oru.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Security Flows in OAuth 2.0 Framework: A Case Study
DTU Compute, Technical University of Denmark, Lyngby, Denmark.
Örebro University, School of Science and Technology. DTU Compute, Technical University of Denmark, Lyngby, Denmark. (AASS)ORCID iD: 0000-0001-9575-2990
DTU Compute, Technical University of Denmark, Lyngby, Denmark; Dipartimento Informatica, Sapienza Università di Roma, Rome, Italy.
2017 (English)In: Computer safety, reliability, and security: SAFECOMP 2017 Workshops, ASSURE, DECSoS, SASSUR, TELERISE, and TIPS, Trento, Italy, September 12, 2017, Proceedings / [ed] Tonetta S., Schoitsch E., Bitsch F., Springer, 2017, Vol. 10489, p. 396-406Conference paper, Published paper (Refereed)
Abstract [en]

The burst in smartphone use, handy design in laptops and tablets as well as other smart products, like cars with the ability to drive you around, manifests the exponential growth of network usage and the demand of accessing remote data on a large variety of services. However, users notoriously struggle to maintain distinct accounts for every single service that they use. The solution to this problem is the use of a Single Sign On (SSO) framework, with a unified single account to authenticate user’s identity throughout the different services. In April 2007, AOL introduced OpenAuth framework. After several revisions and despite its wide adoption, OpenAuth 2.0 has still several flaws that need to be fixed in several implementations. In this paper, we present a thorough review about both benefits of this single token authentication mechanism and its open flaws.

Place, publisher, year, edition, pages
Springer, 2017. Vol. 10489, p. 396-406
Series
Lecture Notes in Computer Science, E-ISSN 0302-9743 ; 10489
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:oru:diva-62794DOI: 10.1007/978-3-319-66284-8_33Scopus ID: 2-s2.0-85029480634ISBN: 978-3-319-66283-1 (print)ISBN: 978-3-319-66284-8 (print)OAI: oai:DiVA.org:oru-62794DiVA, id: diva2:1159631
Conference
TELERISE: 3rd International Workshop on TEchnical and LEgal aspects of data pRIvacy and SEcurity, 2017, LNCS.
Available from: 2017-11-23 Created: 2017-11-23 Last updated: 2018-02-12Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records BETA

Dragoni, Nicola

Search in DiVA

By author/editor
Dragoni, Nicola
By organisation
School of Science and Technology
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 51 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf