TLS-Federation - a Secure and Relying-Party-Friendly Approach for Federated Identity Management

14 years 28 days ago

Download www.ecsec.de

: Federated Single-Sign-On using web browsers as User Agents becomes increasingly important. However, current proposals require substantial changes in the implementation of the Relying-Party, and concentrate on functionality rather than security against real-world attacks like Cross Site Scripting (XSS) and Pharming. We therefore propose a different approach based on Transport Layer Security (TLS), which is implemented in any web browser and web server, and which is immune against all currently known attacks.

Bud P. Bruegger, Detlef Hühnlein, Jörg S

Real-time Traffic

Biometrics | BIOSIG 2008 | Cross Site Scripting | Transport Layer Security | Web Browser |

claim paper

Post Info
More Details (n/a)

Added	29 Oct 2010
Updated	29 Oct 2010
Type	Conference
Year	2008
Where	BIOSIG
Authors	Bud P. Bruegger, Detlef Hühnlein, Jörg Schwenk

Comments (0)

Sciweavers

TLS-Federation - a Secure and Relying-Party-Friendly Approach for Federated Identity Management

Biometrics | BIOSIG 2008 | Cross Site Scripting | Transport Layer Security | Web Browser |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers