Gourt > Computers > Security > Authentication > Single Sign On
Single sign-on (SSO) is a specialized form of software authentication that enables a user to authenticate once and gain access to the resources of multiple software systems.
There are at least five major types of SSO or reduced sign-on systems in common use at the time of this writing (2005):
- CoSign, an open-source project originally designed to provide the University of Michigan with a secure single sign-on web authentication system. CoSign authenticates users on the web server and then provides an environment variable for the users' name. When the users access a part of the site that requires authentication, the presence of that variable allows access without having to sign-on again. Cosign is part of the National Science Foundation Middleware Initiative (NMI) software release.
- Enterprise single sign-on (E-SSO), also called legacy single sign-on, after primary user authentication, intercepts login prompts presented by secondary applications, and automatically fills in fields such as a login ID or password. E-SSO systems allow for interoperability with applications that are unable to externalize user authentication, essentially through "screen scraping."
- Web single sign-on (Web-SSO), also called Web access management (Web-AM), works strictly with applications and resources accessed with a web browser. Access to web resources is intercepted, either using a web proxy server or by installing a component on each targeted web server. Unauthenticated users who attempt to access a resource are diverted to an authentication service, and returned only after a successful sign-on. Cookies are most often used to track user authentication state, and the Web-SSO infrastructure extracts user identification information from these cookies, passing it into each web resource.
- Kerberos is a popular mechanism for applications to externalize authentication entirely. Users sign into the Kerberos server, and are issued a ticket, which their client software presents to servers that they attempt to access. Kerberos is available on Unix, Windows and mainframe platforms, but requires extensive modification of client/server application code, and is consequently not used by many legacy applications.
- Federation is a new approach, also for web applications, which uses standards-based protocols to enable one application to assert the identity of a user to another, thereby avoiding the need for redundant authentication. Standards to support federation include SAML and WS-Federation *.
- Light-Weight Identity and OpenID, under the YADIS umbrella, offer distributed and decentralized SSO, where identity is tied to an easily-processed URL which can be verified by any server using one of the participating protocols.
Dell Consumer Investments Hinder Quarterly Earnings
Thu, 28 Aug 2008 19:34:35 -0400
Dell invested heavily to expand its nonenterprise market share in Europe and in various IT sectors and may have overextended itself in trying to set up retail outlets and woo consumers over to its laptops, desktops and peripherals. Dell revealed in its quarterly report that its fiscal second-quarter earnings fell a full 17 percent from a year ago. - Dell, in its zeal to expand its nonenterprise market share in Europe and in various IT sectors, may have expended too much marketing energy and cash trying to set up retail outlets and woo consumers over to its laptops, desktops and peripherals. Dell revealed in its quarterly report on Aug. ...
Internet Explorer 8 Beta 2 Privacy Features Win User Support
Thu, 28 Aug 2008 19:17:43 -0400
Microsoft Internet Explorer 8 Beta 2 includes a number of security and privacy features that allow it to keep pace with competing browsers such as Firefox and Safari. Many users of Internet Explorer seem to appreciate Microsoft's privacy protections, which are designed to protect users' browsing information. The most talked-about features are InPrivate Browsing and InPrivate Blocking. - Much has been made of the new security features in Microsoft Internet Explorer 8 Beta 2. As users and testers bang on the beta version of the browser, Microsoft appears to have gotten a lot right when it comes to privacy. In the Beta 2 version of Internet Explorer 8, Microsoft has added a num...
HP Wins Inkjet Printer Cartridge Patent Suit Against Pelikan Hardcopy
Thu, 28 Aug 2008 18:26:23 -0400
Hewlett-Packard says a German court has found Pelikan Hardcopy to be in violation of laws on unfair competition. Earlier in August, the court ordered Pelikan, a provider of printing supplies, to stop importing and distributing inkjet cartridges that infringed on HP's patents. - NEW YORK (Reuters) Hewlett-Packard Co said on Thursday a German court has found Pelikan Hardcopy to be in violation of laws on unfair competition. Earlier this month, the court ordered Pelikan, a provider of printing supplies, to stop importing and distributing inkjet cartridges that infringed on...
