Single Sign-on (SSO)— Two Sides Of One Coin

Dave On Cyber
1 min readDec 22, 2022

--

A successful login to your Gmail account gives you more access than email. You can watch videos on YouTube, write documents on Google Docs or pin your favourite places on Google maps. This unique access is called SSO (Single sign-on)

The Win-Win Situation for user and hacker

SSO is an authentication mechanism that authenticates the user once and provides access to all the applications. It offers a seamless experience for the user and convenience without entering a password.

With every flexibility, there is another side to the coin. One password to all also means that hackers only need to crack one password to gain access to all the applications. Kerberos, which provides SSO, is a single point of failure (SPOF). I will write a separate article on how Kerberos works.

From the CISSP exam perspective, please list SSO solutions and the pros and cons. If you have a study partner, expand each advantage and disadvantage with the scenario.

Read at least five articles on what cybersecurity experts say about SSO adaptation. All of these will expand your understanding horizon and help you maturely consume the CISSP question.

--

--

Dave On Cyber
Dave On Cyber

Written by Dave On Cyber

I share my CISSP knowledge, industry insight and learning approach through articles, digital sketches and short films. https://www.daveoncyber.com/

No responses yet