!!! Overview [{$pagename}] ([AAL] also seen as [Authentication] [Assurance] Levels) is intended to provide some confidence in the [Authentication] provided by [Identity Provider (IDP)] to a [Relying Party] at some desired [Level Of Assurance][{$pagename}] is a factor within [Risk Assessment] !! [NIST.SP.800-63B] [{$pagename}] is discussed in [NIST.SP.800-63B] and %%zebra-table %%sortable %%table-filter ||LEVEL||Description |[AAL1]|Provides some [assurance] that the [claimant] controls the [Claim] \\requires at least single-factor [authentication]. |[AAL2]|Provides high [confidence|Assurance] that the claimant controls [Claim] \\two different [Authentication Factors] ([Multi-Factor Authentication]) are required \\approved [cryptographic] techniques are required. |[AAL3]|Provides very high [confidence|Assurance] that the claimant controls the [Claim] \\[authentication] based on [Proof-of-Possession] of a key through a [cryptographic] [protocol] \\requires a “[hard|Hardware-secured key]” [cryptographic] [authenticator]. /% /% /% !! More Information There might be more information for this subject on one of the following: [{ReferringPagesPlugin before='*' after='\n' }]