Title Approve Authentication Step-Up Protocol and Metadata Version 1.0 as an OASIS Standard
Description 
Electronic Identity Credential Trust Elevation Methods are used to increase assurance in entity identification using authentication events and related entity information for the purpose of risk mitigation when making access control policy decisions. The goals of the Authentication Step-Up Protocol are:

· To propose simple Trust Elevation architectural patterns demonstrating the use of Trust Elevation in modern Access Control architectures.

· To describe a common metadata set, mechanisms and protocol elements for Trust Elevation information exchanges.

· To promote the use of Trust Elevation elements to facilitate standardization among the many technologies and approaches currently in use for credential & authentication risk mitigation.

3 Statements of Use were received from HYPR Biometric Security, Aetna, and Acceptto Corp. [2]

About the TC:

The OASIS Trust Elevation TC works to define a set of standardized protocols that service providers may use to elevate the trust in an electronic identity credential presented to them for authentication. The Trust Elevation TC is intended to respond to suggestions from the public sector, including the U.S. National Strategy for Trusted Identities in Cyberspace (NSTIC). The Trust Elevation TC promotes interoperability among multiple identity providers--and among multiple identity federations and frameworks--by facilitating clear communication about common and comparable operations to present, evaluate and apply identity [data/assertions] to sets of declared authorization levels. 


URIs:

The prose specification document and related files are available here:

Editable source (Authoritative): 
http://docs.oasis-open.org/trust-el/trust-el-protocol/v1.0/cos01/trust-el-protocol-v1.0-cos01.docx

HTML: 
http://docs.oasis-open.org/trust-el/trust-el-protocol/v1.0/cos01/trust-el-protocol-v1.0-cos01.html

PDF: 
http://docs.oasis-open.org/trust-el/trust-el-protocol/v1.0/cos01/trust-el-protocol-v1.0-cos01.pdf

ZIP distribution file (complete):

For your convenience, OASIS provides a complete package of the prose specification and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/trust-el/trust-el-protocol/v1.0/cos01/trust-el-protocol-v1.0-cos01.zip

--- Additional information --- 

[1] OASIS Electronic Identity Credential Trust Elevation Methods (Trust Elevation) TC
https://www.oasis-open.org/committees/trust-el/ 

[2] Statements of use 

- HYPR Biometric Security: https://www.oasis-open.org/apps/org/workgroup/trust-el/email/archives/201701/msg00002.html

- Aetna: https://www.oasis-open.org/apps/org/workgroup/trust-el/email/archives/201701/msg00003.html

- Acceptto Corp: https://www.oasis-open.org/apps/org/workgroup/trust-el/email/archives/201701/msg00004.html
Ballot Options Ballot has closed
[ ] Yes
[ ] No
Opening Date Thu, May 11 2017 12:00 am UTC
Closing Date Wed, May 24 2017 11:59 pm UTC
Ballot has closed.

Referenced Items

Name Type Date Actions

03068: Approve Authentication Step-Up Protocol and Metadata Version 1.0 as an OASIS Standard

Document (Archive)

2017-05-25

 No Access