For example, the statement can be about a name, group, buying preference, ethnicity, privilege, association or capability.
To better understand the concept of security token service, consider the analogy of a night club with a doorman.
To facilitate this he requests a patron to present a driver's license, health insurance card or other identification (the token) that has been issued by a trusted third party (the security token service) such as the provincial or state vehicle license department, health department or insurance company.
With these two steps completed the nightclub has successfully authenticated the patron with regard to the claim that he or she is of legal drinking age.
The doorman might ask for another token, the membership card, which might make another claim; that the member is a VIP.
If the membership card makes the claim that the patron is a VIP, then the club can react accordingly, translating the authenticated VIP membership claim to a permission such as the patron being permitted to sit in the exclusive lounge area and be served free drinks.
A single sign in creates the token which is then used to authenticate against multiple applications, or web sites.