Security Vulnerabilities in SAML based Single Sign-On Authentication in Cloud
- DOI
- 10.2991/ccis-13.2013.69How to use a DOI?
- Keywords
- SSO, SAML, Authentication, Confidentiality, Availability, Integrity, Vulnerability
- Abstract
Cloud computing is introducing numerous changes to one’s lifestyle and working pattern for its infinite benefits. Companies have increasingly turned to Software as a Service (SaaS) or Application Service Providers (ASPs) vendors to offer specialized web based services that have huge potential to cut costs and provide specific applications to the users in a very convenient way. However, the security of cloud computing is always a serious issue for numerous potential cloud users, and also a big roadblock for its far-flung applications. One of the major challenges remains to be an integrated authentication mechanism over cloud environments through Single Sign-On. In this paper, the authors report their work of implementing Security Assertion Markup Language (SAML) to enable Single Sign-On (SSO) based authentication in a multiple web application cloud environment. The paper also reports serious vulnerabilities prevalent in such an environment and describes a detection method for the same.
- Copyright
- © 2013, the Authors. Published by Atlantis Press.
- Open Access
- This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).
Cite this article
TY - CONF AU - Kaur Kirandeep AU - Bansal Divya PY - 2013/11 DA - 2013/11 TI - Security Vulnerabilities in SAML based Single Sign-On Authentication in Cloud BT - Proceedings of the The 1st International Workshop on Cloud Computing and Information Security PB - Atlantis Press SP - 294 EP - 298 SN - 1951-6851 UR - https://doi.org/10.2991/ccis-13.2013.69 DO - 10.2991/ccis-13.2013.69 ID - Kirandeep2013/11 ER -