Credential Change (CAEP)
Event indicating a user's credentials have changed (CAEP §3.2). Receiving systems should force re-authentication.
Credential Change (CAEP)
Event indicating a user's credentials have changed (CAEP §3.2). Receiving systems should force re-authentication.
Security EventsCAEPContinuous Eval
Sequence Diagram
Click any step for details
Request
Response
Redirect
Internal
Step-by-Step Breakdown
1
Credential Change Occurs
Identity Provider → Identity Provider
2
Create Credential Change SET
Identity Provider → Identity Provider
3
Deliver SET to Receivers
Transmitter → All Subscribed Receivers
4
Receiver Validates SET
Receiver (RP) → Receiver (RP)
5
Invalidate Cached Credentials
Receiver (RP) → Credential Cache
6
Force Re-authentication
Receiver (RP) → User
Token Inspector
Specs for this flow
Sections of the protocol that normatively define this flow, plus the security considerations that apply to it.