Security Analysis of Web-Based Identity Federation

Provided by: IBM
Topic: Security
Format: PDF
While security of cross-domain single sign-on is a thoroughly researched subject, the closely related web identity federation has not been recognized as a distinct problem requiring analysis in its own right. In this paper, the authors describe a generic approach for analyzing security of web protocols through a framework for reasoning about user actions. They then use this framework to analyze security of important web identity federation protocols. They show that a secure single sign-on protocol does not necessarily ensure safety of linking identities across domains.

Find By Topic