Purpose
Definitions of Classes
All Internet transactions and Verifiable Credentials have different purposes. Each purpose conveys an underlying set of authenticity and data integrity.
Class 1 – Untrusted
- Attributes of Class:
- Transactions that are not governed by any ecosystem
- Examples of Transactions: Peer to Peer Communication
- Examples of Verifiable Credentials
- Governance Mechanisms
- Underlying Infrastructure
- Trust Assurance Practices
- Mapped Level to other Standards:
- NIST 800-63-3: IAL1, AAL1, FAL?
- PCTF: Level 1
Class 2 – Minimum Internet Grade
- Attributes of Class:
- Minimum Level of Assurance Covered by ToIP Foundation Guidance
- Examples of Transactions: Identity Credential Used for non-Asset Transfer
- Examples of Verifiable Credentials
- Governance Mechanisms
- Underlying Infrastructure
- Trust Assurance Practices
- Mapped Level to other Standards:
- NIST 800-63-3: IAL2, AAL2, FAL?
- PCTF: Level 2
- eIDAS: Simple
Class 3 – Asset Value Grade
- Attributes of Class:
- Identity Credential Used for Asset Transfer
- Examples of Transactions: AML/CFT
- Examples of Verifiable Credentials
- Governance Mechanisms
- Underlying Infrastructure
- Trust Assurance Practices
- Mapped Level to other Standards:
- NIST 800-63-3: IAL2, AAL3, FAL?
- PCTF Level 3
- eIDAS: Qualified
Class 4 – Classified Grade
- Attributes of Class:
- Examples of Transactions:
- Examples of Verifiable Credentials
- Governance Mechanisms
- Underlying Infrastructure
- Trust Assurance Practices
- Mapped Level to other Standards:
- NIST 800-63-3: IAL3, AAL3, FAL?
- PCTF Level 4
- eIDAS: Qualified