(1) WG NAME (and any acronym or abbreviation of the name): The WG name, acronym and abbreviation must not include trademarks not owned by the Organization, or content that is infringing, harmful, or inappropriate.
Identity Assurance and Accreditation Work Group
(2) PURPOSE: Please provide a clear statement of purpose and justification why the proposed WG is necessary.
The Identity Assurance Work Group (IAWG) has been formed within the NewOrg to foster the adoption of trusted on-line identity services. To advance this goal, the IAEG will provide a forum for identifying and resolving obstacles to market and commercial acceptance that have limited broad deployment and adoption of trusted identity services thus far. The first step will be development of a global standard framework and the necessary support programs for assessing identity service providers (IdSPs) against criteria that determine the level of assurance that a relying party (RP) may assume in evaluating identity claims provided by those IdSPs. The framework and processes will be defined in a way that scales, empowers business processes and benefits individual users of identity assurance services. The framework will be the basis upon which IdSPs, RPs and their services can be certified as compliant with common policies, business rules and baseline commercial terms, avoiding redundant compliance efforts and market confusion about the substance and value of identity assurance delivered.
The work of IAWG will begin by consolidating, updating and enhancing the Trust Framework of the EAP (Electronic Authentication Partnership), the Credential Assessment Framework of the US E-Authentication Federation, and other industry contributions. The final deliverable will consist of a suite of harmonized, best-of-breed industry standards for the assessment of identity services, relying parties management of identity information, and identity federations support for inter-party trust. The standards will consist of an identity credential and attribute policy, business procedure and security rules, and minimal baseline commercial terms (e.g. risk, impact and liability allocation) supporting mutual acceptance, validation and lifecycle maintenance across identity federations. An important goal is to foster interoperability among identity federations on a global scale (i.e. inter-federation).
The scope of the IAWG is not just to create a standard framework for identity assurance, but to move beyond pure policy development and into development of actionable and measurable programs (starting with certified assessment) including certification education, industry marketing and broad market promotion. The scope includes support for individual, organizational and machine entity identity services.
The IAWG's goal is to provide public and private sector organizations with a well defined means of relying on digital credentials issued by a variety of identity service providers (aka credential service providers) in order to advance trusted identity federation and thereby facilitate broad user acceptance of this means to manage access to online services and information. Interoperability of e-authentication systems, mutual acceptance of rules, policies and supporting business processes is essential to the cost-effective operation of safe and secure systems that perform critical electronic transactions and tasks across industry lines.
(3) SCOPE: Explain the scope and definition of the planned work.
The IAWG does not seek to duplicate the e-authentication work of other organizations nor does it seek to develop authentication protocols. The IAWG output will be relevant to operational practices and will not be normative to any specific software implementation of authentication or federation protocols.
Members of this EG have the opportunity to:
...
- The Identity Assurance Framework (IAF) - a set of concepts including business rules, procedural and technical trust criteria for identity service providers, relying parties and federations, and assessment methodologies for determining conformance to trust criteria. The IAF will be based on broad input from both public and private industry stakeholders with relevant experience and contributions to this effort.
- Identity Assurance Framework - Service Assessment Criteria
- Identity Assurance Framework - Federation Operator Rules and Guidelines
...
(8) DURATION: Objective criteria for determining when the work of the WG has been completed (or a statement that the WG is intended to be a standing WG to address work that is expected to be ongoing).
<INSERT TEXT> The NewOrg Leadership Council charters the Identity Assurance Work Group for five years. It may be amended from time to time, with changes approved by the Leadership Council. This charter will expire on <INSERT DATE>.
(9) IPR POLICY: The Organization approved Intellectual Property Rights Policy under which the WG will operate. NewOrg
Kantara IPR Policy - Option Liberty
(10) RELATED WORK AND LIAISONS: Related work being done in other WGs or other organizations and any proposed liaison with those other WGs or organizations.
...
- Identity Assurance Framework Set (Liberty IAEG)
- *Identity Assurance Framework - Read Me (Liberty IAEG)*
(12) PROPOSERS: Names, email addresses, and any constituent affiliations of at least the minimum set of proposers required to support forming the WG.
...