Categories

AS 4860-2007

AS 4860-2007

Knowledge-based identity authentication - Recognizing Known Customers

Standards Australia

More details

Download

PDF AVAILABLE FORMATS IMMEDIATE DOWNLOAD
$34.32

$78.00

(price reduced by 56 %)

Scope

This Standard specifies requirements for using pre-existing, authenticated knowledge about a person’s identity held by one organization to streamline provisioning of electronic access to services and facilities by other organizations. These requirements relate to the access control lifecycle model specified in Appendix A.
This Standard provides an alternative to repeating identity authentication checks requiring authentication of Evidence of Identity when applying for access to electronic services where it is possible to rely on authentication of Evidence of Identity performed at an earlier time.
The following are excluded from the scope of this Standard.
(a) System-to-system access where a person is not associated with each instance of electronic access.
(b) Determination of those identity attributes that are necessary to identify a Customer.
(c) Syntax for identity attributes.
(d) Telecommunications protocols for interactions between Customers, Known Customer Organizations, and other Relying Parties.
(e) Requirements for Evidence of Identity and authentication of Evidence of Identity.
(f) Criteria concerning whether or not a relationship history is satisfactory.
(g) The choice of type of identity authentication credential.
(h) Requirements for management of identity authentication credentials (including issue, re-issue, change).
(i) Criteria for a Relying Party to decide whether or not identity information held by a Known Customer Organization and identity authentication credentials assigned by a Known Customer Organization meet their needs.
(j) Operations in Relying Parties concerning a Customer’s access that take place after completion of access provisioning.
(k) Other services that Known Customer Organizations may provide to Relying Parties.
(l) Requirements for certification of compliance with the requirements of this Standard.
(m) Requirements for accreditation of Known Customer Organizations to provide the services specified in this standard.
(n) Procedures to be followed to report fraud or suspected fraud.

General Product Information

Document Type Standard
Status Current
Publisher Standards Australia
ProductNote Pending Revision indicates that as a result of the Aged Standards review process, the document needs updating. If no project proposal, meeting the quality criteria, is received within the 12 month timeframe, the document shall be withdrawn.
Committee IT-012
Supersedes
  • DR 07082 CP

Contact us