Security analysis of a single sign on mechanism for distributed computer networks

•

0 likes•37 views

ecwayprojects

ECWAY TECHNOLOGIES
IEEE PROJECTS & SOFTWARE DEVELOPMENTS
OUR OFFICES @ CHENNAI / TRICHY / KARUR / ERODE / MADURAI / SALEM / COIMBATORE
CELL: +91 98949 17187, +91 875487 2111 / 3111 / 4111 / 5111 / 6111
VISIT: www.ecwayprojects.com MAIL TO: ecwaytechnologies@gmail.com

SECURITY ANALYSIS OF A SINGLE SIGN-ON MECHANISM FOR
DISTRIBUTED COMPUTER NETWORKS

ABSTRACT:

In this paper, however, we demonstrative that their scheme is actually insecure as it fails to meet
credential privacy and soundness of authentication. Specifically, we present two impersonation
attacks. The first attack allows a malicious service provider, who has successfully communicated
with a legal user twice, to recover the user’s credential and then to impersonate the user to access
resources and services offered by other service providers. In another attack, an outsider without
any credential may be able to enjoy network services freely by impersonating any legal user or a
nonexistent user. We identify the flaws in their security arguments to explain why attacks are
possible against their SSO scheme. Our attacks also apply to another SSO scheme proposed by
Hsu and Chuang, which inspired the design of the Chang–Lee scheme. Moreover, by employing
an efficient verifiable encryption of RSA signatures proposed by Ateniese, we propose an
improvement for repairing the Chang–Lee scheme.

Viewers also liked

Apresentação condensada 1

Julio de Sa

Diploma certificate

Zakir Khazi

A proxy based approach to continuous location-based spatial queries in mobile...

ecwayprojects

A secure payment scheme with low communication and processing overhead for mu...

ecwayprojects

Лучшие онлайн игры на BMOG.RU экономические mmo бесплатные mmofps шутеры скачать episode 56 - mmorpg landscapes пприимущество mmorpg игр free mmo games for computer zombie mmo survival game mmorpg salem демотиваторы по mmorpg perfect world mmorpg про зомби вид сверху risk your life mmorpg wow like mmorpg free mmorpg игры с клиентом орки world of darkness mmo gameplay video mmorpg постапокалипсис mmorpg про боевых мехов mmorpg android free wasper mmorpg лучшие бесплатные online mmorpg mmorpg everquest ii mmo champion unicorn narwhal топ 10 онлайн игр mmorpg 2012 баги mmorpg вконтакте rift mmorpg wiki bless mmorpg classes бессплатная mmorpg mmorpg технологии против магии mmorpg в мире зомби online mmorpg игрa рейтинг mmorpg платных mmorpg класса aa mmorpg бесплатные клиентские игры mmo стратегии бесплатные light and darkness лучшая mmorpg онлайн играть средневековый mmo fps mmorpg бесплатные онлайн online mmorpg игры каталог via mmorpg su mmorpg топ 100 лучшие онлайн игры топ 10 мира mmorpg mmorpg кровавые бои спид хак для mmorpg игр mmo игры 2012 года mmorpg чары браузерные игры mmofps g600 mmo gaming mouse обзор sports games online mmo 2 moons online game mmorpg forums post thread mmorpg в стиле викингов mmorpg games rates mmorpg carnage играть бесплатно в онлайн mmorpg vina

Forgotten worlds mmorpg

incrowpergli1985

On exploiting transient social contact patterns for data forwarding in delay ...

ecwayprojects

11. el pacto

chucho1943

Võõrkeelte ainevaldkond põhikooliosas

Annika

Solr5

Leonardo Souza

A graph based consensus maximization approach for combining multiple supervis...

ecwayprojects

Viewers also liked (10)

Apresentação condensada 1

Diploma certificate

A proxy based approach to continuous location-based spatial queries in mobile...

A secure payment scheme with low communication and processing overhead for mu...

Forgotten worlds mmorpg

On exploiting transient social contact patterns for data forwarding in delay ...

11. el pacto

Võõrkeelte ainevaldkond põhikooliosas

Solr5

A graph based consensus maximization approach for combining multiple supervis...

Similar to Security analysis of a single sign on mechanism for distributed computer networks

Security analysis of a single sign on mechanism for distributed computer netw...

Ecway Technologies

Java security analysis of a single sign-on mechanism for distributed compute...

ecwayerode

Android security analysis of a single sign-on mechanism for distributed comp...

ecway

Java security analysis of a single sign-on mechanism for distributed compute...

Ecway Technologies

IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology

Survey on cloud computing security techniques

eSAT Publishing House

Abstract Cloud computing is one of the emerging technology in computer science field. It provides various services and resources, still enterprises are disinclined to invest their business in cloud computing. It is because of security issues it has. There are different service models in cloud computing and threats to security also have different. The characteristics that are must be ensured while thinking about data security in cloud computing are integrity, availability and confidentiality. In this paper we are surveying some of the Intrusion Detection and Prevention Systems (IDPS) and comparing them regarding their ability to provide data security. Keywords— Cloud Security, cloud computing, data security, IDPS

Survey on cloud computing security techniques

eSAT Journals

In a distributed system, authentication protocols are the basis of security to ensure that these protocols function properly. Passwords are one of the most common authentication protocol used nowadays. Because of low entropy of passwords makes the systems vulnerable to password guessing attacks. This paper presents a simple scheme that strengthens password-based authentication protocols and helps prevent dictionary attacks, replay attacks and man in the middle attacks etc., The proposed scheme presents a new password authentication protocol by using the user and server system identification/serial number. Here there is no possibility to store the user passwords so an attacker who gets the password cannot use it directly to gain immediate access and compromise security.

