SS
Uploaded byShambhavi Sahay
PPTX, PDF1,305 views

SINGLE SIGN-ON

This document discusses single sign-on (SSO), which allows a user to use one set of login credentials to access multiple applications. SSO works by authenticating a user once at an authentication domain and then asserting the user's identity to other affiliated domains without requiring additional logins. The document outlines how SSO systems function, their components, dependencies, session management, authentication methods, applications, and advantages and disadvantages. Examples of SSO implementations include logging in with Facebook, Twitter, or LinkedIn to access multiple affiliated sites and services.

Embed presentation

Downloaded 106 times
SINGLE SIGN-ON Submitted By Shambhavi Sahay 15869 MCA-VI semester
 What is SSO?  How does SSO work  Implications of SSO  SSO products and authentication systems  SSO real-world examples and applications
What is SSO?  Single sign-on (SSO) is a property of access control of multiple related, but independent software systems.  Multiple systems typically require multiple sign-on dialogues ◦ E.g. Desktop logon, email, library systems, external resources … ◦ Multiple sets of credentials ◦ Presenting credentials multiple times
What is SSO?  The more security domains, the more sign-ons required
How does SSO work?
Implications of SSO  Credentials never leave the authentication domain  Secondary (affiliated) domains have to trust the authentication domain ◦ Credentials must be asserted correctly ◦ Protect from unauthorised use  Authentication transfer has to be protected
Components of SSO
Dependencies of SSO  SSO system relies on other infrastructure ◦ Authentication system ◦ Requires interface with web server ◦ Identity management/registration  Need to provide for authorisation ◦ Applications often need more than just authentication information ◦ Attribute information
Some other considerations  Most SSO systems are HTTP based ◦ Browser cookies (restricted to the authentication domain) ◦ HTTP redirects  May require integration with application ◦ Agent-based architecture ◦ SSO protocol
Some other considerations  Needs to interact with authentication system  Needs protocol between authentication domain and target application
Session Management  The SSO application maintains a session for the user  The target application usually maintains a session  Logging out of the target application may not log you out of the SSO application  Single Sign-On  Single Sign-Out! ◦ Application specific
SSO Methods  Most SSO systems rely on cookies ◦ Widely accepted and supported by browsers ◦ Users who disable cookies or change browser security settings may lose SSO capability  X.509 certificates provide alternative approach ◦ Require installation on users machine ◦ Need for revocation ◦ Can be confusing for users
Supported Authentication Methods  CAS ◦ LDAP server (OpenLDAP, Active Directory) ◦ Kerberos (MIT, Active Directory)  Pubcookie ◦ Kerberos v5 ◦ LDAP server ◦ /etc/shadow
Supported Authentication Methods  WebAuth ◦ MIT Kerberos ◦ OpenLDAP  CoSign ◦ Supports GSSAPI  A-Select ◦ Banking ◦ SMS ‘SURFkey’ ◦ LDAP ◦ Radius
SSO Applications  Applications typically require an ‘enforcement agent’ ◦ Web server module ◦ Application-level integration ◦ Usually require authorisation info  Some SSO products utilise a proxy approach ◦ SSO-enable legacy products without code change
Advantages of SSO  Reduces the chance of forgetting your password.  Reduces IT help desk costs, by reducing the number of calls to the help desk about lost password.
Advantages of SSO  Newer technologies are being implemented to help detect the attempt to hack a certain system, in which it would lock out the hacker from the remaining systems. But, this has more studying to prove how good it works.
Disadvantages of SSO  Vulnerability problems, such as with authentication, privacy keys, etc.  The lacking of a backup stronger authentication, such as smart cards or one-time password tokens.
Disadvantages of SSO  The SSO is a highly-critical tool to keep up always. If the SSO goes out, the user would lose access to all sites.
Examples of Implementations of SSO:-  Log-in with Facebook  Log-in with Twitter  Log-in with Linked-In or Apply with Linked-In
THANK YOU

More Related Content

PPTX
SSO introduction
byAidy Tificate
 
PDF
Single Sign On - The Basics
byIshan A B Ambanwela
 
PPTX
Single sign on - SSO
byAjit Dadresa
 
PDF
Enterprise Single Sign-On - SSO
byOliver Mueller
 
PDF
Introduction to SAML 2.0
byMika Koivisto
 
PPTX
Single sign on - benefits, challenges and case study : iFour consultancy
byDevam Shah
 
PDF
Single sign on (SSO) How does your company apply?
byĐỗ Duy Trung
 
PDF
Introduction to SAML & OIDC
byForgeRock Identity Tech Talks
 
SSO introduction
byAidy Tificate
 
Single Sign On - The Basics
byIshan A B Ambanwela
 
Single sign on - SSO
byAjit Dadresa
 
Enterprise Single Sign-On - SSO
byOliver Mueller
 
Introduction to SAML 2.0
byMika Koivisto
 
Single sign on - benefits, challenges and case study : iFour consultancy
byDevam Shah
 
Single sign on (SSO) How does your company apply?
byĐỗ Duy Trung
 
Introduction to SAML & OIDC
byForgeRock Identity Tech Talks
 

What's hot

PPT
OAuth 2.0 and OpenId Connect
bySaran Doraiswamy
 
PPTX
OpenID Connect: An Overview
byPat Patterson
 
PPTX
Single Sign On 101
byMike Schwartz
 
PPTX
Zero trust Architecture
byAddWeb Solution Pvt. Ltd.
 
PDF
Secure coding presentation Oct 3 2020
byMoataz Kamel
 
PDF
OAuth & OpenID Connect Deep Dive
byNordic APIs
 
PPTX
Secure coding practices
byMohammed Danish Amber
 
PDF
WebAuthn and Security Keys
byFIDO Alliance
 
PPTX
Introduction to Public Key Infrastructure
byTheo Gravity
 
PPT
Ssl https
byAndrada Boldis
 
PDF
SAML Protocol Overview
byMike Schwartz
 
PPTX
Building secure applications with keycloak
byAbhishek Koserwal
 
PPTX
Two factor authentication presentation mcit
bymmubashirkhan
 
PDF
The Shift from Federated to Decentralized Identity
byEvernym
 
PDF
Introduction to OpenID Connect
byNat Sakimura
 
PPTX
Cryptography - 101
byn|u - The Open Security Community
 
PPTX
Chapter 5 - Identity Management
byKarthikeyan Dhayalan
 
PPTX
Password Attack
bySina Manavi
 
PDF
Password Management
byRick Chin
 
PPTX
Android Hacking + Pentesting
bySina Manavi
 
OAuth 2.0 and OpenId Connect
bySaran Doraiswamy
 
OpenID Connect: An Overview
byPat Patterson
 
Single Sign On 101
byMike Schwartz
 
Zero trust Architecture
byAddWeb Solution Pvt. Ltd.
 
Secure coding presentation Oct 3 2020
byMoataz Kamel
 
OAuth & OpenID Connect Deep Dive
byNordic APIs
 
Secure coding practices
byMohammed Danish Amber
 
WebAuthn and Security Keys
byFIDO Alliance
 
Introduction to Public Key Infrastructure
byTheo Gravity
 
Ssl https
byAndrada Boldis
 
SAML Protocol Overview
byMike Schwartz
 
Building secure applications with keycloak
byAbhishek Koserwal
 
Two factor authentication presentation mcit
bymmubashirkhan
 
The Shift from Federated to Decentralized Identity
byEvernym
 
Introduction to OpenID Connect
byNat Sakimura
 
Cryptography - 101
byn|u - The Open Security Community
 
Chapter 5 - Identity Management
byKarthikeyan Dhayalan
 
Password Attack
bySina Manavi
 
Password Management
byRick Chin
 
Android Hacking + Pentesting
bySina Manavi
 

Viewers also liked

PPTX
Single sign on
byRob Fitzgibbon
 
PPT
Fast and Free SSO: A Survey of Open-Source Solutions to Single Sign-on
byCraig Dickson
 
PPTX
Single Sign On Considerations
byVenkat Gattamaneni
 
PDF
Single Sign-On Best Practices
bySalesforce Developers
 
PPTX
OpenAM: An Introduction
byForgeRock
 
PDF
CIS13: Mobile Single Sign-On: Extending SSO Out to the Client
byCloudIDSummit
 
PPT
Single Sign On - Case Study
byEbizon
 
PDF
Mobile SSO: Give App Users a Break from Typing Passwords
byCA API Management
 
PDF
SSO - SIngle Sign On
byTomasz Wójcik
 
PPTX
Single sign-on Across Mobile Applications from RSAConference
byCA API Management
 
