When a legal (or designated) representative of a business, a public service or a consumer logs on to the website of an organisation, he (or she) uses the login token issued by a service provider of his (or her) choice. Login tokens may include user name/password, texting, phone, one time password (OPT), or public key certificate.
Behind the scenes, authentication and authorisation at the relevant assurance level are carried out according to the policies set by the eHerkenning governance organisation: an accredited eHerkenning broker has access to an authentication service and an authorisation register. The broker identifies the person who logs on and the company or public service (s)he represents and checks his/ her authorisation for the case in point. After logging on successfully, the representative can submit his or her application, and the organisation can be sure it is genuine.
Five assurance levels
Depending on the type of government service, eRecognition supports five assurance levels, which are based on the ISO classification. Other international standards, such as SAML 2.0, are used for the secure messaging.