What is a federated identity?

Federated identity is a computer feature that allows business or other user to log in to the system and gain access to multiple areas that would otherwise require each login for each. For example, the company can negotiate with many different suppliers, distributors and manufacturers; With a federated identity, he performs business instead of a separate login for each business. This is done by passing verification from one system to another and trusts each system to other systems. Together with a person's login, businesses using a federated identity may not share verification technology. The disadvantage of using federated identity is that if the authentication system is not safe, security can be endangered for the entire system. On the part of the business, they will have to deal with all parts of the supply chain, while Consumers also buys products and services from various companies. Without a federated identity, a business or consumer would have to make an authenticationSqueelling and logging in for each company so that the company can know that the person is real and safe.

To ensure that the company or consumer is considered safe, it will have to perform one login using a federated identity. After being verified, the company uses a standard security language to inform all associated businesses that this person is authentic and not a danger. From there, the company or consumer can pass through all associated systems without having to perform another login procedure. This saves business or consumer time and means that less resources will be needed for each company to perform different verification.

Although one login is required, its own benefit is, there are other benefits. The procedure of one login can be duplicated without a federated system, but only if each company has the same directory service, which is not always. The federated system is standard, so it can be handed over to other businesses, no matter what directory service they use.

Federated identity usually allows for safe access to members, but there may be a disadvantage. If a user -validing company is not secure, it gives a harmful user a much wider area of ​​access. Instead of being able to infiltrate one system, a malicious user will have access to all federated systems from a single login.