https://trustmark.nief.org/tpat/tds/nief-employer-ori-attribute/1.0/NIEF Employer ORI Attribute1.0Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert Employer Originating Agency Identifier (ORI) codes on behalf of their users. Note that all ORI codes asserted by IDPOs in association with trustmarks issued under this TD should be approved by the Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Division.2017-11-21T00:00:00.000Zhttps://nief.org/NIEFPRIMARYNIEF Supporthelp@nief.orghttps://nief.org/Identity Provider Organizations (IDPOs) and Attribute Provider Organizations (APOs) within the NIEF community, as well as Federated ICAM Relying Parties that require assurances about the quality of attributes asserted by NIEF IDPOs and APOs.Identity Provider Organizations (IDPOs) and Attribute Provider Organizations (APOs) that intend to assert Federated ICAM attributes in a manner that conforms to the attribute assertion requirements stipulated by NIEF.Federated ICAM Relying Parties that require assurances about the quality of attributes asserted by NIEF IDPOs and APOs.Trustmark Providers that are capable of issuing Federated ICAM interoperability trustmarks. Note that the Trustmark Provider must have a access to a fully functional Federated ICAM test federation to perform the necessary assessment steps for this trustmark.Any organization or business entity may act as a Trustmark Provider for trustmarks under this Trustmark Definition.Any individual employed or contracted by the Trustmark Provider may act as the assessor for trustmarks under this Trustmark Definition.For any trustmark issued under this Trustmark Definition, the Trustmark Provider must revoke the trustmark upon any condition whereby one or more Conformance Criteria cease to be satisfied, unless the trustmark contains appropriate documentation of that condition in accordance with the exception reporting requirements specified by the Trustmark Framework Technical Specification.This Trustmark Definition requires no extension data.This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.NIEFNational Identity Exchange FederationAttributesNIEF AttributesIdentity Provider OrganizationIDPOAttribute ProvenanceAttribute Provider OrganizationAPOInteroperabilityORIGlobal Federated Identity and Privilege ManagementGFIPMIdentity ProviderIDPIdentity Provider OrganizationIDPONational Identity Exchange FederationNIEFNIEF Attribute Registry1Attribute ValidityWhen asserting an Employer Originating Agency Identifier (ORI) on behalf of a user, an IDPO or APO shall assert the attribute name correctly, as stipulated in the attribute definition at <a href="https://nief.org/attribute-registry/attributes/user/gfipm/EmployerORI/2.0/">https://nief.org/attribute-registry/attributes/user/gfipm/EmployerORI/2.0/</a>. In addition, an IDPO or APO shall assert ORI attribute values in a manner that: (1) conforms to FBI CJIS ORI attribute value format requirements, and (2) faithfully and accurately conveys the latest Employer ORI information currently known by the IDPO or APO about the user.1UsageDoes the organization correctly assert the ORI attribute in accordance with the established attribute format rules for the Federated ICAM protocol(s) and conformance or interoperability profile(s) that it uses? Also, does the organization appear to assert attribute values correctly for this attribute?Sample2ProvenanceHas the organization provided all ORI codes it will assert for this attribute, and have all codes been validated?ORI Code List