A User-centric Federated Single Sign-on System

Suriadi, Suriadi, Foo, Ernest, & Josang, Audun (2009) A User-centric Federated Single Sign-on System. Journal of Network and Computer Applications, 32(2), pp. 388-401.

View at publisher


Current identity management systems are not concerned with user privacy. Users must assume that identity providers and service providers will ensure their privacy, which is not always the case. This paper proposes an extension of existing Federated Single Sign-On (FSSO) systems that adopts the beneficial properties of the User- Centric Identity Management (UCIM) model. This new identity management system allows the users to control and enforce their privacy requirements while still retaining the convenience of single sign on over a federation of service providers. Coloured Petri Nets are used to formally model the new identity management system to provide assurance that the privacy goals are achieved. To our knowledge, Coloured Petri Nets have not been used to model privacy in identity management systems before.

Impact and interest:

31 citations in Scopus
Search Google Scholar™
19 citations in Web of Science®

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

Full-text downloads:

543 since deposited on 25 Mar 2008
29 in the past twelve months

Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.

ID Code: 13122
Item Type: Journal Article
Refereed: Yes
Additional Information: JNCA - Special Issue on Network and System Security
Keywords: identity management, privacy, private credential, single sign, on, user, centric
DOI: 10.1016/j.jnca.2008.02.016
ISSN: 1084-8045
Subjects: Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > DATA FORMAT (080400) > Data Format not elsewhere classified (080499)
Divisions: Past > QUT Faculties & Divisions > Faculty of Science and Technology
Past > Institutes > Information Security Institute
Copyright Owner: Copyright 2009 Elsevier
Copyright Statement: Reproduced in accordance with the copyright policy of the publisher.
Deposited On: 25 Mar 2008 00:00
Last Modified: 29 Feb 2012 13:55

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page