# Appendix E: Digital Identity Level (DIL) Determination

The Digital Identity Level (DIL) is represented on the page below. 

<img class="page-image" src="/uploads/images/gallery/2026-02/ssp-e-digital-identity-2-of-2.png" alt="system security plan digital identity level page image" />

Within `system-characteristics` there must be three entries to the `props` array as follows:
- `name` set to `identity-assurance-level` and a `value` set to `1`, `2` or `3`. 
- `name` set to `authenticator-assurance-level` and a `value` set to `1`, `2` or `3`. 
- `name` set to `federation-assurance-level` and a `value` set to `1`, `2` or `3`.
- The value of all three should match each other and align with the FIPS-199 impact level of the system.

#### OSCAL Representation
```yaml
system-security-plan:
  system-characteristics:
    props:
    - name: identity-assurance-level
      value: '2'
    - name: authenticator-assurance-level
      value: '2'
    - name: federation-assurance-level
      value: '2'
```

<br />
<div class="callout">

**OSCAL Allowed Values**

Valid IAL, AAL, and FAL values (as defined by NIST SP 800-63):
- 1
- 2
- 3

</div>