| Random Link ¯\_(ツ)_/¯ | ||
| May 28, 2023 | » | Identity Access Management
6 min; updated May 28, 2023
(Based on the table of contents in https://auth0.com/intro-to-iam ) Authentication refers to granting the user (or an application acting on behalf of a user) credentials to access a given resource. I don’t know the difference between SAML, OAuth, and OpenID. I’ve seen OAuth used when granting apps access to other apps, e.g., granting Netlify and OAuth token for accessing a Github repository. Of the authentication methods, I’m familiar with Single-Sign On (SSO), and Multi-Factor Authentication (MFA). I don’t know about Passwordless Authentication. SSO occurs when say signing into accounts.microsoft.com grants you access to office.microsoft.com, tasks.microsoft.com, etc.; presumably the SSO token should work on *.bing.com given that microsoft.com and bing.com are owned by the same entity? Not sure how cross-domain SSO works though. MFA refers to requiring a second form of authentication, e.g., entering a password, and also validating a prompt sent to your phone; the idea is that it’s less likely for the attacker to have access to both authentication methods. Passwordless seems like it’d cover alternate methods like biometrics that are available on newer computers and phones. ... |