Trustmark Framework Implementer Guidance for Organizations

  • Identify your information sharing use cases – what are you trying to accomplish operationally?
  • Define your trust policies for each use case and publish them in a local

  • Earn the necessary trustmarks and publish them in a

  • Could be done via self-assessment and self-issuance, or via a 3rd-party trustmark provider
  • Need to know which option(s) are acceptable to your partners before you decide what to do
  • Deploy federated system endpoints using


  • Includes interoperability & conformance testing – may require a 3rd-party trustmark provider
  • Register your federated system endpoints in the appropriate

  • Manage your information sharing partner trust relationships using a