Single sign on
-
Upload
rob-fitzgibbon -
Category
Technology
-
view
2.273 -
download
0
description
Transcript of Single sign on
1
SSO Presentation Presentation Practice Session
May 14, 2010Prepared by: Rob Fitzgibbon
2
What is SSO?
• The Ship’s Security Officer?• Standards Setting Organization?• Sulfolobus Solfataricus?• Society of Surgical Oncology?• Syracuse Symphony Orchestra?
3
Guess!(charades session)
4
I know as much about SSO as I do about
5
But here goesWant to sound like
May end up sounding like
6
SSO, Defined (geekspeak)
Lots of really important boxes and ovals with acronyms
7
SSO, Defined (again)
You
ÏÐ
Email program
Benefits/HR info
Corporate intranet
Client Extranet
Your one SSO
passcode
The firewall & SSO authentication
system
Enterprise Applications
Your computer
8
SSO, Defined (and again)the key metaphor
Old School SSO Equivalent
9
SSO, Defined (yet again)the backstage pass metaphor
10
SSO, Defined (one last time):the utensil metaphor
~
11
So Why learn about SSO?
12
Will it help you get the girl?
No.
13
Will it make you seem brilliant at the cocktail party?
Nope.
14
Will it turn this client
15
Into this client?
Maybe.
16
But it might help you appreciate the complexity of the client’s infrastructure
17
Why am I talking about SSO?
18
The SSO Upside
19
The SSO Downside
20
Key SSO Features
21
With SSO, there’s lots important terminology to remember!
22
Authentication
23
Directory
24
Encryption Key
25
Identity Management
26
Protocol
27
Session
28
Strategy
29
Workflow
30
Feign Knowledge with Important Sounding Acronyms
31
• AAA = Authentication, Authorization & Accounting• AD = Active Directory• CAS = Central Authentication Service• EISA = Enterprise Information Security Architecture• ESSO = Enterprise Single Sign On• HTTPS = HyperText Transfer Protocol, Secure• IDM = Identity Management• LDAP = Lightweight Directory Access Protocol• OTP = One Time Password• PII = Personal Identifying Information• RADIUS = Remote Authentication Dial In User Service• SAML = Security Assertion Markup Language• SSL = Secure Socket Layer• SSOSrv = Microsoft Single-Sign On Service• TCP/IP = Transmission Control Protocol/Internet Protocol• VPN = Virtual Private Network
32
In case of emergency, switch subject
33
SSO really challenges interface designers to develop perhaps the most complex customer facing interactions of their entire career:
34
Login
Password
Go
35
LoginPassword
Go
Behind that interface lies an array of network systems…
36
LoginPassword
Go
(Savage, merciless network systems)
37
What types of clients use SSO?
38
Who provides SSO Solutions?
39
Further Reading
40
Thank You!