Word of the Day: single sign-on (SSO)

Word of the Day Daily updates on the latest technology terms | June 6, 2019 single sign-on (SSO) Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials (such as name and password) to access multiple applications. In a basic web SSO service, an agent module on the application server retrieves the specific authentication credentials for an individual user from a dedicated SSO policy server, while authenticating the user against a user repository such as a lightweight directory access protocol (LDAP) directory. The service authenticates the end user for all the applications the user has been given rights to and eliminates further prompts when the user switches applications during the same session. Google, LinkedIn, Twitter and Facebook all offer popular SSO services that allow an end user to log into a third-party application with their social media authentication credentials. Although social single sign-on is a convenience to users, it can present security risks because it creates a single point of failure that can be exploited by attackers. Many security professionals recommend that end users refrain from using social SSO services altogether, because once an attacker gains control over a user's SSO credentials, they will be able to access all other applications that use the same credentials. Apple recently unveiled its own single sign-on service and is positioning iit as a more private alternative to the SSO options provided by Google, Facebook, LinkedIn and Twitter. The new offering, which will be called Sign In with Apple, is expected to limit what data third-party services can access. Apple's single sign-on (SSO) will also enhance security by requiring users to use two-factor authentication on all Apple ID accounts to support integration with Face ID and Touch ID on iOS devices. Quote of the Day "SSO technologies are popular because they improve productivity and reduce the possibility that employees will use easy-to-crack passwords." - Rick Krohn Trending Terms LDAP Kerberos SAML identity governance two-factor authentication multifactor authentication Learning Center Apple single sign-on option promises privacy for users The newly announced Apple single sign-on service is positioned as a more privacy-focused alternative to other social SSO options from Google and Facebook. But experts are unsure how well it will do in enterprises. How does a SAML vulnerability affect single sign-on systems? A SAML vulnerability enables attackers to bypass SSO systems from five vendors, though the issue lies in the implementation and not the protocol itself. Learn how it works and how to defend against it. What to look for in healthcare enterprise SSO technologies In this buyer's guide, healthcare organizations preparing to purchase SSO technologies can read bottom-line suggestions from an expert. New SAML vulnerability enables abuse of single sign-on A newly discovered SAML vulnerability affecting several identity providers and open source libraries allows attackers to fool SSO systems. Benefits of single sign-on in healthcare Medical professionals troubled by remembering passwords for different systems and applications would appreciate the benefits of single sign-on platforms. Quiz Yourself The credit union website uses two-factor authentication to protect _____ members. a. their b. its Answer Stay in Touch For feedback about any of our definitions or to suggest a new definition, please contact me at: mrouse@techtarget.com Visit the Word of the Day Archives and catch up on what you've missed! FOLLOW US About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Whatis.com, click here. Please note, this will not affect any other subscriptions you have signed up for. TechTarget, Whatis, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2018 TechTarget. All rights reserved.