Federation - Support for Generation of Attribute References in Assertions, v1.0

Identity Providers will support attribute references where feasible. Attribute references can be used to minimize revealing PII in cases where an RP only needs to broad issues, for example is the user over 18 as opposed to requesting the user's birthdate.

Assessment Step

IDP Attribute References (IDPAttributeReferences)
Does the IdP support attribute references where practical?
Provide evidence (e.g. policies, operational samples) that the IdP supports attribute references when viable.

Conformance Criteria (1)

The IdP SHALL support attribute references where feasible in order to support data minimization goals and reduce sharing of PII unnecessarily.
NIST SP 800-63C
Sections 7.3 and 9.3