Logo
  • Overview
  • Consent
  • Authenticate
  • Authorise
  • Consent Management
  • Notifications
Data Standards Body | CX Guidelines

CX Guidelines

Overview

Consent

Authenticate

Authorise

Consent Management

Notifications

Keep in touch

DSB Newsletter

Website use

Accessibility Statement

Copyright

Privacy

Disclaimer

In the spirit of reconciliation, the Data Standards Body acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their Elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples.

Consumer Experience (CX) Guidelines
/
Overview
/
CX Checklist
/
CX Guidelines
/
00. Authenticate - general

00. Authenticate - general

Checklist ref

2AU.00.28

Area
2AU. Redirect to Web with OTP
Wireframe ref

28

Type
Technical Standard
Requirement level
MUST
Participant
Data Holder
Statement

A Single LoA value is carried in the acr claim which is described in section 2 of [OIDC]. • An LoA of 2 is represented by the URI: urn:cds.au:cdr:2 • The authenticators used to attain this level MUST achieve Single Factor Authentication as defined in Authentication Schedule. • The authenticators used to attain this level MAY conform with the Authentication Level 'AL1' rules specified under the Digital ID Accreditation Data Standards [DigitalID-Accreditation] Authentication Levels (Chapter 2) requirements. NB: This is a subset of the Technical Standard referenced.

Reference

Security Profile, Levels of Assurance (LoAs), Single Ordinal

Example

Authenticate: Redirect to Web with One Time Password

Version introduced
1.35.0
Date introduced

22 September 2025

Date modified

Status
Active