PPT
Oauth2.0
byYasmine Gaber
 
PPTX
Mobile Single Sign-On (Gluecon '15)
byBrian Campbell
 
PPTX
Mobile SSO using NAPPS
byAshish Jain
 
PPT
SSO Strategy Implementation Considerations
byJohn Bauer
 
PPTX
CIS 2015 Mobile SSO
byAshish Jain
 
PPTX
분산형 컴퓨팅 플랫폼 [에테리움]
byinucreative
 
PDF
블록체인
by정식 황
 
PDF
Bitcoin 2.0(blockchain technology 2)
byWooseung Kim
 
PDF
Understanding private blockchains
byCoin Sciences Ltd
 
PDF
Single sign on using SAML
byProgramming Talents
 
Single sign on
byRob Fitzgibbon
 
Fast and Free SSO: A Survey of Open-Source Solutions to Single Sign-on
byCraig Dickson
 
Single Sign On Considerations
byVenkat Gattamaneni
 
Single Sign-On Best Practices
bySalesforce Developers
 
OpenAM: An Introduction
byForgeRock
 
CIS13: Mobile Single Sign-On: Extending SSO Out to the Client
byCloudIDSummit
 
Single Sign On - Case Study
byEbizon
 
Mobile SSO: Give App Users a Break from Typing Passwords
byCA API Management
 
SSO - SIngle Sign On
byTomasz Wójcik
 
Single sign-on Across Mobile Applications from RSAConference
byCA API Management
 
Oauth2.0
byYasmine Gaber
 
Mobile Single Sign-On (Gluecon '15)
byBrian Campbell
 
Mobile SSO using NAPPS
byAshish Jain
 
SSO Strategy Implementation Considerations
byJohn Bauer
 
CIS 2015 Mobile SSO
byAshish Jain
 
분산형 컴퓨팅 플랫폼 [에테리움]
byinucreative
 
블록체인
by정식 황
 
Bitcoin 2.0(blockchain technology 2)
byWooseung Kim
 
Understanding private blockchains
byCoin Sciences Ltd
 
Single sign on using SAML
byProgramming Talents
 

Similar to SINGLE SIGN-ON

PPT
Single sign on and its significance .ppt
byDAKSHATAPANCHAL2
 
PPTX
Web Single sign on system
bySwati Sinha
 
PPTX
Single salud ocupacional SignOn SSO.pptx
bydrfranklinarias987
 
PPT
OWASPSanAntonio_2006_08_SingleSignOn.ppt
bywebhostingguy
 
PDF
Understanding Single Sign-On (SSO): Enhancing User Experience and Security
byRoseJLever
 
PPTX
Presentation
byLaxman Kumar
 
PPTX
Optimizing IAM with Single Sign-On From the Cloud to On-Premise
bymycroftinc
 
PPT
Single sign on assistant an authentication brokers
byFinalyear Projects
 
PDF
Why you should use true single-sign-on in Icinga Web 2 - Icinga Camp Stockhol...
byIcinga
 
PDF
International Journal of Engineering Inventions (IJEI)
byInternational Journal of Engineering Inventions www.ijeijournal.com
 
PPTX
single sign-on
byMegha Sahu
 
PDF
Open sso fisl9.0
byStartup Cursos
 
PPTX
SSO IN/With Drupal and Identitiy Management
byManish Harsh
 
PPTX
SSO (Single Sign On/Off)
byRussel Mahmud
 
PDF
Single Sign-on Framework in Tizen
byRyo Jin
 
PDF
Open Source Identity Integration with OpenSSO
byelliando dias
 
PPT
sso_on_new system with security is more concern
by2022mt93375
 
PPTX
Security operation-center
bybharti singhal
 
PPTX
Security operation-center
bybharti singhal
 
PPTX
UserSummit-SSOnew
byCorey Chimko
 
Single sign on and its significance .ppt
byDAKSHATAPANCHAL2
 
Web Single sign on system
bySwati Sinha
 
Single salud ocupacional SignOn SSO.pptx
bydrfranklinarias987
 
OWASPSanAntonio_2006_08_SingleSignOn.ppt
bywebhostingguy
 
Understanding Single Sign-On (SSO): Enhancing User Experience and Security
byRoseJLever
 
Presentation
byLaxman Kumar
 
Optimizing IAM with Single Sign-On From the Cloud to On-Premise
bymycroftinc
 
Single sign on assistant an authentication brokers
byFinalyear Projects
 
Why you should use true single-sign-on in Icinga Web 2 - Icinga Camp Stockhol...
byIcinga
 
