TelComm
TFMM Use Cases
- C10: Delegated Identity Management (basic use case with IdP managing attributes)
- C20: Service Provider Centric model (IdP provides attributes)
- C32: Identity Federation
- C33: Cross Border Identity Federation
- C40: Attribute Provider separate from IdP
- C41: Attribute Provider with RP (Canda Gov. use case)
- C50: Enterprise user
- C60: Subject Types (devices)
- Back end attribute exchange of ICAM/PIV/SAML : http://www.idmanagement.gov/documents/BAE_V2_Overview.pdf
- Emergency responder attributes : http://www.dhs.gov/xlibrary/assets/privacy/privacy_pia_fero.pdf
Health Care
Emergency System for Advance Registration of Volunteer Health Professionals (ESAR-VHP): http://www.phe.gov/esarvhp/pages/about.aspx
- Within the US, the states and territories were mandated to establish a voluntary registry for health professionals. The information gathered includes certifications, trainings (etc) and is used for responding to public health disasters. There is a standard attribute definition namespace for the certifications and trainings since the information is requested / shared across legal and electronic boundaries. In addition, there are over 100+ official repositories (e.g. AAMVA etc) where the certification and training information is registered, managed and validated - and these repositories are considered the Authoritative Source.
- The detailed scenario / use case could be: There is a disaster in location X. Physicians and nurses from around the country / world react and provide telemedicine support (reviewing xrays etc electronically). Person A (Identity) needs access to medical records at an institution (Relying Party: Hospital or EHR system). Person A attributes need to be verified to a very high level (i.e. can't be self-asserted attributes) to ensure Person A is a registered physician with board certified skills (etc) and can provide a diagnosis and access the patient information.
SHARPS is also engaged in electronic medical records, telemedicine and advanced attribute based access control research: http://sharps.org/research/an-illustrative-scenario
Higher Ed & Research
Virtual Organizations and Research Groups
- A large, international group of scientists are funded to research gravitational waves. They come from dozens of institutions - universities and research laboratories - around the world. They consume federated identity and associated attributes from institutions that support federated authentication, but also add their own VO-specific attributes to their members as they participate in the research group.
Account Linking
- There are a variety of issues related to attribute management in the problem space of account linking. The document linked above discusses a variety of use cases around account linking.