Identity & Access Management Content Library

Featured Whitepaper

SAML VS OAuth 2.0 VS OpenID Connect

Understanding the differences between the three most common authorization protocols


The world of Identity and Access Management is ruled by two things, acronyms and standards. In our hugely popular blog post on SAML vs OAuth we compared the two most common authorization protocols – SAML2 and OAuth 2.0. This white paper extends that comparison with the inclusion of a third protocol, OpenID Connect. We also touch on the now obsolete OpenID 2.0 protocol.

In this whitepaper, you will learn:

  • A version history and background to the three most common authorization protocols – SAML, OAuth & OpenID
  • Comparisons of the protocols
  • Protocol suitability for certain business needs and best use cases, including enterprise, federation, API authorization, UMA, Customer SSO, Customer IAM, mobile