31͕ϦΫΤετ͢Δ"UUSJCVUFͷϦετ *E1͕31ʹରͯ͠։ࣔͰ ͖ΔϦετͷαϒηοτ w 31͕ϦΫΤετ͢Δ֤"UUSJCVUFʹ͍ͭͯͦͷར༻త w 4VCTDSJCFS"UUSJCVUFͷ։ࣔʹ͔͔ΔҙࢥܾఆͷΛෛ͏ "VUIPSJ[FE1BSUZ w 4VCTDSJCFS͕31ʹ։ࣔ͞ΕΔ"UUSJCVUFʹ͍ͭͯΔखஈ w *E1͕ఏڙ͠͏ΔY"- w 31͕ඞཁͱ͢ΔY"-
RP ͷ Access ͕ແޮԽ͞Εͨ߹, RP ʹγάφ ϧΛૹΔ͖Ͱ͋Δ (SHOULD). (தུ) ͜ͷγάφϧΛड͚औͬͨ ߹, RP RP Subscriber Account Λ Terminate ͤ͞, RP Subscriber Account ʹؔ࿈͢Δશͯͷ personal information Λ আͤͶͳΒͳ͍ (SHALL). ͨͩࠪ͠ηΩϡϦςΟతͰඞཁ ͱ͞ΕΔ߹Λআ͘.
ʹରͯ͠ใγες Ϝ͕ߦ͏ Processing ʹؔ͢Δ৴པੑͷߴ ͍ԾఆΛՄೳͱ͢Δ͜ͱ. Predictability [NISTIR 8062] NIST Internal Report 8062, An Introduction to Privacy Engineering and Risk Management in Federal Systems
track subscriptions between RP and IdP Proxy can see attributes of Subscriber Non-Blinding Proxy with Attributes Yes Yes Yes Yes Non-Blinding Proxy Yes Yes Yes N/A Double Blind Proxy with Attributes No No Yes Yes Double Blind Proxy No No Yes N/A Triple Blind Proxy with or without Attributes No No No No Blinding in Proxied Federation