Using CardSpace as a Password-based Single Sign-on System

Haitham S Al-Sinani, Chris J Mitchell

Research output: Book/ReportOther report

108 Downloads (Pure)

Abstract

In this paper we propose a simple scheme that allows CardSpace to be used as a password-based single sign-on system, thereby both improving the usability and security of passwords as well as encouraging CardSpace adoption. We describe three related approaches to achieving password-based single sign-on using CardSpace. In each case users are able to store their credentials for a set of websites in a personal card, and use it to seamlessly single sign on to all these websites. The approaches do not require any changes to login servers or to the CardSpace identity selector and, in particular, they do
not require websites to support CardSpace. We also describe three proof-of-concept prototypes and give usability, security and performance analyses.
Original languageEnglish
PublisherDepartment of Mathematics, Royal Holloway, University of London
Number of pages24
Publication statusUnpublished - 23 Aug 2011

Publication series

NameTechnical Report Series
PublisherMathematics Department, Royal Holloway
No.RHUL-MA-2011-14

Keywords

  • CardSpace
  • Single sign-on
  • Browser Extension

Cite this