| TD: IDEF Recommended Portability for Relying Parties

IDEF Recommended Portability for Relying Parties, v1.0

Specifies best practices for Relying Parties in accordance with Identity Ecosystem Framework (IDEF) best practice INTEROP-BP-A: RECOMMENDED PORTABILITY.

Assessment Steps (2)

1 Recommended Mechanism for Multiple Credentials with a Single Account (RecommendedMechanismforMultipleCredentialswithaSingleAccount) Does the entity provide users with a mechanism to associate multiple credentials to a single account? Artifact A1 Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.
2 Recommended Mechanism for Single Account per Credential (RecommendedMechanismforSingleAccountperCredential) Does the entity provide users with a mechanism to have a single account per credential? Artifact A1 Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.

Conformance Criteria (2)

Recommended Mechanism for Multiple Credentials with a Single Account Relying parties SHOULD provide users with a mechanism to associate multiple credentials to a single account. Citation IDEF Page 46
Recommended Mechanism for Single Account per Credential Relying parties SHOULD provide users with a mechanism to have a single account per credential. Citation IDEF Page 46

Show Metadata, Sources & Terms

Hide Metadata, Sources & Terms

Metadata

Identifier

https://artifacts.trustmarkinitiative.org/lib/tds/idef-recommended-portability-for-relying-parties/1.0/

Publication Date

2018-10-01

Issuing Organization

Trustmark Initiative (https://trustmarkinitiative.org/) View Contact

No Responder

help@trustmarkinitiative.org

404-407-8956

75 5th Street NW, Suite 900, Atlanta, GA 30308

Keywords

IDEF, Account, Choice, Interoperability, Portability, Usability

Issuance Criteria

yes(ALL)

Target Recipient

Entities that want to participate in the Identity Ecosystem in the role of Relying Party (RP) and demonstrate satisfaction of baseline identity service requirements and best practices such as those defined by the Identity Ecosystem Framework (IDEF) 1.0.

Trustmark Revocation Criteria

For any trustmark issued under this Trustmark Definition, the Trustmark Provider must revoke the trustmark upon any condition whereby one or more Conformance Criteria cease to be satisfied.

Legal Notice

This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.

Sources (1)

IDEF	Identity Ecosystem Steering Group. Identity Ecosystem Framework (IDEF) Baseline Functional Requirements v1.0 with Supplemental Guidance. Approved on 15 Oct 2015. https://www.idesg.org/portals/0/documents/core/IDEF-Baseline-Requirement-v1.0-with-Supplemental-Guidance_MOD.pdf.

Terms (4)

Term Name	Abbreviations	Definition
Entity		Any organization providing identity services.
Identity Ecosystem Framework	IDEF	The overarching set of policies, best practices and standards that serve as the policy foundation for the Identity Ecosystem.
Identity Ecosystem Steering Group	IDESG	A voluntary, public-private partnership dedicated to developing an Identity Ecosystem Framework (IDEF) and services to better online digital identity. The IDESG looks to advance the Identity Ecosystem called for in the National Strategy for Trusted Identities in Cyberspace (NSTIC).
User		In usability statements, refers to an individual human being. This does not include machines, algorithms, or other non-human agents or actors. Equivalents and related terms may include: user- centric, user-centered, human-centered, end user, individual user, user-friendly. In security statements, may refer either to an individual natural person, or to an entity such as a company or agency: Various security requirements may confer opportunities, rights or remedies on a party or account which is served by a cybersecurity function, whether that account relates to a single human or to an organization.

Also available as XML or JSON