{"id":5444,"date":"2021-07-19T12:28:09","date_gmt":"2021-07-19T16:28:09","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=5444"},"modified":"2021-07-20T14:37:33","modified_gmt":"2021-07-20T18:37:33","slug":"what-are-the-major-authentication-foundations","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/","title":{"rendered":"What are the Major Authentication Foundations?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-5449\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg\" alt=\"What are the Major Authentication Foundations?\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><b><i>What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0<\/i><\/b><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">When we discuss authentication, we tend to do so in the ways that your users may most directly interact with it; usually, they\u2019ll encounter it through multifactor authentication (MFA) factor inputs and through other requests in cases of step-up authentication.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">However, your IT security team will more frequently encounter your identity management through one of the major authentication foundations. These provide the rock upon which you build your cybersecurity, especially given that identity forms the foundation of modern cybersecurity platforms.\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">These foundations differ in several ways, and some might be more suited to certain use cases. We learned about them and more in the \u201cAuthentication Survival Guide,\u201d a whitepaper published by <\/span><a href=\"https:\/\/auth0.com\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Auth0<\/span><\/a><span style=\"font-weight: 400\"> as part of its <\/span><a href=\"https:\/\/info.auth0.com\/Identity-Whitepaper-Bundle.html\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Identity White Paper Bundle<\/span><\/a><span style=\"font-weight: 400\">. Here\u2019s what we gleaned about the foundations of so many authentication protocols and how they interact in the IT environment.\u00a0<\/span><\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/suggestionengine.solutionsreview.com\/buyer\/signup\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/02\/Identity_Suggestion_Engine_Horiz_800.gif\" alt=\"IAM Solution Suggestion Engine\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n<h2 style=\"text-align: justify\"><b>What are the Major Authentication Foundations?\u00a0<\/b><\/h2>\n<h3 style=\"text-align: justify\"><b>OAuth 2.0<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">OAuth 2.0 is an authorization framework that enables an application to obtain access to HTTP-based resources usually within the domain of an unrelated application and that also may be associated with a given user within that domain. It solves the problem of delegated access without requiring credentials sharing. Authorization servers, client applications, and resource servers all utilize OAuth 2.0.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>OpenID Connect<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">OpenID Connect can be described as an extension to OAuth2 that provides clear guidance on how to achieve a functional and secure authentication system. It clears up grey areas in authentication that OAuth2.0 struggles with, clearing up conflicting implementations. It also formalizes the means by which an identity provider can make new factors available.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>SAML<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The Security Assertion Markup Language (SAML) achieves web browser-based SSO across different domains.This is a standard that defines a set of structured messages and how these messages can be used by an application to perform authentication requests. The authentication request creates a token that can transfer across security domains.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>WS-Federation<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Another SSO-based standard, WS-Federation defines the necessary web interactions required between two systems in order to achieve SSO.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Enterprise Protocols<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">This refers to in-house, custom-made authentication protocols and foundations, which proliferated before the advent of more available authentication tools and services. While certainly not as common as it once was, enterprise protocols actually contributed to the rise of Single Sign-On as a technology.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Of course, these major authentication foundations may all be a part of your IT environment, as different applications. You\u2019ll need to be aware of what applications and servers use what foundations and how your identity and access management. Only by finding a solution that can integrate with all possible foundations can you achieve optimal information security.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">You can learn more in the \u201cAuthentication Survival Guide,\u201d a whitepaper published by <\/span><a href=\"https:\/\/auth0.com\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Auth0<\/span><\/a><span style=\"font-weight: 400\"> as part of its <\/span><a href=\"https:\/\/info.auth0.com\/Identity-Whitepaper-Bundle.html\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Identity White Paper Bundle<\/span><\/a><span style=\"font-weight: 400\">. Also, check out the Solutions Review <span style=\"text-decoration: underline\"><strong><a href=\"https:\/\/suggestionengine.solutionsreview.com\/buyer\/signup\" target=\"_blank\" rel=\"noopener\">Solutions Suggestion Engine<\/a><\/strong><\/span> or the <span style=\"text-decoration: underline\"><strong><a href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-identity-and-access-management-software-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\">Identity Management Buyer\u2019s Guide<\/a><\/strong><\/span> for the latest on the identity and access management market and its most prominent vendors.\u00a0<\/span><\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/suggestionengine.solutionsreview.com\/buyer\/signup\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/02\/Identity_Suggestion_Engine_Horiz_800.gif\" alt=\"IAM Solution Suggestion Engine\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0 When we discuss authentication, we tend to do so in the ways that your users may most directly interact with it; usually, they\u2019ll encounter it through multifactor authentication (MFA) factor inputs and through other requests in [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":5449,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5,1],"tags":[142,770,125,1730,16,1732,1731,76,425,859,1734,307,1733],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What are the Major Authentication Foundations for Businesses?<\/title>\n<meta name=\"description\" content=\"What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/\",\"name\":\"What are the Major Authentication Foundations for Businesses?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg\",\"datePublished\":\"2021-07-19T16:28:09+00:00\",\"dateModified\":\"2021-07-20T18:37:33+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg\",\"width\":800,\"height\":400,\"caption\":\"What are the Major Authentication Foundations?\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What are the Major Authentication Foundations?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What are the Major Authentication Foundations for Businesses?","description":"What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/","url":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/","name":"What are the Major Authentication Foundations for Businesses?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg","datePublished":"2021-07-19T16:28:09+00:00","dateModified":"2021-07-20T18:37:33+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"What are the major authentication foundations available to enterprises? How do they differ, and why do those differences matter?\u00a0","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2021\/07\/MicrosoftTeams-image-16.jpg","width":800,"height":400,"caption":"What are the Major Authentication Foundations?"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/what-are-the-major-authentication-foundations\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"What are the Major Authentication Foundations?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5444"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=5444"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5444\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/5449"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=5444"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=5444"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=5444"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}