Title :
Provably Secure Single Sign-on Scheme in Distributed Systems and Networks
Author :
Yu, Jiangshan ; Wang, Guilin ; Mu, Yi
Author_Institution :
Center for Comput. & Inf. Security Res., Univ. of Wollongong, Wollongong, NSW, Australia
Abstract :
Distributed systems and networks have been adopted by telecommunications, remote educations, businesses, armies and governments. A widely applied technique for distributed systems and networks is the single sign-on (SSO) which enables a user to use a unitary secure credential (or token) to access multiple computers and systems where he/she has access permissions. However, most existing SSO schemes have not been formally proved to satisfy credential privacy and soundness of credential based authentication. To overcome this drawback, we formalise the security model of single sign-on scheme with authenticated key exchange. Specially, we point out the difference between soundness and credential privacy, and define them together in one definition. Also, we propose a provably secure single sign-on authentication scheme, which satisfies soundness, preserves credential privacy, meets user anonymity, and supports session key exchange. The proposed scheme is very efficient so that it suits for mobile devices in distributed systems and networks.
Keywords :
computer network security; distributed processing; SSO; access multiple computers; credential based authentication; distributed systems; mobile devices; provably secure single sign on scheme; unitary secure credential; Authentication; Mobile handsets; Privacy; Protocols; Public key; Silicon; Authentication; Distributed systems and networks; Information security; Single sign-on; Soundness;
Conference_Titel :
Trust, Security and Privacy in Computing and Communications (TrustCom), 2012 IEEE 11th International Conference on
Conference_Location :
Liverpool
Print_ISBN :
978-1-4673-2172-3
DOI :
10.1109/TrustCom.2012.228
