Skip to main content
placeholder image

Secure single sign-on schemes constructed from nominative signatures

Conference Paper


Download full-text (Open Access)

Abstract


  • Single Sign-on (SSO) allows users to only log on

    once and then access different services via automatic authentication

    by using the same credential. However, most existing

    SSO schemes do not satisfy security notions or require a high

    trust level on a trusted third party (TTP), even though SSO

    has become popular in new distributed systems and computer

    networks. Motivated by this fact, we formalise a new security

    model of single sign-on, which not only satisfies strong security

    notions but also has a low trust level on TTP. We then propose

    a generic construction of SSO from nominative signatures, and

    present concrete initialisation. We also provide formal proofs

    to show that the proposed SSO scheme is secure according to

    our new formal model, if the underlying nominative signature

    is secure. We note that this is the first study that investigates

    the link between SSO and nominative signatures, which also

    be of an independent interest.

UOW Authors


  •   Wang, Jingquan (external author)
  •   Wang, Guilin (external author)
  •   Susilo, Willy

Publication Date


  • 2013

Citation


  • Wang, J., Wang, G. & Susilo, W. (2013). Secure single sign-on schemes constructed from nominative signatures. 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) (pp. 620-627). United States: IEEE.

Scopus Eid


  • 2-s2.0-84893514716

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=2585&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/1576

Start Page


  • 620

End Page


  • 627

Place Of Publication


  • http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=6680894

Abstract


  • Single Sign-on (SSO) allows users to only log on

    once and then access different services via automatic authentication

    by using the same credential. However, most existing

    SSO schemes do not satisfy security notions or require a high

    trust level on a trusted third party (TTP), even though SSO

    has become popular in new distributed systems and computer

    networks. Motivated by this fact, we formalise a new security

    model of single sign-on, which not only satisfies strong security

    notions but also has a low trust level on TTP. We then propose

    a generic construction of SSO from nominative signatures, and

    present concrete initialisation. We also provide formal proofs

    to show that the proposed SSO scheme is secure according to

    our new formal model, if the underlying nominative signature

    is secure. We note that this is the first study that investigates

    the link between SSO and nominative signatures, which also

    be of an independent interest.

UOW Authors


  •   Wang, Jingquan (external author)
  •   Wang, Guilin (external author)
  •   Susilo, Willy

Publication Date


  • 2013

Citation


  • Wang, J., Wang, G. & Susilo, W. (2013). Secure single sign-on schemes constructed from nominative signatures. 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) (pp. 620-627). United States: IEEE.

Scopus Eid


  • 2-s2.0-84893514716

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=2585&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/1576

Start Page


  • 620

End Page


  • 627

Place Of Publication


  • http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=6680894