...
- make ORG/baseline mandatory for the profile i.e. a CSP cannot signal conformance with the profile if it fails the baseline
- introduce Entity Attributes for signaling that the IdP supports the minimal and higher assurance profile
- as a compromise of signaling everything in Entity Attributes and signaling nothing in Entity Attributes
- use authentication context to signal the authentication assurance
- because there is the mechanism for an SP to request a particular authentication context
- EGI has an ongoing discussion on Level of assurance: https://wiki.egi.eu/wiki/EGI-Engage:TASK_JRA1.1_Proposal_for_Levels_of_Assurance
- there was discussion on an appropriate naming of the levels (minimal, higher, …).
- c.f. IGTF uses birch (~higher), dogwood (~minimal), aspen etc
- we are open to ideas on proper naming
...