Online and Digital Identification, Securing Web 2.0, PKI and Digital Certificates

Kantara’s trust framework GSA approved

Thursday, November 3, 2011

The Kantara Initiative announced its approval by the U.S. Government Services Administration as a Trust Framework Provider program certifying levels of assurance one, two, and three non-crypto – non-PKI, says Joni Brennan, executive director at the Kantara Initiative.

This announcement follows the recent Office Management Budget memo to U.S. chief information officers which requires levele of authentication one certified credentials be accepted by U.S. government Web sites within 90 days of the first Trust Framework Providers final approval. The memo also stated that sites should be enhanced or upgraded to accept levels two and three non-crypto certified credentials afterwards as well.

The Kantara Identity Assurance Accreditation and Certification Program aims for the adoption of the Trust Framework model as the means to build a public-private partnership to assure trust in the identity-based experience to end users, relying parties and federation operators. Kantara’s assessors perform assessments of credential service providers – also known as Identity Providers – based on the Kantara Initiative’s Identity Assurance Framework.

This move is one of the first that’s in line with the National Strategy for Trusted Identities in Cyberspace. “Consistent with the National Strategy for Trusted Identities in Cyberspace, the federal government has pledged to be an early adopter of credentialing solutions certified through Trust Framework Providers,” said Jeremy Grant, who is leading the implementation of NSTIC as senior executive advisor for Identity Management at NIST.

The Kantara Identity Assurance Accreditation and Certification Program assesses applicants against its criteria ensuring, amongst other things, alignment with the NIST 800-63 Levels of Assurance and grants successful candidates of the program the right to use the Kantara Initiative Mark, a symbol of trustworthy identity and credential management services at specified Assurance Levels.

Kantara is also working to certify identity providers, Brennan says. There are a few undergoing the Kantara program with final certification expected to be announced soon. [end] 

Related Articles
Kantara accredits Electrosoft

The Kantara Initiative announced that Electrosoft is the latest Kantara-Accredited Assessor able to perform Kantara Service Assessments at Assurance Levels 1, 2, 3 and 4. The certification provides a way for relying parties to understand the trustworthiness of electronic identity credentials issued at commonly agreed levels of assurance. Electrosoft is an IT service provider.

read more »
Verizon ICAM certified

Verizon announced certification for issuance of level three identity tokens, as defined by the U.S. government. The company is the first to be certified to issue credentials that have a “high confidence in the asserted identity’s validity.”

read more »
Gemalto providing eID services to Oman

Gemalto announced it has been appointed by Oman Information Technology Authority (ITA) as prime contractor to secure the country’s eGovernment services. The full solution encompasses strong authentication and digital signature using the eID card, as well as mobile authentication using a mobile handset.

read more »
Agreement to foster expansion of employee digital identities

In an effort to promote efficiencies and reduce paperwork costs, three leading identity trust hubs and a certification authority have signed an agreement to promote the use of digital identities and public key infrastructure (PKI) for employees in both the private and public sectors.

read more »

Comments
Be first to comment...
Comment on this article

Your full name and URL will be displayed with your comment.

Your email is not shown or shared, and is used only for your Gravatar image.




characters left.
Copyright © 2012, AVISIAN, Inc. All rights reserved.