Technical note Open Access

Guidelines for the evaluation and combination of the assurance of external identities (AARC-G031)

AARC Consortium Partners; AppInt members

DataCite XML Export

<?xml version='1.0' encoding='utf-8'?>
<identifier identifierType="DOI">10.5281/zenodo.1308682</identifier>
<creators>
<creator>
<creatorName>AARC Consortium Partners</creatorName>
</creator>
<creator>
<creatorName>AppInt members</creatorName>
</creator>
</creators>
<titles>
<title>Guidelines for the evaluation and combination of the assurance of external identities (AARC-G031)</title>
</titles>
<publisher>Zenodo</publisher>
<publicationYear>2018</publicationYear>
<subjects>
<subject>assurance</subject>
<subject>identity</subject>
<subject>infrastructures</subject>
<subject>AARC</subject>
</subjects>
<dates>
<date dateType="Issued">2018-05-18</date>
</dates>
<language>en</language>
<resourceType resourceTypeGeneral="Text">Technical note</resourceType>
<alternateIdentifiers>
<alternateIdentifier alternateIdentifierType="url">https://zenodo.org/record/1308682</alternateIdentifier>
</alternateIdentifiers>
<relatedIdentifiers>
<relatedIdentifier relatedIdentifierType="DOI" relationType="IsVersionOf">10.5281/zenodo.1308681</relatedIdentifier>
</relatedIdentifiers>
<rightsList>
<rights rightsURI="info:eu-repo/semantics/openAccess">Open Access</rights>
</rightsList>
<descriptions>
<description descriptionType="Abstract">&lt;p&gt;The Research Infrastructures (from now on just Infrastructures) that follow the AARC Blueprint Architecture&amp;nbsp; set up their own AAI to grant access to their services. The AAI is typically based on a central IdP-SP proxy that act as a gateway for the Infrastructure services and resources. In order to assign an identity to the users of the research collaboration or the community they serve, Infrastructures rely on external Identity Providers and employ identity linking strategies.&lt;/p&gt;

&lt;p&gt;The Infrastructures also define one or more assurance profiles, or a combination of assurance components, tailored to a specific risk assessment.&lt;/p&gt;

&lt;p&gt;In order to assign an assurance profile to a user, the Infrastructure shall evaluate the assurance components of the linked identity, or identities, used to register to the Infrastructure&amp;rsquo;s AAI or used during authentication at the infrastructure proxy.&amp;nbsp;These guidelines provide a method to combine assurance information and to compensate for the lack of it.&lt;/p&gt;</description>
</descriptions>
<fundingReferences>
<fundingReference>
<funderName>European Commission</funderName>
<funderIdentifier funderIdentifierType="Crossref Funder ID">10.13039/501100000780</funderIdentifier>
<awardNumber awardURI="info:eu-repo/grantAgreement/EC/H2020/730941/">730941</awardNumber>
<awardTitle>Authentication and Authorisation For Research and Collaboration</awardTitle>
</fundingReference>
</fundingReferences>
</resource>

14
13
views