SAML explanation and Attack

on

  1. SAML?
    1. Security Assertion Markup Language is an open standard for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider. SAML is an XML-based markup language for security assertions.
  2. Attack
    1. Signature Stripping 
    2. When we log in by SAML, it brings whole identity in response “ SAML Value “ field as a base64 encoded.
    3. If you decode it then you will find user ID available in that, change it with some other user ID and encode it again to base 64. Paste this new encoded value in the response “SAML Value” field.
    4. It will give you the access.


Comments

Post a Comment