Showing 1-25 of 319 resultsfor "Index Terms":Shibboleth
"Index Terms":Shibboleth
- Sort
Get notified when new research is published matching your search criteria.
Sort By
Results
Mobility and authentication issues in MADAR learning
2013 IEEE Global Engineering Education Conference (EDUCON)
Year: 2013 | Conference Paper |
The use of internet is constantly increasing over the world and more wireless connections and technologies are used to access resources, services over the network. Mobility does not only imply changing location, but also accessing several applications within the same environment. We must therefore ensure seamless authentication mechanisms within these applications while changing devices. This pape...Show More
Research on Integrated Authentication Using Passwordless Authentication Method
Michitomo Morii;Hiroki Tanioka;Kenji Ohira;Masahiko Sano;Yosuke Seki;Kenji Matsuura;Tetsushi Ueta
2017 IEEE 41st Annual Computer Software and Applications Conference (COMPSAC)
Year: 2017 | Conference Paper |
Cited by: Papers (13)
Currently, authentication methods using ID and password are widely used and fulfilled central roles in various information systems and services. Our university also uses ID and password for authentication of most services. However, passwords have various problems such as reuse, phishing and leakage. This research is a practical experiment in order to implement an integrated authentication system w...Show More
User-Centric Identity Management in Heterogeneous Federations
2009 Fourth International Conference on Internet and Web Applications and Services
Year: 2009 | Conference Paper |
Cited by: Papers (10)
Over the past years Web applications increased in number and complexity (driven by ldquoWeb 2.0rdquo paradigm). Users need to manage different passwords to authenticate at these applications. Modern Web-based single sign-on solutions that reduce the complexity for usage and management of the userspsila credentials can be categorized in federated (typically SAML) or user-centric identity management...Show More
Shibboleth Access for Resources on the National Grid Service (SARoNGS)
Xiao Dong Wang;Mike Jones;Jens Jensen;Andrew Richards;David Wallom;Tiejun Ma;Robert Frank;David Spence;Steven Young;Claire Devereux;Neil Geddes
2009 Fifth International Conference on Information Assurance and Security
Year: 2009 | Conference Paper |
Cited by: Papers (8)
The National Grid Service (NGS) provides access to compute and data resources for UK academics. Currently users are required to have an X.509 certificate from the UK e-Science Certification Authority (CA) or one of its international peers to access the NGS. The CA must satisfy the requirements for internationally agreed assurance levels and some users find the processes of obtaining and managing c...Show More
Design of an SSO authentication infrastructure for heterogeneous inter-cloud environments
2014 IEEE 3rd International Conference on Cloud Networking (CloudNet)
Year: 2014 | Conference Paper |
Cited by: Papers (7)
This paper outlines the design of an authentication infrastructure for linking distributed heterogeneous cloud systems managed by different cloud management middleware to enable them to interoperate as an integrated inter-cloud system. This authentication infrastructure achieves single sign-on (SSO), which allows users to log in once and access the various cloud systems without being asked to log ...Show More
Attribute Aggregating System for Shibboleth Based Access Management Federation
Kazutsuna Yamaji;Toshiyuki Kataoka;Motonori Nakamura;Tananun Orawiwattanakul;Noboru Sonehara
2010 10th IEEE/IPSJ International Symposium on Applications and the Internet
Year: 2010 | Conference Paper |
In a federation, single sign-on (SSO) for web applications can be achieved by performing authentication at the user's home organization called identity provider (IdP) and authorization at the service provider (SP). The IdP provides the user's information to the SP though the attribute exchange and the SP assigns the authorized access level for the user according to the data in the attributes. The ...Show More
Group Management System for Federated Identities with Flow Control of Membership Information by Subjects
Takeshi Nishimura;Motonori Nakamura;Makoto Otani;Kazutsuna Yamaji;Noboru Sonehara
2012 IEEE 36th Annual Computer Software and Applications Conference Workshops
Year: 2012 | Conference Paper |
Cited by: Papers (4)
Federated identities are rapidly spreading, especially in the academic world. Some services in identity federations need ID groups to provide the collaborative work and/or access control based on contracts with groups. Some existing group management systems in identity federations can provide services with group membership information, but they lack support for contracts and flow control of the me...Show More
Research on Multi-level Security of Shibboleth Authentication Mechanism
2010 Third International Symposium on Information Processing
Year: 2010 | Conference Paper |
Cited by: Papers (4)
Shibboleth, a growing popular solution to Single Sign-On (SSO), can simplify the user's operation process and reduce the resource provider's overhead. The multi-level security of Shibboleth has become a topic of concern. The basic Shibboleth infrastructure was introduced based on the current SSO solutions. Then we summarized the BLP model, which is considered the basic security axiom in our work. ...Show More
