(Originally posted at www.ucop.edu/irc/itlc/uctrust/attributes/trustattributes030106.html)
It is essential that UCTrust participants support and use common definitions for certain basic identity attributes. The formal specification of identity management attributes for use within UCTrust, ucEduPerson, is an augmentation of the eduPerson attributes that are used by InCommon. Additional elements may be added from time to time but the definition and meaning of existing attributes is not expected to change.
Participants need not be able to assert all attributes but when they do assert an attribute from that schema the meaning of that attribute must match the definition provided in the specification.
UCTrust:
...
Supported Identity Attributes
The attributes that all participants should be able to recognize is identified in the table below. Note that while no attributes are required by UCTrust, they universally available for all users at all locations through UCTrust SSO. These attributes have been selected because they are required by services that are commonly offered to members of UCTrustmost or all locations have agreed to support them (or are considering supporting them) as commonly available to applications authenticating through UCTrust services.
The table below lists UCTrust's locally-defined extensions to the InCommon Federated attribute set.
...