Wednesday, September 24, 2008


From Rajeev, Salesforce adds support for SAML 1.1 SSO.

From the post

Also, SAML never sends passwords to Salesforce, so it is inherently more secure than other authentication mechanisms.

The first phrase suggests that SAML is an actual actor in SSO, rather than just a protocol. And even I wouldn't make the claim in the second. So, I humbly suggest the following re-write
Also, SAML is not used to send your user's passwords to Salesforce, so it can offer security, privacy, and management advantages compared to direct authentication mechanisms.

No comments: