...
How important is it for you that
- all user identities /accounts belongs (accounts in the Home Organisation) belongs to an individual person (i.e. there are no shared accounts like "libraryuser1")?
- and all users are traceable (i.e. the home organization knows and Home Organization knows who they are and can reach him/herthem)?
- and Home Organisation is willing to collaborate with you if you think their user misbehaves in your service?
- that That you (as an SP) can block him/her from your servicesyour service?
- user identifiers are persistent i.e. not reassigned a user account is not re-assigned (re-cycled) to another person over time?
- user identifiers are shared by multiple SPs (i i.e. not pairwise/targeted)if you have 2 SPs, do they both receive the same user identifier when the same user logs in to the two services?
3.2.Initial proof of identity
- the home organization has a documented identity vetting process (whatever it is)?
- the identity vetting process is face-to-face (presenting a government photo-ID) or equivalent?
...