Versions Compared

Old Version 14

changes.mady.by.user Eric Drury

Saved on

compared with

New Version 15

changes.mady.by.user Scott Perry

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. SHOULD clearly state the stakeholders in the Trust Community.
  2. SHOULD clearly state the high-level assets/artifacts (e.g. verifiable credentials, transactions, records) under oversight by the GF
  3. SHOULD clearly state their overall shared trust objectives.
  4. SHOULD, if possible, clearly state who and what are out of scope.

...

This category includes policies for managing risk, including how parties can be certified against the GF. Controlled Documents in this category:

  1. SHOULD identify key risks that MAY negatively affect the achievement of the GF's purpose within its scope
  2. SHOULD include a Risk Assessment process output that provide an assessment of each key risk that the GF is designed to address and mitigate.
  3. SHOULD assess which Roles and Processes are vulnerable to each risk and how they are affected.
  4. SHOULD include a Risk Treatment Plan (RTP) for how identified risks are treated (e.g. mitigated or remediated, avoided, accepted or transferred).
  5. SHOULD include a Trust Assurance Framework that defines how Parties in specific Roles may be audited for assert compliance with the Policies of the GF and the mechanisms of assurance over those assertions.
  6. SHOULD (if applicable) define the roles of Auditors and Auditor Accreditors and the policies governing their actions.
  7. SHOULD (if applicable) define the roles of Certification Authorities and the Policies governing their actions and relationships with the Governance Authority, Auditors, and Auditor Accreditors.

...

  1. MUST specify how Members of the Trust Community will technically interoperate using the ToIP Stack by reference to ToIP Standard Specifications (TSS).
  2. SHOULD (if necessary) reference one or more specific ToIP Interoperability Profiles (TIPs).
  3. SHOULD specify any technical Policies or Specifications that are specific to this Trust Community.

...

  1. MUST specify how the GF enables and promotes inclusion and equity by reference to:
    1. ToIP Standard Specifications (TSS).
    2. Other regulatory or industry standard inclusivity guidelines.
    3. GF-specific inclusion and equity Policies.
    4. Member-specific inclusion and equity Policies.
  2. MUST specify how the GF enables and promotes accessbility accessibility by reference to:
    1. ToIP Standard Specifications (TSS).
    2. Other regulatory or industry standard accessibility specifications.
    3. GF-specific accessibility Policies.
    4. Member-specific accessibility Policies.

...