...
To simplify consumption by RPs, RAF 2.0 also defines two **assurance profiles** (bundles of component requirements):
- RAF Cappuccino (moderate use cases)
- RAF Espresso (higher-risk use cases)
In RAF cappuccino: a unique identifier, medium-level identity assurance, and the 'affiliation' attribute reflects the status no longer than one month in arrears. This level can be combined with single-factor authenticator strength (http://refeds.org/sfa)
In RAF Espresso: there is a unique identifier, high-level identity assurance, and the 'affiliation' attribute reflects the status no longer than one month in arrears. This level is best combined with multi-factor authenticators (http://refeds.org/mfa).
Who should adopt RAF and why?
...