Documents for Baseline Expectations Implementation Planning
- Baseline Expectations for Trust in Federation (PDF) - see also below on this page
- Processes to Implement and Maintain Baseline Expectations of InCommon Participants - DRAFT
- Diagram on Baseline Expectations Community Dispute Resolution Process - DRAFT
Baseline Expectations for Trust in Federation are below
or you can download the PDF
Baseline Expectations of Identity Providers
The IdP is operated with organizational-level authority
The IdP is trusted enough to be used to access the organization’s own systems
Generally-accepted security practices are applied to the IdP
Federation metadata is accurate, complete, and includes site technical, admin, and security contacts, MDUI information, and privacy policy URL
Baseline Expectations of Service Providers
Controls are in place to reasonably secure information and maintain user privacy
Information received from IdPs is not shared with third parties without permission and is stored only when necessary for SP’s purpose
Generally-accepted security practices are applied to the SP
Federation metadata is accurate, complete, and includes site technical, admin, and security contacts, MDUI information, and privacy policy URL
Unless governed by an applicable contract, attributes required to obtain service are appropriate and made known publicly
Baseline Expectations of Federation Operators
Focus on trustworthiness of their Federation as a primary objective and be transparent about such efforts
Generally-accepted security practices are applied to the Federation’s operational systems
Good practices are followed to ensure accuracy and authenticity of metadata to enable secure and trustworthy federated transactions
Frameworks that improve trustworthy use of Federation, such as entity categories, are implemented and adoption by Members is promoted
Work with relevant Federation Operators to promote realization of baseline expectations
See Also: