Bleeping Computer

Golden SAML Attack Lets Attackers Forge Authentication to Cloud Apps

A new technique called "Golden SAML" lets attackers forge authentication requests and access the cloud-based apps of companies that use SAML-compatible domain controllers (DCs) for the authentication ...
Dark Reading

GitLab Warns of Max Severity Authentication Bypass Bug

Organizations with self-hosted GitLab instances configured for SAML-based authentication might want to update immediately to new versions of the DevOps platform that the company released this week.
secureidnews.com

Why the future of authentication isn’t SAML

The future of authentication will not rely on SAML, but with OpenID Connect and OAuth 2 instead, Dave Kearns contends in a blog post for KuppingerCole. SAML, or Security Assertion Markup Language, is ...
Cloud Security Alliance

Reimagining the Browser as a Critical Policy Enforcement Point: A Zero Trust Security Architecture for Modern Enterprises

Explores turning the browser into a policy enforcement point within a Zero Trust framework, covering governance, MFA, device ...
Purdue University

Authentication Options

Our authentication and authorization services are designed to meet different goals. How do you know which one it right for your project? The information below is intended to help you determine which ...
Business Wire

Zoho Vault Delivers SAML-Based Single Sign-On for Cloud Apps

PLEASANTON, Calif.--(BUSINESS WIRE)--Zoho today announced SAML-based single sign-on (SSO) support for cloud applications in Zoho Vault, its online password manager for teams. With enterprises rushing ...
Business Wire

Tesseral Launches With $3.3M in Funding to Simplify Authentication for Business Software

SAN FRANCISCO--(BUSINESS WIRE)--Tesseral, the open source authentication infrastructure for business-to-business (B2B) software companies, today announced its emergence from stealth with $3.3M in seed ...