Development of Single Sign-On System with Hardware Token and Key Management Server

With the growth of the Internet, various types of services, such as World Wide Web (WWW), file transfer protocol (FTP), remote login, etc., are widely expanded. Consequently, it is difficult for users to manage all the authentication information, e.g., user ID/Password pairs, keys, and certificates, since the authentication information has been increased to use those services. Therefore, single sign-on (SSO) system, which makes all the services available for a user by only one-time authentication, has been developed. However, existing systems cannot provide all the SSO services for any kinds of services on the Internet even if the service provider deploys the SSO server. Therefore, in this paper, we propose a new SSO system with hardware token and key management server to improve the safety and the convenience. Furthermore, we implement the proposed system, and show its effectiveness through evaluation. In addition, adding any functions for this system provide various conveniences to us. As one example, we add high trust connection function for a Web server, and show its the effectiveness through evaluation by implementing it.