2.6 Second factor for trust level 3 applications
In principle, there are two ways of providing the second factor for trust level 3 applications:
-
The second factor is provided by the HIN platform
-
The AGW institution provides the second factor when logging onto the active directory.
In the case of the second option, it is specified in the contract that the organisation has already undertaken strong authentication. Requests from the relevant AGW are then automatically treated as strongly authenticated.
The EPR is an exception. Not only is Trust Level 3 required, but the user must also connect via the AGW in order to be assigned to the institution in the EPR.
A hardware token, m-Tan and HIN Authenticator can be activated on apps.hin.ch and servicecenter.hin.ch respectively.