Add to ORKGAbstract — This paper studies the privacy risks for the users of the OpenID Single Sign-On (SSO) mechanism. A privacy vulnerability in the OpenID Authentication Protocol that leads to the exposure of the OpenID user identifier to third parties is described in detail. It has been verified that many existing OpenID agents are currently leaking the (potentially unique) OpenID identifiers of their users to third parties, like advertise-ment and traffic analysis companies. Therefore we consider this vulnerability as a real and widespread privacy risk for OpenID users. Thus, this paper also studies the solution space of this problem and defines a number of possible countermeasures. After analyzing their advantages and drawbacks, we finally propos...
The web is essential for business and personal activities well beyond information retrieval, such on...
The problem of password memorability among users has led to the introduction of Single Sign-On (SSO)...
OpenID and OAuth are open and lightweight web single sign-on (SSO) protocols that have been adopted ...
This paper studies the privacy risks for the users of two popular single sign-on platforms for web-b...
Abstract. OpenID, a standard for Web single sign-on, has been gaining popularity both with Identity ...
Abstract. Single Sign-On (SSO) systems simplify login procedures by using an an Identity Provider (I...
OpenID 2.0 is a user-centric Web single sign-on protocol with over one billion OpenID-enabled user a...
OpenID Connect is the most widely used Internet protocol for delegated authentication today. It prov...
OpenID is a widely used single sign-on standard that allows users to access different services using...
OpenID is an open and promising Web single sign-on solution; however, the interaction flows provided...
Single Sign-On (SSO) is a solution where the authentication process is taken care of once by a third...
Single Sign-on (SSO) authentication was introduced to overcome the problem of password memorability ...
OpenID is a promising user-centric Web single sign-on protocol. According to the OpenID Foundation, ...
Internet users' digital identities consist of accounts for numerous services. These accounts can typ...
It is increasingly difficult to manage the user identities (IDs) of rapidly developing and numerous ...
The web is essential for business and personal activities well beyond information retrieval, such on...
The problem of password memorability among users has led to the introduction of Single Sign-On (SSO)...
OpenID and OAuth are open and lightweight web single sign-on (SSO) protocols that have been adopted ...
This paper studies the privacy risks for the users of two popular single sign-on platforms for web-b...
Abstract. OpenID, a standard for Web single sign-on, has been gaining popularity both with Identity ...
Abstract. Single Sign-On (SSO) systems simplify login procedures by using an an Identity Provider (I...
OpenID 2.0 is a user-centric Web single sign-on protocol with over one billion OpenID-enabled user a...
OpenID Connect is the most widely used Internet protocol for delegated authentication today. It prov...
OpenID is a widely used single sign-on standard that allows users to access different services using...
OpenID is an open and promising Web single sign-on solution; however, the interaction flows provided...
Single Sign-On (SSO) is a solution where the authentication process is taken care of once by a third...
Single Sign-on (SSO) authentication was introduced to overcome the problem of password memorability ...
OpenID is a promising user-centric Web single sign-on protocol. According to the OpenID Foundation, ...
Internet users' digital identities consist of accounts for numerous services. These accounts can typ...
It is increasingly difficult to manage the user identities (IDs) of rapidly developing and numerous ...
The web is essential for business and personal activities well beyond information retrieval, such on...
The problem of password memorability among users has led to the introduction of Single Sign-On (SSO)...
OpenID and OAuth are open and lightweight web single sign-on (SSO) protocols that have been adopted ...