Identity Governance Framework


The Identity Governance Framework was a project of the Liberty Alliance for standards to help enterprises determine and control how identity information is used, stored, and propagated using protocols such as LDAP, SAML, and WS-Trust and ID-WSF.

Purpose

The Identity Governance Framework enables organizations to define policies that regulate and control the exchange of identity information between application systems both internally and with external partners. Identity information may include things like names, addresses, social security numbers or other information that would be otherwise considered related to an individual's identity.
The policy information is both useful to privacy auditors for assessing the use of identity information in applications and to policy enforcement systems for ensuring that appropriate use of identity information takes place.

History

IGF was originally announced by Oracle in as a joint initiative between CA, HP, Layer 7 Technologies, Novell, Oracle, Ping Identity, Securent, and Sun Microsystems.
In February, 2007, the initiative was transferred to the Liberty Alliance to take the draft proposal forward and fully develop the standard.
In July, 2007, Liberty announced completion of the documentation.
In June, 2008, Liberty Alliance publication of for CARML and Privacy Constraints.
In November, 2008, Project Aristotle of the implementing the draft specifications for IGF. See for more information.
In November, 2009, Liberty Alliance published of IGF components CARML and IGF Privacy Constraints.
In December, 2009, Project Aristotle published ArisID, an implementation of IGF 1.0 .
Liberty Alliance published of IGF components CARML and IGF Privacy Constraints in the fall of 2009. Ongoing standards work is now being handled by the Kantara Initiative,
An implementation of CARML and IGF Privacy Constraints was available through , an open source project. Release 1.1 was released December 2009.