DOCSLIB.ORG

An Expressive Formal Model of the Web Infrastructure

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
An Expressive Formal Model of the Web Infrastructure An Expressive Formal Model of the Web Infrastructure Von der Fakult¨at5 (Informatik, Elektrotechnik und Informationstechnik) der Universit¨at Stuttgart zur Erlangung der W¨urdeeines Doktors der Naturwissenschaften (Dr. rer. nat.) genehmigte Abhandlung Vorgelegt von Daniel Fett aus Mons, Belgien Hauptberichter: Prof. Dr. Ralf K¨usters Mitberichter: Dr. Karthikeyan Bhargavan Tag der m¨undlichen Pr¨ufung: 19.10.2018 Institut f¨urInformationssicherheit (SEC) der Universit¨atStuttgart 2018 2 Acknowledgements I would like to express my deepest gratitude to my advisor Ralf K¨ustersfor his continuous motivation, support, and patience. His excellent advice and keen attention to detail were invaluable for my work. I could not have imagined having a better advisor and mentor. I would like to thank my friends and colleagues who accompanied me during my PhD studies in Trier and Stuttgart, and who were always in for a game of darts. I thank Guido, with whom I devised and developed not only many parts of this work, but also Pi and More, for his friendship and help, and many fun days spent travelling. Thanks are also due to the Studienstiftung des Deutschen Volkes (German National Academic Foundation), the Stipendienstiftung Rheinland-Pfalz, and the Deutsche Forschungsgemeinschaft (Grant KU 1434/10-1) for their financial support. Finally, I am indebted to Janett and my family who never stopped encouraging me. This dissertation would not have been possible without their endless support and love. 3 Contents Acknowledgements 3 List of Figures 11 List of Tables 13 List of Algorithms 15 List of Abbreviations and Glossary 17 Abstract 21 Kurzzusammenfassung 23 1 Introduction 25 1.1 Contributions of this Thesis.............................. 28 1.1.1 The Web Infrastructure Model........................ 28 1.1.2 Formal Analysis of OAuth 2.0 ........................ 29 1.1.3 Formal Analysis of OpenID Connect..................... 31 1.2 Structure of this Thesis ................................ 32 1.3 Publications....................................... 32 1.4 Related Work...................................... 34 1.4.1 Formal Web Security Analysis........................ 34 1.4.2 Security Analysis of OAuth 2.0........................ 35 1.4.3 Security Analysis of OpenID Connect.................... 36 2 The Web Infrastructure Model 37 2.1 Building a Model of the Web Infrastructure..................... 37 2.2 Architecture....................................... 39 2.3 Terms, Messages, and Events ............................. 40 2.4 Dolev-Yao Processes.................................. 41 2.5 Attackers ........................................ 42 2.6 Scripts.......................................... 42 2.7 Systems and Web Systems............................... 44 2.8 HTTP and HTTPS Messages............................. 44 5 2.9 Name Resolution.................................... 46 2.10 Web Browsers...................................... 47 2.10.1 Browsers and Users.............................. 48 2.10.2 Two Types of Corruption........................... 48 2.10.3 Windows and Documents........................... 49 2.10.4 Cookies and Web Storage........................... 50 2.10.5 HTTP(S) Message Dispatching........................ 52 2.10.6 WebSockets .................................. 53 2.10.7 Strict Transport Security........................... 54 2.10.8 WebMessaging................................. 55 2.10.9 Message Processing .............................. 55 2.10.10 Executing a Script............................... 59 2.11 Generic HTTPS Servers................................ 61 2.12 Extension: WebRTC.................................. 62 2.12.1 WebRTC and the WebRTC Model...................... 62 2.12.2 New Script Commands for WebRTC..................... 65 3 Analysis of OAuth 2.0 67 3.1 OAuth 2.0 Basic Concepts............................... 67 3.1.1 Token Types.................................. 68 3.1.2 Endpoints ................................... 68 3.1.3 Client Registration at the OAP ....................... 69 3.1.4 Login Sessions and State ........................... 69 3.1.5 Tracking User Intention............................ 70 3.1.6 Further Recommendations and Options................... 70 3.2 OAuth 2.0 Grant Types................................ 70 3.2.1 Authorization Code Grant .......................... 