AARC Blueprint Architecture

The purpose of the AARC Blueprint Architecture (BPA) is to provide set of interoperable architectural building blocks for software architects and technical decision makers, who are designing and implementing access management solutions for international research collaborations.


This version of the AARC Blueprint Architecture (AARC-BPA-2017) builds upon the previous one and provides a more detailed layered architecture, while retaining full backwards compatibility. AARC-BPA-2017 retains the same four layers, each of which includes one or more functional components, grouped by their complementary functional roles. The User Identities layer and the End Services layer are still there, while the Attribute Enrichment layer has been renamed to User Attributes layer and the Translation layer has been renamed to Identity Access Management (IAM) layer and has a prominent role in the architecture. In AARC-BPA-2017, we introduce a new layer for the centralised Authorisation.

Get in touch!

We welcome your feedback – send your comments, questions or suggestions about the blueprint architecture at aarc-connect@lists.geant.org