Security and Privacy Controls for Information Systems and Organizations
IDENTIFICATION and AUTHENTICATION
The IDENTIFICATION and AUTHENTICATION Playbook addresses the following areas:
- Policy and Procedures
- Identification and Authentication (Organizational Users)
- Device Identification and Authentication
- Identifier Management
- Authenticator Management
- Authentication Feedback
- Cryptographic Module Authentication
- Identification and Authentication (Non-Organizational Users)
- Service Identification and Authentication
- Adaptive Authentication
- Re-authentication
- Identity Proofing
The IDENTIFICATION and AUTHENTICATION Playbook is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53) Library which has been developed by the U.S. Department of Commerce's National Institute of Standards and Technology (NIST). It establishes controls for systems and organizations. The controls can be implemented within any organization or system that processes, stores, or transmits information.