Federated Trust and Identity (T&I) technical requirements, architecture and best practices
Federated Trust and Identity (T&I) technical requirements, architecture and best practices
Lead authors
Fernando González Pérez, Valeria Ardizzone 
, Andrea Cristofori
Contributors
Nicolas Liampotis , Nikolaos Triantafyllis , Radek Gomola , Draženko Celjak , Nino Katić
Introduction
The document defines what Open Journal Platforms (OJP) and Diamond Open Access (Diamond OA) partners must adopt to participate in a federated Trust & Identity (T&I) ecosystem: (i) best practices to onboard new partners to Single Sign-On (SSO), and (ii) the T&I technical architecture together with the interoperability framework and standards that OJP should implement or align to. The report is public and part of WP6: Journals’ Data Reuse and Uptake in EOSC.
Description
The document first states the scope and objectives of D6.5 and positions it within CRAFT-OA’s technical work. It then sets out technical requirements for federated T&I in journal platforms, proposes a reference architecture showing the components and interfaces needed for SSO, and lists the interoperability framework and standards to ensure that platforms implement T&I consistently. Finally, it provides best-practice guidance to help new Diamond OA partners adopt SSO smoothly, alongside a conformance checklist that journals and platforms can use to verify that requirements, architecture elements, and standards are in place. Together, these elements fulfil the Grant Agreement’s success criteria for D6.5.
Links to the output
OJS Plugin for OpenID integration
Further reading
-
OpenID Federation - OpenID Federation 1.0 - draft 44
-
AARC Blueprint Architecture - AARC Blueprint Architecture
-
EGI Check-in service - Check-in
-
EOSC AAI Architecture 2025 - EOSC AAI Architecture 2025
