Re: international standards for LOA

[Alex Reid <alex.reid@xxxxxxxxxx>]

At 10:52 PM 5/07/2011, Heather Flanagan wrote:

> The concept of an international standardized set of values for LOA 
> is something I was grumbling about last week offline.  The NIST 
> guidelines are very useful, but are they international enough?  I 
> think this is a useful concept to poke at, tho' perhaps not on the 
> original thread.

When last I looked (a couple of years ago, now) the draft Australian 
standards were similar (but different!) to the NIST ones.  In the 
AAF's schema, we opted for the NIST ones, but have borrowed from the 
Kantara/Liberty implementation framework in setting out the 
procedures required (eg for level 2 - see 
http://www.aaf.edu.au/technical/levels-of-assurance/).  The NIST ones 
were really not specific enough, as I think David has often said...

Cheers, Alex.

-------------------------------------------------------
T Alex Reid
Advisor, eResearch & Middleware
AARNet (Australia's NREN)
and
Honorary Professorial Fellow
School of Computer Science & Software Engineering
The University of Western Australia.
home address  71A Raymond Street, Yokine, WA, 6060
ph  +61 8 9345 0440
mobile  +61 40 888 5515
email  alex.reid@xxxxxxxxxx