A hybrid approach for highly available & secure storage of pseudo-SSO credentials

Publication details

Part of: Secure IT Systems: 17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October 31 – November 2, 2012. Proceedings (Springer, 2012)
Pages: 169–183
Year: 2012
Links:
- OMTALE: http://link.springer.com/chapter/10.1007/978-3-642-34210-3_12
- FULLTEKST: http://dx.doi.org/10.1007/978-3-642-34210-3_12
- PROSJEKT: nr.no/node/72
- DOI: doi.org/10.1007/978-3-642-34210-3_12

Abstract: We present a novel approach for password/credential storage in Pseudo-SSO scenarios based on a hybrid password hashing/password syncing approach that is directly applicable to the contemporary Web. The approach supports passwords without requiring modification of the server side and thus is immediately useful; however, it may still prove useful for storing more advanced credentials in future SSO and identity management scenarios, and offers a high level of security.

Keywords. Single sign-on, authentication, syncing, hashing.