http://www.singlesignon.com From convenience to security, everything you need to know about Single Sign-on. Tue, 10 Aug 2010 19:00:36 +0000 http://backend.userland.com/rss092 en The latest news from Microsoft in this Datamation article- the August preview release of Windows Azure AppFabric will support federation and single sign-on.  Read more here. http://www.singlesignon.com/sso/windows-azure-gains-single-sign-on-support Google is rolling out single sign-on to all its users – across Google properties, of course. This article in The Chrome Source explains how it all works. http://www.thechromesource.com/understanding-single-sign-on-in-google/ Multiple outlets are reporting today that single sign-on is being rolled out to all Google users. But what does that mean? For starters, if ... http://www.singlesignon.com/sso/understanding-single-sign-on-in-google This IT Business Edge blog discussed the problems with passwords and the need for federated single sign-on. A paper from Cormac Herley, a researcher at Microsoft, goes into detail about why users will never change their passwords regularly and why the entire password approach to security is fundamentally flawed. http://www.singlesignon.com/sso/the-trouble-with-passwords This Network World article lists best practices for protecting online identity, including adopting web single sign-on and protecting logins with strong authentication. However, there is one security concern that is often a weak link for Web-based applications, and that's user authentication. If a user -- legitimate or otherwise -- presents the ... http://www.singlesignon.com/sso/network-world-how-to-protect-access-to-web-based-applications This recent article on Dr. Dobb's echos what we've been saying for months: If your password is compromised, whether or not it's your fault, it's always your problem.  If developing a web application is in your future, you must read this article. ...Decouple the authentication process from your application and take ... http://www.singlesignon.com/sso/dr-dobbs-user-authentication-it-doesnt-belong-in-your-application Peter Cooke at Bloor Research recently wrote this interesting article on the history and future of IAM. Single sign-on solutions (SSO) have been developed to help with this issue. SSO systems enable users to log in once only and then be automatically authenticated when they attempt access to other resources. There ... http://www.singlesignon.com/sso/the-evolution-of-identity-and-access-management According to The Register, Microsoft's Hotmail has begun requiring the use of third-party cookies in order for its users to successfully log out of their accounts. Third party cookies are most commonly used by advertising networks to track surfers across the web and are often blocked by browsers, by default, ... http://www.singlesignon.com/sso/hotmail-imposes-tracking-cookies-for-logout NetDeposit, a company that enables businesses to streamline their revenue collection and management with proven payment technologies, recently announced they've selected a Single Sign-on solution to ensure compliance with Federation Financial Institutions Examination Council (FFIEC) risk mitigation guidelines. They have selected TriCipher's myOneLogin service to provide strong customer/client authentication for its ... http://www.singlesignon.com/sso/sso-for-ffiec-compliance Here's another look at the security aspects of implementing a single sign-on solution behind your company's firewall.   SSO solutions basically ensure your employee's password are secure by adding second and third factors to authentication. Then, users are automatically authenticated to their everyday applications (including email and internal applications). Some programs ... http://www.singlesignon.com/sso/using-single-sign-on-to-manage-employee-passwords When thinking of Single Sign-On, most people initially  consider the increase in end-user convenience and back-end user management.  A single sign-on solution, however, should be considered when creating a risk-management process for your company's data. Industry analyst Gregg Kreizmann, of Gartner Inc., says small companies are increasingly turning to such "single sign-on" ... http://www.singlesignon.com/sso/using-single-sign-on-to-protect-your-companys-data