Establish FICAM security & privacy criteria

18F / ficam-openid

A FICAM profile for OpenID

1 stars 1 forks source link

Establish FICAM security & privacy criteria #1

Open yozlet opened 9 years ago

yozlet commented 9 years ago

What are the FICAM security & privacy criteria that we should use to create a profile and layer FICAM requirements on top of the existing OpenID Connect spec? Where are they documented?

yozlet commented 9 years ago

From Anil:

http://www.idmanagement.gov/sites/default/files/documents/FICAM_TFS_TFPAP_0.pdf (criteria make up Appendix A)

Also, the Profile Adoption Process: http://www.idmanagement.gov/sites/default/files/documents/FICAM_TFS_SchemeProfile_Adoption_Process.pdf

yozlet commented 9 years ago

Based on those documents, a further question: Which LOAs are we trying to cover here?

yozlet commented 9 years ago

Answer: LOA 2 & 3