Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

In use case 3, a service is provided by the Service Provider to the Human Service Consumer. Identity info is held at the Identity Provider.

...



Delegation info PIP
No delegationService ProviderEntitled PartyAuthorization Reg

Auth info PIP

Service Provider3. H2M service provision with identity info at the IP3a3b3c

Entitled Party

3.13a.13b.13c.1
Authorisation Authorization Reg3.23a.23b.23c.2
Identity Provider*3.33a.33b.33c.3

...

  • The Service Provider has and manages its own authorization information indicating what Entitled Parties are entitled to what (parts of) services*;
  • The Service Consumer has and manages its own authorization information indicating which Human Service Consumers are authorized to act on its behalf**;
  • The delegation/authorization responsible at the the Service Consumer registers the authorization information at the Service Provider;
  • The Human Service Consumer is able to authenticate the Service Provider;
  • The Service Provider is able to authenticate the Human Service Consumer;
  • The Identity Provider is able to authenticate the Service Provider;
  • The Service Provider is able to authenticate the Identity Provider;
  • The Identity Broker is able to authenticate the Service Provider;
  • The Service Provider is able to authenticate the Identity Broker;
  • The Human Service Consumer has been issued identity credentials by the Identity Provider.
     
  • In this use case the Entitled Party is also the Service Consumer.

...