Authenticator Assurance Level

E414747

Authenticator Assurance Level is a NIST-defined measure of the strength and reliability of an authentication process, indicating the degree of confidence that a user has been properly authenticated.

All labels observed (1)

Label Occurrences
Authenticator Assurance Level canonical 1

How this entity was disambiguated

Statements (47)

Predicate Object
instanceOf Authenticator Assurance Level
Authenticator Assurance Level
Authenticator Assurance Level
NIST-defined term
digital authentication concept
security assurance metric
abbreviation AAL
allows memorized secrets
multi-factor OTP devices
multi-factor cryptographic hardware authenticators
multi-factor cryptographic software authenticators
single-factor OTP devices
single-factor cryptographic software authenticators
appliesTo digital authentication
online identity systems
definedBy National Institute of Standards and Technology
definedIn NIST SP 800-63
surface form: NIST SP 800-63-3

SP 800-63B: Authentication and Lifecycle Management
surface form: NIST SP 800-63B
governedBy risk management requirements
hasDescription provides high confidence that the claimant controls authenticators bound to the subscriber’s account
provides some assurance that the claimant controls an authenticator bound to the subscriber’s account
provides very high confidence that the claimant controls authenticators bound to the subscriber’s account
hasLevel AAL1
AAL2
AAL3
hasPurpose indicate confidence that a claimant has been properly authenticated
measure strength of an authentication process
influences identity proofing and lifecycle management policies
technical requirements for authenticators
notEquivalentTo authorization level
data classification level
orderedBy increasing authentication strength
partOf NIST digital identity guidelines
surface form: NIST Digital Identity Guidelines
relatedTo Federation Assurance Level
Identity Assurance Level
authentication factors
multi-factor authentication
requires hardware-based cryptographic authenticators
multi-factor authentication
proof of possession and control of two distinct authentication factors
resistance to replay attacks
single-factor authentication
verifier impersonation resistance
scope authentication event strength and reliability
supports selection of authenticators based on risk
usedIn federal information systems
risk-based authentication design

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

NIST digital identity guidelines definesConcept Authenticator Assurance Level