Identity Types
An identity provider (IdP) is an entity that can validate that the credentials that are presented. The identification could be a certificate, token, or details such as a username or password. IdP is used by cloud providers who use federation services to validate the identity of a user. An example of this is that they would use SAML to pass credentials to the IdP to validate their identity.
Example: A user authenticates using a token from a provider such as OKTA. The cloud provider uses SAML to pass the credentials back to OKTA to verify the user's identity.
The following can be used when assessing a person's identity as it needs to be unique to them:
- Username: This is the account identity given to the user.
- Attribute: This is a unique variable that the user has in their account details, for example, an employee ID.
- Smart Card: A credit card token with a certificate embedded on a chip; it is used in conjunction with a pin.
- Certificate...