A software house is developing a new application the applica - CompTIA CAS-005

The correct answer is B. OpenID.

OpenID is the best federation method for the application because it is designed to authenticate users and integrate with social networks while reducing the number of credential requests. OpenID allows users to log in to the application using their existing accounts with social networks (such as Google, Facebook, etc.), which meets the requirement of reducing the number of credential requests.

OpenID allows for Single Sign-On (SSO), where the user only needs to authenticate once via their social network account and then can access the application without needing to enter credentials again.

Why the other options are not correct:

• WS-Federation:

  • WS-Federation is a web services-based federation protocol that is used for identity federation, but it is generally used in enterprise scenarios where security requirements are higher and often involves Microsoft-based technologies. It's not typically used for integrating with social networks or minimizing credential requests in the way that OpenID can.

• OAuth:

  • OAuth is an authorization protocol, not an authentication protocol. OAuth allows an application to request permissions from a user to access their data (e.g., access a user’s Google contacts), but it does not authenticate the user directly. OAuth is often used alongside OpenID (OpenID Connect) for the complete process of both authentication and authorization.

• SAML:

  • SAML (Security Assertion Markup Language) is used for single sign-on in corporate or enterprise environments, typically for large-scale applications or federated identity management in organizations. It’s not as widely adopted for social network integrations, and it requires more overhead for integration than OpenID, making it less suited for applications aiming to authenticate users with social networks.