Skip to content.
|Networking government in New Zealand.

4. Application of Guide

4.1 Audience

The intended audiences for this Guide are business unit managers, business and technical analysts, data architects and developers.

4.2 NZ e-GIF status

Upon approval by the e-GIF Management Committee, the authentication standards will enter the NZ e-GIF as Under development (U) and graduate to Recommended (R) after a successful, documented implementation. The authentication standards are expected to graduate to Adopted (A) once there is a track record of proven successful implementation.

For guidance on agency responsibilities for compliance with NZ e-GIF standards at each status level, refer to the latest version of the NZ e-GIF (www.e.govt.nz).

4.3 Accessing advice on this Guide

Advice on this Guide can be obtained from:

e-GIF Operations
State Services Commission

Postal: PO Box 329, WELLINGTON
Phone: 04 495 6600
Fax: 04 495 6669
Email: e-gif@ssc.govt.nz
Web: www.e.govt.nz

The agency responsible for this Guide is the State Services Commission.

4.4 Interpretation

The following words, defined in Key Words for Use in RFCs to Indicate Requirement Levels (RFC 2119), are used in this Guide:

  • ‘MUST ’ – identifies a mandatory requirement for compliance with this Guide
  • ‘SHOULD’ – refers to practices that are advised or recommended.

Agencies deviating from a ‘SHOULD’, MUST document:

  • the reason for the deviation
  • an assessment of the residual risk resulting from the deviation
  • a date by which the decision will be reviewed
  • management’s approval of the above.

When cross-referencing sections of this Standard, the number only is quoted.

4.5 Definitions

A full set of definitions used in all of the authentication standards is given in Appendix A.

4.6 Document structure

After a brief introduction to Internet-related misuse and abuse of identity, this Guide sets out a six-step model that identifies the sequence in which agencies SHOULD use each of the authentication standards.

Following this model is a series of sections covering the authentication standards in the order given in the six-step model. Each section outlines the purpose and main elements of one of the authentication standards.

[ Previous ] [ Next ]