Search Criteria : 5 assertions found for this search Review filtered assertions

Assertion

Applies to

Applied to
Not applied to

Coverage

Covered by
Not covered by
Id scheme
Assertion id
Status
Testable?
#Coverage
#Applies to
Comment
Predicate
Page
Tags
Last changed
Actions
ITI40ITI40-019reviewedTestable 1 3 The SAML assertion sent by the X-Service User shall contain an AuthnStatement to specify the AuthnContextClassRef or AuthnContextDeclRef 151Section 3.40.4.1.22/15/17 6:00:10 PM by ceoche
ITI40ITI40-044reviewedTestable 0 3 Note: All assertions for this AIPO are stated as "may" in the TF documentation. The CASC XUA tests will need to document a policy regarding the purpose-of-use codes and write a test to have the Provider enforce the policy.When the Authz-Consent Option is used, the X-Service Provider may utilize the Authz-Consent values in local policy for access control decision making. The values are informative to the X-Service Provider which may choose to ignore the values.156Section 3.40.4.1.3.22/15/17 6:00:11 PM by ceoche
ITI40ITI40-045reviewedTestable 0 3 This may require the X-Service Provider to lookup the metadata by reference to the values given, and may require the X-Service Provider to retrieve the consent documents.156Section 3.40.4.1.3.22/15/17 6:00:11 PM by ceoche
ITI40ITI40-046reviewedTestable 0 3 The Authz-Consent value may be used to populate the ATNA Audit Message.156Section 3.40.4.1.3.22/15/17 6:00:11 PM by ceoche
XUAXUA-009reviewedTestable 0 2 X-Service Provider that supports the Authz-Consent option shall support the transaction requirements in ITI TF-2b:3.40.4.1.3.20Section 13.5.22/15/17 6:00:12 PM by ceoche