Abstract
In this paper we propose a simple scheme that allows CardSpace to be used as a password-based single sign-on system, thereby both improving the usability and security of passwords as well as encouraging CardSpace adoption. We describe three related approaches to achieving password-based single sign-on using CardSpace. In each case users are able to store their credentials for a set of websites in a personal card, and use it to seamlessly single sign on to all these websites. The approaches do not require any changes to login servers or to the CardSpace identity selector and, in particular, they do
not require websites to support CardSpace. We also describe three proof-of-concept prototypes and give usability, security and performance analyses.
not require websites to support CardSpace. We also describe three proof-of-concept prototypes and give usability, security and performance analyses.
Original language | English |
---|---|
Publisher | Department of Mathematics, Royal Holloway, University of London |
Number of pages | 24 |
Publication status | Unpublished - 23 Aug 2011 |
Publication series
Name | Technical Report Series |
---|---|
Publisher | Mathematics Department, Royal Holloway |
No. | RHUL-MA-2011-14 |
Keywords
- CardSpace
- Single sign-on
- Browser Extension