An identity assertion is information about a service provider’s current user that is sent from an identity provider to the service provider for the purpose of making access decisions and/or personalizing the user’s experience with the service.[1] Examples of such information include identifiers, name, email, phone, address, group membership, and permissions. Note that an Identity Assertion may or may not uniquely identify an individual, depending on what information it contains.

References

1. Identity Assertion→ from the Glossary in Trusted Relationships for Access Management: The InCommon Model