Relative security of SAML vs Kerberos

security kerberos

Does anyone have any info/links on the relative security of SAML vs Kerberos. I believe I grasp the differences between the two, and what they mean for my particular application, but to decide between the two, knowing which is more secure, if either, would be a valuable bit of info.


From the top of my head:

  1. Kerberos is a lan (enterprise) technology while SAML is Internet.
  2. Kerberos requires that the system that requests the ticket (asks for user identity, in a way )is also in the kerberos domain, SAML does not require systems to sign up before.
  3. Kerberos does not reveal any identity information, because it does not know about anything beyond principal name.

In reality, SAML is for web apps and Kerberos is for unix/linux systems having SSO.

Related

How important is it to install on the program files folder?
Debian: how to create a user with root privileges (sudo)
Perl TDS character sets
Not enough storage is available to process this command [closed]
How To Disconnect Users Accessing a Windows Shared Folder using PowerShell
Do you have to run Remote Desktop to access Terminal Services?
Single-Signon options for Exchange 2010
See network computer description in Explorer
A usage of the word candidature
What is the subject of a participial phrase?
Is ";so," an acceptable grammar structure?
What is the origin of the pejorative idiom "You Doughnut"?