IC card-based single sign-on system that remains secure under card analysis

Jun Furukawa; Kazue Sako; Satoshi Obana

doi:10.1145/1655028.1655043

IC card-based single sign-on system that remains secure under card analysis

Jun Furukawa^*, Kazue Sako, Satoshi Obana

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Citations (Scopus)

Abstract

Today, many users of the network access to multiple independent services consecutively or even simultaneously. Single sign-on systems help such users to access services easily with only a single log-in process. Some single sign-on systems that require users' IC cards be authenticated directly by services, achieve high level of security in that they allow no third party to have the power to impersonate users. However, most of these systems are vulnerable when IC cards are analyzed since the security is solely dependent on the secret information born in side the card. In this paper, we propose a novel single sign-on system with IC card that still keeps certain level of security even when user's IC card is analyzed. In the system, secret information is kept distributedly in IC card and portal.

Original language	English
Title of host publication	Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
Pages	63-71
Number of pages	9
DOIs	https://doi.org/10.1145/1655028.1655043
Publication status	Published - 2009
Externally published	Yes
Event	5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 - Chicago, IL, United States Duration: 2009 Nov 9 → 2009 Nov 13

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
Country/Territory	United States
City	Chicago, IL
Period	09/11/9 → 09/11/13

Keywords

Authenticated key exchange
Card analysis
Distributed key
Single sign-on

ASJC Scopus subject areas

Software
Computer Networks and Communications

Access to Document

10.1145/1655028.1655043

Cite this

Furukawa, J., Sako, K., & Obana, S. (2009). IC card-based single sign-on system that remains secure under card analysis. In Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 (pp. 63-71). (Proceedings of the ACM Conference on Computer and Communications Security). https://doi.org/10.1145/1655028.1655043

IC card-based single sign-on system that remains secure under card analysis. / Furukawa, Jun; Sako, Kazue; Obana, Satoshi.

Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. p. 63-71 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Furukawa, J, Sako, K & Obana, S 2009, IC card-based single sign-on system that remains secure under card analysis. in Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. Proceedings of the ACM Conference on Computer and Communications Security, pp. 63-71, 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09, Chicago, IL, United States, 09/11/9. https://doi.org/10.1145/1655028.1655043

Furukawa J, Sako K, Obana S. IC card-based single sign-on system that remains secure under card analysis. In Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. p. 63-71. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/1655028.1655043

Furukawa, Jun ; Sako, Kazue ; Obana, Satoshi. / IC card-based single sign-on system that remains secure under card analysis. Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. pp. 63-71 (Proceedings of the ACM Conference on Computer and Communications Security).

@inproceedings{ab2f713facf449c38fcdd2f11136a151,

title = "IC card-based single sign-on system that remains secure under card analysis",

abstract = "Today, many users of the network access to multiple independent services consecutively or even simultaneously. Single sign-on systems help such users to access services easily with only a single log-in process. Some single sign-on systems that require users' IC cards be authenticated directly by services, achieve high level of security in that they allow no third party to have the power to impersonate users. However, most of these systems are vulnerable when IC cards are analyzed since the security is solely dependent on the secret information born in side the card. In this paper, we propose a novel single sign-on system with IC card that still keeps certain level of security even when user's IC card is analyzed. In the system, secret information is kept distributedly in IC card and portal.",

keywords = "Authenticated key exchange, Card analysis, Distributed key, Single sign-on",

author = "Jun Furukawa and Kazue Sako and Satoshi Obana",

year = "2009",

doi = "10.1145/1655028.1655043",

language = "English",

isbn = "9781605587868",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "63--71",

booktitle = "Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09",

note = "5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 ; Conference date: 09-11-2009 Through 13-11-2009",

}

TY - GEN

T1 - IC card-based single sign-on system that remains secure under card analysis

AU - Furukawa, Jun

AU - Sako, Kazue

AU - Obana, Satoshi

PY - 2009

Y1 - 2009

N2 - Today, many users of the network access to multiple independent services consecutively or even simultaneously. Single sign-on systems help such users to access services easily with only a single log-in process. Some single sign-on systems that require users' IC cards be authenticated directly by services, achieve high level of security in that they allow no third party to have the power to impersonate users. However, most of these systems are vulnerable when IC cards are analyzed since the security is solely dependent on the secret information born in side the card. In this paper, we propose a novel single sign-on system with IC card that still keeps certain level of security even when user's IC card is analyzed. In the system, secret information is kept distributedly in IC card and portal.

AB - Today, many users of the network access to multiple independent services consecutively or even simultaneously. Single sign-on systems help such users to access services easily with only a single log-in process. Some single sign-on systems that require users' IC cards be authenticated directly by services, achieve high level of security in that they allow no third party to have the power to impersonate users. However, most of these systems are vulnerable when IC cards are analyzed since the security is solely dependent on the secret information born in side the card. In this paper, we propose a novel single sign-on system with IC card that still keeps certain level of security even when user's IC card is analyzed. In the system, secret information is kept distributedly in IC card and portal.

KW - Authenticated key exchange

KW - Card analysis

KW - Distributed key

KW - Single sign-on

UR - http://www.scopus.com/inward/record.url?scp=74049103994&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=74049103994&partnerID=8YFLogxK

U2 - 10.1145/1655028.1655043

DO - 10.1145/1655028.1655043

M3 - Conference contribution

AN - SCOPUS:74049103994

SN - 9781605587868

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 63

EP - 71

BT - Proceedings of the 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09

T2 - 5th ACM Workshop on Digital Identity Management, DIM '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09

Y2 - 9 November 2009 through 13 November 2009

ER -

IC card-based single sign-on system that remains secure under card analysis

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this