Authentication and Identity Management
Contents
- 1 Lead Agency Approach for Authentication Services to Government
- 2 The National e-Authentication Framework (NeAF)
- 3 Identity Management for Australian Government Employees Framework (IMAGE)
- 4 National Smartcard Framework
- 5 Gatekeeper PKI Framework
- 6 Draft Commercial Service Provider Assurance Framework
- 7 AGIMO Guidance Documents
Lead Agency Approach for Authentication Services to Government
The lead agency approach to the provision of authentication services is the Australian Government’s new initiative to facilitate access to government services. This initiative minimises investment in new authentication infrastructure and maximises ease of use by reducing the number of authentication credentials required to access government services. All agencies (except defence, health and the intelligence community) are required to apply the lead agency model.
The National e-Authentication Framework (NeAF)
The National e-Authentication Framework (NeAF) will assist agencies, jurisdictions and sectors in authenticating the identity of the other party to a desired level of assurance or confidence. The NeAF encompasses the electronic authentication (e‑authentication) of the identity of individuals and businesses dealing with the government, on one side of the transaction, as well as the authentication of government websites on the other side.
Identity Management for Australian Government Employees Framework (IMAGE)
The Identity Management for Australian Government Employees Framework (IMAGE) is an integrated, better practice approach for identity management of Australian Government employees and contractors.
National Smartcard Framework
The National Smartcard Framework will facilitate the adoption of a consistent approach to the implementation of smartcard technology by agencies in all Australian jurisdictions. It will assist agencies that intend to implement smartcards and allow for the adoption of common policies and technologies that facilitate technical interoperability between smartcard deployments.
Gatekeeper PKI Framework
Gatekeeper is the Australian Government’s strategy for the use of Public Key Infrastructure (PKI) as a key enabler for the delivery of secure online government services.
Draft Commercial Service Provider Assurance Framework
There is an emerging commercial provider market for a range of on-line services such as personal data vaults, digital mailboxes, data verification and authentication services. The Commercial Service Provider Assurance Framework provides guidance for agencies to determine the Level of Assurance required to be demonstrated by Providers and the criteria to be satisfied by Providers to deliver the required Level of Assurance.
- Draft Commercial Service Provider Assurance Framework – PDF Version [1.36 MB]
- Draft Commercial Service Provider Assurance Framework – DOC Version [588 KB]
AGIMO Guidance Documents
AGIMO develops, in consultation with DSD, guidance documents that articulate agencies’ responsibilities in meeting the requirements of the government’s ICT security policy.
Protective Markings in Email Standard and Guidance
The consistent implementation of protective markings in email will increase the security of all government email. Guidance is currently being developed by AGIMO to support Australian Government agencies in implementing protective markings in email and to enable officers to understand their responsibilities.
For more information:
- Email Protective Marking Standard for the Australian Government – PDF Version [889 KB
- Email Protective Marking Standard for the Australian Government - DOC Version [849 KB]
- Email Protective Marking Standard Implementation – Guide for the Australian Government [PDF - 691 KB]
- Email Protective Marking Standard Implementation – Guide for the Australian Government [DOC - 595 KB]
This Standard defines the format of protective markings for Internet email message headers used for messages exchanged within and between Australian Government agencies. A protective marking is used to convey the protection requirements for information in a message, as defined within the Australian Government Protective Security Policy Framework. The protective marking may also contain additional information about the message that tells systems and system users how to appropriately disseminate the information contained in the message.
Contact for information on this page: authentication@finance.gov.au
Footer
The AGIMO Blog
- Digital First and the APS ICT Strategy
- Why is Commonwealth Procurement a Big Red Bus
- Sharpening the Pencils – CIPSA
- APS Mobile Roadmap
- Encouraging innovation as part of the APS ICT Strategy
- Guest Post: The Department of Human Services Seeks your Feedback
- 2013 Australian Government ICT Award recipients announced
- Release of Cloud Computing Policy v2
- Views Sought on Annual Review of the Common Operating Environment Policy
- APS ICT Strategy – progress update