Gesellschaft für Informatik e.V.

Lecture Notes in Informatics

BIOSIG 2008: Biometrics and Electronic Signatures P-137, 93-104 (2008).

Gesellschaft für Informatik, Bonn


Arslan Brömme (ed.), Christoph Busch (ed.), Detlef Hühnlein (ed.)

Copyright © Gesellschaft für Informatik, Bonn


TLS-federation - a secure and relying-party-friendly approach for federated identity management

Bud P. Bruegger , Detlef Hühnlein and Jörg Schwenk


Federated Single-Sign-On using web browsers as User Agents becomes increasingly important. However, current proposals require substantial changes in the implementation of the Relying-Party, and concentrate on functionality rather than security against real-world attacks like Cross Site Scripting (XSS) and Pharming. We therefore propose a different approach based on Transport Layer Security (TLS), which is implemented in any web browser and web server, and which is immune against all currently known attacks.

Full Text: PDF

Gesellschaft für Informatik, Bonn
ISBN 978-3-88579-231-4

Last changed 04.10.2013 18:19:07