Page History

“Controls are in place to reasonably secure information and maintain user privacy”

N/A

Federation Manager Application:

• Review web UI for consistency with Baseline Expectations (terminology, grouping/layout of controls, etc.)

• Add references to Baseline Expectations with links to appropriate documentation

“Information received from IdPs is not shared with third parties without permission and is stored only when necessary for SP’s purpose”

N/A

Federation Manager Application:

• Review web UI for consistency with Baseline Expectations (terminology, grouping/layout of controls, etc.)

• Add references to Baseline Expectations with links to appropriate documentation

“Generally-accepted security practices are applied to the SP”

RECOMMENDED:

• SSL certificates on endpoints are in place

“Federation metadata is accurate, complete, and includes site technical, admin, and security contacts, MDUI information, and privacy policy URL”

REQUIRED:

• Entity includes at least one "technical" contact with a valid email address

• Entity includes at least one "administrative" contact with a valid email address

• Entity includes at least one "security" contact with a valid email address

• Entity includes a valid DisplayName

• Entity includes a valid HTTPS Logo URL

• Entity includes a valid PrivacyStatementURL

RECOMMENDED:

• SP endpoints do not use unencrypted http

Logo and privacy URL subject to the following test conditions:

REQUIRED:

• Results in a ‘200’ based on an HTTP GET

“Unless governed by an applicable contract, attributes required to obtain service are appropriate and made known publicly”

N/A

Federation Manager Application:

• Review web UI for consistency with Baseline Expectations (terminology, grouping/layout of controls, etc.)

• Add references to Baseline Expectations with links to appropriate documentation