Saml vs Oauth : Which one should I use?

anilsaldhana 22,101 views 32 slides Dec 14, 2013
Slide 1
Slide 1 of 32
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21
Slide 22
22
Slide 23
23
Slide 24
24
Slide 25
25
Slide 26
26
Slide 27
27
Slide 28
28
Slide 29
29
Slide 30
30
Slide 31
31
Slide 32
32

About This Presentation

No description available for this slideshow.

Size: 86.01 KB
Language: en
Added: Dec 14, 2013
Slides: 32 pages

Slide Content

SAML vs OAuth Anil Saldhana [email protected] http://anil-identity.blogspot.com Reference: http://architects.dzone.com/articles/saml-versus-oauth-which-one

Informal Definitions

Informal Definitions SAML (Security Assertion Markup Language) is an umbrella standard that encompasses profiles, bindings and constructs to achieve Single Sign On (SSO), Federation and Identity Management.

Informal Definitions OAuth (Open Authorization) is a standard for authorization of resources. It does not deal with authentication. Look for OpenID Connect for Authentication.

Formal Definitions

Formal Definitions Security Assertion Markup Language is an XML-based open standard data format for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider. From Wikipedia Page on SAML

Formal Definitions OAuth : An open protocol to allow secure authorization in a simple and standard method from web, mobile and desktop applications. From OAuth.net

Differences

Token or Message Format

Token Or Message Format SAML deals with XML as the data construct or token format. OAuth tokens can be binary, JSON or SAML as explained in OAuth Bearer Tokens ( https://docs.jboss.org/author/display/PLINK/OAuth+Bearer+Tokens ).

Transport

Transport SAML has Bindings that use HTTP such as HTTP POST Binding, HTTP REDIRECT Binding etc. But there is no restriction on the transport format. You can use SOAP or JMS or any transport you want to use to send SAML tokens or messages.

Transport OAuth uses HTTP exclusively.

Scope

Scope Even though SAML was designed to be applicable openly, it is typically used in Enterprise SSO scenarios within an enterprise or enterprise to partner or enterprise to cloud scenarios.

Scope OAuth has been designed for use with applications on the internet, primarily for delegated authorization of internet resources. OAuth is designed for Internet Scale .

Which Versions Should Be Used?

Versions SAML v2.0 OAuth v2.0

Use Cases

Use Cases If your use case involves SSO (when at least one actor or partner is an enterprise) then use SAML.

Use Cases If your use case involves providing access (temporarily or permanent) to resources (such as accounts, pictures, files etc.) then use OAuth.

Use Cases If your use case involves providing access to a partner or customer application to your portal then use SAML.

Use Cases If your use case requires a centralized identity source then use SAML. You can also use an Open ID Provider as a central Identity Provider under the OpenID Connect Specification (under development).

Use Cases If your use case involves mobile devices then use OAuth (with some form of bearer tokens).

Using SAML with OAuth

SAML With OAuth U se SAML for authentication. Use SAML token/ assertion as the OAuth bearer token in the HTTP bearer header to access protected resources.

Replace SAML with OAuth

Replace SAML With OAuth U se JWT for authentication. Use JWT as the OAuth bearer token in the HTTP bearer header to access protected resources.

References

References PicketLink : http://www.picketlink.org IETF OAuth2 ( http://datatracker.ietf.org/doc/rfc6749 / ) OpenID Connect http://openid.net/specs/openid-connect-basic-1_0-22. html

Full Article http://architects.dzone.com/articles/saml-versus-oauth-which-one

Contact Me [email protected]
Tags
saml anilsaldhana oauth saml_oauth
Categories
General
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 22,101
  • Slides 32
  • Favorites 34
  • Age 4372 days
Related Slideshows
Pray For The Peace Of Jerusalem and You Will Prosper 22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
32 views
Don_t_Waste_Your_Life_God.....powerpoint 26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
35 views
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf 31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
32 views
Fertility awareness methods for women in the society 14
Fertility awareness methods for women in the society
Isaiah47
30 views
Chapter 5 Arithmetic Functions Computer Organisation and Architecture 35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
28 views
syakira bhasa inggris (1) (1).pptx....... 5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
30 views
View More in This Category