A secure two-factor authentication scheme for single sign-on services

Kaleb Brasee, S. Kami Makki, Sherali Zeadally

Research output: Contribution to journalArticlepeer-review

1 Scopus citations

Abstract

We present a novel single sign-on (SSO) scheme known as secure distributed SSO (SeDSSO). SeDSSO provides secure fault-tolerant authentication using threshold key encryption with a distributed authentication service. The authentication service consists of n total authentication servers utilizing a (t, n) threshold encryption scheme, where t distinct server-signed messages are required to generate a message signed by the service. SeDSSO provides secure portable identities by defining a two-factor identity that uses both a username/password and a unique USB device. The combination of a distributed authentication service and two-factor identities allows SeDSSO to securely authenticate users in any environment.

Original languageEnglish
Pages (from-to)315-323
Number of pages9
JournalSecurity and Communication Networks
Volume2
Issue number4
DOIs
StatePublished - 2009

Keywords

  • Computer security
  • Distributed systems
  • SeDSSO
  • Single sign-on
  • Two-factor authentication

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'A secure two-factor authentication scheme for single sign-on services'. Together they form a unique fingerprint.

Cite this