$69$:$49$

You are one of those who is taking care of application security in your application. One of your team mates asks you, "Why we need such sophisticated SSO "solutions" when the simplest SSO solution is to simply capture logged in user's login credentials $($id$,$ password$)$ and circulate to all concerned service providers or apps? Those service providers or apps can then re$-$authenticate the user using the provided credentials. Simple!". As an application security care$-$taker, which one of the following should be your response to your team mate?

Select the correct option$($s$)$ and click submit.

Agree to his proposal.

Disagree. "Ore of the goals of the SSO concept was to eliminate the need to key$-$in $($multiple$)$ passwords multiple times and thus eliminate circulation of password$($s$)$ to gain access to multiple applications$/$systems; So$,$ though your SSO solution sounds simple, it's not at all secure and it's against the principles of SSO."

Agree to his proposal. Along with it we need to implement secure token based authentication.

None of the above.