NIEF United States Law Enforcement Officer Indicator Attribute, v1.0

Specifies requirements for Identity Provider Organizations (IDPOs) that wish to assert the National Identity Exchange Federation (NIEF) United States Law Enforcement Officer (LEO) Indicator attribute on behalf of their users.

Assessment Steps (2)

Usage (Usage)
Does the organization correctly assert the U.S. LEO attribute in accordance with the established attribute format rules for the Federated ICAM protocol(s) and conformance or interoperability profile(s) that it uses? Also, does the asserted attribute name align with the attribute definition provided in the NIEF Attribute Registry? See
Provide a sample of a technical protocol assertion (e.g., JSON, XML, SAML, OIDC, etc.) correctly using this attribute.
Provenance (Provenance)
Does the organization assert the U.S. LEO attribute appropriately? Provide details on how the organization asserts this attribute in a manner that aligns with the requirements as per the attribute's definition.
LEO Certification
Provide details on how users for whom U.S. LEO is asserted are certified.

Conformance Criteria (1)

Attribute Validity
When asserting the United States Law Enforcement Officer (LEO) Indicator on behalf of a user, an IDPO or APO shall assert the attribute name correctly, in accordance with the attribute definition as stipulated at In addition, an IDPO or APO shall assert attribute values for the LEO Indicator attribute as follows.
  1. When asserting the U.S. LEO Indicator attribute, an IDPO or APO may assert an attribute value of 'true' for a user if all of the following conditions are true.
    1. The user is a full time employee of a government recognized law enforcement agency.
    2. The user is authorized (has the authority) to make an arrest or has been certified to engage in criminal investigations.
    3. The user is certified by an Official Certifying Authority (i.e., Peace Officer Standards and Training (POST)), or equivalent.