Versions Compared

Old Version 108

changes.mady.by.user Pål Axelsson

Saved on

compared with

New Version 109

changes.mady.by.user Pål Axelsson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Test utility for verifying your IdPs category compliance in SWAMID: https://samltest.swamid.se/

REFEDS Research and Scholarship

entity-category URI

http://refeds.org/category/research-and-scholarship

...

Example of services that uses the entity category includes (but are not limited to) collaborative tools and services such as wikis, blogs, project and grant management tools that require some personal information about users to work effectively.  This Entity Category should not be used for access to licensed content such as e-journals.

Process for applying for tagging a service with entity category REFEDS Research and Scholarship

For a service to be tagged with R&S it must contact the federation that it has registered with. If the service is registered within the SWAMID federation the service operator sends an e-mail to operations@swamid.se with a formal request.

...

Upon receiving a request SWAMID operations will respond within two weeks.

Process for applying for tagging an identity provider with entity category support for REFEDS Research and Scholarship

For an identity provider to be tagged with R&S it must contact the federation that it has registered with. If the identity provider is registered within the SWAMID federation the an identity provider operator sends an e-mail to operations@swamid.se with a formal request.

...

Upon receiving a request SWAMID operations will respond within two weeks.

GÉANT Dataprotection Code of Conduct

entity-category URI

http://www.geant.net/uri/dataprotection-code-of-conduct/v1

...

CoCo is used in the eduGAIN interfederation to make services available to users of European higher education institutions. The CoCo makes it possible to automatically release mostly harmless attributes to Service Providers which fulfill the EU Data Protection Directive. The expected IdP behaviour is to release the Service Provider required subset of the attributes eptid, eppn, email, displayName, scoped affiliation and schacHomeOrganization. The required subset of attributes for a specific service is defined in the mandatory Service Provider Privacy Policy.

Process for applying for tagging a service with entity category GÉANT Dataprotection Code of Conduct

For a service to be tagged with CoCo it must contact the federation that it has registered with. If the service is registered within the SWAMID federation the service operator sends an e-mail to operations@swamid.se with a formal request.

...

Upon receiving a request SWAMID operations will respond within two weeks.

SWAMID Service Provider Attribute Release Entity Categories

These categories define the release of mostly harmless personal attributes to a Service Provider (SP) from a Identity Provider (IdP). It is used together with SWAMID Data Protection Entity Categories below.

...

Category

Description

Expected IdP Behavior

research-and-education

SP is an application that directly or indirectly supports HEI institutions.

Release eptid, eppn, email, name and scoped affiliation plus static organisational information only if the SP is any of the above defined SWAMID Data Protection Entity Categories.

sfs-1993-1153

SP is an application that fulfills SFS 1993:1153

Release norEduPersonNIN.

Research & Education

entity-category URI

http://www.swamid.se/category/research-and-education

...

For instance, a service that provides tools for both multi-institutional research collaboration and instruction is eligible as a candidate for this category. This category is very similar to InCommons Research & Scolarship Category. The expected IdP behaviour is to release name, eppn, eptid, mail and eduPersonScopedAffiliation only if the services is also in at least one of the safe data processing categories. It is also recommended that static organisational information is released.

Process for applying for tagging a service with entity category Research & Education

The service operator sends an e-mail to operations@swamid.se with a formal request.

...

Upon receiving a request SWAMID operations will respond within two weeks.

SFS 1993:1153

entity-category URI

http://www.swamid.se/category/sfs-1993-1153

...

Examples of services that are viable for this entity category is a course registration self service and a student account creation service, a learning progression registration service and an internship administration self service.

Process for applying for tagging a service with entity category SFS 1993:1153

The service operator sends an e-mail to operations@swamid.se with a formal request.

...

Upon receiving a request SWAMID operations will evaluate against the Swedish legislation SFS 1993:1153 (2 kap. 6 § and 4 kap. 4 §). SWAMID operations will normally respond within two weeks. If the evaluation is positive SWAMID operations will add the requested entity category to the service metadata.

SWAMID Data Protection Entity Categories

These categories indicate category classifaction of Identity Providers (IdP) that can release mostly harmless personal attributes to a Service Provider (SP) in conjunction with the Swedish Personal Data Act (PUL). It is used together with the Research & Education Entity Category above.

HEI Service

entity-category URI

http://www.swamid.se/category/hei-service

...

This category is only relevant for attribute release from SWAMID registered IdPs to services at Swedish universities, Swedish university colleges and the Swedish Council for Higher Education.

NREN Service

entity-category URI

http://www.swamid.se/category/nren-service

...

This category is only relevant for attribute release from SWAMID registered IdPs to SUNET services.

EU Adequate Protection

entity-category URI

http://www.swamid.se/category/eu-adequate-protection

...