SAML Protocol Overview

10,629 views

Published on

Because the SAML Protocol is so foundational to the cloud identity software as a service Gluu provides, we wanted to lay out the basics of SAML for those interested.

The following can be thought of as a basic guide to getting you conversational with the SAML protocol.

Published in: Technology
  • Be the first to comment

SAML Protocol Overview

  1. 1. SAML Protocol Overview Security Assertion Markup Language Brought to You By:
  2. 2. What is SAML?A series of XML-based messages that detail: ● Whether users are authenticated. ● What rights, roles, and access they have. ● How they can use data and resources based on those rights and roles.
  3. 3. What is SAML Used For? ● Single Sign On (SSO) ● Single Logout ● Attribute Sharing ● Account Linking
  4. 4. Why SAML?The newest version, SAML 2.0, usesintellectual property and protocols fromsecure frameworks to standardize SSOacross all enterprise cloud applications.
  5. 5. Existing Standards used by SAML 2.0:● Extensible Markup Language (XML) ○ XML Schema ○ XML Signature ○ XML Encryption● Hypertext Transfer Protocol (HTTP)● Simple Object Access Protocol (SOAP)
  6. 6. How Does SAML Work?3 Main Protocols:● Assertions a. Authentication statements b. Attribute statements c. Authorization decision statements● Protocol - the way SAML asks for and gets assertions, for example, using SOAP over HTTP.● Bindings - how SAML message exchanges are mapped into SOAP exchanges.
  7. 7. How Does SAML Work?Assertions are PROTOCOLexchanged amongsites and servicesusing the protocoland binding - and ASSERTIONSthose assertionsauthenticate usersamong sites. BINDINGS
  8. 8. How Does SAML Work?
  9. 9. Benefits of SAML● User passwords never cross the firewall● Web applications with no passwords are virtually impossible to hack● “SP-initiated” SAML SSO provides access to Web apps for users outside the firewall.● Enterprise-wide, architecturally sound Internet SSO
  10. 10. Centralized Federation with SAML Provides:● One single point of web app access● Identity control and auditing● Security, risk aversion, and compliance
  11. 11. For more SAML related Information... visit us at http://gluu.org

×