Home > Research > Publications & Outputs > Privacy-preserving Web single sign-on

Research

Links

Text available via DOI:

View graph of relations

Privacy-preserving Web single sign-on: Formal security analysis and design

Research output: Contribution to Journal/MagazineJournal articlepeer-review

Published

Standard

Privacy-preserving Web single sign-on: Formal security analysis and design. / Schmitz, Guido.
In: IT - Information Technology, Vol. 64, No. 1-2, 26.04.2022, p. 43-48.

Research output: Contribution to Journal/MagazineJournal articlepeer-review

Harvard

Schmitz, G 2022, 'Privacy-preserving Web single sign-on: Formal security analysis and design', IT - Information Technology, vol. 64, no. 1-2, pp. 43-48. https://doi.org/10.1515/itit-2022-0003

APA

Schmitz, G. (2022). Privacy-preserving Web single sign-on: Formal security analysis and design. IT - Information Technology, 64(1-2), 43-48. https://doi.org/10.1515/itit-2022-0003

Vancouver

Schmitz G. Privacy-preserving Web single sign-on: Formal security analysis and design. IT - Information Technology. 2022 Apr 26;64(1-2):43-48. Epub 2022 Feb 19. doi: 10.1515/itit-2022-0003

Author

Schmitz, Guido. / Privacy-preserving Web single sign-on : Formal security analysis and design. In: IT - Information Technology. 2022 ; Vol. 64, No. 1-2. pp. 43-48.

Bibtex

@article{6aff94101cbc42e2940658bbc22a8271,
title = "Privacy-preserving Web single sign-on: Formal security analysis and design",
abstract = "Single sign-on (SSO) systems, such as OpenID and OAuth, allow Web sites to delegate user authentication to third parties, such as Facebook or Google. These systems provide a convenient mechanism for users to log in and ease the burden of user authentication for Web sites. Conversely, by integrating such SSO systems, they become a crucial part of the security of the modern Web.So far, it has been hard to prove if Web standards and protocols actually meet their security goals. SSO systems, in particular, need to satisfy strong security and privacy properties. In this thesis, we develop a new systematic approach to rigorously and formally analyze and verify such strong properties with the Web Infrastructure Model (WIM), the most comprehensive model of the Web infrastructure to date.Our analyses reveal severe vulnerabilities in SSO systems that lead to critical attacks against their security and privacy. We propose fixes and formally verify that our proposals are sufficient to establish security. Our analyses, however, also show that even Mozilla{\textquoteright}s proposal for a privacy-preserving SSO system does not meet its unique privacy goal. To fill this gap, we use our novel approach to develop a new SSO system, SPRESSO, and formally prove that our system indeed enjoys strong security and privacy properties.",
author = "Guido Schmitz",
year = "2022",
month = apr,
day = "26",
doi = "10.1515/itit-2022-0003",
language = "English",
volume = "64",
pages = "43--48",
journal = "IT - Information Technology",
issn = "1611-2776",
publisher = "De Gruyter Oldenbourg",
number = "1-2",

}

RIS

TY - JOUR

T1 - Privacy-preserving Web single sign-on

T2 - Formal security analysis and design

AU - Schmitz, Guido

PY - 2022/4/26

Y1 - 2022/4/26

N2 - Single sign-on (SSO) systems, such as OpenID and OAuth, allow Web sites to delegate user authentication to third parties, such as Facebook or Google. These systems provide a convenient mechanism for users to log in and ease the burden of user authentication for Web sites. Conversely, by integrating such SSO systems, they become a crucial part of the security of the modern Web.So far, it has been hard to prove if Web standards and protocols actually meet their security goals. SSO systems, in particular, need to satisfy strong security and privacy properties. In this thesis, we develop a new systematic approach to rigorously and formally analyze and verify such strong properties with the Web Infrastructure Model (WIM), the most comprehensive model of the Web infrastructure to date.Our analyses reveal severe vulnerabilities in SSO systems that lead to critical attacks against their security and privacy. We propose fixes and formally verify that our proposals are sufficient to establish security. Our analyses, however, also show that even Mozilla’s proposal for a privacy-preserving SSO system does not meet its unique privacy goal. To fill this gap, we use our novel approach to develop a new SSO system, SPRESSO, and formally prove that our system indeed enjoys strong security and privacy properties.

AB - Single sign-on (SSO) systems, such as OpenID and OAuth, allow Web sites to delegate user authentication to third parties, such as Facebook or Google. These systems provide a convenient mechanism for users to log in and ease the burden of user authentication for Web sites. Conversely, by integrating such SSO systems, they become a crucial part of the security of the modern Web.So far, it has been hard to prove if Web standards and protocols actually meet their security goals. SSO systems, in particular, need to satisfy strong security and privacy properties. In this thesis, we develop a new systematic approach to rigorously and formally analyze and verify such strong properties with the Web Infrastructure Model (WIM), the most comprehensive model of the Web infrastructure to date.Our analyses reveal severe vulnerabilities in SSO systems that lead to critical attacks against their security and privacy. We propose fixes and formally verify that our proposals are sufficient to establish security. Our analyses, however, also show that even Mozilla’s proposal for a privacy-preserving SSO system does not meet its unique privacy goal. To fill this gap, we use our novel approach to develop a new SSO system, SPRESSO, and formally prove that our system indeed enjoys strong security and privacy properties.

U2 - 10.1515/itit-2022-0003

DO - 10.1515/itit-2022-0003

M3 - Journal article

VL - 64

SP - 43

EP - 48

JO - IT - Information Technology

JF - IT - Information Technology

SN - 1611-2776

IS - 1-2

ER -