Differentiation authentication for ABFAB
Shenzhen University
Shenzhen University
Sun Yat-Sen University
This document describes how to implement the differentiation authentication with Level of Assurance (LOA). In order to achieve the goal, we define a new authentication context class schema for SAML V2.0 which is used to specify the LOA requirement of Relying Provider (RP), a function which is used by Identity Provider (IdP) to transform the required LOA to specific authentication method(s), and a profile which describes the application of this new authentication context.