Global Trust Framework Survey

Owned by Former user (Deleted)
Last updated: Apr 29, 2015 by Former user (Deleted)
5 min read

Abstract

As a key deliverable of the BCTF Work Group this document shall provide a comprehensive overview of Trust Framework implementation whether as pilot projects or in operation.

Editors

Rainer Hörbe

Intellectual Property Notice

The BCTF Discussion Group operates under Creative Commons Share-Alike Attribution IPR Option and the publication of this document is governed by the policies outlined in this option.

Data Collection and Distribution

Data is collected from the sources mentioned below and from polls in the IDM community. There might be a bias towards education and public sector federations, as those tend to publicize their achievements more openly. Also federations of the WebSSO-class might be preferred due to their better visibility to users. A study to make data more representative would be needed and volunteers are wanted. E.g. WS-Trust seems to be under-represented and segregation between enterprise and federation use is not easy to achieve from some variables.

Analysis

# of Federations: Breakdown by Industry

Comment: The highest number of federations is in the public sector, followed by research and higher education. Industry (ICT, Finance, Transport) have a smaller share.

 

# of Federations: Breakdown by Technical Protocol

# of Federations: Distribution by User Type


Top 5 Federations in 4 Categories: IDP, RP, Transactions and Users

 

Project Name 

Description

Geog.

scope

Industry

IDPs

RPs

Transactions 

[m/year]

Users [m|

UK Access Management Federation

NREN

UK

R&E

900

236

 

3

InCommonNRENUSR&E274958 5

AAI@EduHr

NREN

HR

R&E

222

100

100

0,7

FEIDE/Uninett

NREN

NO

R&E

202

150

6

0,7

WAYF/Forskningsnettet

NREN

DK

R&E

130

110

5,5

 

 

 

 

 

 

 

 

 

IGTF

Grid computing

global

Science

86

2500

 

 

InCommonNRENUSR&E274958  

SWITCHaai

NREN

CH

R&E

47

581

 

 

UK Access Management Fed.

NREN

UK

R&E

900

236

 

 

Portalverbund

G2G

AT

Public

50

204

 

 

 
     

 

NETS

Payment

nordic

Fin

 

 

500

7

Certipath 

Supply Chain

global

Man

20

100

400

2

BankID

B2C, G2C

SE

Pub

 

 

400

3,5

AAI@EduHr

NREN

HR

R&E

222

100

100

0,7

SWITCHaai

NREN

CH

R&E

47

581

15

0,3

 

 

 

 

 

 

 

 

Mobile Phone Network

Mobile phones

global

ICT

 

 

 

1600

Google-Yahoo-Facebk

Social logins

global

ICT

3

 

 

1500

Rakuten 

eCommerce

JP

Trade

1

 

 

62

JAL

Travel

JP

Trans

1

 

 

15

PIV

G2G

US

Pub

 

 

 

8

 

Legend

ISIC: UN industry classification

Status: pilot, prod(uction), research. This survey has a focus on trust frameworks in production

Service Type: PA: Authentication (physical acess), LA: Authentication (logical acess), AT: Attributes, DS: Digital signature, DA: Delegated Authorization, E: Encryption

Trust Federation Constellations:

  • C20 (SP-centric)
  • C23 (central SP=IDP)
  • C30 (Intra-organizational IDM)
  • C31 (Ruling Party IDM)
  • C32 (Identity Federation)
  • C33 (Cross-Boder Federation)
  • C50 (Enterprise Federation)
  • Cxx 4-Corner Model

