ISO 29115 (Entity Authentication Assurance) Training

This training provides a detailed understanding of ISO/IEC 29115, the international standard for Entity Authentication Assurance. Participants will learn how to establish and manage different levels of assurance (LoA) for authenticating entities (individuals or systems) in various contexts. The course covers the principles, framework, and practical application of ISO 29115, enabling organizations to implement robust and risk-appropriate authentication solutions.

Why This Training Matters: In an increasingly digital world, robust and reliable authentication is fundamental to security. ISO 29115 provides a globally recognized framework for assessing and defining the confidence level in an asserted identity. This is critical for protecting sensitive data, ensuring secure transactions, and building trust in digital interactions across diverse sectors, from online banking to government services.

Importance for Career and Organization:

• For your career: Expertise in ISO 29115 is highly valuable for professionals involved in identity and access management, cybersecurity, and IT governance. It demonstrates a specialized skill set in designing and implementing secure authentication systems.
• For your organization: Enables the development of secure and scalable authentication solutions tailored to specific risk profiles. It helps in meeting regulatory requirements (e.g., eIDAS), reducing fraud, enhancing user trust, and optimizing security investments by aligning authentication strength with risk levels.

What You Will Learn / Training Covers:

• Introduction to ISO 29115: Scope, purpose, and key concepts of entity authentication assurance.
• Levels of Assurance (LoA): Detailed explanation of the four LoA (Low, Medium, High, Very High) and the criteria for achieving each level.
• Identity Proofing: Requirements and methods for verifying an entity’s identity during the enrolment phase.
• Credential Management: Best practices for the lifecycle management of authentication credentials (issuance, activation, storage, suspension, revocation).
• Authentication Mechanisms: Understanding various authentication factors (knowledge, possession, inherence) and their application to different LoA.
• Threats and Controls: Identifying common threats to authentication processes and implementing appropriate controls.
• Risk Assessment for LoA Selection: Guidance on how to determine the appropriate LoA based on risk assessment of transactions and services.
• Mapping to Other Frameworks: How ISO 29115 relates to other authentication frameworks (e.g., NIST 800-63).
• Management and Organizational Considerations: Legal compliance, information security management, and operational infrastructure considerations for entity authentication assurance.
• Practical Implementation: Designing and evaluating authentication solutions based on ISO 29115 principles.

Who Should Attend:

• Identity and Access Management (IAM) Professionals
• Cybersecurity Architects and Engineers
• IT Security Managers
• System Administrators
• Compliance Officers
• Risk Managers
• Developers working on authentication systems
• Consultants in IT security and digital identity.

Benefits:

• Master the international standard for entity authentication assurance.
• Design and implement authentication solutions aligned with organizational risk appetite.
• Improve the security and reliability of digital identities and access.
• Enhance compliance with regulations requiring specific levels of assurance.
• Reduce the risk of unauthorized access and identity fraud.
• Optimize security investments by applying appropriate authentication strength.

Our ISO 29115 training provides a hands-on approach to understanding the nuances of authentication assurance. Through practical exercises and real-world case studies, participants will learn how to apply the standard to complex scenarios, making them proficient in architecting and evaluating secure identity systems.

Strengthen your authentication defenses. Enroll in our ISO 29115 Training to become an expert in entity authentication assurance!