SAML: Difference between revisions

From Single Sign-On Attacks
Jump to navigation Jump to search
No edit summary
Line 10: Line 10:
[[File:SP_initiated_SSO.jpg|centre]]
[[File:SP_initiated_SSO.jpg|centre]]
<br>
<br>
Hier is the important messages (AuthnRequest and Response) of the SAML protocol in XML format:
[[File:AuthnRequest1.jpg|centre]]
[[File:SAML_Response.jpg|centre]]
*Identity Provider (IdP)-initiated SSO
*Identity Provider (IdP)-initiated SSO
[[File:IdP_initiated_SSO.jpg|centre]]
[[File:IdP_initiated_SSO.jpg|centre]]

Revision as of 13:34, 20 December 2015

The most important industry standard for Identity Management is the SecurityAssertion Markup Language (SAML). SAML is based on the eXtensible Markup Language (XML) and enables the secure exchange of XML-based authentication messages. In conjunction with Single Sign-On (SSO) systems, SAML especially offers a standardized format for authentication tokens. Authentication and authorization data are defined in SAML Assertions.

SAML Usage

  • Single Sign-On (SSO)
  • Single Logout
  • Identity Federation

Login with SAML

  • Service-Provider (SP)-initiated SSO


Hier is the important messages (AuthnRequest and Response) of the SAML protocol in XML format:

  • Identity Provider (IdP)-initiated SSO