Privacy-Preserving Attribute Distribution Mechanism for Access Control in a Grid
2009 21st IEEE International Conference on Tools with Artificial Intelligence
Year: 2009 | Conference Paper |
Cited by: Papers (4)
This paper presents a privacy-preserving attribute distribution mechanism for an identity federation framework. Attribute-based access control (ABAC) is a highly flexible and scalable access control scheme which can deal with diverse security requirements in grid environment. However, in ABAC the user attributes delivered by the Identity Providers for authorization decisions may cause some privacy...Show More
Supporting Federated Multi-authority Security Models
2011 11th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing
Year: 2011 | Conference Paper |
Cited by: Papers (3)
The JISC-funded Shintau project has produced an extension to the Shibboleth profile which allows a user to link information from more than one IdP together utilising a custom Linking Service (LS). This paper describes both the application and independent evaluation of this software by the Nationale-Science Centre (NeSC) at the University of Glasgow within the context of the ESRC-funded Data Manage...Show More
Decentralized authentication method for accessing pedagogical resources in a cloud computing based virtual organization
Amadou Dahirou Gueye;Samuel Ouya;Claude Lishou;Ibrahima Sanogo;Hamadou Saliah-Hassane
2014 International Conference on Interactive Collaborative Learning (ICL)
Year: 2014 | Conference Paper |
Cited by: Papers (3)
Today, more and more researchers are advocating the use of Clouds to form a virtual organization. However, the implementation of a cloud based virtual organization presents some security challenges. Generally, in the cloud, the authentication system is centralized. This represents an obstacle and contradicts the principle of virtual organizations, which requires that each member organization of th...Show More
Design and Implementation of Web Forward Proxy with Shibboleth Authentication
2011 IEEE/IPSJ International Symposium on Applications and the Internet
Year: 2011 | Conference Paper |
We propose a web forward proxy server with authentication method using Shibboleth. With this proxy Single Sign-On would benefit a user and also authentication using Shibboleth protocol solves problems in basic access authentication and digest access authentication supported by existing web forward proxy servers. In order to realize it, the proxy needs to recognize attributes of shibboleth protocol...Show More
Development of Network User Authentication System Using OpenFlow
Shohei Yamashita;Hisaharu Tanaka;Yoshiaki Hori;Makoto Otani;Kenzi Watanabe
2013 Eighth International Conference on Broadband and Wireless Computing, Communication and Applications
Year: 2013 | Conference Paper |
Cited by: Papers (2)
Although a university is a public space, only members can use the network of the university. Therefore, when members use the network, it is necessary to authenticate. We are using Single Sign-On authentication by shibboleth authentication in Saga University. On the other hand, the concept of SDN (Software Defined Network) came out. This is a way of thinking that we can control a network by softwar...Show More
Leveraging PKI in SAML 2.0 Federation for Enhanced Discovery Service
Toshiyuki Kataoka;Takeshi Nishimura;Masaki Shimaoka;Kazutsuna Yamaji;Motonori Nakamura;Noboru Sonehara;Yasuo Okabe
2009 Ninth Annual International Symposium on Applications and the Internet
Year: 2009 | Conference Paper |
Cited by: Papers (2)
The University Public Key Infrastructure (UPKI) project in Japan is developing a national academic inter-institution authentication and authorization infrastructure based on the Public Key Infrastructure (PKI), and it is carrying out a feasibility study on SAML 2.0 federation by building a Shibboleth2.x test-bed called UPKI-Fed with about thirty university participants. Federation usually provides...Show More
Re-engineering of web reverse proxy with shibboleth authentication
Galoh Rashidah Haron;Dharmadharshni Maniam;Vijayakumari Sadasivam;Wong Hon Loon
2012 International Conference for Internet Technology and Secured Transactions
Year: 2012 | Conference Paper |
Cited by: Papers (1)
Majority of web authentication is implemented using username and password mechanism. How about leveraging the Shibboleth authentication advantages as an alternative to username and password based authentication to access a live web site? This challenge is trivial if, the codes that built the external web sites are permissible to be modified. In a case where no access on the codes is available, we ...Show More
Centralized Control of Account Migration at Single Sign-On in Shibboleth
2020 IEEE 44th Annual Computers, Software, and Applications Conference (COMPSAC)
Year: 2020 | Conference Paper |
Cited by: Papers (1)
Single Sign-On (SSO) is adopted to use multiple services with a single log-in in the Internet. However, when a user tries to change the identity provider (IdP) which is responsible for authenticating of the user, he needs to release the binding between the log-in account on the migration-source IdP and his service account on each service provider (SP), and needs to set a new binding between the ac...Show More
An Authentication Federation Proxy Which Conceals Attributes and Authorization Policies Each Other
Yasuo Okabe;Takaaki Komura;Hiroyuki Sato;Kazutsuna Yamaji;Motonori Nakamura
2016 IEEE 40th Annual Computer Software and Applications Conference (COMPSAC)
Year: 2016 | Conference Paper |
Cited by: Papers (1)
A mechanism for privacy-enhanced authentication and authorization federation is proposed. The mechanism conceals attributes of a user provided by the IdP from the SP, and simultaneously conceals an authorization policy of a service presented by the SP from the IdP. The mechanism is implemented as an authentication federation proxy which works between an IdP and an SP. Attributes of a user is provi...Show More
Constructing a Robust Services-Oriented Inter-cloud Portal Based on an Autonomic Model and FOSS
Courtney Powell;Masaharu Munetomo;Attia Wahib;Takashi Aizawa
2013 IEEE/ACM 6th International Conference on Utility and Cloud Computing
Year: 2013 | Conference Paper |
The aim of the simple heterogeneous inter-cloud manager (SHINCLOM) project is to develop a prototype web-based single sign-on inter-cloud management portal that gives users the ability to easily configure and launch inter-cloud VPCs, HPC clusters, and autonomic applications and services. We employ a model-based approach in which the various requirements of the project are mapped to the layers of a...Show More
CMAFS: Make Shibboleth IdP Support Multiple External Authentication Mechanisms
2022 8th Annual International Conference on Network and Information Systems for Computers (ICNISC)
Year: 2022 | Conference Paper |
CARSI realize resource sharing by using Shibboleth IdP (Identity Provider) and SP (Service Provider), which are based on SAML protocol. Universities in China join CARSI as IdP or SP member, service providers join CARSI as SP member. Shibboleth IdP external login flow supports only one arbitrary external authentication mechanism. For universities have multiple authentication systems, if we use only...Show More
Providing flexible authorization for shared group spaces by the attribute registration system
2015 17th Asia-Pacific Network Operations and Management Symposium (APNOMS)
Year: 2015 | Conference Paper |
We add flexibility to the authorization with Shibboleth by featuring a system managing additional attributes. The system offers an interface and a database to privileged administrators. When any temporary groups or projects are created, a proper set of users are assigned to them without modifying the IdP backends.Show More
SH-CRBAC: Integrating Attribute and Status Constraints into the RBAC Model in Smart Home Systems
The requirements for access control have been increased significantly in smart home systems. Many factors such as user ID, user location, service usage conditions and so on, regarded as authorization attributes, are important in making authorization decision in smart home systems. We investigate into the dynamic characteristics of the authorization in smart home systems and propose a new access-co...Show More
Fog Computing Over IoT: A Secure Deployment and Formal Verification
Samman Zahra;Masoom Alam;Qaisar Javaid;Abdul Wahid;Nadeem Javaid;Saif Ur Rehman Malik;Muhammad Khurram Khan
Fog computing, being an extension to cloud computing has addressed some issues found in cloud computing by providing additional features, such as location awareness, low latency, mobility support, and so on. Its unique features have also opened a way toward security challenges, which need to be focused for making it bug-free for the users. This paper is basically focusing on overcoming the securit...Show More
Connecting Self-Sovereign Identity with Federated and User-centric Identities via SAML Integration
Hakan Yildiz;Christopher Ritter;Lan Thao Nguyen;Berit Frech;Maria Mora Martinez;Axel Küpper
2021 IEEE Symposium on Computers and Communications (ISCC)
Year: 2021 | Conference Paper |
Cited by: Papers (18)
Self-sovereign identity provides a feasible alternative to login via username and password through an identity provider to access digital services. It allows identity subjects to control and own their data. Although this is an appealing approach, it requires a whole new infrastructure with almost no dependencies on the existing ones. We designed and implemented a solution that combines an existing...Show More
User-controlled Privacy Protection with Attribute-filter Mechanism for a Federated SSO Environment Using Shibboleth
Tananun Orawiwattanakul;Kazutsuna Yamaji;Motonori Nakamura;Toshiyuki Kataoka;Noboru Sonehara
2010 International Conference on P2P, Parallel, Grid, Cloud and Internet Computing
Year: 2010 | Conference Paper |
Cited by: Papers (13)
Shibboleth is a well-known software package for web single sign-on (SSO) based on several federated identity standards, including the Organization for the Advancement of Structured Information Standards (OASIS)' security assertion markup language (SAML) version 1.1 and 2.0. This paper describes uApprove.jp, a user consent acquisition system (UCAS) with an attribute-filter mechanism for a Shibbolet...Show More
IEEE Account
Purchase Details
Profile Information
Need Help?
- US & Canada: +1 800 678 4333
- Worldwide: +1 732 981 0060
- Contact & Support
- About IEEE Xplore
- Contact Us
- Help
- Accessibility
- Terms of Use
- Nondiscrimination Policy
- Sitemap
- Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.