This document focuses on issues of technical interoperability requirements for connection to an operational GFIPM federation in accordance with the Web Services System-to-System use case as well as SOAP Web services.
This document specifies technical interoperability requirements for connection to an operational Global Federated Identity and Privilege Management (GFIPM) federation in accordance with the Web Services System-to-System use case. The target audience includes technical representatives of prospective federation participants who intend to join a GFIPM federation as Identity Provider Organizations (IDPOs), Service Provider Organizations (SPOs), or both; it also includes vendors, contractors, and consultants who, as part of their project or product implementation, have a requirement to establish technical interoperability with a GFIPM federation. The document provides the following sections terminology and reference sections; notation for normative content; GFIPM Web Services functional requirements; baseline requirements for GRA conformance; GFIPM Web Services Service Interaction Profiles, including GFIPM-WS Consumer-Provider SIP, GFIPM-WS User-Consumer-Provider SIP, GFIPM-WS Consumer-Provider Session SIP, GFIPM-WS User-Consumer-Provider Session SIP, GFIPM-WS Authorization Service SIP, GFIPM-WS Trusted Identity Broker SIP, GFIPM-WS Consumer-Provider Multiuser Session SIP, and GFIPM-WS SAML Assertion Delegate Service SIP. It also discusses additional considerations such as conformance testing and onboarding process.