date | slug | tags | title | url | aliases | ||||
---|---|---|---|---|---|---|---|---|---|
2017-06-23 09:59:03 +0000 |
sirtfi-compliance-of-safire-20170621 |
|
Sirtfi Compliance of SAFIRE |
/safire/publications/sirtfi-compliance-of-safire-20170621/ |
|
{{< cite first = "Guy" last = "Halse" title = "Sirtfi compliance of SAFIRE" url = "/wp-content/uploads/2017/06/Sirtfi-compliance-of-SAFIRE-20170621.pdf" date = "2017-06-21"
}}
This is a self-assessment of the South African Identity Federation’s compliance with the REFEDS Security Incident Response Trust Framework for Federated Identity (Sirtfi) version 1.01. Such an assessment is necessary because the Federation uses a hub-and-spoke architecture, and thus some Federation components are in scope for identity- and service- providers own Sirtfi assessments. For this reason, SAFIRE’s own assessment includes more detail than it normally requires of Federation Participants (who need only provide the expression of compliance).
{{< gview file="/wp-content/uploads/2017/06/Sirtfi-compliance-of-SAFIRE-20170621.pdf" >}}