ISO/IEC 29115 | ITU-T X.1254 (2012) was a scam1I will be holding a meeting to explain the text. It will start on Monday, July 22rd at 1pm. It may be a bit of a leisurely read, but I would like to keep it to just over an hour. Therefore, I will not be reading the original text one by one. I would like to "deconstruct" it so that you can understand the structure and how to read it, and then you can enjoy it later.
ISO/IEC 29115 | ITU-T X.1254 (2012) is also referenced in OpenID Connect, and is also referenced in eIDAS1, so it is a surprisingly influential document.OECD Recommendations on Digital Identity Governance explained on June 6thBut LoA2The word "mapping" was mentioned, but since ISO/IEC 29115 also functions as a "yardstick" for mapping the levels defined by each country's trust framework to the ISO/IEC 29115 LoA to establish correspondence, I think you are referring to mapping using this function. In Japan, we tend to look at NIST SP800-63, but I think this is the standard to look at internationally.
This time, I would like to roughly explain the structure of this document and why it is the way it is, comparing it with NIST SP800-63, and also consider what would be changed if we were to fix it now.
To download the document, https://bit.ly/X1254 You can do it from.
So, we would like to encourage all those involved to participate.
footnote
- https://www.itu.int/ITU-T/recommendations/rec.aspx?rec=11608&lang=en The text is almost the same, but there are four differences.
- Levels of Assurance. Represents the level of entity authentication.
7 thoughts on "X.3 Deconstruction Show: Learn all about ISO/IEC 10 | ITU-T X.1254 (29115) Identity Authentication Assurance Framework"