all InfoSec news
Is Zero Trust and SSO a contradiction?
Jan. 28, 2024, 1:35 p.m. | /u/SaltedWeb717
cybersecurity www.reddit.com
Single-Sign-on implements a trust relationship between services for authentication.
Consequently both concepts are contradictions, yet there are famous Zero Trust implementations like Googles BeyondCorp that use SSO.
Assuming an adversary compromises account credentials (including possible 2FA), SSO services allow access to everything, so it contradicts Zero Trust.
Is SSO always a compromise in regards to Zero Trust?
2fa access account adversary authentication beyondcorp concepts credentials cybersecurity everything name relationship relationships services sign single sso trust zero trust
More from www.reddit.com / cybersecurity
How does hiring in APT groups work?
15 hours ago |
www.reddit.com
State of WiFi Security in 2024
16 hours ago |
www.reddit.com
Prioritize Blue Team for Cybersecurity Success
18 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)