ISO/IEC 29115 Entity Authentication Assurance

From IDESG Wiki
Revision as of 21:21, 10 January 2020 by Tomjones (talk | contribs)
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Title: Entity Authentication Assurance


URL: http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=45138


Version: 2013


Date: 2013-03-27


Description

ISO/IEC 29115:2013 provides a framework for managing entity authentication assurance in a given context.

Abstract

In particular, it:

  • specifies four levels of entity authentication assurance;
  • specifies criteria and guidelines for achieving each of the four levels of entity authentication assurance;
  • provides guidance for mapping other authentication assurance schemes to the four LoAs;
  • provides guidance for exchanging the results of authentication that are based on the four LoAs; and
  • provides guidance concerning controls that should be used to mitigate authentication threats.

Derived from NIST SP 800-63-2 which has been replaced in the US by version 3.