Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

identity federation - security testing (what to test for/how to test)

From: secmail.lists () gmail com
Date: 14 Sep 2007 16:58:01 -0000
All -

I have a project coming up where Federation will be used b/w to COTS SSO products (Sun Access Manager/ Sitemeinder)to 
all cross-domain sign-on. What I am stumped on is how would one go about testing? The implemented SSO systems have both 
been tested yet this project extends that with Federation.

Your feedback is welcomed.

Thanks
David

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: