Will Darby 91.514 5 April 2010. What is Federated Security Example Implementations Security...

26
Federated Security and the Security Assertion Markup Language Will Darby 91.514 5 April 2010

  • date post

    19-Dec-2015

  • Category

    Documents

  • view

    220

  • download

    2

TAGS:

Transcript of Will Darby 91.514 5 April 2010. What is Federated Security Example Implementations Security...

  • Slide 1
  • Will Darby 91.514 5 April 2010
  • Slide 2
  • What is Federated Security Example Implementations Security Assertion Markup Language (SAML) Overview Alternative Solutions for the Internet
  • Slide 3
  • Slide 4
  • Slide 5
  • Slide 6
  • Slide 7
  • Slide 8
  • Slide 9
  • Slide 10
  • Slide 11
  • Web service diagram
  • Slide 12
  • Slide 13
  • Authorize users across all grids nodes Minimal changes to existing security Registry to map credentials to authority Assertions passed among servers Image from paper
  • Slide 14
  • Slide 15
  • Slide 16
  • Slide 17
  • Slide 18
  • Slide 19
  • XML Signature XML Encryption WS-Security WS-Trust
  • Slide 20
  • Slide 21
  • Slide 22
  • Slide 23
  • Slide 24
  • R.L. Morgan, S. Cantor, S. Carmody, W. Hoehn and K. Klingenstein. Federated Security: The Shibboleth Approach. EDUCAUSE Quarterly, Volume 27, Number 4, 2004. Pages 12-17. Available at: http://net.educause.edu/ir/library/pdf/EQM0442.pdf. K.D. Lewis and J.E. Lewis. Web Single Sign-On Authentication using SAML. International Journal of Computer Science Issues. Volume 2, 2009. Pages 41-48. Available at: http://www.ijcsi.org/papers/2-41-48.pdf.http://www.ijcsi.org/papers/2-41-48.pdf Security Assertion Markup Language (SAML) V2.0 Technical Overview. OASIS Security Services Technical Committee. March, 2008. Available at: http://www.oasis- open.org/committees/download.php/27819/sstc-saml-tech- overview-2.0-cd-02.pdf.http://www.oasis- open.org/committees/download.php/27819/sstc-saml-tech- overview-2.0-cd-02.pdf
  • Slide 25
  • H. Gomi, M.Hatakeyama, S.Hosono and S. Fujita. A Delegation Framework for Federated Identity Management. Proceedings of the 2005 workshop on Digital identity management. Pages 94-103. F. Pinto and C. Fernau. An Approach for Shibboleth and Grid Integration. Proceedings of the UK e-Science All Hands Conference, 2005. Available at: http://www.allhands.org.uk/2005/proceedings/papers/531. pdf. http://www.allhands.org.uk/2005/proceedings/papers/531. pdf D. Recordon and D. Reed. OpenID 2.0: A Platform for User- Centric Identity Management. Proceedings of the second ACM workshop on Digital Identity Management, 2006. Pages 11-16. E. Hammer-Lahav. The OAuth 1.0 Protocol. IETF Internet Draft. February, 2010. Available at: http://tools.ietf.org/html/draft-hammer-oauth-10. http://tools.ietf.org/html/draft-hammer-oauth-10
  • Slide 26

SAML for Web Services Interoperability with · Security Assertion Markup Language (SAML) Building Blocks Assertions: statements about a subject. This could be an authentication, attribute

SAML for Web Services Interoperability with · Security Assertion Markup Language (SAML) Building Blocks Assertions: statements about a subject. This could be an authentication, attribute

What | Why | How SAML 101 Assertion Markup Language (SAML) 101 CONTENTS Introduction What is SAML? The Use Cases The Advantages The Components The Security Echoworx Supports SAML

What | Why | How SAML 101 Assertion Markup Language (SAML) 101 CONTENTS Introduction What is SAML? The Use Cases The Advantages The Components The Security Echoworx Supports SAML

Bindings for the OASIS Security Assertion Markup Language (SAML) V2

Bindings for the OASIS Security Assertion Markup Language (SAML) V2

Fortress-Saml-Demo - · PDF file1.Spring SAML filter creates security principal based on attributes found in the SAML attribute assertion. 2.Web app parses the attributes contained

Fortress-Saml-Demo - · PDF file1.Spring SAML filter creates security principal based on attributes found in the SAML attribute assertion. 2.Web app parses the attributes contained

Security Assertion Markup Language (SAML)bultan/courses/595-W06/SAML.pdf · 3 SAML: The Big Picture •Is another XML-based Standard •Is a framework for exchanging security information

Security Assertion Markup Language (SAML)bultan/courses/595-W06/SAML.pdf · 3 SAML: The Big Picture •Is another XML-based Standard •Is a framework for exchanging security information

The Security Assertion Markup Language (SAML) …colab.cim3.net/file/work/Expedition_Workshop/2007-02-27_Identity... · The Security Assertion Markup Language (SAML) and Liberty Web

The Security Assertion Markup Language (SAML) …colab.cim3.net/file/work/Expedition_Workshop/2007-02-27_Identity... · The Security Assertion Markup Language (SAML) and Liberty Web

SAML Overview 1 Security Assertion Markup Language Tom Scavo NCSA trscavo@ncsa.uiuc.edu.

