Anonymous Single Sign-On Schemes Transformed from Group Signatures

Author

Jingquan Wang ; Guilin Wang ; Susilo, Willy

Author_Institution

Center for Comput. & Inf. Security Res., Univ. of Wollongong, Wollongong, NSW, Australia

fYear

2013

fDate

9-11 Sept. 2013

Firstpage

560

Lastpage

567

Abstract

Single Sign-on (SSO) allows a user to obtain a single credential from a Trusted Third Party (TTP) once and then authenticates himself/herself to different service providers by using the same credential. Though different SSO schemes have been obtained from various primitives, user anonymity has not yet been studied formally. Motivated by the fact that anonymity is a very essential security requirement in certain scenarios, in this paper we first formalize a security model of anonymous single-sign on (ASSO). Subsequently, we present a generic ASSO scheme which is transformed from group signatures. Formal proofs are provided to show that the proposed ASSO is secure under the assumption that the underlying group signature is secure according to Bell are et al.´s model introduced at CT-RSA 2005. Compared to existing SSO schemes, our transformation not only implements the user´s anonymity, but also reduces the trust level in TTP.

Keywords

data privacy; digital signatures; ASSO security model; TTP; anonymous single sign-on schemes; formal proofs; generic ASSO scheme; group signatures; security requirement; service providers; trusted third party; user anonymity; Authentication; Games; Heuristic algorithms; Protocols; Public key; Servers; Anonymity; Authentication; Group Signatures; Single Sign-On;

fLanguage

English

Publisher

ieee

Conference_Titel

Intelligent Networking and Collaborative Systems (INCoS), 2013 5th International Conference on

Conference_Location

Xi´an

Type

conf

DOI

10.1109/INCoS.2013.104

Filename

6630474