Improving Security of Single Sign-On Mechanism for Distributed Service Enviornment
Single sign-on (SSO) is a new authentication mechanism that allows users to sign on only once and have their identities automatically verified by each application or service they want to access afterwards. The existing scheme is insecure as it fails to meet credential privacy and soundness of authentication. It represents two impersonation attacks. The first attack allows a malicious service provider, who has successfully communicated with a legal user twice, to recover the user's credential and then to impersonate the user to access resources and services offered by other service providers. In another attack, an outsider without any credential may be able to enjoy network services freely by impersonating any legal user or a nonexistent user. In the proposed phase the work is based on to avoid the previous attacks that is impersonation and mounting. Once user enters into the service the portal will assign unique session id for each users with the unique key assignment for every machine. Once user request the service the portal will check the session id and the unique key (RSA signature scheme) for each request.
Ragendu .T.B, Dr. R. Manimegalai