Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: remove direct link to suppl.agreement, as that has no info on where to send it

The following documents constitute and formally describe the ACOnet Identity Federation:

Info
iconfalse

See Membership for additional help with who needs to sign what.

  • The ACOnet Identity Federation Policy spells out the rules governing the Federation and is binding for all Federation federation members.
    • To (also) join the Federation in an Identity Provider (IdPIDP) role, i.e., to also expose user identities to the Federation, members must be ACOnet participants, and sign the supplemental agreement ("Zusatzvereinbarung") covering Federation servicesfederation services. For ACOnet participants, the supplemental agreement also covers any Service Providers they may want to operate.
    • To ( only ) supply service services to IdPs existing IDPs in the Federation, i.e., acting solely in a Service Provider (SP) role, the SP-Agreement needs to be signed.
    • For ACOnet participants the "Zusatzvereinbarung" also covers any Service Providers they may want to run.
  • Specific Federation Specific federation services are detailed in Technology Profiles, of which there are currently two:
Info
iconfalse

See Membership for visual help with who needs to sign what, if you intend to join.

Furthermore these policies practice and practice statements policy statements are relevant within eduID.at:

  • The ACOnet Identity Federation's eduID.at Metadata Registration Practice Statement (MDRPSalso available as PDF and rst-Source) describes the registration process for SAML entities. This is in order to support other Identity Federations in their judgment of whether to trust entities registered and exposed by the ACOnet Identity Federation.
  • Institutions operating IdPs within Identity Providers within the Federation are expected (SHOULD, in the policy) to provide an Identity Management Practice Statement (IDMPS) to allow other Federation federation members to assess their IdM processes and therefore the quality of electronic identities issued by the institution.
  • Operators of SPs are expected Service Providers are required (MUST, in the policy) to provide a Privacy Policy statement for each of their services, to inform subjects and institutions of their data processing practices, cf. the GÉANT Data Protection Code of Conduct support material.