by a team of experts to reflect the changing land-  •  User experience requirements for strong authenti-
            scape of digital identity. The Certification Mark appli-  cation
            cation form consists of 50 questions across seven
            focus areas: applicability, identification and verifica-  ITU-T Study Group 17 is the lead study group on
            tion, authentication, privacy and control, attestations   identity management and currently Q10/17 is updat-
            and trust, interoperability, and recovery and redress.  ing Recommendation ITU-T X.1254 “Entity Authenti-
                                                               cation Assurance” to reflect recent changes to NIST
            5�6  Standardization Objectives                    Special Publication 800-63-3 “Digital Identity Guide-
            International standards for strong authentication   lines”.
            mechanisms continue to be improved. Areas that       Additionally, FIDO UAF 1.1 and FIDO CTAP proto-
            need additional focus include:                     cols have been standardized in Study Group (SG) 17
                                                               as Recommendation ITU-T X.1277 and Recommenda-
            •  Behavioural modeling                            tion ITU-T X.1278.
            •  Relative strengths of authenticators              The work presented in this report was written with
            •  Requirements for security capabilities of mobile   the consideration of being submitted to Q10/17 of
               devices relative to authenticator strength      ITU-T SG 17 for further standardization as part of the
                                                               X.1254, X.1277 and X.1278 work.

























































            12   Implementation of Secure Authentication Technologies for Digital Financial Services