Authentication and IAMs and IdPs, Oh My!

Authentication vs. Authorization

Authentication

  1. It’s worth noting that password vaulting (or using password managers) is also occasionally called same-sign on, but is an entirely separate solution as well.
  2. Note that LDAP is a protocol, not a product and there are many different products that all implement the LDAP protocol, but work in basically the same way.

Authentication Architecture

The Split application asks an IdP for authentication
The Split App asks many different IdPs for authentication.
The Split App asks many different cloud IdPs for authentication
The Split App talks to an Authentication Authority, which is responsible for handling all of the integrations with different IdPs for authentication.
  1. It’s worth noting that Identity and Access Management is sometimes abbreviated as IdAM and is also referred to as Identity Management (IdM). Furthermore, AWS IAM (a common usage of the term IAM) is actually the AWS-specific feature that implements IAM and is completely separate from everything else we’re discussing here.

Everything Comes Back to the IAM

Conclusion

--

--

--

Principal Software Engineer & ultra runner @SplitSoftware

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

SlowMist:Brief analysis of the xTokenattack event

Stop searching for AWS secrets in code

TryHackMe write-up: Smag Grotto

My Comments on Information Security Policy when I was a young student

{UPDATE} Hot Noodle Litt kokk Mat hall Hack Free Resources Generator

DeFi Forensics: HARVEST Finance

Another Day, Another Reentrancy Attack

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Joy Ebertz

Joy Ebertz

Principal Software Engineer & ultra runner @SplitSoftware

More from Medium

How Poor Quality Destroys Your Competitive Advantage

Rusted out car on blocks

The experience of working in Developer Experience

Replacing the engine mid-flight

Calculating the SLA of a system behind a CDN