| Trustmark Definition Name | Version |
|---|---|
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for high entropy of look-up secret tokens.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for high entropy of memorized secret tokens.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for high entropy of pre-registered knowledge tokens.
|
1.0 |
|
This Trustmark Definition covers entropy requirements for out-of-band token authentication done by Credential Service Providers (CSPs).
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for multi-factor hardware cryptographic token implementation.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for multi-factor one-time-password hardware token implementation.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for multi-factor software cryptographic token implementation.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for out-of-band token implementation.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for the implementation of pre-registered knowledge tokens that use personal knowledge questions. Trustmarks for this Trustmark Definition may be issued to CSPs that can show that personal knowledge pre-registered knowledge tokens are not used.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for the implementation of pre-registered knowledge tokens that use personal knowledge questions. Trustmarks for this Trustmark Definition may be issued to CSPs that can show that personal knowledge pre-registered knowledge tokens are not used.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for single-factor one-time-password device token implementation.
|
1.0 |
|
This Trustmark Definition covers the use of biometrics, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees, for in-person applicant tracking during subscriber registration.
|
1.0 |
|
This Trustmark Definition covers the use of temporary secrets, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees, for in-person applicant tracking during registration.
|
1.0 |
|
This Trustmark Definition covers in-person credential issuance, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees, to subscribers who are employees or students of the CSP.
|
1.0 |
|
This Trustmark Definition covers requirements for in-person visual inspection of financial account numbers of registration applicants, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees.
|
1.0 |
|
This Trustmark Definition covers requirements for in-person visual inspection of primary government picture IDs of registration applicants, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees.
|
1.0 |
|
This Trustmark Definition covers requirements for in-person visual inspection of secondary government IDs of registration applicants, by Credential Service Providers (CSPs) and their Registration Authority (RA) designees.
|
1.0 |
|
This Trustmark Definition covers entropy requirements for multi-factor hardware cryptographic token authentication done by Credential Service Providers (CSPs).
|
1.0 |
|
This Trustmark Definition covers entropy requirements for multi-factor software cryptographic token authentication done by Credential Service Providers (CSPs).
|
1.0 |
|
This Trustmark Definition covers entropy requirements for single-factor cryptographic device token authentication done by Credential Service Providers (CSPs).
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for low entropy of look-up secret tokens.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for low entropy of memorized secret tokens.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for low entropy of pre-registered knowledge tokens.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for low entropy for out-of-band token authentication.
|
1.0 |
|
This Trustmark Definition covers requirements on Credential Service Providers (CSPs) for mitigating threats of online guessing, replay, eavesdropping, and session hijacking to authentication processes.
|
1.0 |
