547
szerkesztés
Módosítások
nincs szerkesztési összefoglaló
== Purpose of this document ==
This document is a collection of the information specified in several specific documents written in Hungarian. Since only Hungarian educational and research institutions are expected to be Federation Members (ie. operate an Identity Provider), this document focuses on rules what are relevant to (international) Federation Partners.
== About the federation ==
Hungarian Research and Educational Federation ('''HREF''') is an identity federation a SAML2-based Identity Federation of Hungarian higher education and research institutions, and for public collections and other content providers. For the end-users, the federation aims to be transparent, therefore the login procedure is communicated as '''''eduID login'''''.
=== Contacts ===
The Federation is operated by [http://www.niif.hu NIIF Institute] as a Federation Operator. Questions, concerns or any kind of requests about the Federation should be directed to any of the following addresses:
:Hungary
News and information about the federation is located published at http://eduid.hu (Hungarian only)
=== Policy and principles of interoperation ===
==== Basic principles ====
* Prior joining the federation, every entity needs to publish the Data Protection Policy under which it operates. This policy must be kept up-to-date.
* Whenever the Data Protection Policy changes, the Federation Operator must be notified.
* Transfer of personal data is only allowed wheneither** authorised by law,or
** the user expressed his or her consent on the data transfer.
#* Institutions of secondary education;
#* Public collections.
# Any organisation might join as a '''PartnersPartner'''.
# All Members and Partners of the Federation might provide services.
# A Partner might participate in the meeting of the Members' Board as an observer, without having rights to vote.
# Only Members are entitled to
#* supply user identity information to the federation
#* send representatives into the Members' Board with a right to vote.
* accept application of new Members and Partners
Partners are may also may send representatives for MB meetings, without voting rights.
=== Legal ===
The Federation itself is not a legal entity, Members and Partners establish a legal connection to the Federation Operator. Any legal claims between Members and/or Partners shall be directed to the organisation operating the Identity Provider or the Service Provider. The Service Agreement between the Federation Operator and Partner is available '''[http://www.eduid.hu/wp-content/uploads/2012/08/href-contract-partner.doc here]'''.
== Technical information ==
=== Metadata ===
The Federation Operator uses a self-signed certificate for signing following information is necessary to enter into the testing metadata file, therefore the signing key must be explicitly trusted. Properties of the signing certificate:* DN: <code>C=HU, O=NIIF Institute, OU=eduID Federation Operator, CN=Metadata Signer/emailAddress=aai@niif.hu</code>SP metadata URL (HTTPS preferred)* MD5 fingerprint: <code>21:8C:BE:B4:D1:D6:12:C4:67:9F:16:FA:93:36:F6:A4</code>Name of the SP* SHA1 fingerprint: <code>FE:AE:0B:E8:FB:59:ED:F7:CB:7F:69:DF:19:4F:8B:6D:C7:F6:96:66</code>Administrative and technical contact names and mail addresses (non-personal preferred)* Availability: from <code>Oct 5 08:18:46 2011 GMT</code> until <code>Sep 30 08:18:46 2031 GMT</code>Required and optional attributes