OAuth, SAML and OpenID Connect are the main identity federation protocols in use today. Yet many security architects find it difficult to articulate the differences between them. Front-Channel, Back-Channel, Assertion, JWT, Claims, Attributes, IDP, SP, OP, RP – there's a lot of jargon out there and some of it seems to overlap. This compare/contrast session will help you understand the differences!

Many application security professionals are making important decisions about which identity federation protocol to use for single sign-on for their next-generation application platform. There has been a lot of innovation in the identity federation space over the past few years, and it's hard to keep up. It's really helpful to Security architects can be presented with a summary of what has remained the same (or just renamed), what is different and what is new. No assumptions are made about previous expertise. Each protocol is given a summary introduction with references to the most commonly used parts of the standard and the parts that are esoteric. The security level of an application is affected depending on the protocol and features used. SAML, OpenID Connect and OAuth provide several profiles that allow the implementation of high and low assurance trust frameworks. This topic is also covered to to clarify which solutions are best suited to which requirements.

Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.