Guidance Document Information
||ITRM Guidance Document: Electronic Authentication
||The purpose of this document is to establish minimum specifications for electronic authentication within an identity management system. The document assumes that the identity management system will be supported by a trust framework, compliant with Applicable Law.? The minimum specifications have been stated based on language in NIST SP 800-63-3.
The document defines minimum requirements, components, process flows, assurance levels and privacy and security provisions for electronic authentication. The document assumes that specific business, legal and technical requirements for electronic authentication will be established in the trust framework for each distinct identity management system, and that these requirements will be designed based on the Identity Assurance Level (IAL) and Authenticator Assurance Level (AAL) requirements for the system.
View document text
Posted On 8/4/2016
Document on Town Hall
|Explanation or Citations
||The document limits its focus to electronic authentication. Minimum specifications for other components of an identity management system will be defined in separate IMSAC guidance documents in this series, pursuant to §2.2-436 and §2.2-437.
This document applies to all boards for this agency
Back to showing guidance documents for this agency