snippet.loa-rule.ad
The AD MUST communicate the Level of Assurance at which the authentication was realized. This realization is the minimum of the Level of Assurance of the registration process of the authenticated user and the Level of Assurance of the authentication mechanism applied. An AD MUST NOT communicate a level for which it is not certified.