FICAM Assurance Level Code
Active / In UseFull Formal Attribute Name
nief:1.0:user:FICAMAssuranceLevelCode
Abbreviated Formal Attribute Name
FICAMAssuranceLevelCode
Definition
Captures the maximum NIST Level of Assurance (LOA) of an identity based on the guidance offered in Sections 5.3.1, 6.3.1, 7.3.1, 8.3.2, and 9.3.2 of NIST Special Publication 800-63-2, "Electronic Authentication Guideline", published in August 2013.
Data Type
Version Number
1.0
Usage Information
Usage of this attribute is constrained by the following rules.
1. The FICAM Assurance Level Code asserted in an assertion must be no higher than the Identity Proofing Assurance Level Code and the Electronic Identity Assurance Level Code asserted within that same assertion.
2. The FICAM Assurance Level Code must be equivalent to one of the NIST/FICAM Levels of Assurance (LOAs) at which the IDP has been certified to make assertions.
3. The value asserted for the FICAM Assurance Level Code in a SAML assertion must be equivalent to the value asserted for the Authentication Context Class within the Authentication Statement for that assertion.
1. The FICAM Assurance Level Code asserted in an assertion must be no higher than the Identity Proofing Assurance Level Code and the Electronic Identity Assurance Level Code asserted within that same assertion.
2. The FICAM Assurance Level Code must be equivalent to one of the NIST/FICAM Levels of Assurance (LOAs) at which the IDP has been certified to make assertions.
3. The value asserted for the FICAM Assurance Level Code in a SAML assertion must be equivalent to the value asserted for the Authentication Context Class within the Authentication Statement for that assertion.
Example Content
"NISTLEVEL1", "NISTLEVEL2", "NISTLEVEL3", "NISTLEVEL4"
NIEM Xpath
N/A
NIEM Definition
N/A
Source
NIEF FICAM Alignment Project
Misc. Notes
None Provided