Federated security allows your application to rely on another application (an identity provider, such as Windows Azure or Facebook) to authenticate users. When the provider is satisfied, the user is authentic, the provider forwards a token to your application that contains a set of claims. Claims are bits of information the identity provider is willing to share with other applications, such as name, phone number, or email address. The more claims your application receives, the more information you know about the user. What your application does with this information and how much you trust it depends on how much you trust the identity provider.

Federated ...