<div>
Basic SSO is just authentication (ctrl-alt-del, enter password)<br />
Authorisation is like file and share permissions<br />
Accounting is logs kept from either (like security event log)<br />
<br />
There is a lot of variety between products, bus SSO does not add per se access auditing/accounting, it is just modification of authentication.
</div>


Basic SSO is just authentication (ctrl-alt-del, enter password)
Authorisation is like file and share permissions
Accounting is logs kept from either (like security event log)

There is a lot of variety between products, bus SSO does not add per se access auditing/accounting, it is just modification of authentication.

<div>
Reminds me old days of EE. Enthusiasts :)
</div>


Reminds me old days of EE. Enthusiasts :)

<div>
<div class="content wysiwyg-content">
Hi;<br />
<br />
I come across with this phrase, &quot;Authentication, Authorization and Attribution are the three most vital properties sought for by service providers on the web&quot;<br />
<br />
I know SSO provides authentication and authorization but my question is that what about attribution? Does SSO provide attribution? Can you give me an example?<br />
<br />
Br.
</div>
</div>


Hi;

I come across with this phrase, "Authentication, Authorization and Attribution are the three most vital properties sought for by service providers on the web"

I know SSO provides authentication and authorization but my question is that what about attribution? Does SSO provide attribution? Can you give me an example?

Br.

sso provides attribution?

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.