Collaborate Disseminate
The concept of passwordless authentication has been gathering steam. Gartner anticipates that by 2022, 60% of large and global enterprises will implement some sort of passwordless solution to enhance security. While these emerging authentication tools … Continue reading Why passwordless is not always passwordless
From CWE598 sensitive information should be sent using POST request. Why CAS protocol sends the ticket value using a GET request as illustrated below? Should it be considered safe in this scenario? From the image:
"Set the session coo… Continue reading CAS Protocol ticket sent via GET request
I want to build an SPA with ASP.NET Core (Blazor server side) which some IFrames redirecting to other applications. In this example I have f.e. the SPA, Grafana to show graphs and Node-Red, but there could be more in the future. To create … Continue reading Implement an SPA with IFrames, but with Single Sign-on
I have an application that uses SSO and needs to contact an LDAP server to retrieve whether the user exists or not. For that, I thought to use SAML as a means to link the SSO token user information with the LDAP user. However, I don’t real… Continue reading SSO, SAML and LDAP question
When a person reuses the same password across multiple accounts, one account’s exposure puts all the others at risk. To prevent this, cybersecurity awareness programs must emphasize the importance of passwords: how to create them, use them, and how to … Continue reading Password reuse defeats the purpose of passwords
I manage a set of service providers (SP1, SP2, SP3, etc), and we currently have this SAML SSO flow working where the SP causes a POST submit to the SAML IDP with an XML SAML request which includes an SP SAML Endpoint. The SAML IDP returns … Continue reading SAML/oauth2/openid-connect login via proxy as another user
I am wondering, is using certificates with OpenVPN gives any advantages vs. using SSO with MFA to authenticate to OpenVPN?
Are there any disadvantages for combining both?
Ya que el trabajo remoto se está convirtiendo en la norma, las políticas tradicionales para el control del acceso que rigen cómo se otorga el acceso y bajo qué circunstancias, tienen una necesidad de una renovación inevitable.
Implementar políticas de… Continue reading Use el acceso condicional para mejorar la postura de seguridad de su fuerza de trabajo remota
Passwords are a source of many security risks, with recent LastPass research revealing IT teams are spending five hours a week on average dealing with password-related issues. A passwordless login experience, on the other hand, provides employees with … Continue reading Imagining a professional life without passwords
I’m new to security concepts. I am studying how SAML works and I’m confused about how IDP sends SAML assertion to SP. I searched on the internet and I found out two scenarios are possible.
First is when you authenticate to an IDP, the IDP … Continue reading How an IDP sends SAML assertion to an SP?