Three Party Authentication Use Case

From IDESG Wiki
Jump to: navigation, search

Status: Proposed This Use Case has been submitted as a new entry to the Use Cases Catalog. It has not yet been validated or reviewed.

Title: Three Party Authentication

Use Case Description: A three-party model involves a user, an independent identity provider, and a service provider. In general, the user authenticates to the identity provider. After successful authentication, the identity provider issues an assertion to the service provider indicating that the user has successfully authenticated to the identity provider. The service provider in this case outsources authentication to the identity provider and accepts the authentication assertion of the identity provider. A service provider accepts a user’s access requests to its service based on a successful authentication assertion from the identity provider. ( NISTIR 7817 Section 2.2 )

Use Case Category: Authentication, Identity

Contributor: Scott Shorter extracted from NISTIR 7817

Use Case Details


  • Identity Provider - Authenticates Users and issues assertions to Service Providers
  • Service Provider - Accepts assertions from Identity Providers
  • User - authenticates to Identity Provider, wishes to access service from Service Provider




Process Flow:

Success Scenario:

Error Conditions:


  • Extended by:
  • Extends:

References and Citations