CAFe publishes its new Use Policy and Privacy Statement for Service Providers
To keep up with the technological evolution in identity management, which needs greater attention to the security and privacy of users' personal data, and to ensure interoperability between services, RNP launched the new Policy for the Use of the Federated Academic Community (CAFe) and a Privacy Policy for Service Providers (SPs).
The new policy is based on international standards from REFEDs, an organization that brings together federation networks around the world, which places CAFe in compliance with global standards for identity federations. See what these patterns are:
- Metadata Registration Practice Statement (MPRS): ensures compatibility with the automation of the process, already implemented, of adding new customers to an identity federation.
- R&S (Research and Education Federations Group): global standard that defines a set of attributes to be released by Identity Providers (IdPs) to Service Providers (SPs).
- SIRTFI (Security Incident Response Trust Framework for Federated Identity): set of best practices and attributes that identify an organization as capable of coordinating security incident response among federated organizations.
The document is also updated in relation to Brazilian legislation, to meet the requirements of the General Personal Data Protection Law (LGPD).
Access here the new Use Policy and the Privacy Statement.
About CAFe
With 10 years of existence, the Federated Academic Community (CAFe) was the first academic federation in the country, and today it is one of the five largest in the world in terms of customer numbers. The service is present in more than 320 teaching and research institutions served by RNP, and offers more than 70 services to the academic community, nationally and internationally. Its basic principle is to form a network of trust between the members of the federation, facilitating the provision of other advanced services by RNP.