|
Work item:
|
X.1254
|
|
Subject/title:
|
Entity authentication assurance framework
|
|
Status:
|
[Carried to next study period]
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
Rev.
|
|
Equivalent number:
|
-
|
|
Timing:
|
-
|
|
Liaison:
|
ISO/IEC JTC 1/SC 27/WG5
|
|
Supporting members:
|
Aetna, ETRI, KISA, NEC.
|
|
Summary:
|
Recommendation ITU-T X.1254 defines four levels of entity authentication assurance (i.e., LoA 1 - LoA 4), and the criteria and threats for each of the four levels of entity authentication assurance. Additionally, it:
- specifies a framework for managing the assurance levels;
- provides guidance concerning control technologies that are to be used to mitigate authentication threats, based on a risk assessment;
- provides guidance for mapping the four levels of assurance to other authentication assurance schemas; and
- provides guidance for exchanging the results of authentication that are based on the four levels of assurance.
|
|
Comment:
|
related text is ISO/IEC 29115.
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2016-03-29 15:33:51
|
|
Last update:
2016-09-16 12:07:35
|
