A hybrid approach for highly available & secure storage of pseudo-SSO credentials

  • Jan Zibuschka
  • Lothar Fritsch

Publication details

Abstract: We present a novel approach for password/credential storage in Pseudo-SSO scenarios based on a hybrid password hashing/password syncing approach that is directly applicable to the contemporary Web. The approach supports passwords without requiring modification of the server side and thus is immediately useful; however, it may still prove useful for storing more advanced credentials in future SSO and identity management scenarios, and offers a high level of security.

Keywords. Single sign-on, authentication, syncing, hashing.