A hybrid approach for highly available & secure storage of pseudo-SSO credentials
2012 (English)In: Secure IT Systems: 17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October 31 – November 2, 2012. Proceedings, Springer, 2012, 169-183 p.Conference paper (Refereed)
Abstract: We present a novel approach for password/credential storage in Pseudo-SSO scenarios based on a hybrid password hashing/password syncing approach that is directly applicable to the contemporary Web. The approach supports passwords without requiring modification of the server side and thus is immediately useful; however, it may still prove useful for storing more advanced credentials in future SSO and identity management scenarios, and offers a high level of security. Keywords. Single sign-on, authentication, syncing, hashing.
Place, publisher, year, edition, pages
Springer, 2012. 169-183 p.
Lecture Notes in Computer Science, ISSN 0302-9743 ; 7617
IdentifiersURN: urn:nbn:se:kau:diva-46757DOI: 10.1007/978-3-642-34210-3_12ISBN: 978-3-642-34209-7 (print)OAI: oai:DiVA.org:kau-46757DiVA: diva2:1037184
17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October 31 – November 2, 2012