Proceedings of the The 1st International Workshop on Cloud Computing and Information Security

Security Vulnerabilities in SAML based Single Sign-On Authentication in Cloud

Authors
Kaur Kirandeep, Bansal Divya
Corresponding Author
Kaur Kirandeep
Available Online November 2013.
DOI
10.2991/ccis-13.2013.69How to use a DOI?
Keywords
SSO, SAML, Authentication, Confidentiality, Availability, Integrity, Vulnerability
Abstract

Cloud computing is introducing numerous changes to one’s lifestyle and working pattern for its infinite benefits. Companies have increasingly turned to Software as a Service (SaaS) or Application Service Providers (ASPs) vendors to offer specialized web based services that have huge potential to cut costs and provide specific applications to the users in a very convenient way. However, the security of cloud computing is always a serious issue for numerous potential cloud users, and also a big roadblock for its far-flung applications. One of the major challenges remains to be an integrated authentication mechanism over cloud environments through Single Sign-On. In this paper, the authors report their work of implementing Security Assertion Markup Language (SAML) to enable Single Sign-On (SSO) based authentication in a multiple web application cloud environment. The paper also reports serious vulnerabilities prevalent in such an environment and describes a detection method for the same.

Copyright
© 2013, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Download article (PDF)

Volume Title
Proceedings of the The 1st International Workshop on Cloud Computing and Information Security
Series
Advances in Intelligent Systems Research
Publication Date
November 2013
ISBN
978-90-78677-88-8
ISSN
1951-6851
DOI
10.2991/ccis-13.2013.69How to use a DOI?
Copyright
© 2013, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Cite this article

TY  - CONF
AU  - Kaur Kirandeep
AU  - Bansal Divya
PY  - 2013/11
DA  - 2013/11
TI  - Security Vulnerabilities in SAML based Single Sign-On Authentication in Cloud
BT  - Proceedings of the The 1st International Workshop on Cloud Computing and Information Security
PB  - Atlantis Press
SP  - 294
EP  - 298
SN  - 1951-6851
UR  - https://doi.org/10.2991/ccis-13.2013.69
DO  - 10.2991/ccis-13.2013.69
ID  - Kirandeep2013/11
ER  -