SAML

From Single Sign-On Attacks
Revision as of 22:14, 29 November 2015 by Anna (talk | contribs)
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

The most important industry standard for Identity Management is the SecurityAssertion Markup Language (SAML). SAML is based on the eXtensible Markup Language (XML) and enables the secure exchange of XML-based authentication messages. In conjunction with Single Sign-On (SSO) systems, SAML especially offers a standardized format for authentication tokens. Authentication and authorization data are defined in SAML Assertions.

SAML Usage

  • Single Sign-On (SSO)
  • Single Logout
  • Identity Federation

Login with SAML

  • Service-Provider (SP)-initiated SSO


  • Identity Provider (IdP)-initiated SSO
Retrieved from "http://www.ws-attacker.de/index.php?title=SAML&oldid=105"