SPID is a set of credentials to access to the public administration online service, and also to private sector online service (i.e. e-commerce company) if they will adhere to the initiative.
SPID defines a Federated Identity Management system, based on SAMLv2 standard, where are involved Citizens, Service Providers (SP), Identity Providers (IdP), Attribute Providers(AA) and the Digital Agency for Italy, in the role of accreditation and registry authority.
The following picture describes a high level architecture and flow of SPID-ready access to a online service.
- Access request.
- Redirect to Identity Provider.
- Credential request.
- Redirect to the Service Provider with the Authentication Assertion (SAMLv2).
- Attributes request.
- Response with verified attributes.
Technical specification and interface (draft) are available here (Italian).