single sign on

1

SSO Presentation Presentation Practice Session

May 14, 2010Prepared by: Rob Fitzgibbon

2

What is SSO?

• The Ship’s Security Officer?• Standards Setting Organization?• Sulfolobus Solfataricus?• Society of Surgical Oncology?• Syracuse Symphony Orchestra?

3

Guess!(charades session)

4

I know as much about SSO as I do about

5

But here goesWant to sound like

May end up sounding like

6

SSO, Defined (geekspeak)

Lots of really important boxes and ovals with acronyms

7

SSO, Defined (again)

You

ÏÐ

Email program

Benefits/HR info

Corporate intranet

Client Extranet

Your one SSO

passcode

The firewall & SSO authentication

system

Enterprise Applications

Your computer

8

SSO, Defined (and again)the key metaphor

Old School SSO Equivalent

9

SSO, Defined (yet again)the backstage pass metaphor

10

SSO, Defined (one last time):the utensil metaphor

~

11

So Why learn about SSO?

12

Will it help you get the girl?

No.

13

Will it make you seem brilliant at the cocktail party?

Nope.

14

Will it turn this client

15

Into this client?

Maybe.

16

But it might help you appreciate the complexity of the client’s infrastructure

17

Why am I talking about SSO?

18

The SSO Upside

19

The SSO Downside

20

Key SSO Features

21

With SSO, there’s lots important terminology to remember!

22

Authentication

23

Directory

24

Encryption Key

25

Identity Management

26

Protocol

27

Session

28

Strategy

29

Workflow

30

Feign Knowledge with Important Sounding Acronyms

31

• AAA = Authentication, Authorization & Accounting• AD = Active Directory• CAS = Central Authentication Service• EISA = Enterprise Information Security Architecture• ESSO = Enterprise Single Sign On• HTTPS = HyperText Transfer Protocol, Secure• IDM = Identity Management• LDAP = Lightweight Directory Access Protocol• OTP = One Time Password• PII = Personal Identifying Information• RADIUS = Remote Authentication Dial In User Service• SAML = Security Assertion Markup Language• SSL = Secure Socket Layer• SSOSrv = Microsoft Single-Sign On Service• TCP/IP = Transmission Control Protocol/Internet Protocol• VPN = Virtual Private Network

32

In case of emergency, switch subject

33

SSO really challenges interface designers to develop perhaps the most complex customer facing interactions of their entire career:

34

Login

Password

Go

35

LoginPassword

Go

Behind that interface lies an array of network systems…

36

LoginPassword

Go

(Savage, merciless network systems)

37

What types of clients use SSO?

38

Who provides SSO Solutions?

39

Further Reading

40

Thank You!