TLS-Federation – a Secure and Relying-Party-Friendly Approach for Federated Identity Management

Bruegger, Bud P.; Hühnlein, Detlef; Schwenk, Jörg

Konferenzbeitrag

TLS-Federation – a Secure and Relying-Party-Friendly Approach for Federated Identity Management

Dokumententyp

Text/Conference Paper

Dateien

93.pdf (233.36 KB)

Datum

2008

Autor:innen

Bruegger, Bud P.

Hühnlein, Detlef

Schwenk, Jörg

Quelle

BIOSIG 2008: Biometrics and Electronic Signatures

Regular Research Papers

Verlag

Gesellschaft für Informatik e. V.

Zusammenfassung

Federated Single-Sign-On using web browsers as User Agents becomes increasingly important. However, current proposals require substantial changes in the implementation of the Relying-Party, and concentrate on functionality rather than security against real-world attacks like Cross Site Scripting (XSS) and Pharming. We therefore propose a different approach based on Transport Layer Security (TLS), which is implemented in any web browser and web server, and which is immune against all currently known attacks.

Bruegger, Bud P.; Hühnlein, Detlef; Schwenk, Jörg (2008): TLS-Federation – a Secure and Relying-Party-Friendly Approach for Federated Identity Management. BIOSIG 2008: Biometrics and Electronic Signatures. Bonn: Gesellschaft für Informatik e. V.. PISSN: 1617-5468. ISBN: 978-3-88579-231-4. pp. 93-104. Regular Research Papers. Darmstadt. 11.-12. September 2008

Sammlungen

P137 - BIOSIG 2008 - Proceedings of the 7th International Conference of the Biometrics Special Interest Group

Komplettanzeige

TLS-Federation – a Secure and Relying-Party-Friendly Approach for Federated Identity Management

Volltext URI

Dokumententyp

Dateien

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen