Products
Products
Download Trial Company Studio License
Starts at $4,699
- Suites
  
  Ultimate Studio
  all Ultimate .NET products in one integrated suite
  
  Network Expert
  all Networking components plus ZIP product
  
  FTP Expert
  FTP, SFTP, SFTP Server, and Terminal Emulation libraries
  
  Document Expert
  PDF, PDF Viewer, Word, and Excel libraries
  
  Mail Expert
  Mail, Bounce Inspector, Email Validator, and Template Engine
- Network Libs
  
  SFTP & SCP
  
  FTP & FTPS
  
  Terminal Emulation
  
  Mail Library
  
  Bounce Inspector
  
  SFTP Server
  
  Netkit
  
  Email Validator
  
  Encryptor
  
  Template Engine
- File Formats
  
  PDF Library
  
  PDF Viewer
  
  Word Library
  
  Excel Library
- SAML & Compression
  
  SAML SSO Library
  
  ZIP Library
Purchase
Support
- Support Center
- Question and Answer Space
Resources
Company
Search in:
Website

Documentation

Question & Answer Space

Blog
- Login
- Register
Free Trial

BUY Free Trial

How to handle replay attacks in SSO using SAML ?

0

Hi Team, Can anyone help me to code "nonce" for my SAML SSO implementation ? This way I want to avoid the replay attacks ? Thanks.

saml asp.net mvc

asked 6/2/2021 10:06:42 AM

pjoshi

0

add a comment

1 Answers

active oldest votes

0

Hi pjoshi, In order to avoid replay attacks, you can store the ID of the SAML messages already processed, to avoid processing them twice. Since the Messages expires and will be invalidated due that fact, you don't need to store those IDs longer than the time frame that you currently accepting.

answered 6/30/2021 8:39:56 PM

Martin Naude

0

add a comment