Ezwim recently implemented SAML based Federated SSO. Most people will hardly notice the short description of this implementation in our release document. The ones that read it will probably just frown and think it is not relevant to them. But it is a very exciting development for me. And I have gained a couple of extra gray hair in the process of implementing it!
Here is a little comparison between trust in the good ol’ days & the way trust works today, just so we have some real world concepts to hang our thoughts on:
When my grandparents still had a farm & grandpa went to the bank, the bank manager would know grandpa & therefore he was allowed to do business. Trust was based on well established knowledge.
Today, I carry an identity card with me in my wallet. When I go to the bank or hospital, they look at my ID card to determine who I am. They don’t trust me because of any knowledge about me; they trust the organization that issued me with the card.