Authenticator Assurance Level

Active / In Use

Full Formal Attribute Name

nief:1.0:user:AuthenticatorAssuranceLevel

Abbreviated Formal Attribute Name

AuthenticatorAssuranceLevel

Definition

The authenticator assurance level as defined by NIST SP 800-63-3. There are three defined levels: AAL1 (low), AAL2 (medium), and AAL3 (high).

Data Type

AAL Code

Version Number

1.0

Usage Information

IDPs should assert this attribute to indicate the strength of the authenticator used for the current authentication process; AAL1 (low), AAL2 (medium), and AAL3 (high). AAL2 and AAL3 require multifactor authentication; although the use of multiple factors does not automatically qualify for AAL2.

Example Content

AAL1, AAL2, AAL3

NIEM Xpath

N/A

NIEM Definition

N/A

Source

https://pages.nist.gov/800-63-3/sp800-63b.html

Misc. Notes

None Provided

Aliases