• New Zealand Government Web Standards 2.0

• New Zealand Government Web Standards 1.0
  • » 1. Images
  • » 2. Colour
  • » 3. Site Markup
  • » 4. Special Purpose Documents
  • » 5. Writing Content
  • » 6. Site Content
  • » 7. Page Layout
  • » 8. Navigation
  • » 9. Style Sheets
  • » 10. Dynamic Content
  • » 11. Tables
  • » 12. Frames
  • » 13. Scripting and Applets
  • » 14. Page Refreshing
  • » 15. Site Behaviour
  • » 16. Site Layout
  • » 17. Archiving
  • » 18. Quality Assurance
  • » 19. Data Tracking
  • » 20. Authentication
    • 20.1 Requesting users to authenticate themselves
    • Recommendation 20.1.1 Standards to comply with if requesting user authentication
  • » 21. Security
  • » 22. Online Forms
  • » 23. Tendering and Contracting
  • » 30. Site Delivery
  • » 31. Operational
  • » 32. Web Strategy

20.1 Requesting users to authenticate themselves

The Standard

20.1 All instances of requests for users to authenticate themselves in a web site utilising either the Government Logon Service (GLS) and/or the Identity Verification Service (IVS) must comply with the standards for these services, as set by the All-of-government Authentication Programme unit of the SSC.

Guide to this standard

Refer to Authentication Standards project for these standards.

Rationale for this standard

When two-way transactions are taking place on NZ government agency web sites, agencies need to be confident of the identity of those with whom they are transacting, and the users of these services need to be confident that any pseudonymous details they submit about themselves are secure.

The NZ government recognises the importance and significance of identity and security, and does not wish to compromise in this area.