Authorization+Framework+Home

=Authorization Framework= For questions, feedback, and open issues being addressed for this specification, visit the Implementer Questions and Feedback Page

Please visit the Nationwide Health Information Network Inventory page on the ONC website in order to access previous production version of this specification.

Specification Definition
Defines the exchange of metadata used to characterize the initiator of an Nationwide Health Information Network request so that it may be evaluated by responding NHIOs in local authorization decisions. Along with the Messaging Platform, this specification forms the Nationwide Health Information Network’s messaging, security, and privacy foundation. It employs SAML 2.0 assertions The purpose of this exchange is to provide the responder with the information needed to make an authorization decision for the requested function. Each initiating message must convey information regarding end user attributes and authentication using SAML 2.0 assertions. Along with the Messaging Platform, this specification forms the Nationwide Health Information Network’s messaging, security, and privacy foundation.

Transaction Standard
The Nationwide Health Information Network Authorization Framework is based on the Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0, the Authentication Context for SAML V2.0, the Cross-Enterprise Security and Privacy Authorization (XSPA) Profile of SAML for Healthcare Version 1.0 and the OASIS Web Services Security: SAML Token Profile 1.1 specifications.


 * Refactoring Effort- Authorization Framework Production Specification**
 * UML PIM model - [[file:authfw-PIM.zip]]**
 * Unzip the file and click on index.htm**
 * a bar at top of window may appear if you don't have scripts turned on. If so then click on it and allow blocked content. Then a popup will apppear. Click yes and then click on authframework.overview for a general introduction.**