By Martin Moraz

Enterprise Architect

Views: 2

Software engineering

Partager l’article

Developing software solutions for the public sector in Switzerland demands particular rigour: every line of code must balance security, compliance, and accessibility. Federal, cantonal, and municipal administrations now rely on digital services to meet diverse needs, whether for citizen procedures or internal management.

Rather than merely adapting commercial applications, these projects require an in-depth understanding of legal frameworks, data protection, and universal design principles. Beyond technology, it is the responsibility to the end user—the citizen—that guides design and architecture. This article outlines the key challenges and presents, step by step, the approach to building robust, scalable, and compliant systems.

Regulatory and Security Constraints

Security and legal compliance are cornerstones of public-sector projects, requiring audits and certifications. Universal accessibility and data protection are non-negotiable requirements.

Security and Legal Standards

The public sector is bound by strict standards such as the Data Protection Ordinance (DPO) and the Federal Data Protection Act (FDPA). Every project must begin with a compliance audit, identified as a prerequisite before any technical design. This audit helps map retention, encryption, and data-flow traceability obligations.

Development teams must integrate encryption mechanisms in transit and at rest from the design phase, as well as role-based access control (RBAC). External and internal penetration testing becomes mandatory to validate the robustness of APIs and user interfaces. If a vulnerability is detected, remediation plans must be documented to ensure a swift return to compliance.

Example: A cantonal agency launched a grants application portal whose FDPA compliance was validated by an independent third party. This approach demonstrated the importance of continuous monitoring of software dependencies and the implementation of an encrypted logging system for every data-access request.

Universal Accessibility

Public applications must adhere to WCAG 2.1 standards to ensure access for all, including people with disabilities. This requirement involves user testing, code reviews, and interface audits. Maintaining proper tab order, color contrast, and keyboard navigation is imperative.

Developers integrate automated accessibility-check tools into CI/CD pipelines to detect regressions. Corrections are made continuously, and each new release undergoes usability testing by a representative group of end users. This ensures the interface remains usable across devices and assistive technologies.

Example: A cantonal training conference digitized its online registration system with screen-reader–friendly navigation. The project highlighted the need to train content authors in clear language and to integrate ARIA tags from the mockup stage.

Data Privacy and Protection

Protecting the confidentiality of sensitive information—whether personal identifiers, health data, or personnel records—requires end-to-end encryption. Encryption keys must be managed by a Hardware Security Module (HSM) or an equivalent solution approved by the relevant authorities.

A data retention policy aligned with legal timeframes ensures no outdated information is stored unnecessarily. Automated, controlled purge mechanisms are documented, and audit logs are archived in an isolated environment to prevent tampering.

Example: Within a civil registry department, an automated notification system was designed to send secure certificates. The service’s effectiveness demonstrated that combining an encrypted RESTful API with a Mobile Device Management (MDM) solution simplifies the management of data-deletion authorizations.

Systems Integration and Managing Digital Legacies

Public projects often rely on existing, sometimes outdated systems that require thorough auditing and an integration strategy. The goal is to modernize without disrupting service continuity.

Existing Systems Mapping and Audit

Before any upgrades, it is essential to create a comprehensive inventory of existing applications, databases, and interfaces. This mapping reveals dependencies, data flows, and criticality levels. It forms the basis for a migration plan and helps prioritize actions according to business impact.

Static and dynamic analysis tools are deployed to identify vulnerabilities and incompatibilities. The collected information informs future architectural decisions by distinguishing components to retain, replace, or isolate in separate microservices.

Example: A major Swiss vocational training institution had three different ERPs for enrolment, accounting, and room management. The mapping revealed data redundancies and critical failure points, leading to the decision to implement a standardized communication gateway.

Decoupling and Integration Strategies

To minimize risk, it is often preferable to adopt an API-driven approach rather than an immediate full-scale rewrite. Each legacy service is encapsulated behind a REST or GraphQL interface, ensuring abstraction of legacy logic and enabling gradual evolution.

Developing middleware adapters and connectors facilitates orchestrating workflows and avoids vendor lock-in. These components offer future flexibility and isolation, allowing a component to be disabled or replaced without interrupting the entire system.

Example: A Swiss university used an old COBOL-based course management system. Implementing an intermediary microservice enabled control of the legacy engine while providing new student portals with a modern, documented API—demonstrating the effectiveness of targeted decoupling.

Managing Digital Heritage

Historical data often represents a strategic treasure that must be preserved. Migration operations include format conversion, schema normalization, and integrity verification. Automated, tested scripts ensure post-migration consistency.

