U.S. flag

An official website of the United States government, Department of Justice.

Global Federated Identity and Privilege Management (GFIPM): Governance Guidelines

NCJ Number
Date Published
April 2012
Publication Series

This document addresses the needs of justice organizations seeking ways to provide secured access to multiple agency information systems with one single logon; it is divided into 14 sections such as core governance documents, details regarding the Board of Directors, Federation Governance, systems and security, Personally Identifiable Information, fees and costs, conflict resolution; it also includes an additional four appendices.


As the Governance Guidelines document for Global Federated Identity and Privilege Management (GFIPM), this document defines the governance structure for a GFIPM federation, including the parties that play a role in the governance structure and the decisions to be made by each party. Parties involved in the governance of the Federation are the Board of Directors, Federation Management Organization, Identity Provider Organizations, Service Provider Organizations, and Trusted Identity Broker organizations. The target audience for these guidelines includes managers and technical representatives of prospective GFIPM participant organizations, and specifically those who are planning to implement an Identity Provider (IDP), Trusted Identity Broker (TIB), or a Service Provider (SP) within a GFIPM federation. The target audience also includes vendors, contractors, and consultants who are required to establish technical interoperability with GFIPM standards as part of their project or product implementation. The GFIPM framework provides the justice community and its partner organizations with a standards-based approach for implementing federated identity. Common use of these standards across federation systems is crucial to their interoperability. Leveraging the Global Justice XML and National Information Exchange Model (NIEM), a standard set of XML-based elements and attributes (collectively referred to as GFIPM metadata) about a federation user’s identities, privileges, and authentication can be universally communicated.

Date Published: April 1, 2012