Versions Compared

Old Version 35

changes.mady.by.user Former user

Saved on

compared with

New Version 36

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: added C35 (4-corner model)

...

The FI Work Group operates under Creative Commons Share-Alike Attribution IPR Option and the publication of this document is governed by the policies outlined in this option.

...

Table of Contents

Table of Contents
maxLevel3
minLevel1

...

outlinetrue
indent20px

...

Introduction

Excerpt
hiddentrue

Change the status keyword in each scenario and use case title as appropriate, linking to the meeting minutes page explaining the status change:

  • Pending: Initial status when first submitted
  • Accepted: Needs to be accounted for in UMA V1 and/or its associated compliant implementations
  • Deferred: Relevant to the problem space; may be considered in future versions
  • Rejected: Out of scope
    Edit the descriptions of technical issues and scope questions to reflect (or point to) group decisions about how to handle them.

This documents describes a set of identity management constellations to define the scope for the Federation Interoperability and IAF. Each constellation is a collection of business level use cases. Starting with a well-known baseline constellation of 3 actors (Subject, Identity Provider and Relying Party), derived constellations shall reflect variants of actors and their trust relationships by adding following aspects:

...

Sample case: the epSOS project, which provides health care professionals access to patient summaries and prescriptions across borders of European countries. The core system consists of a set of national gateways forming a circle of trust. At the point of care a query is sent to the national gateway, which brokers trust to the gateway of the country the patient is affiliated with.
above: picture from the epSOS architecture document D3.3.2 Abbreviations use: PoC: Point of Care; NCP: National Contact Point (gateway)
Trust replationships are the same as in C32 if no trust broker is used.

...

Anchor
C35
C35
Constellation C35: 4-Corner Model (pending)

Extends Constellation C32. Federation contracts are between the IdP and Service Broker. Users contract with the IdP, and Relying Parties with the Service Broker.

...

Anchor
C40
C40
Constellation C40: Attribute Provider separate from IdP (pending)

...

Key

Description

AA

Attribute authority

B2B

Business to business

CA

Certificate authority

DNS

Domain name service

EAA

Entity authentication assurance

FO

Federation operator

G2G

Government to government

IAF

Identity assurance framework

IDM

Identity management

IdP

Identity provider

PII

Personal identifiable information

PMA

Policy management authority

RP

Relying party

UHO

User home organization

 

Anchor
chcange-history
chcange-history
Change History

Change History