Pregled bibliografske jedinice broj: 414370
Security of Web Level User Identity Management
Security of Web Level User Identity Management // Proceedings of the Information Systems Security, MIPRO 2009 / Čišić, Dragan ; Hutinski, Željko ; Baranović, Mirta ; Mauher, Mladen ; Dragšić, Veljko (ur.).
Opatija, Hrvatska: Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2009. str. 93-98 (predavanje, međunarodna recenzija, cjeloviti rad (in extenso), znanstveni)
CROSBI ID: 414370 Za ispravke kontaktirajte CROSBI podršku putem web obrasca
Naslov
Security of Web Level User Identity Management
Autori
Krolo, Jakov ; Šilić Marin ; Srbljić Siniša
Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni
Izvornik
Proceedings of the Information Systems Security, MIPRO 2009
/ Čišić, Dragan ; Hutinski, Željko ; Baranović, Mirta ; Mauher, Mladen ; Dragšić, Veljko - : Hrvatska udruga za informacijsku i komunikacijsku tehnologiju, elektroniku i mikroelektroniku - MIPRO, 2009, 93-98
ISBN
978-953-233-046-5
Skup
32nd International Convention MIPRO 2009
Mjesto i datum
Opatija, Hrvatska, 25.05.2009. - 29.05.2009
Vrsta sudjelovanja
Predavanje
Vrsta recenzije
Međunarodna recenzija
Ključne riječi
Web security; Identity 2.0; federated identity model; OpenID
Sažetak
The changing trends in the usage of contemporary Web technologies and Web design have led to the Web 2.0 concept. Web 2.0 has introduced variety of new possibilities for both Internet service providers and users. The rapid evolution of services like e-banking, e-commerce, social-networking sites, blogs, and video-sharing sites have arisen. The nature of these services requires for users to be digitally identified. The identification process is conducted on the Web services level and each service has its own user identity control system, which makes usage of services more difficult for users and raises development costs for service providers. In Web 2.0 era, instead of having the identity on the Web services level, identification process should be conducted on the Web level. This concept is known as Identity 2.0 and it represents a federated identity model in which users are in full control of their online identities. In this paper we discuss security risks of federated identity model. Furthermore, we review OpenID, the most popular protocol that implements federated identity model. Finally, we describe how OpenID responds to the security issues of federated identity model. As a potential solution to those problems, we discuss related protocols and interoperability between them.
Izvorni jezik
Engleski
Znanstvena područja
Računarstvo
POVEZANOST RADA
Projekti:
036-0362980-1921 - Računalne okoline za sveprisutne raspodijeljene sustave (Srbljić, Siniša, MZO ) ( CroRIS)
Ustanove:
Fakultet elektrotehnike i računarstva, Zagreb
