Single Sign-On(SSO) Protocols: Kerberos, SAML, OAuth, and OpenID Connect

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/16/10/f1/1610f1ba-94f9-ff90-fcf5-295f56cad680/mza_14832663211430209641.jpg/600x600bb.jpg

InfoSec Bites

HelloInfoSec

114 episodes

2 days ago

Welcome to Hello InfoSec, your ultimate hub for all things cybersecurity! Dive into our thrilling podcast series, InfoSec Bites, where we unleash deep dives into Information Security, jaw-dropping Major Security Incidents, cutting-edge Cloud Information Security, crucial Privacy topics, revolutionary Artificial Intelligence, mind-bending Quantum Computing, and so much more! Get ready to geek out with expert insights and stay ahead of the curve—hit that like button, subscribe now, and turn on notifications for fresh episodes that will blow your mind! https://www.youtube.com/@HelloInfoSec

Technology

RSS

All content for InfoSec Bites is the property of HelloInfoSec and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode/44370068/44370068-1758852930820-b975af4375874.jpg

Single Sign-On(SSO) Protocols: Kerberos, SAML, OAuth, and OpenID Connect

InfoSec Bites

49 minutes 2 seconds

5 days ago

Single Sign-On(SSO) Protocols: Kerberos, SAML, OAuth, and OpenID Connect

The discussion in this podcast is an expert-level analysis of four critical Single Sign-On (SSO) protocols: Kerberos, SAML, OAuth, and OpenID Connect (OIDC), detailing their architectures, security features, and ideal use cases within a modern enterprise. It explains that while Kerberos is best for internal networks and SAML for enterprise federation, OAuth is for delegated API authorization, which OIDC then extends to cover user authentication for consumer applications. A significant portion of the discussion examines major security incidents—including the Golden Ticket attack against Kerberos and Consent Phishing in OAuth—to demonstrate that protocol security relies entirely on meticulous implementation and rigorous validation. Ultimately, it recommends a hybrid identity architecture that strategically integrates all four protocols, emphasising strict governance over both human and non-human identities to achieve a robust security posture.