OK, in plain English…

It’s all about how to transmit the authorisation and role information from your home institution to outside service providers
And how those service providers can ask for that information
Access management and the communication of authorisation credentials
Aims: separate authentication from authorisation
- Devolve authentication to the ‘home’ organisation
- Devolve the management of authorisation information as well

It’s all about how to transmit the authorisation and role information from your home institution to outside service providers