Certificate
Full Formal Attribute Name
gfipm:2.0:entity:Certificate
Abbreviated Formal Attribute Name
Certificate
Definition
An electronic certificate used by the entity as a cryptographic trust anchor within a federation, for the purposes of digital signatures and/or encryption. The certificate is represented in X.509 v3, base-64 encoded format.
Data Type
Base-64 Binary
Metadata Version
2.0
Usage Information
Some entities may have multiple certificates, e.g. a signing certificate and an encryption certificate. When encoding this attribute within a GFIPM trust fabric document, it is possible to specify multiple certificates for an entity via the use of multiple <AttributeValue> XML elements, with one certificate per <AttributeValue> element.
Example Content
None Provided
NIEM Xpath
N/A
NIEM Definition
N/A
Source
SAML 2.0 ("Trust Fabric") Metadata
Misc. Notes
This attribute is new as of version 2.0. It can correspond to the value at any SAML 2.0 Metadata XPath that meets the following XPath query: "md:EntitiesDescriptor/md:EntityDescriptor/*/md:KeyDescriptor/ds:KeyInfo/ds:X509Data/ds:X509Certificate/text()".