What is Single Sign-On (SSO)?
Single Sign-On refers to a session and authentication process that allows a user to apply a single set of login credentials. SSO is categorised as an identity and access management component because it provides users with the capability of synchronising a single login with multiple websites and applications. The applications and websites integrated with SSO depend on trusted third parties to verify the identity and authorisation of the user requesting access. SSO works by relying on a trustworthy relationship between network domains to send messages and feedback. SSO traffic occurs between websites, corporate networks and the identity provider. SSO uses data in the form of tokens. While SSO technologies have matured significantly, specific implementations of the technique still have security issues.