Resilience solutions defend against specific threats. They are planned, built and operated based on threat exposure. This includes reaction processes for alerts.
359359
- Examples: distributed denial-of-service (DDoS) attack protection, intrusion detection systems (IDS) / intrusion prevention systems (IPS), APT detection, antivirus, web application firewalls, proxies, spam filter.
360360
#### Objective
361361
- Minimize impact of specific threats and attacks that consist of:

solution_architecture.md

+2-2
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ Identifiers are ID numbers sent out by the mobile phones. To ensure privacy and
3939
The collected identifiers from other users as well as the own keys, which can later be used to derive the identifiers, are stored locally on the phone in the secure storage of the framework provided by Apple and Google. The application cannot access this secure storage directly, but only through the interfaces the Exposure Notification Framework provides. To prevent misuse, some of these interfaces are subjected to [rate limiting](https://developer.apple.com/documentation/exposurenotification/enmanager/3586331-detectexposures). If app users are tested positively for SARS-CoV-2, they can update their status in the app by providing a verification of their test and select an option to send their recent keys from up to 14 days back. On the Corona-Warn-App back-end server, all keys of positively tested individuals are aggregated and are then made available to all mobile phones that have the app installed. Additionally, the configuration parameters for the framework are available for download, so that adjustments to the risk score calculation can be made, see the *Risk Scores* section.
4040
Once the keys and the exposure detection configuration have been downloaded, the data is handed over to the Exposure Notification Framework, which analyzes whether one of the identifiers collected by the mobile phone matches those of a positively tested individual. Additionally, the metadata that has been broadcasted together with the identifiers such as the transmit power can now be decrypted and used. Based on the collected data, the Exposure Notification Framework provided by Apple and Google calculates a risk score for each individual exposure as well as for the overall situation. Exposures are defined as an aggregation of all encounters with another individual on a single calendar day (UTC timezone). For privacy reasons, it is not possible to track encounters with other individuals across multiple days.
4141

42-
It is important to note that the persons that have been exposed to a positively tested indivdual are **not informed by a central instance**, but the risk of an exposure is calculated locally on their phones. The information about the exposure remains on the user’s mobile phone and is not shared.
42+
It is important to note that the persons that have been exposed to a positively tested individual are **not informed by a central instance**, but the risk of an exposure is calculated locally on their phones. The information about the exposure remains on the user’s mobile phone and is not shared.
4343

4444
The Corona-Warn-App pursues two objectives:
4545
1. It supports individuals in finding out whether they have been exposed to a person that has later been tested positively.
@@ -222,7 +222,7 @@ As the values above are multiplied with each other, a single category with a ris
222222
Additionally, a central threshold for the combined risk score specifies whether an exposure event should be considered or not.
223223
Furthermore the Google/Apple framework allows to set a [```minimalRiskScore```](https://developer.apple.com/documentation/exposurenotification/enexposureconfiguration/3583692-minimumriskscore) to exclude exposure incidents with scores lower than the value of this property.
224224
In the current version of the API the time spent within the ranges of attenuation buckets are accumulated over all exposure incidents during one matching session.
225-
Since the number of requests is currently limited, it is not possible to get these values for each day and each exposure incident seperately.
225+
Since the number of requests is currently limited, it is not possible to get these values for each day and each exposure incident separately.
226226
While by default there is no minimum value set, this value is being configured accordingly, so that resumably irrelevant exposure incidents are excluded.
227227

228228
![Figure 13: Calculation of the combined risk score](images/solution_architecture/figure_13.svg "Figure 13: Calculation of the combined risk score")

0 commit comments

Comments
 (0)