Logout in Single Sign-on Systems - Archive ouverte HAL Access content directly
Conference Papers Year : 2013

Logout in Single Sign-on Systems

(1) , (2) , (1) , (1)
1
2

Abstract

Single sign-on (SSO) helps users to cope with many online services that require authentication. Systems such as OpenID and SAML-based Shibboleth offer federated identity management where an Identity Provider authenticates the user on behalf of the services. Much research concentrates on making authentication stronger, preventing phishing and making the systems more user friendly but less attention has been paid to the termination of the authentication sessions i.e. logout. It is, however, equally important that the sessions do not remain open when, for example, a student using shared computers in a university library leaves the workstation. In this article, we describe challenges related to logout in federated identity management on web based services and give guidelines for implementing reliable logout from services that use single sign-on.
Fichier principal
Vignette du fichier
978-3-642-37282-7_14_Chapter.pdf (134.93 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01470498 , version 1 (17-02-2017)

Licence

Attribution - CC BY 4.0

Identifiers

Cite

Sanna Suoranta, Asko Tontti, Joonas Ruuskanen, Tuomas Aura. Logout in Single Sign-on Systems. 3rd Policies and Research in Identity Management (IDMAN), Apr 2013, London, United Kingdom. pp.147-160, ⟨10.1007/978-3-642-37282-7_14⟩. ⟨hal-01470498⟩
145 View
2247 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More