International Journal of Engineering Inventions (IJEI)
byInternational Journal of Engineering Inventions www.ijeijournal.com
 
single sign-on
byMegha Sahu
 
Open sso fisl9.0
byStartup Cursos
 
SSO IN/With Drupal and Identitiy Management
byManish Harsh
 
SSO (Single Sign On/Off)
byRussel Mahmud
 
Single Sign-on Framework in Tizen
byRyo Jin
 
Open Source Identity Integration with OpenSSO
byelliando dias
 
sso_on_new system with security is more concern
by2022mt93375
 
Security operation-center
bybharti singhal
 
Security operation-center
bybharti singhal
 
UserSummit-SSOnew
byCorey Chimko
 

SINGLE SIGN-ON

  • 1.
    SINGLE SIGN-ON Submitted By ShambhaviSahay 15869 MCA-VI semester
  • 2.
     What isSSO?  How does SSO work  Implications of SSO  SSO products and authentication systems  SSO real-world examples and applications
  • 3.
    What is SSO? Single sign-on (SSO) is a property of access control of multiple related, but independent software systems.  Multiple systems typically require multiple sign-on dialogues ◦ E.g. Desktop logon, email, library systems, external resources … ◦ Multiple sets of credentials ◦ Presenting credentials multiple times
  • 4.
    What is SSO? The more security domains, the more sign-ons required
  • 5.
  • 6.
    Implications of SSO Credentials never leave the authentication domain  Secondary (affiliated) domains have to trust the authentication domain ◦ Credentials must be asserted correctly ◦ Protect from unauthorised use  Authentication transfer has to be protected
  • 7.
  • 8.
    Dependencies of SSO SSO system relies on other infrastructure ◦ Authentication system ◦ Requires interface with web server ◦ Identity management/registration  Need to provide for authorisation ◦ Applications often need more than just authentication information ◦ Attribute information
  • 9.
    Some other considerations Most SSO systems are HTTP based ◦ Browser cookies (restricted to the authentication domain) ◦ HTTP redirects  May require integration with application ◦ Agent-based architecture ◦ SSO protocol
  • 10.
    Some other considerations Needs to interact with authentication system  Needs protocol between authentication domain and target application
  • 11.
    Session Management  TheSSO application maintains a session for the user  The target application usually maintains a session  Logging out of the target application may not log you out of the SSO application  Single Sign-On  Single Sign-Out! ◦ Application specific
  • 12.
    SSO Methods  MostSSO systems rely on cookies ◦ Widely accepted and supported by browsers ◦ Users who disable cookies or change browser security settings may lose SSO capability  X.509 certificates provide alternative approach ◦ Require installation on users machine ◦ Need for revocation ◦ Can be confusing for users
  • 13.
    Supported Authentication Methods CAS ◦ LDAP server (OpenLDAP, Active Directory) ◦ Kerberos (MIT, Active Directory)  Pubcookie ◦ Kerberos v5 ◦ LDAP server ◦ /etc/shadow
  • 14.
    Supported Authentication Methods WebAuth ◦ MIT Kerberos ◦ OpenLDAP  CoSign ◦ Supports GSSAPI  A-Select ◦ Banking ◦ SMS ‘SURFkey’ ◦ LDAP ◦ Radius
  • 15.
    SSO Applications  Applicationstypically require an ‘enforcement agent’ ◦ Web server module ◦ Application-level integration ◦ Usually require authorisation info  Some SSO products utilise a proxy approach ◦ SSO-enable legacy products without code change
  • 16.
    Advantages of SSO Reduces the chance of forgetting your password.  Reduces IT help desk costs, by reducing the number of calls to the help desk about lost password.
  • 17.
    Advantages of SSO Newer technologies are being implemented to help detect the attempt to hack a certain system, in which it would lock out the hacker from the remaining systems. But, this has more studying to prove how good it works.
  • 18.
    Disadvantages of SSO Vulnerability problems, such as with authentication, privacy keys, etc.  The lacking of a backup stronger authentication, such as smart cards or one-time password tokens.
  • 19.
    Disadvantages of SSO The SSO is a highly-critical tool to keep up always. If the SSO goes out, the user would lose access to all sites.
  • 20.
    Examples of Implementationsof SSO:-  Log-in with Facebook  Log-in with Twitter  Log-in with Linked-In or Apply with Linked-In
  • 21.