Simple authentication for the web

Authors:
Timothy W. van der Horst;Kent E. Seamons
Affiliations:
Brigham Young University, Provo, UT;Brigham Young University, Provo, UT
Venue:
Proceedings of the 16th international conference on World Wide Web
Year:
2007

Citing 2
Cited 1

Applied Cryptography: Protocols, Algorithms, and Source Code in C

Applied Cryptography: Protocols, Algorithms, and Source Code in C
Email-Based Identification and Authentication: An Alternative to PKI?

IEEE Security and Privacy

CPG: closed pseudonymous groups

Proceedings of the 7th ACM workshop on Privacy in the electronic society

Quantified Score

Hi-index	0.00

Visualization

Abstract

Automated email-based password reestablishment (EBPR) is an efficient, cost-effective means to deal with forgotten passwords. In this technique, email providers authenticate users on behalf of web sites. This method works because web sites trust email providers to deliver messages to their intended recipients. Simple Authentication for the Web (SAW) improves upon this basic approach to user authentication to create an alternative to password-based logins. SAW: 1) Removes the setup and management costs of passwords at sites that accept the risks of EBPR; 2) Provides single sign-on without a specialized identity provider; 3) Thwarts all passive attacks.