SAML stands for "Security Assertion Markup Language." It is an XML-based standard for communicating identity information between organizations and the cloud that is used for enabling the secure transmittal of authentication tokens and other user attributes across cloud domains.
This white paper introduces identity federation and SAML and describes why standards like SAML are necessary for implementing scalable, secure federated identity across organizations. The typical SAML use cases are highlighted for enterprise, small to medium sized businesses and organizations acting as service providers.
The OpenID Connect protocol forms part of a modern architecture for identity and access management (IAM) to support mobile, cloud and API-integration scenarios. It is API-friendly and easily adapts from web applications to native and mobile applications.
This guide provides a developer overview of the OpenID Connect protocol and includes instructions for an application developer to implement OpenID Connect authentication into their application using PingFederate.
OAuth emerged from the social web, originally motivated by a desire to allow users to specify authorization permissions without divulging social media credentials, commonly known as the password anti-pattern.
OAuth 2.0 defeats the password anti-pattern, creating a consistent, flexible identity and policy architecture for web applications, web services, devices and desktop clients attempting to communicate with Cloud APIs.
As a developer, if you're implementing OAuth 2.0, what considerations and sample code might you need for each use case? This guide goes into depth on both application developer and API developer considerations on modifying your applications and APIs to support OAuth 2.0.
System for Cross-Domain Identity Management (SCIM)
SCIM: How it Works
The SCIM standard reduces the complexity of user management operations by providing a standard, REST-based protocol for carrying out cross-domain identity management operations. SCIM enables provisioning and deprovisioning between identity providers and service providers keeping users in sync and reducing administrative burdens.