KDE Momentum Continues with New Updates, Features
Thu, 28 Aug 2008 18:12:58 -0400
The KDE community has released KDE 3.5.10, a maintenance release for the KDE 3.5 series of the popular Linux desktop. Meanwhile, KDE developers continue work on bringing service-oriented computing to KDE, as well as a new Amarok media player and enhanced Qt support. KDE also has adopted the Free Software Foundation Europe's Fiduciary License Agreement. - The KDE Community has announced the availability of KDE 3.5.10, a maintenance release of KDE, the free desktop for GNU Linux and other Unix flavors. The KDE desktop is the system of choice for a broad array of Linux users. And although the KDE community released KDE 4.1 at the end of July, K...
ITC Trade Panel Agrees to Take Up Microsoft Patent Case Against Primax
Thu, 28 Aug 2008 18:01:25 -0400
Microsoft accused Primax Electronics of Taiwan of infringing on its patents for peripheral devices like keyboards and mice. The International Trade Commission has agreed to hear Microsoft's case against Primax Electronics. The complainant requests that the ITC issue an exclusion order and a cease and desist order. - WASHINGTON (Reuters) A trade panel has agreed to investigate Microsoft Corp's accusation that Primax Electronics of Taiwan has infringed its patents for peripheral devices like keyboards and mice, the International Trade Commission said on Thursday. The complaint was filed on July 30, 2008. The ...
Dell Earnings Disappoint, Tech Spending Seen Weak
Thu, 28 Aug 2008 17:55:01 -0400
Dell, the top maker of desktop, notebook and laptop computers, posts a surprisingly steep drop in quarterly earnings and says companies around the world are cutting back on technology spending, sending its shares tumbling and sparking fears of weakness in the whole tech sector. Dell's outlook is for slower spending especially in Asia and Western Europe. Dell has cut 8,500 jobs so far based on a plan to slash 8,900, and at least one analyst says the results could presage further cutbacks. - SAN FRANCISCO (Reuters) Dell Inc. posted a surprisingly steep drop in quarterly earnings and said companies around the world are cutting back on technology spending, sending its shares tumbling and sparking fears of weakness in the whole tech sector. quot;They're saying lower IT (information te...
The Seattle Times: Business & Technology
Boeing raises its contract offer to Machinists
Thu, 28 Aug 2008 00:00:00 -0700
Boeing delivered its "best-and-final" offer to Machinists union officials, raising its proposed wage increase to 11 percent over three years.
Jobs with real authority: working on Microsoft's spell-checker
Thu, 28 Aug 2008 13:06:05 -0700
In the last two years, few names have become as recognizable as Barack Obama's, a rise that continues tonight as he accepts the Democratic...
Fannie Mae replaces 3 top managers
Wed, 27 Aug 2008 22:24:30 -0700
Fannie Mae Chief Executive Officer Daniel Mudd replaced three top managers at the beleaguered mortgage-finance provider as the company struggles...
NYT > Technology
AT&T’s Rivals Are Happy to Attack Over iPhone’s Network Woes
Fri, 29 Aug 2008 04:13:33 -0000
The debut of Apple’s iPhone 3G cellphones has been a public relations headache for AT&T, after complaints of dropped calls and poor network connections.
Bits: Does Silicon Valley Face an Innovation Crisis?
Fri, 29 Aug 2008 03:33:16 -0000
Judy Estrin, a serial technology entrepreneur, says in a new book that Silicon Valley — and the country — are facing a crisis of innovation.
Results at Novell Are Better Than Expected
Fri, 29 Aug 2008 03:08:42 -0000
The business software maker Novell posted a quarterly loss but its results were better than expected, helped by an increase in sales of Linux software.
CNN.com - Technology
Web surfing without leaving a trace
Thu, 28 Aug 2008 12:22:18 -0400
Read full story for latest details.
