Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. The Human Service Consumer requests a service from the Service Provider;
  2. The Service Provider requests a login from the Identity Broker;
  3. The Identity Broker asks the Human Service Consumer to select his Identity Provider;
  4. The Identity Broker requests a login from the Identity Provider;
  5. The Identity Provider authenticates the Human Service Consumer;
  6. The Identity Provider issues an identity assertion and authorization assertion for the Service Provider to the Identity Broker;
  7. The Identity Broker forwards the identity assertion and authorization assertion to the Service Provider;
  8. The Service Provider validates the identity assertion and authorization assertion through the following steps:
    1. The Service Provider authenticates the Identity Broker and validates its iSHARE certification;
    2. The Service Provider authenticates the Identity Provider and validates its iSHARE certification.
  9. The Service Provider authenticates the Human Service Consumer based on the validity of the identity assertion, and validates the iSHARE adherence of the Service Consumer;
  10. The Service Provider authorizes the Human Service Consumer of the Service Consumer based on the authorization assertion and the entitlement information registered with the Service Provider;
  11. The Service Provider executes the requested service;
  12. The Service Provider provides the service result to the Human Service Consumer.

...