Assurance Level Requirement (draft)

Details:

Assessor:

Program Activity, Service or Transaction:

Department:

Date:

Assurance Levels

To determine the level of assurance required, complete the following sentence using the statements in the cells below and check the appropriate boxes

If the program, activity, service or transaction above is compromised, it could result in…

1. Inconvenience, distress, loss of standing or reputation

An inconvenience, distress or damage to the standing or reputation of any party <a href="#hint-panel-1-level-1" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious short-term or a limited long-term inconvenience, distress or damage to the standing or reputation of any party <a href="#hint-panel-1-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious long-term inconvenience, distress or damage to the standing or reputation of any party <a href="#hint-panel-1-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A severe and permanent inconvenience, distress or damageto the standing or reputation of any party <a href="#hint-panel-1-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

2. Financial loss

A financial loss <a href="#hint-panel-2-level-1" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A minor financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party) <a href="#hint-panel-2-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A major financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party) <a href="#hint-panel-2-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
An extreme financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party) <a href="#hint-panel-2-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

3. Harm to program or to public interest

An adverse effect on any government organization, program, asset or the public interest <a href="#hint-panel-3-level-1" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A limited adverse effect on a government organization (i.e., it can perform its primary function but with reduced effectiveness), program, organizational asset or the public interest <a href="#hint-panel-3-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious adverse effect on a government organization (i.e., it can perform its primary function with significantly reduced effectiveness), program, organizational asset or the public interest <a href="#hint-panel-3-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A catastrophic effect on a government organization (i.e., it is unable to perform its primary function), program, organizational asset or the public interest <a href="#hint-panel-3-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

4. Unauthorized release of sensitive personal or commercial information

A loss of personal privacy or breach of personal or commercial information <a href="#hint-panel-4-level-1" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A limited adverse effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information <a href="#hint-panel-4-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious adverse effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information <a href="#hint-panel-4-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A catastrophic effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information <a href="#hint-panel-4-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

5. Unauthorized release of sensitive government information (non-personal information)

A loss of confidentiality <a href="#hint-panel-5-level-1" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A limited adverse effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties <a href="#hint-panel-5-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious adverse effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties <a href="#hint-panel-5-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A catastrophic effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties <a href="#hint-panel-5-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

6. Civil or criminal violations

A violation that may have minor consequences <a href="#hint-panel-6-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A violation that may have serious consequences <a href="#hint-panel-6-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A violation that may have exceptionally grave consequences <a href="#hint-panel-6-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

7. Personal health and safety

A minor personal injury not requiring medical attention <a href="#hint-panel-7-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A personal injury requiring medical attention <a href="#hint-panel-7-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious personal injury or death <a href="#hint-panel-7-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

8. National interest

A disadvantage to the national interest <a href="#hint-panel-8-level-2" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
An injury to the national interest <a href="#hint-panel-8-level-3" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
A serious or exceptionally grave injury to the national interest <a href="#hint-panel-8-level-4" aria-controls="bottom-bar" class="overlay-lnk" role="button">more info</a>
Not applicable

Rationale:

