When a legal (or designated) representative of a business, a public service or a consumer logs on to the website of an organisation, he (or she) uses the login mean issued by a service provider of his (or her) choice. Login means may include user name/password, texting, phone, one time password (OPT), or public key certificate.
Behind the scenes, authentication and authorisation at the relevant assurance level are carried out according to the policies set by the eHerkenning governance organisation: an accredited eHerkenning means issuer has access to an authentication service and an authorisation register. The means issuer identifies the person who logs on and the company or public service (s)he represents and checks his/ her authorisation for the case in point. After logging on successfully, the representative can submit his or her application, and the organisation can be sure it is genuine. Watch the video Logging in securely with eHerkenning (English translation available) to see how it works.
Five assurance levels
Depending on the type of government service, eHerkenning supports five assurance levels, which are based on the ISO classification. Other international standards, such as SAML 2.0, are used for the secure messaging.