End User Class: B= Business, C=Consumer/Citizen, D=Device

Trust Federation Project Overview

Project Name DescriptionCountryISIC (Industry Classification) ComputedStatussince#Relying Party #Registered Users [m]Service Type (summary)C20 (SP-centric)C23 (central SP=IDP)C30 (Intra-organizational IDM)C31 (Ruling Party IDM)C32 (Identity Federation)C33 (Cross-Boder Federation)C50 (Enterprise Federation)C35 4-Corner ModelEnd User ClassTechnial Protocols
Air CanadaCompanies in the Air Canada GroupCAH (Trans)prod   LA  x     BSAML
Can. Banking Fed.B2B-federtion of leading banks (clearing)CAK (Fin)prod        x   BSAML
Canadian Access Federation CAFNREN Federation   CanadaCAM/P (R&E)prod 141LA    x   BSAML
Cyber AuthN RenewalG2B, G2C (Federal)CAO (Pub)prod   LA    x   CSAML
NaviNet SSO Servicenavinet.net - Aetna secure SPUKQ (Health)prod   LA        BSAML
BipacPolitical lobbyingUSM (Science)prod2005  LA    x   CSAML
eduTech schoolNew York State - Identity Federation for state schoolsUSP (Edu)prod   LA    x   BSAML
FICAMFederal government enabling private IdPs to provide citizens with identity for public online servicesUSO (Pub)prod   LAx       CSAML
FIXsFederation to provide physical access control to military installationsUSO (Pub)prod2004  PAx       CPKI
FRACCredentials to allow emergency response officials to quickly and easily access government buildings and reservations. Uses the PIV-I standard for Interoperability with PIV smart cards.USO (Pub)pilot   PA/LA    x   BPKI
GFIPMJustice: Global Federated Identity and Privilege Management Inter-Federation with US FBI (2010)USO (Pub)    LA        C?
GM OnStarIn-car owner online servicesUSG (Trans)prod   PA/LA   x    C 
InCommonR&E federationUSM/P (R&E)prod 9585LAx       BSAML
NASA Access LaunchpadNASA Secure Token Service Credential VerifierUSI (ICT)prod 6 LA   x    BSAML
NIH iTrustResearch collaboration between National Institute of Health and Universities (InCommon) USM (Science)prod   LAx       BSAML
PIVPersonal Identity Verification for US government employees and contractorsUSO (Pub)prod2004 8PA/LA/DS    x   BPKI
Rapattoni MLSMultiple Listing Service (Real Estate) USL (Real Est)prod   LA        BSAML
AGOSPAU Government Online Service Point (Portal)AUO (Pub)prod              
Australian Access Federation AAFNREN Federation   AustraliaAUM/P (R&E)prod 88 LA    x   BSAML
IMAGERIdentity Management for Australian Government EmployeesAUO (Pub)prod            B 
VANguardB2GAUO (Pub)prod            B 
CARSINREN Federation   ChinaCNM/P (R&E)pilot2006301LA    x   BSAML
INFEDNREN Federation IndiaINM/P (R&E)pilot   LA    x   BSAML
au easy payment (au Kantan Kessai)The KDDI's authentication and payment provider allows customers to combine their content or service charges and au communication charges, and make payments online using an Android equipped smart phone or a computer with an internet connection. Leverages OpenID 2.0 between KDDI (as payment service provider) and its partner sites e.g. content providers, ecommerce sites.JPI (ICT)prod2010           COpenID
GakuNinNREN Federation   JapanJPM/P (R&E)prod2010261LAx       BSAML
JALTravel FederatinJPH (Trans)prod2007 15LA x      COpenID
miixi Graph APIsocial loginsJPI (ICT)prod2010           COpenID
NTT Docomo LogineCommerce FederationJPI (ICT)prod2010           COpenID
