Trustmark Definitions (1-25 of 29)

Trustmark Definition Name Version
The cryptographic requirements for system endpoints deployed for use by NIEF trusted partners.
1.0
The requirements for publishing attribute based access control policies based on recommended user attributes.
1.0
Defines privacy requirements related to adequate notice to end-users for federated authentication events.
1.0
Defines privacy requirements related to requests for ICAM attributes during Federated ICAM transactions.
1.0
Defines privacy requirements related to the use of ICAM attributes requested and received during Federated ICAM transactions.
1.0
Defines privacy requirements related to limitations on the disclosure of end-user ICAM activity data to third-parties.
1.0
Defines privacy requirements related to limitations on the use of end-user ICAM activity data.
1.0
Defines privacy requirements for Federated ICAM transactions, related to minimal release of ICAM attributes about end-users.
1.0
Defines privacy requirements related to run-time opt-in by end-users for Federated ICAM transactions.
1.0
Defines privacy requirements related to run-time selective opt-out by end-users for attribute sharing during Federated ICAM transactions.
1.0
Defines privacy requirements related to the termination of and end-user's ICAM services by an organization.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) 28 CFR Certification Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert National Identity Exchange Federation (NIEF) Federated ICAM assurance level attributes - specifically, Authenticator Assurance Level (AAL), Identity Assurance Level (IAL), and Federation Assurance Level (FAL) - on behalf of their users. Can also be used with other legacy NIEF assurance level attributes that pre-date the establishment of the current NIEF AAL, IAL, and FAL attributes.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) Background Check Status Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert Employer Originating Agency Identifier (ORI) codes on behalf of their users. Note that all ORI codes asserted by IDPOs in association with trustmarks issued under this TD should be approved by the Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Division.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert one or more National Identity Exchange Federation (NIEF) data privilege attributes on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) Public Safety Officer (PSO) Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert simple National Identity Exchange Federation (NIEF) attributes for Federated ICAM on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) Sworn Law Enforcement Officer (SLEO) Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) United States Law Enforcement Officer (LEO) Indicator attribute on behalf of their users.
1.0
The attribute requirements when asserting attributes/claims with an OpenId Provider.
1.0
The requirements for achieving basic OpenID Connect interoperability when implementing an OpenId Provider.
1.0
The requirements for achieving basic OpenID Connect interoperability when implementing a Relying Party.
1.0
The user interface requirements when implementing an OpenId Relying Party.
1.0
The attribute requirements for achieving basic SAML interoperability when implementing an Identity Provider.
1.0
This page is also available as JSON and XML.