[Policies] Complex Trust Marks examples #41
Description
Trust Mark with Inteded Usage and Authorized Data
{
"typ": "trust-mark+jwt",
"alg": "ES256",
"kid": "2HnoFS3YnC9tjiCaivhWnXAdNuA"
}
.
{
"id": "https://trust-registry.education.org/trust_marks/university/public/v1",
"iss": "https://trust-issuer.example.org",
"sub": "https://university-example.edu",
"iat": 1579621160,
"exp": 1579707560,
// Intended Usage
"intended_usage": {
"purpose": [
"student_enrollment",
"research_access",
"library_services",
"academic_verification"
],
"user_types": [
"students",
"researchers",
"faculty",
"staff"
]
},
// Credentials allowed fo request
"authorized_credentials": {
"types": [
"UniversityDegreeCredential",
"org.iso.18013.5.1.mDL"
],
"allowed_attributes": [
"given_name",
"family_name",
"birth_date",
"nationality"
]
}
}
Trust Mark per ISO27001
{
"typ": "trust-mark+jwt",
"alg": "ES256",
"kid": "2HnoFS3YnC9tjiCaivhWnXAdNuA"
}
{
"id": "https://trust-registry.certification.org/trust_marks/iso27001/v1",
"iss": "https://trust-issuer.example.org",
"sub": "https://university-example.edu",
"iat": 1579621160,
"exp": 1579707560,
"trust_mark_type": "certification",
"certification_type": "ISO27001",
"certification_id": "ISO27001-2024-123",
"certification_date": "2024-01-15",
"next_audit_date": "2025-01-15",
"certification_scope": [
"information_security_management",
"data_protection",
"risk_management"
]
}
Trust Mark GDPR-Education
// Trust Mark per GDPR-Education
{
"typ": "trust-mark+jwt",
"alg": "ES256",
"kid": "2HnoFS3YnC9tjiCaivhWnXAdNuA"
}
{
"id": "https://trust-registry.certification.org/trust_marks/gdpr-education/v1",
"iss": "https://trust-issuer.example.org",
"sub": "https://university-example.edu",
"iat": 1579621160,
"exp": 1579707560,
"trust_mark_type": "certification",
"certification_type": "GDPR-Education",
"certification_id": "GDPR-EDU-2024-456",
"certification_date": "2024-01-15",
"next_audit_date": "2025-01-15",
"compliance_areas": [
"student_data_processing",
"research_data_handling",
"international_transfers"
]
}
// Trust Mark per eIDAS-qualified
{
"typ": "jwt",
"alg": "ES256",
"kid": "2HnoFS3YnC9tjiCaivhWnXAdNuA"
}
{
"id": "https://trust-registry.certification.org/trust_marks/eidas-qualified/v1",
"iss": "https://trust-issuer.example.org",
"sub": "https://university-example.edu",
"iat": 1579621160,
"exp": 1579707560,
"trust_mark_type": "certification",
"certification_type": "eIDAS-qualified",
"certification_id": "eIDAS-789",
"certification_date": "2024-01-15",
"next_audit_date": "2025-01-15",
"qualification_level": "qualified",
"qualified_services": [
"electronic_signatures",
"electronic_seals",
"website_authentication"
]
}
Trust Mark per Data Retention Policy
{
"typ": "trust-mark+jwt",
"alg": "ES256",
"kid": "2HnoFS3YnC9tjiCaivhWnXAdNuA"
}
{
"id": "https://trust-registry.policy.org/trust_marks/data-retention/v1",
"iss": "https://trust-issuer.example.org",
"sub": "https://university-example.edu",
"iat": 1579621160,
"exp": 1579707560,
"trust_mark_type": "data_retention_policy",
"policy_version": "2024.1",
"last_update": "2024-01-15",
"retention_policies": {
"identity_data": {
"retention_period": "academic_year",
"basis": "contractual",
"disposal_method": "secure_deletion"
},
"academic_records": {
"retention_period": "permanent",
"basis": "legal_obligation",
"archival_method": "encrypted_storage"
},
"access_logs": {
"retention_period": "2_years",
"basis": "legitimate_interest",
"disposal_method": "secure_deletion"
}
},
"policy_enforcement": {
"automated_deletion": true,
"audit_trail": true,
"notification_system": true
},
"exceptions_handling": {
"legal_hold": "supported",
"user_request": "supported",
"research_purposes": "evaluated_case_by_case"
}
}
Metadata
Metadata
Assignees
Labels
No labels
Type
Projects
Status