Monday, 25 July 2016

DRAFT NIST Special Publication 800-63B


Authenticators may be provided by a CSP as part of a process such as enrollment; in other cases, the subscriber may provide their own, such as software or hardware cryptographic modules. For this reason, we refer to the binding of an authenticator rather than the issuance, but this does not exclude the possibility that an authenticator is issued as well.

From DRAFT NIST Special Publication 800-63B

This is how we think of it in the Consult Hyperion model that has been discussed her before.

No comments:

Post a Comment