71 3.2.2 Implicit Grant................................. 73 3.2.3 Resource Owner Password Credentials Grant................ 74 3.2.4 Client Credentials Grant ........................... 75 3.3 New Attacks on OAuth ................................ 76 3.3.1 307 Redirect Attack.............................. 76 3.3.2 AS Mix-Up Attack .............................. 77 3.3.3 State Leak Attack............................... 84 3.3.4 Na¨ıve Client Session Integrity Attack .................... 85 3.3.5 Across-AS State Reuse Attack........................ 85 3.4 Other Attacks on OAuth................................ 86 3.4.1 Code/Token/State Leakage.......................... 86 3.4.2 CSRF Protection ............................... 87 3.4.3 Third-Party Resources ............................ 87 6 3.4.4 Open Redirectors ............................... 87 3.4.5 Session Handling................................ 88 3.4.6 Access Token Introspection Client ID.................... 88 3.5 Formal Analysis of OAuth 2.0............................. 88 3.5.1 Model: Design, Concepts, Limitations.................... 89 3.5.2 Model: Web Systems ............................. 90 3.5.3 Security Properties .............................. 92 3.5.4 The OAuth Security Theorem ........................ 93 3.5.5 Proof of the OAuth Security Theorem: Outline .............. 93 3.5.6 Discussion of Results ............................. 94 4 Analysis of OpenID Connect 97 4.1 OpenID Connect Basic Concepts........................... 97 4.1.1 Relationship to OAuth 2.0 .......................... 97 4.1.2 Authentication, ID Tokens, and Issuer Identifiers.............. 98 4.2 Discovery and Dynamic Registration Extensions .................. 98 4.2.1 OpenID Connect Discovery.......................... 99 4.2.2 OpenID Connect Dynamic Client Registration . 100 4.3 OpenID Connect Flows ................................101 4.3.1 Authorization Code Flow...........................101 4.3.2 Implicit Flow..................................102 4.3.3 Hybrid Flow..................................103 4.4 Attacks on OpenID Connect..............................104 4.4.1 AS Mix-Up Attacks..............................105 4.4.2 Attacks on the State Parameter .......................109 4.4.3 307 Redirect Attack..............................109 4.4.4 Server-Side Request Forgery .........................109 4.4.5 CSRF Attacks and Third-Party Login Initiation . 110 4.5 Formal Analysis of OpenID Connect.........................111 4.5.1 Model......................................111 4.5.2 Main Security Properties...........................112 4.5.3 Secondary Security Properties ........................116 4.5.4 The OpenID Connect Security Theorem ..................118 4.5.5 Proof of the OpenID Connect Security Theorem: Outline . 118 4.5.6 Discussion of Results .............................119 5 Impact 121 5.1 Verification .......................................121 5.2 Disclosure........................................121 5.3 Follow-Up........................................122 7 6 Conclusion and Future Work 123 A The Web Infrastructure Model 125 A.1 Communication Model.................................125 A.1.1 Terms, Messages and Events.........................125 A.1.2 Notations....................................126 A.1.3 Atomic Processes, Systems and Runs ....................128 A.1.4 Atomic Dolev-Yao Processes.........................130 A.2 Scripts..........................................131 A.3 Web System.......................................131 A.4 Message and Data Formats ..............................132 A.4.1 URLs......................................132 A.4.2 Origins.....................................133 A.4.3 Cookies.....................................133 A.4.4 HTTP Messages................................133 A.4.5 DNS Messages.................................135 A.4.6 WebSocket Messages .............................135 A.4.7 WebRTC Messages ..............................136 A.5 DNS Server Model...................................136 A.6 Web Browser Model ..................................136 A.6.1 Windows, Documents, and Related Notations . 136 A.6.2 Web Browser States Zwebbrowser . 137 A.6.3 Web Browser Relation Rwebbrowser . 139 A.6.4 Definition of Web Browsers..........................148 A.7 Generic HTTPS Server Model.............................152 B Analysis of OAuth 2.0 155 B.1 Formal Model of OAuth with a Network Attacker..................155 B.1.1 Outline.....................................155 B.1.2 Addresses and Domain Names........................157 B.1.3 Keys and Secrets ...............................157 B.1.4 Identities, Passwords, and Protected Resources . 157 B.1.5 Corruption...................................159 B.1.6 Processes in W (Overview)..........................159 B.1.7 Network Attacker ...............................160 B.1.8 Browsers....................................160 B.1.9 Clients .....................................160 B.1.10 OAuth Providers................................164 B.2 Formal Security Properties ..............................173 B.2.1 Authorization .................................173 8 B.2.2 Authentication.................................173 B.2.3
Load more

Recommended publications
  • Copyright Hbbtv 2017 All Rights Reserved Test Suite V9.2.0 Test Id
    Copyright HbbTV 2017 All Rights Reserved Test Suite v9.2.0 Test Id Vers Title Approved Assertion If subtitles are enabled and a broadband delivered FALSE es.tdthibrida_7D7C0040 1 Broadband DVB subtitles in a TS are displayed TS_AVC_SD_25_HEAAC stream containing DVB subtitles (Nordig) is being presented, those subtitles shall be displayed. If subtitles are enabled and a broadband delivered Broadband Teletext subtitles in a TS are FALSE TS_AVC_SD_25_HEAAC stream containing EBU Teletext es.tdthibrida_7D7C0050 1 displayed (Nordig) subtitles is being presented, those subtitles shall be displayed. When broadband delivered subtitles are being displayed FALSE es.tdthibrida_7D7C0060 1 Broadband Subtitles Below Application Graphics in an A/V control object, the subtitles shall be displayed (Nordig) behind the application graphics plane The terminal's user interface shall have a user option FALSE that controls whether auto-start applications are es.tdthibrida_7D7C0070 1 Auto-start applications enabled by default (Nordig) launched automatically, and when in its default manufacturer state this option shall be enabled When the receiver has its default manufacturer-set Application launching with network connection FALSE configuration and the terminal is tuned to a service fr.hdforum_00151000 2 available (Nordig) carrying an AIT signalling one AUTOSTART broadband application, the terminal shall start that application Terminal shall provide an EXIT or TV or comparable FALSE fr.hdforum_00151240 1 EXIT function is provided by receiver button either on a remote control or another control (Nordig) interface. Termination of autostart application using EXIT FALSE Terminal shall terminate a running autostart application fr.hdforum_00151250 1 function (Nordig) when the EXIT function (or equivalent) is used.
    [Show full text]
  • Move Beyond Passwords Index
    Move Beyond Passwords Index The quest to move beyond passwords 4 Evaluation of current authentication method 6 Getting started with passwordless authentication 8 Early results to going passwordless 9 Common approaches to going passwordless 11 Email magic links 11 Factor sequencing 12 Webauthn 14 Planning for a passwordless future 16 Move Beyond Passwords 2 Introduction Traditional authentication using a username and password has been the foundation of digital identity and security for over 50 years. But with the ever-growing number of user accounts, there are a number of new issues: the burden on end users to remember multiple passwords, support costs, and most importantly, the security risks posed by compromised credentials. These new challenges are now outweighing the usefulness of passwords. The case for eliminating passwords from the authentication experience is getting more compelling every day. Emerging passwordless security standards, elevated consumer and consumer-like experience expectations, and ballooning costs have moved eliminating passwords from a theoretical concept to a real possibility. In this whitepaper, we will explore the case for going passwordless for both customer and employee authentication, and map out steps that organizations can take on their journey to true passwordless authentication. Move Beyond Passwords 3 The quest to move beyond passwords Understanding the need for passwordless authentication starts with understanding the challenges presented by passwords. The core challenges with passwords can be broken down into the following areas: Poor Account Security Passwords have spawned a whole category of security/identity-driven attacks — compromised passwords due to credential breaches, phishing, password spraying attacks, or poor password hygiene can result in account takeover attacks (ATO).
    [Show full text]
  • PID Service – an Advanced Persistent Identifier Management Service for the Semantic Web
    21st International Congress on Modelling and Simulation, Gold Coast, Australia, 29 Nov to 4 Dec 2015 www.mssanz.org.au/modsim2015 PID Service – an advanced persistent identifier management service for the Semantic Web P. Golodoniuc a, N. J. Car b, S. J. D. Cox c, and R. A. Atkinson d a CSIRO Mineral Resources Flagship, Kensington, WA, Australia b CSIRO Land & Water Flagship, Dutton Park, QLD, Australia c CSIRO Land & Waters Flagship, Highett, VIC, Australia d Metalinkage, Wollongong, NSW, Australia Email: [email protected] Abstract: Persistent identifiers are an integral part of the Semantic Web and Linked Data applications: they enable the stable identification of digital objects and may be used as a top-level application programming interface (API) to bind multiple representations of digital objects into a single, coherent, data model. In addition to these technical tasks, persistent identifiers and their management are of prime concern for the governance of Domain Name System (DNS)-based domains containing output from multiple parties that need to ensure identifier uniqueness as their first order of operation. Our contribution to solutions for the technical and governance challenges posed by identity management is the PID Service – a persistent identity service – which is a web service offering advanced persistent identifier management with features not found in proxy servers and other web redirection products. The PID Service is able to store and implement large numbers of complex Uniform Resource Indicator (URI) redirection rules and handle related sets of rules according to rule hierarchies. This, combined with a web-based graphical user interface and database rule storage, allows users of the PID Service to far more easily manage large numbers of complex rules within a domain avoiding rule collision and specialised partial URI delegation.
    [Show full text]
  • Cybersecurity in a Digital Era.Pdf
    Digital McKinsey and Global Risk Practice Cybersecurity in a Digital Era June 2020 Introduction Even before the advent of a global pandemic, executive teams faced a challenging and dynamic environ- ment as they sought to protect their institutions from cyberattack, without degrading their ability to innovate and extract value from technology investments. CISOs and their partners in business and IT functions have had to think through how to protect increasingly valuable digital assets, how to assess threats related to an increasingly fraught geopolitical environment, how to meet increasingly stringent customer and regulatory expectations and how to navigate disruptions to existing cybersecurity models as companies adopt agile development and cloud computing. We believe there are five areas for CIOs, CISOs, CROs and other business leaders to address in particular: 1. Get a strategy in place that will activate the organization. Even more than in the past cybersecurity is a business issue – and cybersecurity effectiveness means action not only from the CISO organiza- tion, but also from application development, infrastructure, product development, customer care, finance, human resources, procurement and risk. A successful cybersecurity strategy supports the business, highlights the actions required from across the enterprise – and perhaps most importantly captures the imagination of the executive in how it can manage risk and also enable business innovation. 2. Create granular, analytic risk management capabilities. There will always be more vulnerabilities to address and more protections you can consider than you will have capacity to implement. Even companies with large and increasing cybersecurity budgets face constraints in how much change the organization can absorb.
    [Show full text]
  • Implementing a Web Application for W3C Webauthn Protocol Testing †
    proceedings Proceedings Implementing a Web Application for W3C WebAuthn Protocol Testing † Martiño Rivera Dourado 1,* , Marcos Gestal 1,2 and José M. Vázquez-Naya 1,2 1 Grupo RNASA-IMEDIR, Departamento de Computación, Facultade de Informática, Universidade da Coruña, Elviña, 15071 A Coruña, Spain; [email protected] (M.G.); [email protected] (J.M.V.-N.) 2 Centro de Investigación CITIC, Universidade da Coruña, Elviña, 15071 A Coruña, Spain * Correspondence: [email protected] † Presented at the 3rd XoveTIC Conference, A Coruña, Spain, 8–9 October 2020. Published: 18 August 2020 Abstract: During the last few years, the FIDO Alliance and the W3C have been working on a new standard called WebAuthn that aims to substitute the obsolete password as an authentication method by using physical security keys instead. Due to its recent design, the standard is still changing and so are the needs for protocol testing. This research has driven the development of a web application that supports the standard and gives extensive information to the user. This tool can be used by WebAuthn developers and researchers, helping them to debug concrete use cases with no need for an ad hoc implementation. Keywords: WebAuthn; authentication; testing 1. Introduction Authentication is one of the most critical parts of an application. It is a security service that aims to guarantee the authenticity of an identity. This can be done by using several security mechanisms but currently, without a doubt, the most common is the username and password method. Although this method is easy for a user to conceptually understand, it constitutes many security problems.
    [Show full text]
  • 8 Steps for Effectively Deploying
    8 Steps for Effectively Deploying MFA Table of Contents The value of MFA 3 1. Educate your users 4 2. Consider your MFA policies 5 3. Plan and provide for a variety of access needs 7 4. Think twice about using SMS for OTP 10 5. Check compliance requirements carefully 11 6. Plan for lost devices 12 7. Plan to deploy MFA to remote workers 14 8. Phase your deployment: Be prepared to review and revise 16 8 Steps for Effectively Deploying MFA 2 The value of MFA Multi-factor authentication (MFA) has never been more important. With the growing number of data breaches and cybersecurity threats—and the steep financial and reputational costs that come with them—organizations need to prioritize MFA deployment for their workforce and customers alike. Not doing so could spell disaster; an invitation for bad actors to compromise accounts and breach your systems. Adopting modern MFA means implementing a secure, simple, and context-aware solution that ensures that only the right people have access to the right resources. It adds a layer of security, giving your security team, your employees, and your customers peace of mind. Unfortunately, while the benefits are clear, implementing MFA can be a complex project. In our Multi-factor Authentication Deployment Guide, we’ve outlined eight steps that you can take to better enable your MFA deployment: Educate your users Consider your MFA policies Plan and provide for a variety of access needs Think twice about using SMS for OTP Check compliance requirements carefully Plan for lost devices Plan to deploy MFA to remote workers Phase your deployment: be prepared to review and revise In this eBook, we’ll take a deeper dive into each of these elements, giving you tactical advice and best practices for how to implement each step as you get ready to roll out Okta MFA.
    [Show full text]
  • Mfaproxy: a Reverse Proxy for Multi-Factor Authentication
    Iowa State University Capstones, Theses and Creative Components Dissertations Fall 2019 MFAProxy: A reverse proxy for multi-factor authentication Alan Schmitz Follow this and additional works at: https://lib.dr.iastate.edu/creativecomponents Part of the Digital Communications and Networking Commons Recommended Citation Schmitz, Alan, "MFAProxy: A reverse proxy for multi-factor authentication" (2019). Creative Components. 425. https://lib.dr.iastate.edu/creativecomponents/425 This Creative Component is brought to you for free and open access by the Iowa State University Capstones, Theses and Dissertations at Iowa State University Digital Repository. It has been accepted for inclusion in Creative Components by an authorized administrator of Iowa State University Digital Repository. For more information, please contact [email protected]. MFAProxy: A reverse proxy for multi-factor authentication by Alan Schmitz A Creative Component submitted to the graduate faculty in partial fulfillment of the requirements for the degree of MASTER OF SCIENCE Major: Information Assurance Program of Study Committee: Doug Jacobson, Major Professor The student author, whose presentation of the scholarship herein was approved by the program of study committee, is solely responsible for the content of this Creative Component. The Graduate College will ensure this Creative Component is globally accessible and will not permit alterations after a degree is conferred. Iowa State University Ames, Iowa 2019 Copyright c Alan Schmitz, 2019. All rights reserved. ii TABLE OF CONTENTS Page LIST OF FIGURES . iii ABSTRACT . iv CHAPTER 1. INTRODUCTION . .1 CHAPTER 2. BACKGROUND . .3 2.1 Passwords and PINs . .3 2.2 Short Message Service . .4 2.3 One-Time Passwords . .5 2.4 U2F and WebAuthn .
