Wikia

The IT Law Wiki

Relying party

29,991pages on
this wiki
Talk0

Definitions Edit

A relying party is

a provider of online services to a subject. Within the ecosystem, a relying party is responsible for interacting with credential, identity, and attribute providers as needed to verify parties with whom they exchange information.
[a]n entity that relies upon the subscriber's credentials, typically to process a transaction or grant access to information or a system.[1]
[a]n entity that relies on assertions of individuals' identities from identity providers in order to provide services to individuals. In effect, the relying party delegates aspects of identity management to the identity provider(s). Such delegation requires protocol exchanges, trust, and a common understanding of semantics of information exchanged between the relying party and the identity provider.[2]

Overview Edit

A relying party relies on results of an on-line authentication to establish the identity or attribute of a subscriber for the purpose of some transaction. The verifier and the relying party may be the same entity, or they may be separate entities. If they are separate entities, the relying party normally receives an assertion from the verifier. The relying party ensures that the assertion came from a verifier trusted by the relying party. The relying party also processes any additional information in the assertion, such as personal attributes or expiration times.

References Edit

  1. NIST Special Publication 800-73-3, at 41.
  2. Privacy Considerations for Internet Protocols, at 10.

Source Edit

Around Wikia's network

Random Wiki