authentication
Identity in Depth
Continue readingOAuth 2.0 and OpenID Connect Explained (in Plain English)
OAuth 2.0 and OpenID Connect technologies have been developed to help simplify secure authentication and authorisation between systems. But what exactly are they and why are they so useful? OAuth 2.0 is a protocol used to authorise access to an application. At the most basic level, OAuth 2.0 allows a user to nominate an app (or Identity Provider – IdP) to act on their behalf. OpenID Connect can be used to create a single sign-on (SSO) solution for the web services you build.
Continue readingWhat are Multi-Factor Authentication (MFA) and Single Sign On (SSO)?
What are Multi-factor Authentication (MFA) and Single Sign-On (SSO)? Multi-Factor Authentication (MFA) and Single Sign-On (SSO) are mechanisms to ensure your identity and access management setup is secure. In this article we explore the features and flaws of MFA and SSO and explain how you can get the best of both world by combining them.
Continue readingPasswordless authentication: pros and cons
Passwords are the last line of defence of many applications. Hated by users (who already have too many to remember) and systems administrators (who have to resolve login problems), almost no one would be sorry to see passwords disappear. Discover the pros and cons of passwordless authentication. We outline the advantages and disadvantages and give our conclusion, Is passwordless the future? Find out.
Continue readingBalancing Security and User Experience
Balancing security and user experience is challenging. Security provisions often impair the user experience – so how do you build a secure app that customers love? We discuss ways of simplifying and conclude on finding the balance.
Continue reading