Global Federated Identity and Privilege Management (GFIPM): Web Browser User-to-System Profile

This document specifies technical interoperability requirements for connection to an operational Global Federated Identity and Privilege Management (GFIPM) federation in the Web Browser User-to-System use case. Its target audience includes technical representative of prospective federation participants who intend to join a GFIPM federation as identity provider organizations (IDPOs), service provider organizations (SPOs), or both, as well as vendors, contractors, and consultants who are required to establish technical interoperability with a GFIPM federation as part of their project or product implementation. This document’s focus is only on issues of technical interoperability; it excludes discussion of governance, policy, and other nontechnical interoperability requirements. The GFIPM framework provides the justice community and its partner organizations with a standards-based approach for implementing federated identity. Common use of these standards across federation systems is crucial to their interoperability. Leveraging the Global Justice XML and National Information Exchange Model (NIEM), a standard set of XML-based elements and attributes (collectively referred to as GFIPM metadata) about a federation user’s identities, privileges, and authentication can be universally communicated.