Single Sign On: More security, less effort!

Single Sign On: More security, less effort

Any OIDC standard ID provider.

evolutionID now offers a login via Single Sign On (SSO) for its web-based ID management system IDfunction: The user only needs to authenticate himself once, and the administrator also saves a lot of unnecessary effort.

Secure authentication is particularly important for cloud applications, which can in principle be accessed from anywhere and by anyone. The following applies: the longer and more cryptic the password, the better, multi-factor authentication is best. However, many conventional systems still leave a lot to be desired in terms of their user-friendliness. The user has to log in again for each application – and remember the corresponding number of letter-number-special-character combinations. This often leads to login problems from forgotten passwords – or security breaches from jotting down access codes that line the screen on Post-it labels. But the parallel running protocols also cause a lot of unnecessary effort in administration.

SSO is much safer, easier and faster: you only need to log in once and all applications derive the required access authorizations from the data generated once. This happens so quickly that the user doesn’t even notice that a new identity check is taking place each time.

With classic on-premise software, SSO works via the Kerberos protocol. The so-called federated authentication technology was developed for modern, web-based programs such as IDfunction. It is based on the open authentication standard OAUTH2. The OIDC feature, an extension of OAUTH2, is used in IDfunction. It authenticates the user via a trustworthy, external identity provider and returns a small data package with the respective identity information. Then users and administrators will benefit from all SSO advantages.

Authentication procedures and identity providers can be defined separately for each user under IDfunction. The procedure can be adapted to individual security requirements: the administrator is assigned a very secure two-factor authentication protocol, while the user who only wants to send an ID photo can simply log in using a Google or Facebook account. Different authentication methods can also be assigned to the applications, depending on their security relevance.
SSO is becoming an important milestone in the success story of cloud-based software, especially in times of increasing threats in cyberspace: a concept that offers as much protection as possible, but only asks the user as much as necessary.


IDfunction with Single Sign On:

Press contact:

evolutionID GmbH
Nördliche Auffahrtsallee 19
80638 München

About evolutionID:

For more than 20 years, evolutionID has been providing its customers with manufacturer-independent consulting services and designing custom-fit solutions on the topics of RFID, digital identity and Industry 4.0. The established company based in Munich specializes in specific solutions for medium-sized and large customers in industry and public authorities and has even developed its own browser-based identity management system, IDfunction. With seamless process chains for efficient, AI-supported ID card creation and management, evolutionID creates more transparency, increases the level of security and lowers costs. As a full-service provider, evolutionID takes on projects from analysis to consulting and conception through to complete, ready-to-use solutions.