|
Work item:
|
X.1254rev
|
|
Subject/title:
|
Entity authentication assurance framework
|
|
Status:
|
Under study
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
Rev.
|
|
Equivalent number:
|
-
|
|
Timing:
|
2026-03 (No priority specified)
|
|
Liaison:
|
FIDO Alliance, NIST, ISO/IEC JTC1 SC 27 WG 5
|
|
Supporting members:
|
United States, Aetna, NEC, Soonchunhyang University
|
|
Summary:
|
Recommendation ITU-T X.1254 specifies three entity authentication assurance levels (AALs), and criteria for and threats to each of them.
Additionally, it:
• establishes a framework for managing AALs;
• provides guidance concerning control technologies that are to be used to mitigate authentication threats, based on a risk assessment;
• provides guidance for mapping the three AALs to other authentication assurance schemas; and
• provides guidance for exchanging the results of authentication that are based on the three AALs.
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2024-03-12 15:34:03
|
|
Last update:
2024-03-12 15:36:18
|
