        |
To simplify your search, we have organized the content below into categories based on the stages of the federation deployment process. Click on the most relevant stage below to be taken directly to that section.
Secure Internet Single Sign-On 101
Written for anyone interested in understanding how secure Internet SSO works, this white paper explores the limitations of current SSO implementations outside of a single security domain (including identity and access management systems and open source development) and introduces standalone secure Internet SSO as a solution.
Federated Identity and Software as a Service (SaaS): Single Sign-on to the Cloud
Many companies are turning to Software as a Service (SaaS) as an option for sales management, human resource management, customer relations management and more. This white paper is an overview of the market forces that have created a need for rapid deployment of Internet Single Sign-on for SaaS deployments and how Ping Identity can address those IT needs with architecture, experience and speed.
Federated Provisioning: The Synergy of Identity Federation and User Provisioning
This paper provides a background of federation and provisioning concepts, functional operations, and standards.
PKI and Federation: Realizing the Best of Both Worlds
This technical paper, designed for solution architects and identity management consultants, compares and contrasts X.509 certificates as used within a public key infrastructure (PKI ) and federated identity deployments that leverage SAML, Open ID, or WS Federation.
The Primer: Nuts and Bolts of Federated Identity Management
This white paper provides an introduction to leveraging user credentials securely through federated identity management.
SSO Over the Internet: The CISO's Misperceptions and Realities
This paper identifies CISO misperceptions and provides clarifications to help readers understand the realities of delivering secure Internet SSO by deploying federated identity management.
Internet-Scale Identity Systems: An Overview and Comparison
This white paper compares SAML, CardSpace, OpenID and ID-WSF. It also illustrates how these mechanisms can be used together.
Implementing Secure Internet Single Sign-On: Standalone Server vs. Open Source Toolkits
To give companies new to secure Internet single sign-on (SSO) a better picture of the differences between a standalone server and open source toolkits options, Ping Identity conducted a qualitative study of both implementation approaches. The results are normalized against two federation scenarios: a "first federation" consisting of a single partner connection and a "federation at scale" scenario consisting of the deployment of ten partner connections. A companion total cost of ownership model spreadsheet is provided.
Recommended Federation Deployment Architecture
With all the hype around identity management, IT architects and engineers are asking themselves, "How does Secure Internet Single sign-On by way of federated identity fit into their enterprise architecture?" With so many approaches to implement SSO for external applications over the Internet, it is important for IT to choose the right approach to meet the needs of the enterprise.
5 Steps to Ensure Security of Internet SSO
This white paper, intended for a management-level audience, describes why and how any organization can implement secure Internet single sign-on with a federated identity management system.
The Fastest Way to Scale Your Business to Business SSO Connections: PingFederate Auto-Connect
This paper is written for project managers, product managers, identity architects and security architects who are considering large-scale deployments of secure Internet single sign-on. SAML-based federated identity has a proven track record for creating secure and reliable SSO connections between federation partners. However, organizations envisioning dozens, hundreds or even thousands of federation partners face scalability challenges when establishing large numbers of traditional static SAML connections. The goal of this paper is to detail both the business and technical factors that impact SAML scalability, and then describe how a new capability of PingFederate called Auto-Connect implements a dynamic SAML profile that eliminates these scalability issues.
