Title :
The study of multi-level authentication-based single sign-on system
Author :
Ying, Niu ; Yao, Zhao ; Hua, Zou
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
Single Sign on (SSO) is a method for accessing resources within multiple systems. However, some security vulnerabilities exist in current SSO systems, and user´s experience is not convenient. This paper proposes an extension of SSO, named multi-level authentication-based SSO (MLA-SSO). In MLA-SSO, SPs are divided into several levels based on security intensity. This allows the model to benefit from key advantages in security of the scheme. In specific procedures, MLA-SSO adds security strategy consultations. So MLA-SSO can help users to realize unified login and logout in their ways. At last, the design and implementation of a prototype of MLA-SSO, i.e. SHARE, is introduced and discussed.
Keywords :
authorisation; MLA-SSO; multi-level authentication; resource access; security intensity; single sign-on system; Authentication; Authorization; Content addressable storage; Cryptography; Data security; IP networks; Information security; Laboratories; Prototypes; Telecommunication switching; MLA-SSO; SHARE; SP; Single sign on;
Conference_Titel :
Broadband Network & Multimedia Technology, 2009. IC-BNMT '09. 2nd IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-4590-5
Electronic_ISBN :
978-1-4244-4591-2
DOI :
10.1109/ICBNMT.2009.5348533