SAML Overview 1 Security Assertion Markup Language Tom Scavo NCSA [email protected].

Dynamic Identity Federation usingSecurity Assertion ...sadekf/DynamicSAML.pdfDynamic Identity Federation usingSecurity Assertion MarkupLanguage (SAML) ... Security Assertion Markup

Dynamic Identity Federation usingSecurity Assertion ...sadekf/DynamicSAML.pdfDynamic Identity Federation usingSecurity Assertion MarkupLanguage (SAML) ... Security Assertion Markup

SAML and XACML Overview - itu.int · 4 SAML Overview and History • SAML: Security Assertion Markup Language • A framework for the exchange of security-related information between

SAML and XACML Overview - itu.int · 4 SAML Overview and History • SAML: Security Assertion Markup Language • A framework for the exchange of security-related information between

SAML basics A technical introduction to the Security Assertion Markup Language Eve Maler XML Standards…

SAML basics A technical introduction to the Security Assertion Markup Language Eve Maler XML Standards…

Tuomas Aura CSE-C3400 Information security · SAML 2.0 architecture Security assertion markup language (SAML 2.0) –OASIS standard (combines ideas from SAML 1.1, Liberty Alliance

Tuomas Aura CSE-C3400 Information security · SAML 2.0 architecture Security assertion markup language (SAML 2.0) –OASIS standard (combines ideas from SAML 1.1, Liberty Alliance

SAML SSO Setup with Kerberos Authentication … This document ... Cisco Unity Connection (UCXN), and CUCM enabled in order to use Security Assertion Markup Language (SAML) Single Sign−on

SAML SSO Setup with Kerberos Authentication … This document ... Cisco Unity Connection (UCXN), and CUCM enabled in order to use Security Assertion Markup Language (SAML) Single Sign−on

Bindings for the OASIS Security Assertion Markup Language (SAML ...

Bindings for the OASIS Security Assertion Markup Language (SAML ...

Federal Identity, Credentialing, and Access Management ...xml.coverpages.org/Federal-ICAMSC-SAML-20-Profile... · Federal Identity, Credentialing, and Access Management Security Assertion

Federal Identity, Credentialing, and Access Management ...xml.coverpages.org/Federal-ICAMSC-SAML-20-Profile... · Federal Identity, Credentialing, and Access Management Security Assertion

Implementation of a Single Sign On solution using Security ...repositorio-aberto.up.pt/bitstream/10216/66746/1/000136698.pdf · with the Security Assertion Markup Language (SAML)

Implementation of a Single Sign On solution using Security ...repositorio-aberto.up.pt/bitstream/10216/66746/1/000136698.pdf · with the Security Assertion Markup Language (SAML)

Single Sign-On Implementation Guide - Login | Salesforce · PDF fileSingle Sign-On Implementation Guide Salesforce, Spring ’18 ... SAML Assertion Validator to validate the SAML assertion.

Single Sign-On Implementation Guide - Login | Salesforce · PDF fileSingle Sign-On Implementation Guide Salesforce, Spring ’18 ... SAML Assertion Validator to validate the SAML assertion.

SAML Draft Template…  · Web viewThe WS-Security Profile of the OASIS Security Assertion Markup Language (SAML)

SAML Draft Template…  · Web viewThe WS-Security Profile of the OASIS Security Assertion Markup Language (SAML)

FIPS 201 Update - CSRC · SAML Assertion Assertion OIDC ID Token Assertion (Probably) Assertion PIV Business Requirements Meeting 16. In other words: Derived PIV (and other PKI) used

FIPS 201 Update - CSRC · SAML Assertion Assertion OIDC ID Token Assertion (Probably) Assertion PIV Business Requirements Meeting 16. In other words: Derived PIV (and other PKI) used

Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML… · 1 Introduction This specification defines the syntax and semantics for Security Assertion Markup

Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML… · 1 Introduction This specification defines the syntax and semantics for Security Assertion Markup

Assertions and Protocols for the OASIS Security …docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf1 Introduction The Security Assertion Markup Language (SAML) defines the

Assertions and Protocols for the OASIS Security …docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf1 Introduction The Security Assertion Markup Language (SAML) defines the