000000227 001__ 227
000000227 005__ 20130522141957.0
000000227 037__ $$aLERSSE-POSTER-2010-002
000000227 100__ $$aSan-Tsai Sun
000000227 245__ $$aPoster: OpenIDemail Enabled Browser
000000227 260__ $$c2009-12-07
000000227 300__ $$a2
000000227 500__ $$aWeb Single Sign-On Web Identity Management Authentication
000000227 520__ $$aToday's Web is site-centric. Web users have to maintain a separate copy of user ID and password for each website, which leads to weaker passwords and password re-use across accounts. Currently, single-domain SSO is not scalable to the Web and federated SSO requires pre-built agreements and trust relationships between identity and service providers. OpenID is promising, but it has usability issues of URI-based identifier scheme and is vulnerable to phishing attacks. In this poster, we describe the architecture, design, and implementation of a proposed system for usable and secure Web single sign-on. Our approach builds OpenID support into web browsers, hides OpenID identifiers from users with their existing email accounts, extends the OpenID protocol to perform authentication directly by browsers, and introduces an OpenIDAuth HTTP access authentication scheme to convey authenticated identities automatically into websites that support OpenID for authentication.
000000227 700__ $$aKonstantin Beznosov
000000227 8560_ $$fsantsais@ece.ubc.ca
000000227 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/227/files/227.pdf$$yTransfer from CDS 0.99.7
000000227 909C4 $$pSan-Tsai Sun and Konstantin Beznosov. Poster: OpenIDemail Enabled Browser. In the poster session of the 25th Annual Computer Security Applications Conference (ACSAC), December 2009
000000227 980__ $$aPOSTER