nerdexam
(ISC)2

CISSP · Question #1091

A security professional has been assigned to assess a web application. The assessment report recommends switching to Security Assertion Markup Language (SAML). What is the PRIMARY security benefit in

The correct answer is C. The users' password Is not passed during authentication.. SAML is an XML-based standard for exchanging authentication and authorization data between different parties, such as a service provider and an identity provider. SAML enables single sign- on (SSO) for web applications, which means that users can access multiple services with one

Submitted by renata2k· Mar 5, 2026Identity and Access Management

Question

A security professional has been assigned to assess a web application. The assessment report recommends switching to Security Assertion Markup Language (SAML). What is the PRIMARY security benefit in switching to SAML?

Options

  • AIt uses Transport Layer Security (TLS) to address confidentiality.
  • Bit enables single sign-on (SSO) for web applications.
  • CThe users' password Is not passed during authentication.
  • DIt limits unnecessary data entry on web forms.

How the community answered

(53 responses)
  • A
    2% (1)
  • B
    6% (3)
  • C
    89% (47)
  • D
    4% (2)

Explanation

SAML is an XML-based standard for exchanging authentication and authorization data between different parties, such as a service provider and an identity provider. SAML enables single sign- on (SSO) for web applications, which means that users can access multiple services with one set of credentials. SAML also improves security by not passing the users' password during authentication, but instead using assertions that contain information about the user's identity and attributes. SAML assertions are digitally signed and encrypted to ensure their integrity and confidentiality. SAML does not use TLS to address confidentiality, although it can be used as an additional layer of protection. SAML does not limit unnecessary data entry on web forms, although it can reduce the need for users to enter their credentials repeatedly.

Topics

#SAML#single sign-on#authentication protocols

Community Discussion

No community discussion yet for this question.

Full CISSP Practice