Nell’iperspazio con Rocket: il Framework Web di Rust!
Single sign on - benefits, challenges and case study : iFour consultancy
1. Single Sign On (SSO)
http://www.ifour-consultancy.com
Benefits, challenges and case study
2. Definition
• Single sign-on (SSO)is a session/user authentication process that
permits a user to enter one username and password in order to
access multiple applications. The process authenticates the user for
all the applications they have been given rights to and eliminates
further prompts when they switch applications during a particular
session.
3. Types of SSO
• Holy Grail
• Enterprise SSO
• Synchronization SSO
• Web SSO
4. HOLY GRAIL
ACTIVE DIR
UNIX
LINUX
MAC
JAVA
SAP
• One identity gives you a single login.
• That single login to single directory gives you seamless access to all the applications.
• It is the most efficient ,secure and compliant way to do SSO.
5. ENTERPRISE
ACTIVE DIR LOGIN
AUTOMATION
DB2
ORACLE
• Often also called as login automation.
• The end users login once, but behind the scenes the automation tool logs in to all the applications they
need
• The user has convenience but the IT staff still has to manage all the systems login, cause actual login still
happens to all the systems.
18. Who Uses Single Sign On ?
All trademarks, product names, and company names and logos appearing on this presentation are the property of their respective owners.
19. Drawbacks
• “Keys to the Castle”: As single sign-
on provides access to many resources
once the user is initially authenticated
it increases the negative impact in
case the credentials are available to
other persons and misused.
• Single point of failure
20. • Therefore, single sign-on requires an
increased focus on the protection of the
user credentials, and should ideally be
combined with strong authentication
methods
• Advance + Combined Methods
• smart cards
• one-time password tokens
• Fingerprint Scanner and Keystroke Dynamics
• Strict policies and standards
• Added cost
Drawbacks
Something
You Are
Something
You Have
Something
You Know
21. Drawbacks
• Single sign-on also makes the authentication
systems highly critical; a loss of their
availability can result in denial of access to all
systems unified under the SSO. SSO can thus
be undesirable for systems to which access
must be guaranteed at all times, such as
security or plant-floor systems.
SSO