Oracle Security Token Service (OSTS) simplifies access control and identity propagation in deployment environments that span heterogeneous platforms, identity systems, and single sign-on protocols. OSTS enables a single thread of identity by propagating identity and security context between web services, each of which may be utilizing different credential types.
OSTS is a Web Service (WS) Trust-based token service, enabling policy-driven trust brokering and secure identity propagation between Web services. OSTS is able to simplify the integration of distributed or federated Web services between an enterprise and its service providers. Key benefits of Oracle Security Token Services 11g R2 include:
Decoupling applications and services from the authentication mechanism, enabling them to solely focus on authorization
Enabling web services to support multiple credential types through token translation
Supporting federated scenarios where users are authenticated by their domain and granted access to resources in another domain
Facilitating identity delegation scenarios where the authenticated user is granted access to downstream services