Measuring The Reliability Of An Identity Claim (G13c)
Wouldn’t it be great to know with absolute certainty that an identity claim is valid? Unfortunately that’s almost never possible. At some point the question becomes: how much identity reliability does the situation call for – and how much will that cost, in money, time and enrollment complexity? Multiple minimum identity assurance levels are needed in a typical mix of applications risks. We’ll compare the converging procedures represented by the US NIST 800-63 Level of Assurance system and the EU eIDAS and STORK systems; the UK’s CESG+Cabinet GPG standards, Osmio’s IDQA (Identity Quality Assurance) system, and Australia’s SIM-MyGov informal LOA system.