Secure in the Cloud – Two-Factor Authentication for Single Sign-On
Today many services are offered as web applications. This can be self-hosted systems such as ownCloud or Kopano or cloud services such as the Google G Suite / Google Apps for Work.
The number of services a user uses for his daily work is constantly increasing. So the desire for Single Sign-On is understandable. The user logs on centrally once and can then use all connected services without further authentication. The implementation of Single Sign-On was already described in more detail in the article Brief Introduction: SAML.
But in all cases, whether it is their ownCloud instance or Google G Suite, the user logs on to a web application that is available on the Internet. The login is accessible from everywhere – but also for everyone – and is therefore an interesting target for crackers, cyber criminals and industrial spies.
With the new version of the privacyIDEA SAML App companies can decisively increase the security of the Single Sign-On process.