OAuth, OpenID Connect, SAML, SCIM – How to Deal with all the Identity Providers and how to Federate?

Moderator(s):

Craig Burton Distinguished Analyst

KuppingerCole

Have you ever asked yourself, how all these standards fit together, where they overlap and what the advantages and disadvantages are when deciding for a certain path? In this workshop, you will learn by examples and best practices, how these technologies work together.

After attending this workshop you will be able to:

• List the technologies and standards for cross site authentication and provisioning.
• Explain the differences and similarities between OpenID 2.0, OpenID Connect and SAML.
• Explain how you would choose one of these authentication protocols rather than another for a given situation.
• Explain the privacy issues that OpenID Connect is trying to solve.
• Explain the differences between the user provisioning standards SCIM and SPML.

Understanding these concepts is essential to deal with the new requirements of business. It is not about managing all of your users by yourself anymore. Your organization is not the only Identity Provider anymore, especially when it comes to business partners, customers, and prospects. Then it is about relying on others. However, that raises the question of which standards to support. It raises the question whether you’ll need proprietary interfaces to some of the social networks or other providers as well. And it raises especially the question of whether an Identity Provider is “good enough” for the risks of the transaction and interactions you’ll have with the users. Thus, understanding how these things relate, how they can be used, and when to use what – from a business and a technology perspective – is what you need to understand today.

The workshop will cover both the changing requirements of business and the technical infrastructure you have to provide.

This Workshop qualifies for 3 Group Learning based CPEs.

Learning level:  Overview

Continuing Professional Education Credits:

KuppingerCole is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing education on the National Registry of CPE Sponsors. State Boards of accountancy have final authority on the acceptance of individual courses for CPE credits. Complaints regarding registered sponsors may be submitted to the National Registry through its website: www.learningmarket.org

---

You can get 1 CPE for this track.

Sessions: