A few weeks ago I reviewed some of the options for strong authentication and provided some business criteria for selecting and designing solutions. When making this decision it is important to assess overall identity assurance, that is the overall assurance achieved by the implementation of the authentication solution.
There is an emerging model in Canada for determining identity assurance. I was at the Victoria Privacy and Security Conference last February and attended an identity workshop hosted by the British Columbia government. This workshop presented the new Pan-Canadian Strategy for Identity Management and Authentication, which includes a useful model for identity assurance:
click thumbnail to view
I find this to be an excellent summary of the components that make up identity assurance. The model forces a complete analysis of the components that impact identity assurance. When selecting and implementing solutions, all seven components of the pan-Canadian model provide important contributions. Over the next several posts, I will break down each component and provide some practical thoughts on how it impacts IdM solution design and implementation.
First in a series, click here for the post on Information Classification.
Updated: see related post on IdM Vision (May 2009).
Mike
October 13, 2008 at 4:32 pm |
[...] Identity Assurance — Information Classification 2nd in a series [ <- previous ] [...]