Communications of the ACM
InfraSec '02 Proceedings of the International Conference on Infrastructure Security
How to Make Personalized Web Browising Simple, Secure, and Anonymous
FC '97 Proceedings of the First International Conference on Financial Cryptography
The domino effect of password reuse
Communications of the ACM - Human-computer etiquette
Password policy: the good, the bad, and the ugly
WISICT '04 Proceedings of the winter international synposium on Information and communication technologies
A convenient method for securely managing passwords
WWW '05 Proceedings of the 14th international conference on World Wide Web
OpenID 2.0: a platform for user-centric identity management
Proceedings of the second ACM workshop on Digital identity management
Ajax Design Patterns
A large-scale study of web password habits
Proceedings of the 16th international conference on World Wide Web
Usability and privacy in identity management architectures
ACSW '07 Proceedings of the fifth Australasian symposium on ACSW frontiers - Volume 68
A Novel Distributed Authentication Framework for Single Sign-On Services
SUTC '08 Proceedings of the 2008 IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing (sutc 2008)
The Venn of Identity: Options and Issues in Federated Identity Management
IEEE Security and Privacy
The Seven Flaws of Identity Management: Usability and Security Challenges
IEEE Security and Privacy
A Novel Distributed Single Sign-On Scheme with Dynamically Changed Threshold Value
IAS '09 Proceedings of the 2009 Fifth International Conference on Information Assurance and Security - Volume 02
A taxonomy of single sign-on systems
ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Proceedings of the 9th annual ACM workshop on Privacy in the electronic society
TrustBus'10 Proceedings of the 7th international conference on Trust, privacy and security in digital business
Design and analysis of password-based key derivation functions
CT-RSA'05 Proceedings of the 2005 international conference on Topics in Cryptology
ThresPassport – a distributed single sign-on service
ICIC'05 Proceedings of the 2005 international conference on Advances in Intelligent Computing - Volume Part II
Peer-to-Peer authentication with a distributed single sign-on service
IPTPS'04 Proceedings of the Third international conference on Peer-to-Peer Systems
Kerberos: an authentication service for computer networks
IEEE Communications Magazine
A Research Agenda Acknowledging the Persistence of Passwords
IEEE Security and Privacy
| Hi-index | 0.00 |
We present a novel approach for password/credential storage in Pseudo-SSO scenarios based on a hybrid password hashing/password syncing approach that is directly applicable to the contemporary Web. The approach supports passwords without requiring modification of the server side and thus is immediately useful; however, it may still prove useful for storing more advanced credentials in future SSO and identity management scenarios, and offers a high password security, high availability and integration of secure elements while providing familiar interaction paradigms at a low cost.