Versions Compared

Old Version 3

changes.mady.by.user Former user

Saved on

compared with

New Version 4

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: added Trust Federation and TFMM definitions

What is a Trust

...

Federation?

Image Added

Start reading the figure above clockwise from top left:

  • Trust Federations provide secure electronic communication a network of independent parties. High-level use cases are described in the TF Constellations document.
  • The business purpose is to provide service consumers access to service providers (or sometime peer-to-peer access) using trusted third parties.
  • Trust Federations are based on Trust Frameworks, that provide legal and technical interoperability.
  • Trust Federations define security objectives that need to be fulfilled to make electronic communication trustworthy, mostly centered around identity assurance.
  • For this Purpose the parties are legally bound by the Trust Framework.

As defined in the TF Constellations document the purpose of a Trust Framework is seen rather wide, covering technical and legal concerns and various types of business transactions, including on-line services, document transfer, network services and electronic verification of physical access.

What is a Trust Framework?

The term seems to be widely used for various agreements that govern a federation. The definition here is not anticipating a more profound analysis, but wants to give approximate delimitation of the scope. For the purpose of this context the meta model is more a kind of process driven by the demands of various domains and projects, rather than a fixed deliverable.

Definition: In electronic communication, a trust framework (TF) is a complete set of contracts, regulations or commitments for a that enable participating actors to rely on certain assertions by other actors to fulfill their information security requirements. Information security requirements are for example:

  • Confidence in the link of a digital identity credential to a real-world identity (Authenticity)
  • Compliance with safeguards for integrity, confidentiality and non-repudiation of the communication
  • Adherence to the privacy policy of the data controller
  • Fulfillment of a defined service level (short- and long-term availability)
  • User control over own data (like availability for export in an open format)

Tom Smedinghoff and Scott David are working on aligning the term Trust Framework used in different domains. (WG-P3 mailing list - REFERENCE MISSING)A TF can be general or specific, ie. a template for or an instance of a federation contract.

A TF may consist of several domain-specific frameworks, like entity authentication assertion and privacy.

A trust framework defines obligations for various actors, like identity provider, attribute provider, service provider, subscriber, subject, federation operator, policy management authority, auditor, registration authority, and verifier. An obligation of an asserting actor to a relying actor constructs a trust relationship between these actors. Caveat: The term term Relying Party is  is used in Kantara, Identity Commons and other communities as a synonym for a service provider and implies that the service provider is the only actor trusting the other parties. That is, however, only the case in a specific constellation (see  see Service Provider centric model ). In other scenarios other parties need to have trust relationships as well. This is why in the view of the TF any actor can be a Relying Actor.

...

Alternative bearings of "Trust Framework":

  1. Rule set: A set of standards and rules used to build a contract and run a certification program. 
  2. Contract: A contract, other written form of commitment or some legislation to have a legal binding for a federation
  3. Template: A generic set of rules to craft the set of rules for a specific trust federation. It is not an instance of a contract.
  4. Instance of Template: The specific set of rules that is effective for a trust federation
  5. Conformance: A certification program that accredits the conformance of a federation-specific rule set to the "template" using a defined procedure

Trust Framework Meta Model (TFMM)

The objective of the TF architecture TFMM is to define a model that can improve help with an analysis of existing frameworks and improve their interoperability.

Scope and Goal

The Meta Model shall encompass Trust Frameworks as defined above. 

The purpose is to:

  • Assess policies, question if their scope is well defined;
  • Perform a gap analysis between a specific policy and the common superset;
  • Provide a statistical analysis about the granularity of a policy, to gibt hints for under- or over-specification:
  • Support the mapping of different policies;
  • Foster the standardization of controls in federations to promote automated contract negotiation;
  • Create a reference model for the development of public policies in this field.

Existing frameworks

There are several frameworks that provide a certain part of a TF, like the entity authentication assertion (EAA) frameworks

...

(I am not informed about relevant frameworks: P3G, UMA, NSTIC, .. – need help)

Related Efforts

ABA: Tom Smedinghoff and Scott David are working on aligning the term Trust Framework used in different domains.

P3WG is working on a Privacy Framework, currently with the scope limited to PII used for identity verification and authentication.

UMA is working on a Trust Framework for user managed access.

IAWG is expanding the  IAF with a Relying Party Guideline to cover the release of PII (subject attributes) to Relying Parties

ISO SC27/WG5 is working on an Entity Authentication Assurance Framework in ISO 29115 

ITU-T is starting an effort to define Open Identity Trust Framework (x.oitf)

Interoperability

To make systems using different policies based on various frameworks interoperable the frameworks need to be mapped. However, that is not trivial for several reasons:

...