SAML

Security Assertion Markup Language

An open standard for exchanging authentication and authorization data between parties, in particular, between an identity provider (IdP) and a service provider (SP).

Key points about SAML:

• XML-based: SAML uses XML to format and exchange security information between the identity and service providers.
• Single Sign-On (SSO): SAML enables web-based single sign-on, allowing a user to log in once and access multiple applications without being prompted to log in again at each of them.
• Identity Federation: SAML allows identity federation, where a user’s single identity can be used across multiple organizations.
• Assertions: SAML assertions are the core elements of SAML. They are statements made by the identity provider about a subject (usually a user) that the service provider uses to make access control decisions.
• Security: SAML provides a secure way to exchange authentication and authorization information between the identity and service providers.

SAML is widely used in enterprise environments to enable single sign-on across different applications and services, especially when these services are provided by different organizations or exist on different domains. It provides a standardized way to communicate identity information, thereby simplifying the user experience and reducing the administrative overhead of managing multiple user identities.

• Abbreviation: SAML