PAS499 creates a secure authentication management and technology standard that meets the needs of all the disparate legislation and regulations for both domestic and international applications.
PAS499 was developed from a number of public meetings involving hundreds of stakeholders and further small committees within the rules of the BSI with senior stakeholder representatives from across the government, payment, technology and consumer sectors to participate in helping draft the content of PAS499.
PAS499 sets out recommendations for organizations to meet security, regulatory, and usability requirements in the provision of user identification and authentication in digital services.
It aims to assist organizations in understanding changes to existing security practices necessary to prevent fraud techniques that have evolved, or could be developed, to circumvent controls.
It aims to help organizations secure their systems to prevent fraudulent misrepresentation of a natural or legal person.