FIXME **This page is not fully translated, yet. Please help completing the translation.**\\ //(remove this paragraph once the translation is finished)// ====== edu-ID - Levels of Assurance ====== ~~NOTOC~~ (back to [[de:aai:eduid:start|Overview]]) {{INLINETOC 2}} \\ FIXME Can the concept of attribute quality be adopted 1:1 from SWITCH? See [[https://www.switch.ch/edu-id/docs/services/attributes/quality-levels/|Attribute Quality]] **Attribute** * see [[de:aai:eduid:vc_2020-12-11#attribute|Meeting from 11.12.2020]] * Profile? **Identity Proof** * FIXME - Are LoAs needed that say something about this? * See also [[de:aai:eduid:ag5|Working group Identity Proof]] ===== Sandbox ===== **References:** * [[https://wiki.refeds.org/display/ASS/REFEDS+Assurance+Framework+ver+1.0|REFEDS Assurance Framework (RAF)]] * [[https://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32015R1502&from=EN|eIDAS Implementing Regulation]] * [[de:aai:assurance|DFN-AAI - Identity Assurance]] \\ ^Identity verification etc. ^RAF ^eIDAS ^DFN-AAI ^edu-ID ^ | RAF: \\ 1. Identity proofing and credential issuance, \\ 2. renewal and replacement \\ eIDAS: 2.1.2, 2.2.2, 2.2.4 | /IAP/low | -- | Basic (only 1.) | Placeholder 1 | | ::: | /IAP/medium | low | Advanced (only 1.) | Placeholder 2 | | ::: | /IAP/high | substantial | -- | Placeholder 3 | | ::: | -- | high | -- | Placeholder 4 | **Important question: Can we assume that the quality of the identity determination is proportional to the quality of the attributes derived from the respective identity source? If yes, then so(?):** ^Attribute/identity sources ^Proposal categorization ^Comments ^ | self-asserted | Placeholder 0 | -- | | Challenge-Response | Placeholder 1 | Analog DFN-AAI Basic | | eID (eIDAS) - eID server (clients: ID card app, card reader, etc.) | Placeholder 2-4 | If eIDAS LoA is known(?) | | eID (eIDAS) - other module confirmations (e.g. Post Ident) | Placeholder 2 | LoA not known - eIDAS low must be accepted | | Home institution (DFN-AAI) | Placeholder 1-2 | DFN-AAI Basic or Advanced | | Other - ORCID | Placeholder 1| API + User Login | | Other ... (others to be expected) | depending on the method used for linking |