Abstract
We present a novel single sign-on (SSO) scheme known as secure distributed SSO (SeDSSO). SeDSSO provides secure fault-tolerant authentication using threshold key encryption with a distributed authentication service. The authentication service consists of n total authentication servers utilizing a (t, n) threshold encryption scheme, where t distinct server-signed messages are required to generate a message signed by the service. SeDSSO provides secure portable identities by defining a two-factor identity that uses both a username/password and a unique USB device. The combination of a distributed authentication service and two-factor identities allows SeDSSO to securely authenticate users in any environment.
Original language | English |
---|---|
Pages (from-to) | 315-323 |
Number of pages | 9 |
Journal | Security and Communication Networks |
Volume | 2 |
Issue number | 4 |
DOIs | |
State | Published - 2009 |
Keywords
- Computer security
- Distributed systems
- SeDSSO
- Single sign-on
- Two-factor authentication
ASJC Scopus subject areas
- Information Systems
- Computer Networks and Communications