97% of SaaS Vendors Backing SAML-based Single Sign-on

February 25th, 2014

Cloud Security Alliance and OneLogin Survey and Infographic Shows Majority of SaaS Vendors Leveraging SAML Top Drivers are Customer Demand, Improved Security, and Quick Integration with User App Stores

SAN FRANCISCO RSA® Conference 2014, CA – February 25, 2014 – OneLogin, the innovator in enterprise identity management, and the Cloud Security Alliance today announced findings from their OneLogin 2014 State of SaaS Identity Management survey, which was conducted to better understand the maturity of SaaS vendors in their implementation of identity management solutions, security standards and assurance certifications. An accompanying infographic to this study is available at https://www.onelogin.com/programs/identity-management/. Most notably, the survey results point to the widespread adoption of SAML standards by SaaS vendors for single sign-on identity management, in response to customer demands for fast, simple and secure employee, customer and partner access to applications in their environments.

By eliminating all passwords and instead using digital signatures for authentication and authorization of data access, SAML has become the Gold Standard for single sign-on into cloud applications. SAML-enabled SaaS applications are easier and quicker to user provision in complex enterprise environments, are more secure and help simplify identity management across large and diverse user communities. 100 participants completed the OneLogin 2014 State of SaaS Identity Management survey. Key findings include:

  • SAML is Identity Management Standard of Choice – 67 percent of the SaaS vendors surveyed use SAML today for single sign-on identity management, while 19 percent said they planned to implement SAML within the next 12 months. Only 3 percent had no plans to implement the standard.
  • Customer Demand, Security and Speed Drive SAML Adoption – 26 percent of survey respondents cited demand from existing customers as the primary driver behind their SAML adoption, 21 percent cited improved security and compliance, and nearly 22 percent cited quick integration into cloud application ecosystems.
  • SAML Adoption Not Limited to the Web Browser – 37 percent of the SaaS vendors surveyed leverage SAML on mobile versions of their apps, and 25 percent use SAML for desktop applications not including a web browser.

“As enterprises adopt more and more cloud-based applications, they need to be able to provision and deprovision both apps and users fast enough to keep up with business requirements, while maintaining tight security and compliance through identity management,” said Jim Reavis, CEO of the Cloud Security Alliance. “Our survey with OneLogin has revealed that SAML is quickly gaining momentum as the standard of choice for SaaS vendors looking to meet their customers’ demands for applications already architected for quick, easy provisioning and secure single sign-on.”

OneLogin is a longtime supporter of the SAML standard. Its cloud-based solution for single sign-on and enterprise identity management is pre-integrated via SAML with more than 350 enterprise applications, including Dropbox, EMC Syncplicity, Google Apps, NetSuite, Office 365, Salesforce, Workday and Zendesk. In addition, more than 150 SaaS vendors, including Dropbox, have used OneLogin’s free open source SAML Toolkits to SAML-enable their apps.

“Customer demand was one of the drivers behind our adoption of SAML,” said Ari Friedland, Head of Business Development and Partnerships for Dropbox for Business. “We partnered with OneLogin to offer SAML-based single sign-on for Dropbox for Business customers of all sizes, across the world. OneLogin’s tools for Active Directory authentication, as well as their SAML toolkits, great documentation and outstanding support team are a key enabler for the adoption of Dropbox for Business.”

“When we open sourced our first SAML Toolkit three years ago, it was an attempt to grow the ecosystem by democratizing single sign-on and making it available to companies of any size,” said Thomas Pedersen, co-founder and CEO for OneLogin. “This survey shows that SAML is stronger than ever and the momentum is fueled by the realization that SAML provides a massive security boost by enabling enterprises to control access to their sensitive data.”

The OneLogin 2014 State of SaaS Identity Management survey also looked at SaaS adoption of other standards such as SCIM and SPML, as well as trends related to ISO 270001 certification.

About the Cloud Security Alliance

The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

About OneLogin

OneLogin is the innovator in enterprise identity management and provides the industry’s fastest, easiest and most secure solution for managing user identities, both in the cloud and behind the firewall. Ranked #1 in Network World Magazine’s review of SSO tools, OneLogin’s cloud identity management platform provides secure single sign-on, multi-factor authentication, integration with common directory infrastructures such as Active Directory and LDAP, user provisioning and more. OneLogin is SAML-enabled and pre-integrated with more than 3,500 applications commonly used by today’s enterprises, including DocuSign, Dropbox, Google Apps, Microsoft Office 365, Salesforce, SugarCRM, WebEx, Workday and Zendesk. OneLogin, Inc. is backed by CRV and The Social+Capital Partnership. Free Trial Available at: https://www.onelogin.com/free-trial/ For more information: www.onelogin.com | Twitter: @onelogin.

Contact Information:

For OneLogin Theresa Smith Kickstart Consulting Ph: 818-704-8481 tsmith@kickstartconsulting.com

Secure all your apps, users, and devices