Service Provider Approval
Kantara Initiative grants Approval for services which have been found to be conformant to a set of Kantara-defined criteria typically specific to a particular standard or specification, such as NIST SP 800-63-3, for which a Service Provider seeks a third-party assessment of their conformity. In the case of NIST SP 800-63-3 for example, Kantara’s criteria focus on the operation of identity proofing, credential management and federated assertion functions at given levels of assurance. The Kantara service assessment criteria address the technical functionality of the target service, the service provider’s bona fides and the applicable information security management practices.
High Level View of the Kantara Service Provider Approval
The process shown below applies to Credential Service Providers seeking to gain Kantara Service Approval