'Junk raft' ends dangerous voyage
Thu, 28 Aug 2008 13:58:07 -0400
Read full story for latest details.
Dead Sea Scrolls go digital
Wed, 27 Aug 2008 16:24:41 -0400
More than 2,000 years after they were written, the Dead Sea Scrolls are getting high-tech treatment as part of an effort to better preserve the ancient texts and let more people see them than ever before.
NPR Topics: Technology
Obama Uses Text Messaging With Eye On Nov. 4
Thu, 28 Aug 2008 16:22:00 -0400
The Obama campaign has used text messaging to communicate with its supporters. Andrew Rasiej, founder of TechPresident, a blog that focuses on technology and the presidential campaigns, says the cell phone numbers can be used to get out the vote on Nov. 4.
'Marketplace' Report: Relief For Porn Addicts
Thu, 28 Aug 2008 13:00:00 -0400
In the newest test version of Microsoft's forthcoming Internet Explorer, consumers will have the option to surf without a "history." There are benefits to this feature beyond just prolonging marriages.
FCC Spreads The Word On Digital TV Switchover
Mon, 25 Aug 2008 10:04:00 -0400
In February, people who use an antenna to get television signals will have to begin using conversion boxes to watch their favorite programs. The Federal Communications Commission will start an 80-city tour this week to talk about the changes.
BBC News | Technology | UK Edition
Hackers prepare supermarket sweep
Thu, 28 Aug 2008 14:06:37 -0000
Cyber thieves are hatching a plan to steal US funds through British supermarkets, the BBC learns.
McKinnon loses extradition appeal
Thu, 28 Aug 2008 11:31:36 -0000
A Briton accused of hacking into secret Nasa military computers loses his appeal against extradition to the US.
Internet Explorer gets makeover
Thu, 28 Aug 2008 14:01:45 -0000
The next version of Internet Explorer has features to make browsing and searching easier and more secure.
Reuters Video: Technology
Reuters Technology Week
Thu, 28 Aug 2008 17:42:18 -0400
Aug. 28 - The latest in food-fuel and new technology helps decipher the Dead Sea scrolls.
Seals star on own web site
Tue, 26 Aug 2008 14:37:09 -0400
Aug. 26 - New technology is giving scientists and wildlife fans the chance to observe one of Lake Baikal's shyest inhabitants, the 'nerpa' seal as it is known locally.
Robotic suit helps paraplegics walk
Tue, 26 Aug 2008 12:53:35 -0400
Aug 26 - Israeli company develops remote-controlled suit that enables paraplegics to walk.
AP Top Technology News At 6:22 p.m. EDT
Even critics give Apple a pass on iPhone 3G woes
By JESSICA MINTZ Thu, 28 Aug 2008 20:29:18 -0000
First an iPhone price cut left early buyers feeling foolish, and then came reports that some iPods were spitting sparks. Now the new iPhone 3G has been marred by bugs, spotty service, disappearing programs for the device and a veil of secrecy over software developers trying to broaden its appeal....
Small GPS devices help prosecutors win convictions
By MITCH STACY Thu, 28 Aug 2008 20:16:55 -0000
Like millions of motorists, Eric Hanson used a GPS unit in his Chevrolet TrailBlazer to find his way around. He probably didn't expect that prosecutors would eventually use it too - to help convict him of killing four family members....
Dell 2Q profit drops 17 percent and stock plunges
By JESSICA MINTZ Fri, 29 Aug 2008 03:39:16 -0000
Slashing computer prices helped Dell Inc. boost sales in its fiscal second quarter, but the No. 2 PC maker's bottom line took a hit when efforts to cut costs failed to make up the difference....
CNET News.com
Vote for me, Obama says, through text messages
Thu, 28 Aug 2008 16:53:00 -0700
Delegates and other convention goers are asked to show support for Barack Obama by sending text messages, which will be scored based on what state they're from.
IE 8 Beta 2 not without its faults
Thu, 28 Aug 2008 16:53:00 -0700
While hiccups are expected from beta software, some of the affected services are Microsoft's own.
