Is there a future in Federation? That's what I've been asking myself for years now (yes, it does keep me up at night thank you very much). It has great promise, and it has even showed it delivers in certain circumstances like universities, but will it ever be embraced in the private sector?
No one made much of a stink when
Microsoft finally killed passport but no one ever really talked about why it really failed. Personally, I think it had more to do with who was pushing it as opposed to the technology, but it did have some issues as well.
Why don't more companies implement it?From my limited experience it seems to be more a political issue than a technical one. The tech is getting there (finally with the release of SAML 2.0), but how many hubs are going to implement without having spokes ready to go? How do you convince a company to spend huge sums of money on a technology if their supply chain or customer base doesn't use it yet?
SAML 2.0 VS. WS-FederationWhen Microsoft introduced ADFS, they made the announcement that it would not support SAML 2.0, but they're implementation would be WS-FED compliant. Why is this a big deal? Because we finally thought the standards war was over. What does this mean for SAML 2.0? It remains to be seen, but I don't see it going away anytime soon.