NTT ID Login ServiceThe NTT Communications' identity provider gateway allows users to log in to public websites with their account issued by NTT subsidiaries including NTT Docomo, NTT Communications (OCN) and NTT Resonant (goo).JPI (ICT)prod2010           COpenID
Rakuten eCommerce FederationJPG (Trade)prod2009 62LA x      COpenID
SoftBank PaymentAnother mobile carrier billing service by SoftBankJPI (ICT)prod2011           COpenID
Yahoo! AutheCommerce FederationJPG (Trade)prod2008  LA        COpenID
MyIFAMNREN Federation   MalaysiaMYM/P (R&E)prod2012  LA    x   BSAML
NZ igovt (NZ Govt)Centralised pseudonymous logon/authn (and distributed access) to govt services for citizensNZO (Pub)prod200718 for 35 services1LA    x   CSAML
RealMeNZ SSO service with verified identitiesNZO (Pub)pilot            CSAML
Tuakiri New Zealand Access FederationNREN Federation   New ZealandNZM/P (R&E)prod 5 LA    x   BSAML
OMAN_KIDNREN Federation   OmanOMM/P (R&E)pilot   LA    x   BSAML
ULAKAAINREN Federation   TurkeyTRM/P (R&E)pilot2011  LA    x   BSAML
VBMKVictorian Business Master KeyAUO (Pub)prod2006  LA    x   CSAML
UAE FederationNREN Federation UASEUAEM/P (R&E)planned   LA    x   BSAML
Aconet Id FederationNREN Federation  AustriaATM/P (R&E)prod200827 LA    x   BSAML
Austrian BürgerkarteAustrian Citizen CardATO (Pub)prod2002  LA/DS    x   CPKI
PortalverbundG2G, some B2G for federal, state, local and independed public bodiesATO (Pub)prod2001204 LA/Zx   x x BProp
UnternehmensserviceportalGovernment to business portalATO (Pub)prod201216 LA/Z   x    BSAML
Belgium eIDBelgium eID Card (BELPIC)BEO (Pub)prod   LA/DS    x   CSAML
FedictBelgium Gov'T IAM Service (Federal, Regiaons, local)BEO (Pub)prod   LA    x    SAML
Belnet R&E FederationNREN Federation   BelgiumBEM/P (R&E)prod20105 LA    x   BSAML
CAFeNREN Federation   BrasilBRM/P (R&E)prod201013 LA    x   BSAML
SWITCHaaiNREN Federation  SwitzerlandCHM/P (R&E)prod2005581 LA    x   BSAML
eduID.czNREN Federation   CzeckCZM/P (R&E)prod 42 LA    x   BSAML
Deutsche TelekomNetzausweis (Net ID-Card) IDP-ServiceDEI (ICT)prod  13         CSAML
DFN-AAINREN Federation   GermanyDEM/P (R&E)prod2007106 LA    x   BSAML
NemLog-In"Easy Log-in" for Danish citizens DKO (Pub)prod   LA        CSAML
WAYF/ForskningsnettetNREN Federation DenmarkDKM/P (R&E)prod 110      x   BSAML
NETSScandinavian countries: Payment and related services, employing identity federationDK/FI/IS/NO/SEK (Fin)prod  7LA/DSx       CSAML
CatcertSpanish regional implementations (Catalonia)ESO (Pub)prod2003 4LA    x   CSAML
DNI electrónicoSpanish national eID-CardESO (Pub)prod2006 3PA/LA/DS    x   C 
SIRNREN Federation   SpainESM/P (R&E)prod20082001LA    x   BSAML
epSOSB2B for Health Care Professionals - cross borderEUQ (Health)pilot2012  LA/Z     x  BWS-Trust
GÉANT/SA3R&E networkEUM/P (R&E)    LA    x   BSAML
PEPPOLProvide cross-border electronic public procurement (B2G)EUO (Pub)pilot         x  BSAML
SEPASingle Euro Payments Area (SEPA) governed by the European Payment CouncilEUK (Fin)prod   LA     x  BProp
STORKFederate national eIDs within Europe (STORK1: G2C, STORK 2: B2C)EUO (Pub)pilot2011        x  CSAML
Trust Service Status ListList of accredited CAs that provide qualified or advanced signatures, operated by the European commission.EUO (Pub)prod2010        x  CPKI
