Skip to Main content Skip to Navigation
Conference papers

A Security Analysis of OpenID

Abstract : OpenID, a standard for Web single sign-on, has been gaining popularity both with Identity Providers, Relying Parties, and users. This paper collects the security issues in OpenID found by others, occasionally extended by the authors, and presents them in a uniform way. It attempts to combine the shattered knowledge into a clear overview. The aim of this paper is to raise awareness about security issues surrounding OpenID and similar standards and help shape opinions on what (not) to expect from OpenID when deployed in a not-so-friendly context.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, August 6, 2014 - 3:47:51 PM
Last modification on : Friday, August 11, 2017 - 3:05:18 PM
Long-term archiving on: : Wednesday, November 26, 2014 - 12:51:22 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Bart Delft, Martijn Oostdijk. A Security Analysis of OpenID. Second IFIP WG 11.6 Working Conference on Policies and Reseach Management (IDMAN), Nov 2010, Oslo, Norway. pp.73-84, ⟨10.1007/978-3-642-17303-5_6⟩. ⟨hal-01054399⟩



Record views


Files downloads