...
See pages 44-45 here:https://trustmark.gtri.gatech.edu/wp-content/uploads/2014/01/Trustmark-Pilot-Concept-Slides-for-IDESG-Briefing-2014-01-16.pdf
MFA Profile
For the a community MFA profile, there are important decisions on how granular to be. For example, there There are apps that want MFA. Some campuses have MFA and some don't.
Under what circumstances would the SP application trust that MFA had been done by the campus, Versus the app requiring its own MFA. Don't want campus MFA plus application MFA.
It was noted that with a light/simple definition of MFA trustmark (MFA? Y or N), there are problems that ariseconcerns. Example: an SP that remembers you for 30 days (no forced reauthentication). There would be a need to disallow that kind of practice.
...