A Survey on Single Sign-On Techniques

Radha, V.; Reddy, D. Hitha

doi:10.1016/j.protcy.2012.05.019

Cited by 71 publications

(41 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…It makes easy to manage the rights of a user arriving, changing function in or leaving the company, to quickly integrate added applications, delegate access rights during holidays without increasing the helpdesk's workload. (Radha & Hitha Reddy, 2012).…”

Section: Login Methodsmentioning

confidence: 99%

To Social Login or not Login? Exploring Factors Affecting the Decision

Gafni

Nissim

2014

IISIT

View full text Add to dashboard Cite

In the last few years Social Login was introduced, as a solution for the need to remember a large quantity of user id's composed of username and password to connect Websites. Social Login offers an easy connection to various Websites, providing the visitors the option to register or sign-in using any of their preferred social network accounts such as Facebook, Twitter, Google+, LinkedIn and other.This research examines the factors that affect user registration through Social Login, and the readiness to use Social Login. Using a questionnaire which was responded by 101 Internet users, where 86 of them were already aware of the Social Login option, five major factors were found: Privacy, Security, Familiarity, Convenience and Ease of use. Privacy and Security were found as inhibitor factors, while Familiarity and Convenience were found as encouragers. Ease of use was not found as a predictive factor.

show abstract

Section: Login Methodsmentioning

confidence: 99%

To Social Login or not Login? Exploring Factors Affecting the Decision

Gafni

Nissim

2014

IISIT

View full text Add to dashboard Cite

show abstract

“…There has been some research on authentication in a distributed manner (e.g., Kerberos [7]), as well as the combination of authentication and authorization in distributed systems (e.g., Keynote [8]). Distributed authentication is commonly associated with single sign-on schemes [6] or federated identity [9]. In this paper, we consider distributed authentication to be a process in which a user's claim to a digital identity is verified by two or more independent systems.…”

Section: Review Of Distributed Authentication Protocolsmentioning

confidence: 99%

“…In some current implementations, the authentication server can be completely separated from the server running web applications. For example, single sign-on schemes [6] are based on this concept. However, even in these circumstances the same security risk is present if the authentication information is stored on one server.…”

Section: Introductionmentioning

confidence: 99%

A distributed authentication architecture and protocol

2017

View full text Add to dashboard Cite

Original scientific paper Most user authentication methods rely on a single verifier being stored at a central location within the information system. Such information storage presents a single point of compromise from a security perspective. If this system is compromised it poses a direct threat to users' digital identities if the verifier can be extracted from the system. This paper proposes a distributed authentication environment in which there is no such single point of compromise. We propose an architecture that does not rely on a single verifier to authenticate users, but rather a distributed authentication architecture where several authentication servers are used to authenticate a user. We consider an authentication environment in which the user authentication process is distributed among independent servers. Each server independently performs its own authentication of the user, for example by asking the user to complete a challenge in order to prove his claim to a digital identity. The proposed architecture allows each server to use any authentication factor. We provide a security analysis of the proposed architecture and protocol, which shows they are secure against the attacks chosen in the analysis. Keywords: authentication factors; digital identity; distributed authentication architecture; distributed authentication protocol; distributed user authentication Arhitektura i protokol za raspodijeljenu autentifikaciju korisnikaIzvorni znanstveni članak Većina metoda autentifikacije korisnika oslanjaju se na jedan verifikator koji se pohranjuje na središnjem mjestu unutar informacijskog sustava. Takva pohrana osjetljivih informacija predstavlja jedinstvenu točku ispada iz sigurnosne perspektive. Kompromitacija verifikatora jednog sustava predstavlja izravnu prijetnju korisnikovom digitalnom identitetu. U radu se predlaže raspodijeljeno okruženje za autentifikaciju u kojem ne postoji takva točka ispada. Rad opisuje arhitekturu koja omogućuje raspodijeljenu autentifikaciju korisnika u kojoj više autentifikacijskih poslužitelja sudjeluju u provjeri autentičnosti korisnika. Razmatra se autentifikacijsko okruženje u kojem se proces autentifikacije korisnika raspodjeljuje na više nezavisnih poslužitelja. Svaki poslužitelj samostalno obavlja autentifikaciju korisnika, na primjer tražeći od korisnika da odgovori na izazov kako bi dokazao da je vlasnik digitalnog identiteta. Predložena arhitektura omogućuje svakom poslužitelju da koristi drugi autentifikacijski faktor. Provedena je sigurnosna analiza predložene arhitekture i protokola, čime se dokazuje otpornost sustava od napada odabranih u analizi.Ključne riječi: autentifikacijski faktori; digitalni identitet; raspodijeljena autentifikacija korisnika; raspodijeljeni autentifikacijski protokol; raspodijeljena arhitektura za autentifikaciju

show abstract

“…Next, developers can get user credentials according to the system identifier (service_id) to finish the auto-logging process [6]. Generally, auto-logging can be implemented by a plug-in or modification on the login page.…”

Section: User Mapping Structurementioning

confidence: 99%

Single Sign-On Research and Expansion Based On CAS

Fang¹,

Hao²,

Han³

2015

TOCSJ

View full text Add to dashboard Cite

Abstract:With the new application systems integrated with existing systems, many problems have arisen, such as system integration difficultly and audit function loss. Hence, Single Sign-on has become an important solution for popular enterprise business integration at present. According to the research and exploration of SSO system which is based on Yale-CAS authentication protocol, this paper introduced the integration of application systems using user-mapping with making the least amount of modifications. In addition, this paper has provided a complete security audit function for the single sign-on system, so a more comprehensive system security can be provided.

show abstract

A Survey on Single Sign-On Techniques

Cited by 71 publications

References 1 publication

To Social Login or not Login? Exploring Factors Affecting the Decision

To Social Login or not Login? Exploring Factors Affecting the Decision

A distributed authentication architecture and protocol

Single Sign-On Research and Expansion Based On CAS

Contact Info

Product

Resources

About