Diameter Single Sign On – Secureand Personalized Service Provision via Authenticationand Authorization Mechanisms
2012 (English)In: Advances in Computer Science and Information Technology. Networks and Communications: Second International Conference, CCSIT 2012, Bangalore, India, January 2-4, 2012. Proceedings, Part I, Berlin: Springer Berlin/Heidelberg, 2012, 573-581 p.Chapter in book (Refereed)
Network Services universally rely upon Authentication andAuthorization mechanisms to ensure secure and personalized service provision.Protocols, such as Diameter provides a reliable framework for efficient accesscontrol to network services utilized by network devices. This framework canalso encompass application level services e.g. web applications accessed viaweb browsers . On the other hand, the prevalence of Internet based servicesand applications have brought about the burden of identity managementamong distributed security domains, an issue not specifically addressed byprotocols such as Diameter. Efforts such as OpenID alleviate this difficulty byproposing an application level framework based on open standards to realizesingle sign on/off [ 2 ]semantics with regard to application level services.However, these technologies do not build upon existing security infrastructure,require significant investment in terms of technology adoption and have yetto receive industry wide acceptance and support. This paper presents DiameterSingle Sign On – a framework that provides single sign on/off semantics inthe context of network and application level services by harnessing thestrengths of existing and proven authentication and authorization infrastructure.Because of combination of the Diameter protocol with Single Sign On and OpenIDthe proposed architecture overcomes the problem of identity managementand also builds on existing security infrastructure.
Place, publisher, year, edition, pages
Berlin: Springer Berlin/Heidelberg, 2012. 573-581 p.
Engineering and Technology
Research subject Energy Technology
IdentifiersURN: urn:nbn:se:kau:diva-31342Local ID: 10.1007/978-3-642-27299-8_60ISBN: 978-3-642-27298-1ISBN: 978-3-642-27299-8OAI: oai:DiVA.org:kau-31342DiVA: diva2:695259
In proc. of the 3rd International conference on Network & Communications security (NCS2011)