Skip to Content.
Sympa Menu

assurance - RE: [Assurance] Executive Order from the President of the United States

Subject: Assurance

List archive

RE: [Assurance] Executive Order from the President of the United States


Chronological Thread 
  • From: "Farmer, Jacob" <>
  • To: "" <>
  • Cc: "" <>
  • Subject: RE: [Assurance] Executive Order from the President of the United States
  • Date: Tue, 21 Oct 2014 20:56:42 +0000
  • Accept-language: en-US

For at least one example, the identity proofing requirements in Silver are more flexible than those in LOA 2.  Specifically, Silver adds the “Existing relationship” proofing mechanism.

 

Jacob

 

 

 

From: [mailto:] On Behalf Of Jones, Mark B
Sent: Tuesday, October 21, 2014 4:45 PM
To:
Cc:
Subject: RE: [Assurance] Executive Order from the President of the United States

 

I would be interested in an example of a significant difference between NIST 2 and Silver.  Why is it important not to equate the two?

 

From: [] On Behalf Of Farmer, Jacob
Sent: Tuesday, October 21, 2014 3:30 PM
To:
Cc:
Subject: RE: [Assurance] Executive Order from the President of the United States

 

The NIST standards were written in such a way that they really could only be implemented by a Federal Government entity.  For example, they make references to specific artifacts of the way the Federal Government is organized.  I don’t think the broad industry interest was anticipated.

 

Jacob

 

From: [] On Behalf Of Bradner, Scott
Sent: Tuesday, October 21, 2014 4:28 PM
To:
Cc:
Subject: Re: [Assurance] Executive Order from the President of the United States

 

I have wondered, why did I2 decide to not just use the NIST standards - 

 

seems to present an ongoing issue to be " comparable, but not the same’

 

Scott

 

On Oct 21, 2014, at 4:24 PM, Michael R. Gettes <> wrote:

 

NIST 1 != Bronze.

NIST 2 != Silver.

 

They are comparable, but not the same.

 

/mrg

 

On Oct 21, 2014, at 4:19 PM, Brett Bieber <> wrote:

 

That document doesn't mention specifications such as NIST Levels 1 (Bronze), 2 (Silver), 3, 4, directly, but instead generalizes the importance of common standards, requirements, & accountability.

 

 




Archive powered by MHonArc 2.6.16.

Top of Page