AN EFFICIENT IDENTITY BASED AUTHENTICATION PROTOCOL BY USING PASSWORD

IJNSA Journal

Distributed network act as core part to access the various services which are available in the network. But the security related to distributed network is main concern. In this paper single sign-on SSO mechanism is introduced which gives access to all services by allowing to sign on only once by users. In this mechanism once user logs in to the Trusted Authority Center TAC then application or services which are register to trusted center will automatically verifies the user’s credentials details and these credentials like password or digital signature will be only one for all applications or services. Unlike all other previous mechanisms where in, if user wants to have access multiple services then for every service distinct user credentials (username, password) must be required. SSO act as single authentication window to user for admittance multiple service providers in networks. Previously introduced technique based SSO technology proved to be secure over well-designed SSO system, but fails to provide security during communication. So here emphasis is given on authentication as open problem and on to refining the already proposed SSO process. And to do this along with RSA algorithm which was used in previous SSO process, we will be using MAC algorithm, which is intended to provide secured pathway for communication over distributed network.TAC i.e. Trusted Authority Center is used for sending token integrated with private and shared public key to user.

Efficient and Secure Single Sign on Mechanism for Distributed Network

IJERA Editor

Control cloud-data-access-privilege-and-anonymity-with-fully-anonymous-attrib...

Pvrtechnologies Nellore

Physical Layer Essay

Jenny Richardson

— in distributed computing environment, Mobile agents are mobile autonomous processes which operate on behalf of users (e.g., the Internet). These applications include a specialized search of a middleware services such as an active mail system, large free-text database, electronic malls for shopping, and updated networking devices. Mobile agent systems use less network bandwidth, increase asynchrony among clients and servers, dynamically update server interfaces and introduce concurrency. Due to software components, security of mobile agent is essential in any mobile agent based application. Security services such as Confidentiality, Integrity, Authentication, Authorization and Non-Repudiation are discussed and combat with by the researchers. This work is proposing a new technique for access control area of security for the mobile agents and it will be implemented using an example of shopping cart data sharing for multiple levels.

APPLICATION OF MOBILE AGENTS FOR SECURITY USING MULTILEVEL ACCESS CONTROL

International Journal of Technical Research & Application

J0704055058

IJERD Editor

Final report ethical hacking

samprada123

Toward a statistical framework for source anonymity in sensor networks

Ecwayt

Dotnet toward a statistical framework for source anonymity in sensor networks

Ecwaytech

Toward a statistical framework for source anonymity in sensor networks

Ecwaytech

Paper1_Final

Viral Savani

Employment Feedback by Securing Data using Anonymous Authentication

IRJET Journal

Paper id 35201568

IJRAT

AN EFFICIENT SEMANTIC DATA ALIGNMENT BASED FCM TO INFER USER SEARCH GOALS USI...

pharmaindexing

Similar to Security analysis of a single sign on mechanism for distributed computer networks (20)

Security analysis of a single sign on mechanism for distributed computer netw...

Java security analysis of a single sign-on mechanism for distributed compute...

Android security analysis of a single sign-on mechanism for distributed comp...

Java security analysis of a single sign-on mechanism for distributed compute...

Survey on cloud computing security techniques

AN EFFICIENT IDENTITY BASED AUTHENTICATION PROTOCOL BY USING PASSWORD

Efficient and Secure Single Sign on Mechanism for Distributed Network

Control cloud-data-access-privilege-and-anonymity-with-fully-anonymous-attrib...

Physical Layer Essay

APPLICATION OF MOBILE AGENTS FOR SECURITY USING MULTILEVEL ACCESS CONTROL

J0704055058

Final report ethical hacking

Toward a statistical framework for source anonymity in sensor networks

Dotnet toward a statistical framework for source anonymity in sensor networks

Toward a statistical framework for source anonymity in sensor networks

Paper1_Final

Employment Feedback by Securing Data using Anonymous Authentication

Paper id 35201568

AN EFFICIENT SEMANTIC DATA ALIGNMENT BASED FCM TO INFER USER SEARCH GOALS USI...

More from ecwayprojects

Model based analysis of wireless system architectures for real-time applications

ecwayprojects

Min max a counter-based algorithm for regular expression matching

ecwayprojects

Mining semantic context information for intelligent video surveillance of tra...

ecwayprojects

Microarchitecture of a coarse grain out-of-order superscalar processor

ecwayprojects

Maximum likelihood estimation from uncertain data in the belief function fram...

ecwayprojects

Localization based radio model calibration for fault-tolerant wireless mesh n...

ecwayprojects

Large graph analysis in the g mine system

ecwayprojects

Large graph analysis in the g mine system

ecwayprojects

In network estimation with delay constraints in wireless sensor networks

ecwayprojects

Importance of coherence protocols with network applications on multicore proc...

ecwayprojects

Idm an indirect dissemination mechanism for spatial voice interaction in netw...

ecwayprojects

Harvesting aware energy management for time-critical wireless sensor networks...

ecwayprojects

Gaussian versus uniform distribution for intrusion detection in wireless sens...

ecwayprojects

Finding rare classes active learning with generative and discriminative models

ecwayprojects

Fast channel zapping with destination oriented multicast for ip video delivery

ecwayprojects

Fast activity detection indexing for temporal stochastic automaton based acti...

ecwayprojects

Exploiting ubiquitous data collection for mobile users in wireless sensor net...

ecwayprojects

Event tracking for real time unaware sensitivity analysis

ecwayprojects

Emap expedite message authentication protocol for vehicular ad hoc networks

ecwayprojects

Eaack—a secure intrusion detection system for mane ts

ecwayprojects

More from ecwayprojects (20)