Hello, everyone, I am considering adoption of CAS for an third-party integration with our platform, but we require formal security reviews prior to adoption of any new means of authentication. We conducted a brief review internally, but some concerns were raised (admittedly those concerns could be related entirely to our own naivety).
Is anyone aware of any formal security reviews that have been conducted on CAS? Any relative comparisons of CAS vs. SAML? CAS vs. Shibboleth? Any information you could provide is appreciated... Thanks, Chris Hatton
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
