[Wg-idassurance] Achievable Assurance for ICAM Schemes

Brett McDowell email at brettmcdowell.com
Thu Oct 1 09:41:07 PDT 2009 

Agreed, good point.  So, are both worthy to work on?

BTW, what happened to AL=4 in the first matrix?  Is it dropped because
the ICAM program doesn't cover AL=4?  But since IAF does, perhaps IAWG
should add it back in for the sake of completeness.  Even if ICAM
wouldn't publish AL=4, the whole picture might be useful for KI to
publish.


Brett McDowell | http://info.brettmcdowell.com | http://kantarainitiative.org



On Thu, Oct 1, 2009 at 12:32 PM, John Bradley <jbradley at mac.com> wrote:
> Agreed the two are different matrix.
> John B.
> On 2009-10-01, at 12:31 PM, Paul Madsen wrote:
>
> I believe that's a different matrix
>
> Once you know that a particular authn mechn tops out at LOA2 (for instance),
> then you can determine which are the relevant federated protocols to pair
> with
>
> Brett McDowell wrote:
>
> Interesting matrix Paul.  I'm wondering if some AuthN mechanisms wouldn't
> make sense to add to such a matrix, e.g Arcot, OATH, SmartCard, etc.
> Frank, isn't this an area of interest that you've noted for future IAWG
> work?
>
> Brett McDowell | http://info.brettmcdowell.com |
> http://kantarainitiative.org
>
>
> On Thu, Oct 1, 2009 at 12:21 PM, Paul Madsen <paulmadsen at rogers.com> wrote:
>>
>> With the recent ICAM OpenID & IMI profiles, as well as the SAML eGov
>> profile, (and plans for other schemes), it would seem useful if the 'Open
>> Identity Solutions for Open Government' site [1] listed the achievable LOA
>> for the different schemes.
>>
>> eg.
>>
>> Achievable Assurance for Schemes
>>
>>             OpenID    SAML       IMI
>> LOA
>>
>> 1              y               y                  y
>> 2              n               y                  y
>> 3              n               y                  y
>>
>> (where the protocol names above are short-hand for the relevant profiles)
>>
>> We already have similar tables for all the other aspects that impact
>> assurance, e.g authn mechanisms etc
>>
>> [1] - http://bit.ly/1w0gYM
>>
>> Paul
>>
>> --
>> Paul Madsen
>> e:paulmadsen @ ntt-at.com
>> m:613-282-8647
>> web:connectid.blogspot.com
>> <Mail Attachment.gif>
>> _______________________________________________
>> Wg-idassurance mailing list
>> Wg-idassurance at kantarainitiative.org
>>
>> http://kantarainitiative.org/mailman/listinfo/wg-idassurance_kantarainitiative.org
>>
>
> ________________________________
>
> No virus found in this incoming message.
> Checked by AVG - www.avg.com
> Version: 8.5.409 / Virus Database: 270.14.1/2407 - Release Date: 10/01/09
> 06:34:00
>
>
>
> --
> Paul Madsen
> e:paulmadsen @ ntt-at.com
> m:613-282-8647
> web:connectid.blogspot.com
> <gMwy.1.gif>
> _______________________________________________
> Wg-idassurance mailing list
> Wg-idassurance at kantarainitiative.org
> http://kantarainitiative.org/mailman/listinfo/wg-idassurance_kantarainitiative.org
>
>

More information about the Wg-idassurance mailing list