Software Statement

From MgmtWiki
Revision as of 15:42, 20 February 2020 by Tom (talk | contribs) (Context)

Jump to: navigation, search

Full Title or Meme

A json document that describes the provenance, certification and operational environment of an implementation of a software package on a computing machine.

Context

  1. In determining an authentication assurance level (NIST 800-63-3B AAL2 or 3) a website needs to see some sort of attestation statement that can be used to determine the level of assurance that a user's credential will not be exposed.

Problems or Threats

  1. Spoofing the user by acquiring access to the user's authentication credentials.

References

Retrieved from "http://tcwiki.azurewebsites.net/index.php?title=Software_Statement&oldid=7225"