Roles
One of the iSHARE Trust Framework's core features is its description of functional roles. These roles represent the different ways organisations can interact with each other. To assure federation of all aspects, and no single points of ‘failure’ or ‘power’ in the structure, all roles are defined and can be executed by multiple parties.
Role definition
The principle of a role is that its execution can be done by the same legal entity, but the interface specification assures that always level playing field / federation is possible. The Trust Framework introduces two core role types: "Adhering Parties" and "Certified Parties”
"Adhering parties" directly engage with data and include:
Entitled party: Organisations with rights to access specific services or data.
Service Provider: Organisations offering services for consumption.
Service Consumer: Organisations using services provided by service providers.
"Certified Parties" are certified to facilitate trusted exchanges between Adhering Parties. They encompass these specific roles:
Participant Registry (former name: iSHARE Satellite): Organisations responsible for onboarding participants and trust assurance.
Authorisation Registry: Organisations providing Authorisation registry services.
Identity Provider: Organisations offering identification services for humans.
Identity Broker: Organisations serving as intermediaries between Service Providers and Identity Providers.
Role identifiers
In certain situations, a role identifier is used to identify the role(s) of a participant. For this purpose, the Trust Framework specifies the following identifiers:
ServiceConsumer
Service Consumer
ServiceProvider
Service Provider
EntitledParty
Entitled Party
AuthorisationRegistry
Authorisation Registry
IdentityProvider
Identity Provider
IdentityBroker
Identity Broker
ParticipantRegistry (former identifier iShareSatellite)
Participant Registry (former name iSHARE Satellite)
Last updated