Identifier Migration for Identity Continuance in Single Sign-On

Single sign-on (SSO) is an identity management technique that provides the ability to use multiple Web services with one set of credentials. However, when the authentication server is down or unavailable, users cannot access these Web services, regardless of whether they are operating normally. Therefore, it is important to enable continuous use alongside SSO. In this paper, we present an identity continuance method for SSO. First, we explain four such continuance methods and identify their limitations and problems. Second, we propose a new solution based on an identifier migration approach that meets the requirement for identity continuance. Finally, we discuss these methods from the viewpoint of continuity, security, efficiency, and feasibility.

[1]  Yoshio Kakizaki,et al.  Identity Continuance in Single Sign-On with Authentication Server Failure , 2011, 2011 Fifth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing.

[2]  Yoshio Kakizaki,et al.  Identifier Migration in OpenID , 2011, 2011 Fifth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing.

[3]  Jean-Marc Seigneur,et al.  A Survey of User-centric Identity Management Technologies , 2007, The International Conference on Emerging Security Information, Systems, and Technologies (SECUREWARE 2007).

[4]  Kenji Takahashi,et al.  A Survey on Identity Management Protocols and Standards , 2006, IEICE Trans. Inf. Syst..

[5]  Eran Hammer-Lahav,et al.  The OAuth 1.0 Protocol , 2010, RFC.

[6]  Jason Goode The importance of identity security , 2012 .

[7]  Cédric Tabin,et al.  Liberty Alliance Project , 2007 .

[8]  大谷 誠,et al.  Shibboleth, 学認 を知ろう , 2013 .

[9]  Don Smith,et al.  Federated ID: The challenge of federated identity management , 2008 .

[10]  Yutaka Nakamura,et al.  Development of Single Sign-On System with Hardware Token and Key Management Server , 2007, 2007 Second International Conference on Systems and Networks Communications (ICSNC 2007).

[11]  A. Jøsang,et al.  User Centric Identity Management , 2005 .

[12]  Drummond Reed,et al.  OpenID 2.0: a platform for user-centric identity management , 2006, DIM '06.

[13]  Lin Yang,et al.  A survey of Identity Management technology , 2010, 2010 IEEE International Conference on Information Theory and Information Security.