Brussels / 1 & 2 February 2014


The SAML protocol

Single Sign On in the cloud

This conference will introduce the main concepts of SAML (authentication request and response, NameID, conditions, Logout, etc.).

SAML (Security Assertion Markup Language) is a standard born at the beginning of the XXI century, providing SSO (Single Sign On) and SLO (Single Logout) mechanisms for decentralized identities and applications running on the Internet. The version 2.0 of the standard, unifying SAML 1, Liberty Alliance and Shibboleth is now implemented in many services (Google Apps, Salesforce) and in many softwares, free or closed. One major advantage is that you can connect to an online service without providing your password to it. You just authenticate on your enterprise identity provider, and open trough SAML your session on the SaaS application. SAML can assure security and anonymity, and let the user manage his federation links between services. The most known usage in France is Mon Service Public. The drawback is the complexity of the standard.


Clément Oudot