[WEB SECURITY] Social login / federated identity

Martin O'Neal martin.oneal at corsaire.com
Sun Feb 24 19:14:37 EST 2013


> I'm going to have to argue in favor of 
> federated identity but to be clear only 
> for WS-Federation.

This isn't a matter of technology though, you're missing the point.

SSO as a concept is a good one, within the same security domain. Such as
inside a cluster of applications from a single vendor.

However, handing your auth over to facebook isn't the same thing at all.


Martin...





More information about the websecurity mailing list