Skip to main content

Building Federations with Raidiam as Trust Anchor

Raidiam Trust Platform can be used to create Trust Frameworks that use OpenID Federation to establish multi-lateral trust between organisations exchanging digital data.

Build Federations From Scratch at Any Level

Create an OpenID Federation at any level: organizational, national, or global. As depicted in the diagram below, you can create multiple different federations where participants from different domains interact with each other.

With such setup, a Data Provider from one Federation can offer data to organizations outside of their initial Federation - as the trust chain can be verified up to the Superior Trust Anchor. Same way, a Data Receiver will be able to access customer-permissioned data that comes from a completely different federation that share the same Superior Trust Anchor.

Use Raidiam Trust Platform as Intermediate Trust Anchor

You can build an entire federation within an already existing federation that comes from any external source - provided that Raidiam Trust Platform is onboarded within it.

Creating OpenID Federations with Raidiam

With Raidiam as the Trust Anchor in an OpenID Federation:

  • Register all Trust Framework Participants within the Participants directory enabling:

    • Participant Onboarding - all Federation Entities are onboarded within the Participant Directory enabling them to verify each other's identities and establish trusted data exchange.

    • Technical Onboarding - all applications and servers are onboarded within a single directory and assigned unique Entity IDs.

    • API Discovery - all Data Providers can publish their API resources and enable Data Receivers to discover their APIs and speed up the integration process.

  • Enable Data Providers to discover all client applications available within the Trust Framework using a single API and register them at their authorization server for Automated Client Registration in OpenID Federation

  • Resolve the Trust Chain that always ends at the Trust Anchor all participants agreed to trust - Raidiam Trust Platform.

  • Provide all participants with a neccessary tool–a Public Key Infrastructure–in order to:

    • Enable automated key rotation, and message signing and encryption.

    • Provide certificates from a trusted CA to establish mTLS channel for secure connection, enable TLS-based or private_key_jwt client authentication.

Open Book IconTABLE OF CONTENT