Guide to Authentication Standards for Online Services

This Guide is an entry point and navigation tool for the suite of NZ authentication standards. These standards were created in 2006 using the e-GIF standards creation process and incorporated into the e-GIF body of knowledge. This Guide is in itself a standard, and outline best practice for the design of the authentication component for online services.

The NZ authentication standards support the authentication-related, all-of-governemnt shared servies, which will allow agencies to devolve the management of the authentication component of online services.

This Guide articulates a risk management-based approach for agencies to identify appropriate combinations of evidence of identity processes (establishment of identity) and authentication keys (ongoing confirmation of identity).

Please check for any Amendments to this and/or any other Authentication Standards that you may be using. State Services Commission June 2006 Version 1.0 ISBN 0-478-24461-4 Crown Copyright ©

PreviewAttachmentSize
egif-guide-to-authentication-standards-june-2006.pdf1 MB

Content in this section

  • Application of Guide

    4.1 AudienceThe intended audiences for this Guide are business unit managers, business and technical analysts, data architects and developers.4.2 NZ e-GIF statusUpon approval by the e-GIF Management Committee, the authentication standards will enter the NZ e-GIF as Under development (U) and graduate to Recommended (R) after a successful, documented implementation. The authentication standards are expected to graduate to Adopted (A) once there is a track record of proven successful implementation.

    Read more

  • End Matter

    Working group representationThe following organisations contributed representatives to the working group that developed this Guide:

    Read more

  • Background

    3.1 Concepts‘Authentication’ is the process of initial establishment and ongoing confirmation, to the required level, of the identity of one or more parties to a transaction. Authentication provides confidence, relative to the level of identity-related risk, that appropriate steps have been taken to ensure that identity is correctly attributed.

    Read more

  • Appendix A - Definitions

    This appendix contains the full set of definitions used in all of the authentication standards.

    Read more

  • Using the Authentication Standards

    6.1 GeneralThe full suite of the NZ e-GIF authentication standards is designed to enable agencies to undertake the following processes:

    Read more

  • Usage Scenarios

    The Evidence of Identity StandardSHOULD be used by agencies when they design or update any service, regardless of that service’s delivery channel(s).The full suite of authentication standards is intended to be used by agencies when they:

    Read more

  • Scope

    The purpose of this Guide is to provide a high-level overview of the suite of authentication standards. It explains when agencies should use each of the standards during the design and implementation of their online authentication systems.

    Read more

  • Introduction

    This Guide to Authentication Standards for Online Services is one of the NZ e-GIF authentication standards. These standards outline current accepted good practice for the design (or re-design) of the authentication component for online services that require confidence in the identity of parties transacting with government agencies. Implementation of these standards by agencies will reduce the possibility of misuse and abuse of identity arising from services being delivered online.

    Read more

  • Foreword

    The Networked State Services Development Goal (State Services Commission 2005a) is that, by June 2010, the operation of government will have been transformed through the use of the Internet. The challenge will be to transform government through enabling technology, so that individuals and businesses have a better and more consistent experience in their dealings with government, agencies work more closely with their customers and with each other, and the cost of delivering services, both online and through other channels, is reduced.

    Read more