Results

Assessor		Activity
Department		Date

Criteria	Required Level	Assessment	Potential Harm
1. Inconvenience, distress, loss of standing or reputation	1 2 3 4 N/A	An inconvenience, distress or damage to the standing or reputation of any party A serious short-term or a limited long-term inconvenience, distress or damage to the standing or reputation of any party A serious long-term inconvenience, distress or damage to the standing or reputation of any party A severe and permanent inconvenience, distress or damageto the standing or reputation of any party	Alternatives are available with little or no delay and no additional costs or degradation of service quality Minor embarrassment Alternatives are readily available Loss of reputation or standing between the principals Loss of trust or confidence between principals Alternatives are not readily available Loss of reputation or standing beyond the principals (including third parties) Loss of trust or confidence beyond the principals (including third parties) Alternatives are not available Wide-scale permanent loss of reputation or standing Wide-scale permanent loss of trust or confidence
2. Financial loss	1 2 3 4 N/A	A financial loss A minor financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party) A major financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party) An extreme financial loss to any party (Note: The severity of the loss depends on the impact of the loss on the affected party)	Financial loss that has no impact on the financial standing of an individual or organization Financial loss that has no impact or only an insignificant material impact on the financial standing of an individual or organization A budgetary impact that may require reallocation of funds but no additional financing Loss of a financial amount that has a significant material impact on the financial standing of an individual or organization A budgetary impact that may require re-allocation of funds and additional financing Loss of a financial amount that severely jeopardizes the financial standing of an individual or organization Financial restructuring may be required
3. Harm to program or to public interest	1 2 3 4 N/A	An adverse effect on any government organization, program, asset or the public interest A limited adverse effect on a government organization (i.e., it can perform its primary function but with reduced effectiveness), program, organizational asset or the public interest A serious adverse effect on a government organization (i.e., it can perform its primary function with significantly reduced effectiveness), program, organizational asset or the public interest A catastrophic effect on a government organization (i.e., it is unable to perform its primary function), program, organizational asset or the public interest	No noticeable reduction in effectiveness of a primary function of an organization No compromise to a critical asset No loss of public confidence Noticeably reduced effectiveness of a primary function of an organization No compromise to a critical asset Temporary loss of public confidence Significantly reduced effectiveness of a primary function of an organization Compromise to a critical asset Long-term loss of public confidence Unable to perform primary function of an organization Major damage to or potential loss of a critical asset Permanent loss of public confidence
4. Unauthorized release of sensitive personal or commercial information	1 2 3 4 N/A	A loss of personal privacy or breach of personal or commercial information A limited adverse effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information A serious adverse effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information A catastrophic effect on an individual or institution due to the loss of confidentiality or breach of privacy resulting from unauthorized release or improper disclosure of sensitive personal or commercial information	No loss of privacy No increase in public scrutiny or media attention Loss of privacy, unwanted surveillance, tracking, monitoring, data profiling or data matching Loss of confidence in the organization compromised business relationships or decreased competitive standing Loss of competitive advantage Potential inability to fulfill legal or contractual obligations Damage to business relationships requiring legal remedies Disruption of social order or civil unrest Loss of business continuity Cessation of business relationships Market volatility Loss of authority (e.g., due to intervention external party)
5. Unauthorized release of sensitive government information (non-personal information)	1 2 3 4 N/A	A loss of confidentiality A limited adverse effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties A serious adverse effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties A catastrophic effect on organizational operations and assets due to a loss of confidentiality resulting from the release of sensitive government information to unauthorized parties	No increase in public scrutiny or media attention Loss of public confidence Increase of public scrutiny or media attention Diminished program integrity Increased oversight (e.g., increased audits, more stringent approval processes) Temporary revocation of departmental authorities Compromise to critical asset Loss of continuity of critical government services Erosion or loss of departmental authorities Major damage to or potential loss of a critical asset Irreversible damage to public trust
6. Civil or criminal violations	1 2 3 4 N/A	A violation that may have minor consequences A violation that may have serious consequences A violation that may have exceptionally grave consequences	False claims or wrongful actions having minor financial or legal implications and which pertain to the individual only The violation does not ordinarily require disciplinary, investigative or enforcement action The violation may result in a summary offence False claims or wrongful actions significant financial or legal implications and which may also pertain to third parties (e.g., trustees acting on behalf of the individual) Violation could require disciplinary, investigative or enforcement action The violation may result in an indictable offence (e.g., criminal offence) False claims or inaccurate representations in relation to services or transactions where the safety and well-being of the individual or other affected parties may be jeopardized The violation requires disciplinary, investigative or enforcement action The violation may result in an indictable offence of a serious nature (e.g., terrorism)
7. Personal health and safety	1 2 3 4 N/A	A minor personal injury not requiring medical attention A personal injury requiring medical attention A serious personal injury or death	No physical injury or psychological distress that requires treatment by first-aid personnel or health care professional A physical injury or psychological distress that requires treatment by first-aid personnel or health care professional A physical injury or psychological distress that requires an emergency response
8. National interest	1 2 3 4 N/A	A disadvantage to the national interest An injury to the national interest A serious or exceptionally grave injury to the national interest	Any issue that may result in a disadvantage to the national interest Any issue that is reasonably expected to cause injury to the national interest Any issue that is reasonably expected to cause serious or exceptionally grave injury to the national interest
Overall Assessment	1 1	If the program, activity, service or transaction above is compromised, it could reasonably be expected to cause NO to MINIMAL harm. If the program, activity, service or transaction above is compromised, it could reasonably be expected to cause MINIMAL to MODERATE harm. If the program, activity, service or transaction above is compromised, it could reasonably be expected to cause MODERATE to SERIOUS harm. If the program, activity, service or transaction above is compromised, it could reasonably be expected to cause SERIOUS to CATASTROPHIC harm.
Assessment Version 1.0

Afterwards

The following table outlines what departments should do when a selected authentication option is equal to the assurance level requirement determined above and when the selected option is lower than the assurance level requirement determined above.

Authentication Option	Implementation Option
Authentication Option	Within the Department	Rely On Another Party
Equal to assurance level requirement	Ensure that department complies with requirements for assurance level requirement determined above	Ensure that provider complies with requirements for assurance level requirement determined If participant in federation: Ensure that member (or service provider) meets criteria established by federation to provide assurance level determined above
Lower than assurance level requirement	Provide rationale for selecting implementation using lower assurance level (e.g., cost, usability, mandatory service, technical feasibility) Describe potential threats and vulnerabilities that might be exploited, including breaches Describe risk mitigation measures for identity, credential and/or authentication risk Include descriptions of the following: Compensating factors Other safeguards Acceptance of risk Ensure that department complies with requirements for lower assurance level requirement determined above	Provide rationale for selecting provider at lower assurance level (e.g., cost, usability, mandatory service, technical feasibility) Describe potential threats and vulnerabilities that might be exploited, including breaches with the department or the provider Describe risk mitigation measures, including terms and conditions in specified in contracts or agreements with provider or federation members Include descriptions of: Compensating factors Other safeguards Acceptance of risk If participant in federation: Ensure that member (or service provider) meets criteria established by federation to provide assurance level as determined above Ensure that department understands its responsibilities for managing residual risk

Search and menus

Search

Assurance Level Requirement (draft)

Details:

Assurance Levels

Results

Afterwards