Single Sign On and User Authentication

Originally this functionality was assigned to the ID/Auth working group. However, their focus has been primarily on foundational identity systems. Should the User Authentication functionality belong to the Security Building Block? Or is it part of the ID Building Block?