Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Sso walk-through

1,389 views

Published on

  • Be the first to comment

  • Be the first to like this

Sso walk-through

  1. 1. A Walk Through SSOSuresh AttanayakeSoftware Engineer
  2. 2. About WSO2• Providing the only complete open source componentized cloudplatform– Dedicated to removing all the stumbling blocks to enterprise agility– Enabling you to focus on business logic and business value• Recognized by leading analyst firms as visionaries and leaders– Gartner cites WSO2 as visionaries in all 3 categories of applica-tion infrastructure– Forrester places WSO2 in top 2 for API Management• Global corporation with offices in USA, UK & Sri Lanka– 200+ employees and growing• Business model of selling comprehensive support & mainte-nance for our products
  3. 3. What we cover today● Problems with traditional authentication● How SSO solves those problems● Need for Open Standards● Introduction to some open standards and how theysolve the common authentication problems
  4. 4. Next Webinar - SSO with the WSO2Identity Server● Some SSO technologies in detail– OpenID– SAML– Kerberos– WS-Trust– WS-Federation● Demos with the WSO2 Identity Server● Solving identity problems
  5. 5. Story begins
  6. 6. World Wide Web● News● Multimedia● Information (wiki, blogs)● Forums● Email● Social Networking● E-commerce● Online Banking
  7. 7. Authentication is required● Protect resources● Authorization● Identification
  8. 8. Something you know
  9. 9. Multiple Web Applications
  10. 10. Multiple Web ApplicationsNetcraft Survey
  11. 11. Multiple User Stores
  12. 12. Problem #1 – Too many credentials
  13. 13. Problem #2 – There is already a Bob
  14. 14. Problem #3 – Using the samecredential
  15. 15. Shared User Store
  16. 16. Problem #4 – Multiple Logins
  17. 17. Shared User Store is not always anoption
  18. 18. Shared User Store is not always anoption● World Wide Web
  19. 19. Central Authentication Service (CAS)
  20. 20. Problem #1 – Too many credentials
  21. 21. Problem #2 – There is already a Bob
  22. 22. Solution - One Username & onePassword
  23. 23. Problem #3 – Using the samecredential
  24. 24. Solution - Login only at the CAS/IP
  25. 25. Problem #4 – Multiple Logins
  26. 26. Solution - Login once at the CAS/IP
  27. 27. Whats more ?● User convenience● Less IT Help Desk calls● More secure
  28. 28. Open Standards
  29. 29. Why Open Standards ?● More secure solutions● You are not your own● Be alerted an up-to-date– http://oauth.net/advisories/2009-1/● Freely available libraries and plugging● Interoperability● Extensibility
  30. 30. OpenID
  31. 31. OpenID Providers
  32. 32. OpenID Identifiers● Google– https://profiles.google.com/YourGoogleID● Blogger– http://blogname.blogspot.com/● MySpace– http://www.myspace.com/username
  33. 33. Relying Parties
  34. 34. Relying Parties● Over 50,000 web sites– http://wiki.openid.net/w/page/25453698/Gallery● One billion user accounts● Drupal, Wordpress and libraries● Visit http://openid.net/
  35. 35. SAML(Security Assertions Markup Language)
  36. 36. SAML Web Browser SSO Profile
  37. 37. Kerberos
  38. 38. WS- Trust
  39. 39. WS- Federation
  40. 40. Identity Delegation
  41. 41. OpenID Connect
  42. 42. Questions?
  43. 43. 150+ globally positioned support customers
  44. 44. Thank you

×