e-SWB "e-Signature without borders"electronic SignatureEU, RU prod   DS     x  CPKI
Haka/FunetNREN Federation FinlandFIM/P (R&E)prod 124      x   BSAML
KATSOAuthN & AuthZ for eGov servicesFIO (Pub)prod2006  LA/Z    x   BSAML
MobiilivarmenneOperator run Mobile PKI AuthNFIO (Pub)prod2010  LA    x   CETSI MSS
NetpostiPostal ServiceFIO (Pub)prod             SAML
NetsoFederation of motor insurance companiesFIK (Fin)prod2007           BSAML
Tunnistus.fiIdP Proxy service for Banks and eID cards  (C2G; federated with Vetuma)FIO (Pub)prod2004  LA    x   CSAML
TUPASFederation of Banks in the role of IdPs for citizen facing Government and Commercal SPs (C2G)FIO (Pub)prod       x    CTUPAS (proprietory)
VetumaIdP Proxy service for Banks, eID cards and Mobile PKIFIO (Pub)prod2006            SAML
VIRTUAuthenticate public sector employees for services within the public sector (G2G, some B2G)FIO (Pub)prod2009  LA    x   BSAML
FC2eGov, commerce federation pilotFRO (Pub)pilot   LA    x   C?
Fédération Éducation-RechercheNREN Federation   FranceFRM/P (R&E)prod20061231LA    x   BSAML
Mon Service-publicGovernment service portal for citizens (health, tax, ..)FRO (Pub)prod2008 3LA        CSAML
Orange-FTOrange is IdP with the use base of its telco services to a number of service providersFRI (ICT)prod2010  LA    x   Cmultiple SAML, API, OpenID
PSA Partner PortalPeugeot/Citroen Suppler NetworkFRC (Man)prod2008      x    B 
GRNETNREN Federation   GreeceGRM/P (R&E)prod200725 LA    x   BSAML
AAI@EduHrNREN Federation   CroatiaHRM/P (R&E)prod 1001LA    x   BSAML
eduID.hu (HREF Federation)NREN Federation   HungaryHUM/P (R&E)prod201050 LA    x   BSAML
EdugateNREN Federation   IrelandIEM/P (R&E)prod 20 LA    x   BSAML
RHnetNREN Federation  IslandISM/P (R&E)prod        x   BSAML
ICARInteroperability and Application Cooperation between the regionsITO (Pub)prod2009  LA         SAML
IDEMNREN Federation   ItalyITM/P (R&E)prod 693LA    x   BSAML
Italy national eIDeID authentication processITO (Pub)planned        x   CSAML
Ministry of Transportation Motorists’ PortalMinistry for road and post office bank federate in the area of fine payment (Traffic Ticket Collection)ITO (Pub)prod       x    BSAML
Sistema Pubblico di ConnettivitàPublic Connectivity System (SPC): Italian Government FederationITO (Pub)prod2005  LA    x   BSAML
LAIFENREN Federation   LatviaLVM/P (R&E)prod20102 LA    x   BSAML
DigiDDutch eID schmea for citizensNLO (Pub)prod2006 9LA        CSAML
EHerkenningeReconitionNLO (Pub)prod201015 LA       xBSAML
SURFnetNREN Federation   NetherlandsNLM/P (R&E)prod 831LA    x   BSAML
AltinnGovernment portal to establish new businessesNOO (Pub)prod2008331         BSAML
FEIDE/UninettNREN Federation  NorwayNOM/P (R&E)prod20031501LA    x   BSAML
Norwegian ?Railroad B2B networkNOH (Trans)prod            BSAML
RCTSaaiNREN Federation   PortugalPTM/P (R&E)prod 8 LA    x   BSAML
BankIDSwedish banks, every bank issues IdsSEO (Pub)prod  4     x   CSAML
SWAMID/SUNETNREN Federation SwedenSEM/P (R&E)prod2007140      x   BSAML
SkolfederationSecondary/primary education (prod 2013)SE M/P (R&E)pilot2012            SAML
eID2National eID Federation (Svensk e-legitimation)SEO (Pub)pilot2010            SAML
ArnesAAI Slovenska izobra