Abstract
Distributed systems and networks have been adopted by telecommunications, remote educations, businesses, armies and governments. A widely applied technique for distributed systems and networks is the single sign-on (SSO) which enables a user to use a unitary secure credential (or token) to access multiple computers and systems where he/she has access permissions. However, most existing SSO schemes have not been formally proved to satisfy credential privacy and soundness of credential based authentication. To overcome this drawback, we formalise the security model of single sign-on scheme with authenticated key exchange. Specially, we point out the difference between soundness and credential privacy, and define them together in one definition. Also, we propose a provably secure single sign-on authentication scheme, which satisfies soundness, preserves credential privacy, meets user anonymity, and supports session key exchange. The proposed scheme is very efficient so that it suits for mobile devices in distributed systems and networks.
Original language | English |
---|---|
Title of host publication | Proceedings of the The 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications - The 11th IEEE International Conference On Ubiquitous Computing and Communications |
Subtitle of host publication | 25-27 June 2012 / Liverpool, United Kingdom |
Editors | Geyong Min, Yulei Wu, Lei (Chris) (Chris) Liu, Xiaolong Jin, Stephen Jarvis, Ahmed Y. Al-Dubai |
Place of Publication | Piscataway NJ USA |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Pages | 271-278 |
Number of pages | 8 |
ISBN (Electronic) | 9780769547459 |
ISBN (Print) | 9781467321723 |
DOIs | |
Publication status | Published - 2012 |
Externally published | Yes |
Event | IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2012 - Liverpool, United Kingdom Duration: 25 Jun 2012 → 27 Jun 2012 Conference number: 11th https://ieeexplore.ieee.org/xpl/conhome/6294581/proceeding (Proceedings) |
Conference
Conference | IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2012 |
---|---|
Abbreviated title | TrustCom 2012 |
Country/Territory | United Kingdom |
City | Liverpool |
Period | 25/06/12 → 27/06/12 |
Internet address |
Keywords
- Authentication
- Distributed systems and networks
- Information security
- Single sign-on
- Soundness