AARC Blueprint Architecture

The AARC Blueprint Architecture (BPA) is a set of software building blocks that can be used to implement federated access management solutions for international research collaborations.

The Blueprint Architecture lets software architects and technical decision makers mix and match tried and tested components to build customised solutions for their requirements.

The current version (AARC-BPA-2017) consists of four component layers grouped by functional roles:

  • User Identities: services which provide electronic identities that can be used by users participating in International Research Collaborations.
  • Identity Access Management: defines an administrative, policy and technical boundary between the internal/external services and resources.
  • Authorisation: contains elements to controls the many ways users can access services and resources.
  • End-services: where the external services interact with the other elements of the AAI.


AARC has guidelines and best practice recommendations to support the implementation of the Blueprint Architecture.


Introduction to the AARC Blueprint Architecture – Christos Kanellopoulos (GRNET)

Get in touch!

We welcome your feedback – send your comments, questions or suggestions about the blueprint architecture at aarc-connect@lists.geant.org