more on sirris.be
back to overview
Federation

Identification, Authentication and Authorisation

Federation

Question

How to authenticate users without the burden of setting up and securely maintaining a user database?

Context

Management of the user identities is often a burdensome task and in SaaS applications it often consumes a lot of time if done right.

Solution

Reusing existing user sign-in and sign-on features developed and maintained by third parties is an effective way to outsource authentication tasks to a third party. While the technical solutions employed by the third parties are often state-of-the-art, such outsourcing bears inevitable risks of privacy protection of the users, especially when the federated entities are social networks.

References

Single sign-on - en.wikipedia.org
OpenID - openid.net

Identification, Authentication and Authorisation Navigation

Multi-Factor Authentication

Multi-Factor Authentication
Access token

Access token
Federation

Federation
Mutual Authentication

Mutual Authentication
Secure User Onboarding

Secure User Onboarding
Per-Request Authentication

Per-Request Authentication
Identity and Access Manager

Identity and Access Manager
Access Control Clearance

Access Control Clearance