When the nature of the data warrants it, data lakes are implemented to store archives while providing query APIs. This hybrid approach ensures access to information without burdening transactional systems.

Example: A cantonal land registry service outsourced its decades-old archives to an encrypted data lake. The demonstration highlighted the benefit of preserving an accessible history without impacting the performance of the new Geographic Information System.

Edana: strategic digital partner in Switzerland

We support companies and organizations in their digital transformation

Let's talk about you

Scalable Architecture and Traffic Spike Management

Public platforms must withstand usage fluctuations, especially during critical periods such as elections or tax-filing season. Elasticity and resilience are key.

Implementing Microservices

A microservices architecture segments the application into independent modules, each responsible for a specific business function. This granularity allows capacity adjustments for each service according to demand without redeploying the entire system.

Services communicate via message buses or lightweight APIs, ensuring data consistency and facilitating scalability. In the event of a spike in one module, the others continue operating normally, maintaining overall availability.

Example: A COVID test booking platform was designed with microservices dedicated to authentication, slot management, and notifications. During a massive influx, only the booking layer required additional horizontal scaling, ensuring uninterrupted service.

Autoscaling and Elastic Infrastructures

Using private or public cloud environments allows automatic activation of additional instances based on performance metrics such as CPU usage or request count. This elasticity reduces costs during low-demand periods and anticipates traffic surges.

Containers orchestrated by Kubernetes or equivalent solutions handle load balancing, automatic recovery, and continuous deployment. Configurations are declarative and version-controlled, ensuring traceability and reproducibility.

Example: During the annual tax season, a municipal online tax-filing service triggered a 300% traffic spike. The elastic infrastructure activated additional nodes within minutes, preventing saturation and reducing response times to under 200 ms.

Load Testing and Proactive Monitoring

Performance tests are integrated into the continuous integration pipelines to validate each new release at a simulated scale. Load scenarios simulate concurrent sessions and measure latency, memory consumption, and bottlenecks.

Proactive monitoring with specialized tools enables anomaly detection before users are impacted. Alerts configured on critical thresholds automatically trigger scaling procedures or manual interventions.

Example: A citizen-record consultation service implemented a centralized dashboard displaying the health of APIs and databases. During an incident, monitoring identified a database bottleneck in under five minutes, leading to a rapid resolution without major downtime.

Step-by-Step Development Process

The success of a public-sector project relies on a structured approach: legal analysis, modular design, and controlled deployment. Each phase ensures compliance and code quality.

Legal and Business Requirements Analysis

The first phase involves bringing together stakeholders: IT management, legal experts, business units, and end-user representatives. This collaboration identifies legal obligations, functional requirements, and operational constraints.

A detailed specification document compiles use cases, expected service levels, and performance indicators—a crucial step in software project planning. This reference serves as the foundation for technical design and the creation of user stories in an agile framework.

Example: A Geneva municipality digitized its construction-permit application system by involving architects, urban planners, and legal officers. The collaborative effort precisely defined eligibility criteria and legal processing times.

Designing Modular and Secure Architectures

Based on specifications, architects define a hybrid solution combining open source components and custom development. Emphasis is placed on modularity, separation of concerns, and component reusability.

Security patterns such as Zero Trust and default encryption are integrated from the design phase. Code reviews, proofs of concept, and third-party–validated prototypes provide additional assurance before full-scale development.

Example: The development of a social-assistance tracking application leveraged an open source framework for multi-factor authentication. This proven foundation was extended with a consent-management module, demonstrating the flexibility of a modular approach.

Deployment, Testing, and Governance

Automated deployment leverages CI/CD pipelines that include unit tests, integration tests, security audits, and accessibility checks. Each build is tagged and timestamped to ensure traceability.

Agile governance, structured around sprints and regular reviews, unites IT management, business units, and technical teams. Iterative feedback enables rapid issue resolution and adaptation of the roadmap to real-world conditions.

Example: A Ticino municipality held weekly demonstrations of its waste-management application. User feedback led to incremental adjustments, ensuring the final version met both expectations and regulatory requirements.

Make Digital Transformation a Lever for Institutional Trust

Digitalization in the public sector is not an end in itself but a means to enhance transparency, efficiency, and citizen engagement. Combining a secure architecture, flawless compliance, and a modular approach creates a virtuous cycle of trust.

Dedicated teams of cybersecurity specialists, system architects, and requirements analysts ensure code quality and platform resilience. At every stage, support from partners with deep sector experience makes the difference.

To turn your public-sector projects into exemplary digital services, our experts are at your disposal. Together, let’s equip institutions with the tools to serve their citizens effectively.

Discuss your challenges with an Edana expert