Protecting Web-Based Single Sign-on Protocols against Relying Party Impersonation Attacks through a Dedicated Bi-directional Authenticated Secure Channel.
Yinzhi CaoYan ShoshitaishviliKevin BorgolteChristopher KrügelGiovanni VignaYan ChenPublished in: RAID (2014)
Keyphrases
- bi directional
- authentication protocol
- security protocols
- key distribution
- authentication scheme
- cryptographic protocols
- security flaws
- session key
- smart card
- security analysis
- key exchange
- user authentication
- password based authenticated key exchange
- secret key
- stream cipher
- diffie hellman
- group communication
- key management
- security mechanisms
- lightweight
- security properties
- public key
- key agreement protocol
- countermeasures
- secure communication
- security services
- information security
- covert channel
- associative memory
- rfid tags
- key exchange protocol
- multi party
- block cipher
- private key
- access control
- protection mechanisms
- security measures