Kantara’s Identity Assurance Framework Trust Marks
Kantara NIST 800-63 rev.3 Classes of Approval
Kantara Initiative Inc.’s (Kantara) market leadership for manageable Identity Assurance has taken another bold step forward. The release of NIST Special Publication 800-63-3 Digital Identity Guidelines by the US National Institute of Standards and Technology (NIST) presented Kantara with a perfect opportunity to develop two new Classes of Approval (CoAs) – ‘NIST 800-63 rev.3’ and ‘NIST 800-63 rev.3 (Technical)’ – to be part of its globally-acknowledged Identity Assurance Framework (IAF).
As with everything we do at Kantara, we do it transparently with the wider ecosystem we serve. We ran a strategic consultation process with Kantara’s Approved CSPs, Accredited Assessors and other community participants. In addition, we created a sub-group of the Identity Assurance Working Group (IAWG) that was charged with developing the Service Assessment Criteria (SAC) for these CoAs following its standard process (Operating Procedures). These CoAs are now operational as part of Kantara’s Trust Framework Operations Program. They include corresponding assessment and approval processes, Trust Marks for Service Providers, and two new sets of SAC which embrace the requirements of NIST’s new guideline. More information: Kantara Classes of Approval
In the wake of unprecedented numbers of security breaches that expose personal data, the two new Classes of Approval have received high interest, and consequentially, demand for Kantara’s services has never been greater. But Kantara does not rest on its laurels, so please take this short survey to help us help you.
Kantara ‘Classic’ Class of Approval
Kantara ‘Classic’ was the Identity Assurance Framework’s first Class of Approval. It encapsulates NIST SP 800-63 Rev2’s requirements, together with additional Kantara requirements, into an over-arching controlling document set that governs both the Framework and, more broadly, the Identity Assurance Program. Kantara Classic continues as a certification Trust Mark in Kantara’s Trust Framework Operations Program.
Trust Framework Operations Program Controlling Documents
At the heart of Kantara’s Trust Framework Operations Program are the Identity Assurance Framework’s Controlling Documents. They comprise Service Assessment Criteria (SACs) for the Schemes that Kantara curates and governs as well as documents describing Service Provider Approval and Assessor Accreditation. Please visit the current set of IAF Controlling Documents here: https://kantarainitiative.org/identity-assurance-framework/. The continual cycles of maintenance and improvement ensure that Kantara’s Trust Framework Operations Program retains its integrity and relevance, and that it continually builds its international credibility.
Kantara Expanding Scope of Operations
In response to demand, Kantara has opened its operations and service platform to external Federations and communities. The development of conformance assessment criteria, approval, and grant of Trust Marks from Kantara’s proven, well-recognized program structure for digital identity and consent management is available to Schemes in other domains. Once finalized, new CoAs, co-branded with the Scheme owner, will become part of Kantara’s Trust Framework. If you have a Scheme operation that you wish to outsource to Kantara, please Contact us .