Shibboleth

Shibboleth is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows organizations to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.

The Shibboleth software implements widely used federated identity standards, primarily the OASIS Security Assertion Markup Language (SAML), to provide a federated single sign-on and attribute exchange framework. A user authenticates with his or her Home Organization credentials, and the Identity Provider of his /her Home Organization passes the minimal identity information necessary to the Service Provider to enable an authorization decision. Shibboleth also provides extended privacy functionality allowing users and their Home Organizations to control the attributes released to each application.

The Shibboleth project began as an Internet2 Middleware activity in 2000, and later that year the project connected with the work of the OASIS SAML Working Group. Shibboleth 1.0 was released in 2003, and was quickly adopted by Research and Education communities worldwide. With SAML 2.0 in 2005 and Shibboleth 2.0 in the following year, the SAML standards grew to include all the multi-lateral, metadata driven approaches pioneered by Shibboleth. Shibboleth is developed as open source software and is released under the Apache Software License.