Bruegger, Bud P.Hühnlein, DetlefSchwenk, JörgBrömme, ArslanBusch, ChristophHühnlein, Detlef2019-04-032019-04-032008978-3-88579-231-4https://dl.gi.de/handle/20.500.12116/21201Federated Single-Sign-On using web browsers as User Agents becomes increasingly important. However, current proposals require substantial changes in the implementation of the Relying-Party, and concentrate on functionality rather than security against real-world attacks like Cross Site Scripting (XSS) and Pharming. We therefore propose a different approach based on Transport Layer Security (TLS), which is implemented in any web browser and web server, and which is immune against all currently known attacks.enText/Conference Paper1617-5468