SSO: Why is it considered as a secure way for authentication and authorization
Introduction
A huge infrastructure in which employees are required to use a number of different apps throughout the course of a single workday, and where these employees require unique passwords for each of these applications. Therefore, it broadens the attack surface in the sense that a user might choose the same password across many domains. If only one password is compromised, then all of the domains or accounts can be exploited. Therefore, in order to make things simpler for employees, the majority of companies implement single sign-on (SSO) capabilities. This allows employees to access different applications without having to repeatedly enter their credentials. They are only able to authenticate themselves to a single application, but all of their other applications can be authenticated using that one application even if they haven’t entered a password on any of the other domains. The Single Sign-On (SSO) system is able to provide authentication and authorization while also making it simple to maintain credentials.
