Computer Security

Shibboleth

Single-sign on based on SAML

It works on the WAYF (Where Are You From) service

Architecture:

Source: https://www.switch.ch/aai/demo/medium/

The WAYF service will send a request, receive a re-direct and then connect if all goes to plan when user tries to access resource

The user can also be re-directed to login page of user’s organisation, e.g. their university logon page

A bit more in-depth; the difference between version 1.0 and 2.0