NIEF Minimum Token and Credential Management Profile, v1.0
This is a candidate Trust Interoperability Profile that specifies a proposed minimum set of requirements on the management of authentication tokens and credentials by NIEF Identity Provider Organizations (IDPOs).
|Keywords:||There are no keywords.|
|Legal Notice:||This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.|
This Trust Interoperability Profile specifies NIST 800-63 requirements on credential verification services provided by CSPs, for LOAs 1 - 4.
This Trust Interoperability Profile specifies NIST 800-63 LOA 2 requirements on the renewal and re-issuance of tokens and credentials by CSPs.
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for the revocation of tokens and credentials within 72 hours of a CSP becoming notified of a compromise.
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for maintaining token and credential provenance records.