ISO/IEC WD 29115.2

Information security, cybersecurity and privacy protection – Entity authentication assurance framework ISO/IEC WD 29115.2

General information

20.20 Working draft (WD) study initiated   Nov 5, 2024

ISO/IEC

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

International Standard

Scope

ISO/IEC 29115:2013 provides a framework for managing entity authentication assurance in a given context. In particular, it:
- specifies four levels of entity authentication assurance;
- specifies criteria and guidelines for achieving each of the four levels of entity authentication assurance;
- provides guidance for mapping other authentication assurance schemes to the four LoAs;
- provides guidance for exchanging the results of authentication that are based on the four LoAs; and
- provides guidance concerning controls that should be used to mitigate authentication threats.


Life cycle

PREVIOUSLY

PUBLISHED
ISO/IEC 29115:2013

NOW

IN_DEVELOPMENT
ISO/IEC WD 29115.2
20.20 Working draft (WD) study initiated
Nov 5, 2024