AARC-G071 Guidelines for Secure Operation of Attribute Authorities and issuers of statements for entities

These guidelines describe the minimum requirements and recommendations for the secure operation of attribute authorities and similar services that make statements about an entity based on well-defined attributes. Adherence to these guidelines may help to establish trust between communities, operators of attribute authorities and issuers, and Relying Parties, infrastructures, and service providers. This document does not define an accreditation process.

Document URL: https://zenodo.org/record/5927799/files/AARC-G071-Secure-Operation-of-Attribute-Authorities-v20220411.pdf
Development information: https://wiki.geant.org/display/AARC/Attribute+Authority+and+Proxy+operational+security
Status: AEGIS endorsed
DOI: https://doi.org/10.5281/zenodo.5927799 (published April 11, 2022)
IGTF reference: https://www.igtf.net/guidelines/aaops/
Errata: none
Supersedes: AARC-G048