...
This whitepaper is a response to the request for a matrix showing the different assurance levels in the context of the AARC Guidelines and deliverables. The relashipships and comparison have now been published in the AARC white paper AARC-I050 Comparison Guide to Identity Assurance Mappings for Infrastructures
Background
Depending on the context there is a choice of assurance frameworks to choose from that may fit the use case at hand. Some are monolithic and present combinations of factors that have to be used together to reach a certain 'level'. Others decompose assurance in its constituent components (identifier assignment, vetting, freshness, and authenticator strength) and then construct assurance profiles that are tuned to a collaborative context.
This targeted activity aims to compare various modern assurance frameworks and reviews their applicability for research and collaboration infrastructures for research:
- REFEDS Assurance Framework (RAF) and the SFA and MFA profiles
- IGTF Generalised Assurance guidelines for infrastructures
- NIST SP800-63 version 3 (componentized)
- eIDAS European Government eID system
- Kantara Identity Assurance Framework
Assurance Comparison Leaflet
- Assurance comparison sheet (relationships based on REFEDS vetting elements) - also as VSDX source data
Meetings and events
- EUGridPMA 45, AARC NA3, and GN43 EnCo: https://www.eugridpma.org/meetings/2019-01/ ("Assurance Profiles - a suite of options")
- TIIME 2019 Vienna: Untangling Assurance Spaghetti (https://pad.vweb.dress-code.biz/p/tiime19untangling-assurance)
Documents
- Visio drawings
- AARC-I050 Comparison Guide to Identity Assurance Mappings for Infrastructures: (v01-20190228: docx, PDF)