SAML VS OAUTH
SAML VS OAUTH
While researching for this assignment, I came across a lot of good points about each access control measure, along with some bad points. Each measure was implemented with the best intentions for the user. The fact that SAML simplifies logon procedures was a big factor. Security Assertion Markup Language is an XML based open standard for exchanging authentication and authorization data between security domains. Open Authorization allows you to use a common username and password to access different sites. These sites are linked together in one form or another to share information on these ...view middle of the document...
For instance, with everything seeming to revolve around Facebook nowadays, websites such as Pinterest and Yahoo will use your Facebook login and password to gain access to their sites. This can be good and this can be bad. For instance, this gives third party websites access to your Facebook account to technically do what they want to it. They could theoretically go into your Facebook account and change your password, locking you out of it. That is a downside to OAUTH. It grants the website certain permissions to post something on Facebook on your behalf. What I mean by this is if you have your Yahoo account linked to Facebook and you read an article, Yahoo will post something on Facebook saying you recently read a certain article. Granted Yahoo gives you an option to show friends on Facebook what you read or not, but websites such as SocialCam do not give you that option. If you watch a video on SocialCam it will show on Facebook what you watched. The reasons behind these actions are so friends will drive friends to read potential stories and to drive people to the websites to gain more viewers. So they essentially use your Facebook to further their website.
Also websites can use recent trends from your Facebook page to try to entice you...