Started with SURF's "Remote vetting for SURFconext Strong Authentication" flows.
The content was refactored with What is ITU-T .1254 and why to use it?X.1254/ ISO/IEC DIS recommendation "Entity authentication assurance framework" as a conceptual basis.
The following generalised functional units (actions) serve to design and implement the vetting scenarios for second factor and multifactor authentication that fulfil some of ITU-T X.1254 entity authentication assurance framework processes. The following processes from its "8.1 Enrollment phase" are to be covered:
...
The below descriptions our use own terminology, our slightly shifted terminology, e.g. with factors vs , not credentials.
Actions are grouped in four sections: Common Actions, three general phases (Initiation, Verification, Binding).
...
C_USE_EXISTING_FACTOR Authenticate Using Existing Factor (Any alternative phrasing for _EXISTING alternative?)
The applicant authenticates with his/her factor(s) already in place and function in the system. Username/password login is typically the first existing factor that is readily available.
...