SSO Solutions Flashcards
XML
Extensible Markup Language. Data description and exchange language used by SSO applications to exchange information
SAML
Security Assertion Markup Language: Uses XML to exchange authentication and authorization information between federated organizations.
Provides SSO for browser access.
Adopted by OASIS as a standard
SAML Entities
Principle or User
Identity Provider
Service Provider
SAML Assertions
Authentication
Authorization
Attributes
OAuth 2.0
Authorization (not authentication) framework.
RFC 6749 and maintained by IETF
Authorizes one application to use another by issuing tokens
OpenID
Maintained by OpenID foundation and not an RFC or IETF
Allows for decentralized authentication (not authorization) where you can login to multiple unrelated sites using credentials from an OpenID provider.
Uses your OpenID identifier.
OIDC
OpenID Connect
Provides authentication and authorization services
This is how you can login to service using Google or Apple accounts.
Maintained by OpenID foundation
Uses JSON Web Tokens (JWT)
JWTs can provide information about the user as well