Editing Credentials Service Provider

== Definition ==

A '''Credentials Service Provider''' (also written '''Credential Service Provider''') is 

{{Quote|[a] [[trusted entity]] that issues or registers subscriber [[token]]s and issues [[electronic credential]]s to subscribers. The CSP may encompass [[registration authorities]] and [[verifier]]s that it operates. A CSP may be an independent third party, or may issue [[credential]]s for its own use.<ref>[[NIST]], Electronic Authentication Guideline 5 ([[NIST Special Publication 800-63]]) (Apr. 2006) ([http://csrc.nist.gov/publications/nistpubs/800-63/SP800-63V1_0_2.pdf full-text]).</ref>}}

A '''Credential Service Provider''' (also written ''Credential Service Provider''') is an

{{Quote|[e]ntity that issues and/or registers [[authenticator]]s and corresponding [[electronic credentials]] ([[binding]] the [[authenticator]]s to the [[verified identity]]) to [[subscriber]]s. The CSP is responsible for maintaining the [[subscriber]]'s [[identity credential]] and all associated [[enrollment|enrolment data]] throughout the [[credential]]'s [[lifecycle]] and for providing [[information]] on the [[credential]]'s status to [[verifier]]s.<ref>[[Guidance on Digital ID]], Glossary, at 102.</ref>}}

A '''Credentials Service Provider''' (also written '''Credential Service Provider''') is 

{{Quote|[a] [[trusted entity]] that issues or registers subscriber [[token]]s and issues [[electronic credential]]s to subscribers. The CSP may encompass [[registration authorities]] and [[verifier]]s that it operates. A CSP may be an independent third party, or may issue [[credential]]s for its own use.<ref>[[NIST]], Electronic Authentication Guideline 5 ([[NIST Special Publication 800-63]]) (Apr. 2006) ([http://csrc.nist.gov/publications/nistpubs/800-63/SP800-63V1_0_2.pdf full-text]).</ref>}}

== Overview ==

The CSP establishes a mechanism to uniquely [[identify]] each [[subscriber]] and the associated [[token]]s and [[credentials]] issued to that [[subscriber]]. The CSP registers or gives the [[subscriber]] a [[token]] to be used in an [[authentication protocol]] and issues [[credentials]] as needed to bind that [[token]] to the [[identity]], or to bind the [[identity]] to some other useful [[verified attribute]]. The [[subscriber]] may be given [[electronic credentials]] to go with the [[token]] at the time of registration, or [[credentials]] may be generated later as needed. [[Subscriber]]s have a duty to maintain control of their [[token]]s and comply with the responsibilities to the CSP. The CSP maintains registration records for each [[subscriber]] to allow recovery of registration records.<ref>''Id.'' at 10.</ref>

== References ==
<references />
[[Category:Security]]
[[Category:Definition]]