There are many misperceptions around Single Sign-On (SSO) – all of which need addressing.
5 MYTHS AROUND SSO – BUSTED:
1. SSO is not secure because if a user’s master password is compromised, an attacker could have access to all user accounts.
BUST: SSO actually enhances security by reducing the number of passwords a user must remember and thereby minimizing the risk of using weak passwords. SSO reduces the attack surface by limiting the number of logins necessary over a given time period.
Moreover, most SSO systems come with additional security measures such as multi-factor authentication (MFA). In a well-designed SSO solution, passwords will not be stored in plain text, but encrypted and stored securely.*
TraitWare, for example, eliminates the password altogether, which makes access not only more secure but much simpler to achieve.
2. SSO is too complicated to implement.
BUST: Implementing SSO may require some initial setup, but it is not complicated, especially when using popular SSO protocols like OpenID Connect or SAML.
TraitWare can be implemented easily for any SAML or OIDC-enabled system
3. SSO is expensive.
BUST: SSO can save organizations money in the long run by reducing password-related help desk tickets and minimizing the time spent managing user accounts.
TraitWare provides MFA + SSO combined for greater security and reduced friction for both users and admins.
4. SSO is only for large enterprises
BUST: Companies of all sizes can benefit from SSO. In fact, implementing SSO in smaller organizations is easier in part because smaller companies tend to have fewer legacy systems already in place. SSO can have a significant impact on the productivity of any business.
5. SSO is not user-friendly.
BUST: SSO improves the user experience by reducing the number of passwords that users have to remember and simplifying the login process. Most SSO solutions also offer Single Logout (SLO), allowing users to log out of all connected applications with a single click. Additionally, SSO solutions can integrate with existing identity providers, allowing easier access.
TraitWare’s unique patented solution combines MFA with SSO and eliminates the need for Phishable factors for authentication. TraitWare allows up to 5 factors for authentication right from account creation. All of those factors are ‘invisible’ to the user – in other words, nothing has to be remembered or typed in and nothing is shareable. Login is always tied to the user with their biometric and a one-time dynamic QR code, using a device the user already carries.
The Bottom Line: SSO is Enhanced Security and Simplicity Combined
The proliferation of cloud apps and services in the enterprise—often in addition to on-prem—has created a fragmentation problem. Fragmentation is a challenge both for IT and for users. IT must manage a variety of apps in the enterprise, and deal with shadow IT
The proliferation of cloud apps and services in the enterprise—often in addition to on-prem—has created a fragmentation problem. Fragmentation is a challenge both for IT and for users. IT must manage a variety of apps in the enterprise, and deal with shadow IT – or applications that are in use by workers, but unknown or not approved by IT. Employees need to use more and more apps each day just to complete their work, which means logging in to and switching between multiple apps and websites.
SSO helps solve fragmentation by giving users the ability to access all applications from a single pane of glass or a single console.
At TraitWare, we combine ‘Phish-Proof’ MFA with SSO for vastly improved security and ease of use.
Any questions, we’re always here to chat!