Skip to main content
placeholder image

A generic construction of dynamic single sign-on with strong security

Conference Paper


Abstract


  • Single Sign-On (SSO) is a core component in a federated identity management (FIM). Dynamic Single Sign-on (DSSO) is a more flexible SSO where users can change their service requirements dynamically. However, the security in the current SSO and DSSO systems remain questionable. As an example, personal credentials could be illegally used to allow illegal users to access the services. It is indeed a challenging task to achieve strong security in SSO and DSSO. In this paper, we propose a generic construction of DSSO with strong security. We propose the formal definitions and security models for SSO and DSSO, which enable one to achieve the security of SSO and DSSO with the underlying (standard) security assumptions. We also provide a formal security proof on our generic DSSO scheme.

Publication Date


  • 2010

Citation


  • Han, J., Mu, Y., Susilo, W. & Yan, J. (2010). A generic construction of dynamic single sign-on with strong security. In S. Jajodia & J. Zhou (Eds.), International ICST Conference on Security and Privacy in Communication Networks (pp. 181-198). Germany: Springer.

Scopus Eid


  • 2-s2.0-84885890418

Ro Metadata Url


  • http://ro.uow.edu.au/infopapers/1735

Start Page


  • 181

End Page


  • 198

Abstract


  • Single Sign-On (SSO) is a core component in a federated identity management (FIM). Dynamic Single Sign-on (DSSO) is a more flexible SSO where users can change their service requirements dynamically. However, the security in the current SSO and DSSO systems remain questionable. As an example, personal credentials could be illegally used to allow illegal users to access the services. It is indeed a challenging task to achieve strong security in SSO and DSSO. In this paper, we propose a generic construction of DSSO with strong security. We propose the formal definitions and security models for SSO and DSSO, which enable one to achieve the security of SSO and DSSO with the underlying (standard) security assumptions. We also provide a formal security proof on our generic DSSO scheme.

Publication Date


  • 2010

Citation


  • Han, J., Mu, Y., Susilo, W. & Yan, J. (2010). A generic construction of dynamic single sign-on with strong security. In S. Jajodia & J. Zhou (Eds.), International ICST Conference on Security and Privacy in Communication Networks (pp. 181-198). Germany: Springer.

Scopus Eid


  • 2-s2.0-84885890418

Ro Metadata Url


  • http://ro.uow.edu.au/infopapers/1735

Start Page


  • 181

End Page


  • 198