    [Show full text]
  • Strong Authentication Based on Mobile Application
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Helsingin yliopiston digitaalinen arkisto STRONG AUTHENTICATION BASED ON MOBILE APPLICATION Helsingin yliopisto Faculty of Science Department of Computer Science Master's thesis Spring 2020 Harri Salminen Supervisor: Valtteri Niemi Tiedekunta - Fakultet - Faculty Osasto - Avdelning - Department Faculty of Science The Department of Computer Science Tekijä - Författare - Author Harri Salminen Työn nimi - Arbetets titel Title STRONG AUTHENTICATION BASED ON MOBILE APPLICATION Oppiaine - Läroämne – Subject Computer Science Työn laji/ Ohjaaja - Arbetets art/Handledare - Aika - Datum - Month and Sivumäärä - Sidoantal - Number of Level/Instructor year pages Master's thesis / Valtteri Niemi June, 2020 58 Tiivistelmä - Referat - Abstract The user authentication in online services has evolved over time from the old username and password-based approaches to current strong authentication methodologies. Especially, the smartphone app has become one of the most important forms to perform the authentication. This thesis describes various authentication methods used previously and discusses about possible factors that generated the demand for the current strong authentication approach. We present the concepts and architectures of mobile application based authentication systems. Furthermore, we take closer look into the security of the mobile application based authentication approach. Mobile apps have various attack vectors that need to be taken under consideration when designing an authentication system. Fortunately, various generic software protection mechanisms have been developed during the last decades. We discuss how these mechanisms can be utilized in mobile app environment and in the authentication context. The main idea of this thesis is to gather relevant information about the authentication history and to be able to build a view of strong authentication evolution.
    [Show full text]
  • Universal Worker Service Pattern Version 1.0
    Universal Worker Service Specification I nternational V irtual O bservatory A lliance Universal Worker Service Pattern Version 1.0 IVOA Proposed Recommendation 2010-09-08 Working Group: http://www.ivoa.net/twiki/bin/view/IVOA/IvoaGridAndWebServices This version: http://www.ivoa.net/Documents/PR/GWS/PR-UWS-1.0-20100210.html Latest version: http://www.ivoa.net/Documents/UWS/ Previous version(s): Internal Working Draft v0.1, 2005-01-24 Internal Working Draft v0.2, 2006-05-11 Internal Working Draft v0.3, 2007-04-26 Internal Working Draft v0.4, 2008-05-10 Internal Working Draft v0.5, 2008-10-08 Internal Working Draft v0.9, 2009-10-08 Public Working Draft v1.0, 2009-08-27 Proposed Recommendation v1.0, 2009-09-09 Proposed Recommendation v1.0, 2010-02-10 Author(s): P. Harrison, G. Rixon Abstract The Universal Worker Service (UWS) pattern defines how to manage asynchronous execution of jobs on a service. Any application of the pattern defines a family of related services with a common service contract. Possible uses of the pattern are also described. - 1 - Universal Worker Service Specification Status of This Document This document is produced by the GWS-WG. The first release of this document was on 2005-01-24 within the working group. This is an IVOA Proposed Recommendation made available for public review. Comments on this document should be posted at the RFC page http://www.ivoa.net/cgi-bin/twiki/bin/view/IVOA/ UWSV1RFC or can be sent to the Grid and Web Services Working Group via [email protected].
