Web Single Sign-On Systems

Abstract:

Currently, many web applications require users to register for a new account. With the proliferation of web applications, it has become impractical to expect users to remember different usernames and passwords for each application. Web Single Sign-On (Web SSO) protocols allow users to use a single username and password to access different applications. This paper examines three Web SSO protocols: SAML Web Browser SSO Profile, WS-Federation Passive Requestor Profile, and OpenID.

Table of Contents

• 1. Introduction
• • 1.1 Related Work
  • 1.2 Organization
• 2. SAML
• • 2.1 Core
  • 2.2 Bindings
  • 2.3 Profiles
• 3. SAML Web Browser SSO Profile
• • 3.1 Framework
  • 3.2 Security Issues
• 4. WS-Federation Passive Requestor Profile
• • 4.1 Framework
  • 4.2 Security Issues
• 5. OpenID
• • 5.1 Framework
  • 5.2 Security Issues
• 6. Summary
• References
• List of Acronyms

View the complete report online

Download the report in PDF format