Term · 28. International Regulations

FAL FAL

Term from Law

Personal Data NIST Introduced by: Big4 (Deloitte / PwC / EY / KPMG)

Definition

NIST SP 800-63C Federation Assurance Level — measures the strength of federated identity assertions between identity providers and relying parties. FAL1: bearer assertion (signed but unencrypted); FAL2: encrypted bearer assertion; FAL3: holder-of-key assertion (cryptographically bound to the user's authenticator). Federal agencies require FAL2 minimum for cross-agency federation.

Synonyms

Federation Assurance Level (NIST)

Discouraged variants

**NIST SP 800-63-4** SP-C (Federation)

Application: Regulatory: NIST SP 800-63 (Digital Identity Guidelines)

Standards & regulations

NIST

Sources

NIST SP 800-63C (Federation Assurance Levels) primary source

Related terms

DIRM (DIRM)

Digital Identity Risk Management — the NIST SP 800-63-4 process for managing digital identity risk. Replaces the static …
Remediation (Rem)

Action taken to correct an identified identity risk or policy violation — disable orphan account, revoke excessive entit …
AAL (AAL)

NIST SP 800-63B Authenticator Assurance Level — measures the robustness of the authentication process. AAL1: single-fact …
Audit Trail

Chronological record of identity events — authentication, authorization decisions, provisioning actions, configuration c …
Automated Data Classification

Machine learning-driven discovery and classification of sensitive data across structured and unstructured stores — ident …
Cloud Data Access Governance

Discovery, classification, and access control for sensitive data across cloud data stores (S3, Snowflake, BigQuery, Data …

← Back to glossary · Open in main list