    [Show full text]
  • HTML5 Cheatsheet 2019
    CHEAT SHEET HTML5 WEB DEVELOPMENT Created by @Manz ( https://twitter.com/Manz ) https://lenguajehtml.com/ S HTML Syntax Tag structure C Comment Syntax Dev annotations S Social metadata For social networks HTML TAG/ATTRIBUTE SYNTAX HTML COMMENT SYNTAX FACEBOOK OPEN GRAPH <tag attribute="value"> content </tag> <!-- text without effects on webpage --> <meta> metadata tag for open graph property metadata type open graph D Document tags HTML main structure H Head tags Header & document metadata content metadata value open graph MAIN TAGS RELATIONS REQUIRED METADATA PROPERTIES <!DOCTYPE html> HTML5 document <link> document relation og:title title of your object <html> document content root tag href link to related document og:type type of your object <head> metadata header related docs hreflang code doc language en, es... music video article book <body> page content visible content type mime hint type for browser profile website title set title to stylesheet set og:image image url for preview G Global Attributes for all elements sizes hint size for favicon 64x64, 96x96 og:url canonical & absolute url DOM / STYLE ATTRIBUTES rel relation type with other document OPTIONAL METADATA PROPERTIES id element identifier unique per page BASIC RELATION og:audio complementary audio url class element class multiple per page alternate link to alternate version og:description 1-2 sentence descr. slot element slot reference to <slot> author link to author URL og:determiner word auto, the, a, an, ... style inline CSS styles css properties help link to help URL
    [Show full text]
  • EL PASSO: Efficient and Lightweight Privacy-Preserving Single Sign On
    Proceedings on Privacy Enhancing Technologies ; 2021 (2):70–87 Zhiyi Zhang, Michał Król, Alberto Sonnino, Lixia Zhang, and Etienne Rivière EL PASSO: Efficient and Lightweight Privacy-preserving Single Sign On Abstract: Anonymous credentials are a solid founda- 1 Introduction tion for privacy-preserving Single Sign-On (SSO). They enable unlinkable authentication across domains and al- Single Sign-On (SSO) is an answer to the complexity low users to prove their identity without revealing more and fragility of using individual passwords on the web, than necessary. Unfortunately, anonymous credentials i.e., leading to reuse and leaks [1]. SSO enables the use schemes remain difficult to use and complex to deploy. of a unique identity provided by an Identity Provider They require installation and use of complex software at (IdP). Users authenticate themselves to services (called the user side, suffer from poor performance, and do not Relying Parties–RP) with tokens provided by their IdP. support security features that are now common, such SSO improves overall web security [2] and enables the as two-factor authentication, secret recovery, or sup- generalization of good security practices such as the use port for multiple devices. In contrast, Open ID Con- of 2-factor authentication (2FA) [3]. nect (OIDC), the de facto standard for SSO is widely deployed and used despite its lack of concern for users’ Limitations of OpenID Connect. OpenID Connect privacy. We present EL PASSO, a privacy-preserving (OIDC) is a dominant SSO solution used by over a mil- SSO system based on anonymous credentials that does lion websites in 2020 [4].
    [Show full text]
  • Browser Interoperability Requirements Approved Version 1.0 – 31 Mar 2008
    Browser Interoperability Requirements Approved Version 1.0 – 31 Mar 2008 Open Mobile Alliance OMA-RD-BrowserInteroperability-V1_0-20080331-A 2008 Open Mobile Alliance Ltd. All Rights Reserved. Used with the permission of the Open Mobile Alliance Ltd. under the terms as stated in this document. [OMA-Template-Spec-20080101-I] OMA-RD-BrowserInteroperability-V1_0-20080331-A Page 2 (49) Use of this document is subject to all of the terms and conditions of the Use Agreement located at http://www.openmobilealliance.org/UseAgreement.html. Unless this document is clearly designated as an approved specification, this document is a work in process, is not an approved Open Mobile Alliance™ specification, and is subject to revision or removal without notice. You may use this document or any part of the document for internal or educational purposes only, provided you do not modify, edit or take out of context the information in this document in any manner. Information contained in this document may be used, at your sole risk, for any purposes. You may not use this document in any other manner without the prior written permission of the Open Mobile Alliance. The Open Mobile Alliance authorizes you to copy this document, provided that you retain all copyright and other proprietary notices contained in the original materials on any copies of the materials and that you comply strictly with these terms. This copyright permission does not constitute an endorsement of the products or services. The Open Mobile Alliance assumes no responsibility for errors or omissions in this document. Each Open Mobile Alliance member has agreed to use reasonable endeavours to inform the Open Mobile Alliance in a timely manner of Essential IPR as it becomes aware that the Essential IPR is related to the prepared or published specification.
    [Show full text]