Trustmark Definitions (1-25 of 29)

Trustmark Definition Name Version
The requirements for supporting IDP-Initiated SAML SSO (also known as Unsolicited SAML SSO) when implementing a Service Provider.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) Background Check Status Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) Public Safety Officer (PSO) Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert National Identity Exchange Federation (NIEF) Federated ICAM assurance level attributes - specifically, Authenticator Assurance Level (AAL), Identity Assurance Level (IAL), and Federation Assurance Level (FAL) - on behalf of their users. Can also be used with other legacy NIEF assurance level attributes that pre-date the establishment of the current NIEF AAL, IAL, and FAL attributes.
1.0
Defines privacy requirements for Federated ICAM transactions, related to minimal release of ICAM attributes about end-users.
1.0
Defines privacy requirements related to requests for ICAM attributes during Federated ICAM transactions.
1.0
Defines privacy requirements related to run-time selective opt-out by end-users for attribute sharing during Federated ICAM transactions.
1.0
The attribute requirements for achieving basic SAML interoperability when implementing an Identity Provider.
1.0
Defines privacy requirements related to adequate notice to end-users for federated authentication events.
1.0
Defines privacy requirements related to the use of ICAM attributes requested and received during Federated ICAM transactions.
1.0
Defines privacy requirements related to limitations on the disclosure of end-user ICAM activity data to third-parties.
1.0
Defines privacy requirements related to the termination of and end-user's ICAM services by an organization.
1.0
The cryptographic requirements for system endpoints deployed for use by NIEF trusted partners.
1.0
The requirements for achieving basic OpenID Connect interoperability when implementing a Relying Party.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) 28 CFR Certification Indicator attribute on behalf of their users.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert Employer Originating Agency Identifier (ORI) codes on behalf of their users. Note that all ORI codes asserted by IDPOs in association with trustmarks issued under this TD should be approved by the Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Division.
1.0
The requirements for achieving basic SAML interoperability when implementing a Service Provider.
1.0
Defines privacy requirements related to run-time opt-in by end-users for Federated ICAM transactions.
1.0
The user interface requirements when implementing an OpenId Relying Party.
1.0
The requirements for achieving basic SAML interoperability when implementing an Identity Provider.
1.0
Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert simple National Identity Exchange Federation (NIEF) attributes for Federated ICAM on behalf of their users.
1.0
The requirements for achieving basic OpenID Connect interoperability when implementing an OpenId Provider.
1.0
The attribute requirements when asserting attributes/claims with an OpenId Provider.
1.0
The requirements for publishing attribute based access control policies based on recommended user attributes.
1.0
The user interface requirements for implementing a SAML Service Provider.
1.0
This page is also available as JSON and XML.