• DocumentCode
    3308786
  • Title

    The Security Limitations of SSO in OpenID

  • Author

    Oh, Hyun-Kyung ; Jin, Seung-Hun

  • Author_Institution
    Inf. Security Eng., Korea Univ. of Sci. & Technol., Seoul
  • Volume
    3
  • fYear
    2008
  • fDate
    17-20 Feb. 2008
  • Firstpage
    1608
  • Lastpage
    1611
  • Abstract
    As the Internet becomes a way of social life, there are lots of accounts which a user has to manage. To receive the Web service, people have to register each Web site. It is the OpenID to resolve these burdensome. The OpenID provides the single sign-on service which a user can be authenticated in several Web sites by submitting the password of OpenID to authentication server only once. In this paper, we analyze the single sign-on in OpenID and show an experiment of vulnerability of OpenID.
  • Keywords
    Web services; Web sites; telecommunication security; Internet; OpenID; SSO; Web service; Web site; authentication server; security limitations; single sign-on service; Authentication; Authorization; Engineering management; Identity management systems; Information security; Internet; Intrusion detection; Technology management; Uniform resource locators; Web services; Cookie-based authentication system; ID Management system; OpenID; Single Sign-On(SSO);
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Advanced Communication Technology, 2008. ICACT 2008. 10th International Conference on
  • Conference_Location
    Gangwon-Do
  • ISSN
    1738-9445
  • Print_ISBN
    978-89-5519-136-3
  • Type

    conf

  • DOI
    10.1109/ICACT.2008.4494089
  • Filename
    4494089
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3308786