Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
en:degrees_of_reliance [2017/07/06 13:58] – Wolfgang Pempe | en:degrees_of_reliance [2017/07/06 14:05] – Wolfgang Pempe | ||
---|---|---|---|
Line 20: | Line 20: | ||
==== 2.1 Identification Procedure by the Home Organisation (I) ==== | ==== 2.1 Identification Procedure by the Home Organisation (I) ==== | ||
The Home Organisation has to assign unique digital identities to their users. | The Home Organisation has to assign unique digital identities to their users. | ||
- | ^ Klasse | + | ^ Degree |
^ Test | any procedure | the Home Organisation may use any procedure to ascertain the identity of its users - this degree is intended for testing purposes only | | ^ Test | any procedure | the Home Organisation may use any procedure to ascertain the identity of its users - this degree is intended for testing purposes only | | ||
^ Basic | identification by means of a response from a unique address (e.g. email, phone number, postal address) | this procedure facilitates a quick and simple identification which may be sufficient for some resources - in this case a certain risk remains that the identity of the user could have been forged or stolen by an illegal third party | | ^ Basic | identification by means of a response from a unique address (e.g. email, phone number, postal address) | this procedure facilitates a quick and simple identification which may be sufficient for some resources - in this case a certain risk remains that the identity of the user could have been forged or stolen by an illegal third party | | ||
- | ^Advanced | for identification, | + | ^ Advanced | for identification, |
- | The enrolment and recruitment procedures established by the universities are considered as equivalent. | by means of this procedure the identity can unequivocally be ascertained (example: enrolment of students presenting a certificate of qualification for university entrance, identity card, etc., entering into an employment contract including an adequate identity check, personal presentation with an identity card at a RA of the DFN-PKI, eID function of the nPa [" | + | |
- | ==== 2.2 Verfahren zum Ausweis einer Identität | + | ==== 2.2 Authentication Procedure |
- | Die Nutzer müssen sich vor dem Zugriff auf eine Ressource mit einem vorgegebenen Verfahren gegenüber ihrem Identity Management System (IdM) ausweisen. Hierbei sind im Rahmen der DFN-AAI | + | In order to gain access to a certain resource, users must identify themselves to their Identity Management System (IdM) according to a specific procedure. There are several acceptable procedures in the context of the DFN-AAI. |
- | ^ Klasse | + | ^ Degree |
- | ^ Test | Verfahren freigestellt | + | ^ Test | any procedure |
- | ^ Basic | Ausweisen anhand einer eindeutig zuzuordnenden digitalen Adresse. | + | ^ Basic | authentication with a unique digital address |
- | ^ Advanced | Ausweis anhand eines personalisierten Accounts mit einer Nutzerkennung und einem Passwort oder digitalem Zertifikat, die im Rahmen einer ausreichend sicheren Vergaberichtlinie ausgestellt wurden. | + | ^ Advanced |authentication by means of a personal account with user ID and password or with a digital certificate which has been issued under sufficiently secure and trustworthy directives |
==== 2.3 Datenhaltung und Prozesse zur Pflege der Identitäten (D) ==== | ==== 2.3 Datenhaltung und Prozesse zur Pflege der Identitäten (D) ==== |