Subscribe in a RSS reader • Subscribe via Email
| Accredited Assessors LoA 1-4 | Approved Service LoA 1-3 non-crypto |
|
 Verizon Universal Identity Service* *Approved for ICAM Trust Framework LoA3 |
The Kantara Initiative Identity Assurance Accreditation and Approval Program is committed to helping drive organizational interoperability in order to better the identity-based experience of end users, Relying Parties and Federation Operators. The end goal of this activity is to provide public and private sector organizations with a uniform means of relying on digital credentials issued by a variety of identity assurance providers (credential service providers) in order to advance trusted identity and facilitate public access to online services and information.
Review our presentation on the Identity Assurance Program for a more complete overview.
What is ICAM?
On Friday February 26th, 2010 the US Federal Government’s Identity, Credential, and Access Management (ICAM) Trust Framework Evaluation Team (TFET) reviewed Kantara Initiative’s latest submission and granted it Provisional Approval as a Trust Framework Provider at Levels 1, 2 & non-crypto Level 3 under the Open Identity Solutions for Open Government program. The removal of the provisional status will hinge on the release by TFET of additional guidance for assessors concerning privacy and Kantara’s adoption of this guidance.
More about Identity Assurance Framework
This program is based upon the ICAM approved submission of the Identity Assurance Framework (IAF), which was developed with input from members of the global financial services, government, healthcare, IT and telecom sectors. The Identity Assurance Framework describes the 4 Assurance Levels and Service Assessment Criteria which a Credential Service Provider (or IdP) would be assessed against to become Kantara Initiative Service Approved.
| Who should get Certified? | Government and Private Sector based Credential Service Providers or Identity Providers |
| Who should get Accredited? | Government and Private Sector based Assessors or Auditing Organizations |
| Where can I find full details? | Full details are located in our Assurance Accreditation and Approval Center |
| How can we apply? | Our pilot program is currently enrolling participants. If you’d like to participate or have questions about this program, please use our Contact Us form. |
IAF Identity Assurance Levels: Snapshot View
| Assurance Level | Example | Assessment Criteria-Organization | Assessment Criteria-Identity Proofing | Assessment Criteria-Credential Mgmt |
| AL 1 | Registration to a news website | Minimal Organizational criteria | Minimal criteria – Self assertion | PIN and Password |
| AL 2 | Change of address of record by a beneficiary | Moderate organizational criteria | Moderate criteria – Attestation of Govt ID | Single factor; prove control of token through authentication protocol |
| AL 3 | Access to an online brokerage account | Stringent organizational criteria | Stringent criteria – stronger attestation and verification of records | Multi-factor auth: cryptographic protocol; “soft”, “hard”, or “OTP” tokens |
| AL 4 | Dispensation of a controlled drug or $1M bank wire | Stringent organizational criteria | More stringent criteria – stronger attestation and verification | Multi-factor auth w/ hard tokens only; crypto protocol w/ keys bound to auth process |
NOTE: Assurance level criteria as posited by the OMB M-04-04 and NIST Special Publication 800-63
| Fees* | Small: NP <100 employees | Medium: 101-1000 employees | Large: 1001 employees or more |
| Application Fee | $500 | $500 | $500 |
| Assessor Accreditation | $2k | $15k | $25k |
| Assessor Re-Accreditation (Annual) | $1k | $10k | $15k |
| Accredited Assessor Trademark Use | Included in Accreditation Fee | Included in Accreditation Fee | Included in Accreditation Fee |
| CSP Trademark Use | $2k | $5k | $5k |
| CSP Trademark Renewal (annual) | $1k | $2.5k | $2.5k |
NOTE: All fees are noted in USD