Whoops! Obama's VP text-messaging idea didn't work out so well
Thu, 28 Aug 2008 16:50:00 -0700
Keynote Systems reports that 40 percent to 50 percent of the text messages sent by the Obama campaign regarding the candidate's VP choice were late or never received.
Cafesoft - Web access management software with single sign-on authentication. Product details, white papers, on-line support pages and contact details.
Meta Description: [ Web single sign-on (SSO) for Apache, Microsoft IIS, BEA WebLogic,
IBM WebSphere, JBoss, Oracle 9iAS, Pramati, and Tomcat web and J2EE application servers. Cams is
secure, flexible, and affordable web single sign-on security software that protects static documents
and dynamic JSP/servlet, AS... ]
Computer Associates - Makers of eTrust Single Sign-On. Automates access to authorized Web services and enterprise applications.
Evidian - Makers of AccessMaster and PortalXpert, providing desktop and internet application access control. Supports LDAP directories, centralized auditing, SSL encryption, and group passwords. Discussions of rationale and technical issues.
Meta Description: [ Evidian - identity and access management software (including virtual identity manager) for provisioning, access control and single sign-on / SSO ]
i3sp - Developers of SSO-52, a solution for securely managing user access to e-business web sites - providing authentication services to multiple web domains in a seamless fashion. Web users are required to log in only once. Site includes a demonstration.
Meta Description: [ SSO-52 Web single sign on is a solution to securely manage user access to e-business web
sites. i3SP is a supplier of third generation internet technologies, designed to
realise the potential of business to business e-commerce over the internet. ]
MemberProtect - Provides security, account aggregation, member profiling, username consolidation. Integrates with existing data processing system, including CRM, ERP, database, banking and inventory applications.
Meta Description: [ MemberProtect is the first comprehensive data security and member profiling tool built specifically for organizations providing highly secure on-line access to multiple services., Inetsolution, Inc. develops highly secure web sites, custom applications and technology solutions to help companies a... ]
Nenix Corporation - Single sign-on web access management software. Product details, download evaluation copy, news and contact details.
Novell Single Sign-On - Site describes Novell's solution for managing access in a multi-platform environment. Includes a downloadable tool to measure return on investment.
Meta Description: [ Novell SecureLogin is the Novell Security and Identity authentication solution that provides password administration & single sign-on access. ]
Okiok - Cross-platform solution. Site includes products and services listings, and corporate information.
Meta Description: [ OKIOK's mission is to define, develop and bring to market enterprise security solutions that address the fundamental issues in today's evolving technological landscape. Product like Single Sign-on, Identity Management, Encryption and Enterprise Security Solutions ]
OpenID: An Actually Distributed Identity System - An open and decentralized identity system, designed not to crumble if one company turns evil or goes out of business
PassGo SSO - Authentication, central authentication and password synchronization products. Site includes white papers, case studies and documentation.
Passlogix - Makers of v-GO SSO, supporting any Windows, Web, proprietary and host-based application. Includes detailed information on how product operates.
Protocom - Security software development company. Enterprise focus. Single sign on, credential management and strong authentication for retail, banking, healthcare and other sectors.
Meta Description: [ Protocom Development Systems provides industry leading password management and single sign on solutions. ]
SafeStone Technologies - Producers of AxcessIT password synchronization technology. Controls system login, extranet and VPN access and web connections.
Meta Description: [ Safestone Technologies develops and markets user provisioning and administration solutions for complex computing environments such as IBM iSeries, Unix and Windows/NT ]
SESAME - SESAME (Secure European System for Applications in a Multi-vendor Environment) is a distributed authentication and access control system. Site includes detailed information on this research and development project.
Single Sign-On Deployment Guide - A guide to deploying from Netscape, of interest to users of other technologies as well.
| com: 1. I'mnot going to tell you you need to sign up now before it is to late and everyone else signs up. 2 ... | |
| Next Video | |
