eduPersonAssurance#
Description#
Specifies the person’s identity assurance profiles (IAPs), which are the set of standards that are met by an identity assertion, based on the Home Organization’s identity management processes, the type of authentication credential used, the strength of its binding, etc. Feide populates this attribute with the corresponding profile defined by the Norwegian regulations, Rammeverk for autentisering og uavviselighet i elektronisk kommunikasjon med og i offentlig sektor (also known as FAD-08, only in Norwegian).
Format#
The attribute values take the form of a URI that identifies the identity assurance profile that corresponds to a specific assertion.
In Feide, the main profiles expressed will use the prefix urn:mace:feide.no:auth:level:fad08:, appended by a number from 1 to 4 (both included) that identifies the specific profile in use.
Examples#
Currently, Feide supports two different two-factor authentication methods, based on text messages and Google Authenticator, both providing the same identity assurance profile:
urn:mace:feide.no:auth:level:fad08:3
Technical details#
- Cardinality:
Multivalued
- Availability in higher education.:
Low
- Availability, primary and secondary school.:
Low
- Entry type:
person
- Short description:
Set of URIs that assert compliance with specific standards for identity assurance