technical-discuss - Re: [InC-Technical] default attribute release policy
Subject: InCommon Technical Discussions
List archive
- From: Alan Buxey <>
- To: Tom Scavo <>
- Cc: Scott Koranda <>, "" <>
- Subject: Re: [InC-Technical] default attribute release policy
- Date: Thu, 8 Jun 2017 15:02:58 +0100
- Ironport-phdr: 9a23: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
default attribute release policy is something that several federations
are looking into. I think the approach should be fairly simple and
obvious
eg if the SP is doing everything required (best practice) by the
federation eg secure and decent code of conduct (e.g. think both
'sirtfy' and Code of Conduct 'CoCo'),
has a working/operating contact point, privacy policy etc then the
basic pair of 'persistent ID and affiliation' should be a fair default
release for any IdP.
for more than that (eg real name of user, date of birth etc) then
there would need to be further/enhanced practices - SP Level of
Assurance system
as then dealing with PPI . some may feel that e.g. CoCo should cover
an SP to a higher level(?) e.g. real name and/or email - thus allowing
WIKIs etc
to have full account information population
alan
- [InC-Technical] default attribute release policy, Tom Scavo, 06/08/2017
- Re: [InC-Technical] default attribute release policy, Alan Buxey, 06/08/2017
- Re: [InC-Technical] default attribute release policy, Keith Hazelton, 06/08/2017
- RE: [InC-Technical] default attribute release policy, Cantor, Scott, 06/08/2017
- Re: [InC-Technical] default attribute release policy, Roland Hedberg, 06/08/2017
- RE: [InC-Technical] default attribute release policy, Cantor, Scott, 06/08/2017
- Re: [InC-Technical] default attribute release policy, Roland Hedberg, 06/08/2017
- Re: [InC-Technical] default attribute release policy, Alan Buxey, 06/08/2017
Archive powered by MHonArc 2.6.19.