Skip to main content
SpringerLink
Log in
SpringerLink
Log in

Web Single Sign On and SAML

  • Reference work entry
Encyclopedia of Cryptography and Security

  • 349 Accesses

Synonyms

Web initial authentication; Web initial sign on; Web SSO and security assertion markup language

Related Concepts

Access Control; Authentication; Identity Management

Definition

Web Single Sign On consists in authenticating once and being able to accede to web services for which the user has an authorization without having to manage multiple authentication/passwords.

SAML is an OASIS XML-based standard used to exchange authentication and authorization information between different security domains.

Background

End users are often seen as a major vulnerability of IT access control systems [1]: as they have to memorize different passwords associated to different systems, they often use easy-to-memorize passwords and share a same password to accede to different systems so that the access control performance is reduced. Moreover, as they can have only a visual checking of the interface of a system to decide if they can trust it or not, other vulnerabilities as phishing attackscan...

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 799.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Hardcover Book
USD 949.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Recommended Reading

  1. Bertino E, Martino L, Paci F, Squicciarini A (2010) Security for web services and service-oriented architectures. Springer, Berlin, ISBN 978-3-540-87741-7

    Google Scholar 

  2. Open Group. Single sign on specification. Available at http://www.opengroup.org/security/sso/

  3. OASIS (2005) SAML V2.0 executive overview. Available at http://www.oasis-open.org/committees/download.php/13525/sstc-saml-exec-overview-2.0-cd-01-2col.pdf

  4. OASIS (2005) SAML V2.0 technical overview. Available at http://www.oasis-open.org/committees/download.php/27819/sstc-saml-tech-overview-2.0-cd-02.pdf

  5. OnLine community for SAML OASIS Standard. http://saml.xml.org/saml-specifications

  6. Williamson G, Yip D, Sharoni I, Spaulding K (2009) Identity management: a primer. MC Press online, Lewisville, ISBN 978158347-093-0

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. LIESP, INSA de Lyon, 69621, Villeurbanne, France

    Frdrique Biennier Prof.

Authors
  1. Frdrique Biennier Prof.
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Mathematics and Computing Science, Eindhoven University of Technology, 5600 MB, Eindhoven, The Netherlands

    Henk C. A. van Tilborg

  2. Center for Secure Information Systems, George Mason University, Fairfax, VA, 22030-4422, USA

    Sushil Jajodia

Rights and permissions

Reprints and permissions

Copyright information

© 2011 Springer Science+Business Media, LLC

About this entry

Cite this entry

Biennier, F. (2011). Web Single Sign On and SAML. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_906

Download citation

Publish with us

Policies and ethics

Search

Navigation