Provably secure single sign-on scheme in distributed systems and networks

Jiangshan Yu, Guilin Wang, Yi Mu

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

12 Citations (Scopus)

Abstract

Distributed systems and networks have been adopted by telecommunications, remote educations, businesses, armies and governments. A widely applied technique for distributed systems and networks is the single sign-on (SSO) which enables a user to use a unitary secure credential (or token) to access multiple computers and systems where he/she has access permissions. However, most existing SSO schemes have not been formally proved to satisfy credential privacy and soundness of credential based authentication. To overcome this drawback, we formalise the security model of single sign-on scheme with authenticated key exchange. Specially, we point out the difference between soundness and credential privacy, and define them together in one definition. Also, we propose a provably secure single sign-on authentication scheme, which satisfies soundness, preserves credential privacy, meets user anonymity, and supports session key exchange. The proposed scheme is very efficient so that it suits for mobile devices in distributed systems and networks.

Original languageEnglish
Title of host publicationProceedings of the The 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications - The 11th IEEE International Conference On Ubiquitous Computing and Communications
Subtitle of host publication25-27 June 2012 / Liverpool, United Kingdom
EditorsGeyong Min, Yulei Wu, Lei (Chris) (Chris) Liu, Xiaolong Jin, Stephen Jarvis, Ahmed Y. Al-Dubai
Place of PublicationPiscataway NJ USA
PublisherIEEE, Institute of Electrical and Electronics Engineers
Pages271-278
Number of pages8
ISBN (Electronic)9780769547459
ISBN (Print)9781467321723
DOIs
Publication statusPublished - 2012
Externally publishedYes
EventIEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2012 - Liverpool, United Kingdom
Duration: 25 Jun 201227 Jun 2012
Conference number: 11th
https://ieeexplore.ieee.org/xpl/conhome/6294581/proceeding (Proceedings)

Conference

ConferenceIEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2012
Abbreviated titleTrustCom 2012
CountryUnited Kingdom
CityLiverpool
Period25/06/1227/06/12
Internet address

Keywords

  • Authentication
  • Distributed systems and networks
  • Information security
  • Single sign-on
  • Soundness

Cite this

Yu, J., Wang, G., & Mu, Y. (2012). Provably secure single sign-on scheme in distributed systems and networks. In G. Min, Y. Wu, L. C. (Chris) Liu, X. Jin, S. Jarvis, & A. Y. Al-Dubai (Eds.), Proceedings of the The 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications - The 11th IEEE International Conference On Ubiquitous Computing and Communications: 25-27 June 2012 / Liverpool, United Kingdom (pp. 271-278). [6295985] IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/TrustCom.2012.228