Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps

@inproceedings{Armando2008FormalAO,
  title={Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps},
  author={Alessandro Armando and Roberto Carbone and Luca Compagna and Jorge Cu{\'e}llar and M. Llanos Tobarra},
  booktitle={FMSE},
  year={2008}
}
Single-Sign-On (SSO) protocols enable companies to establish a federated environment in which clients sign in the system once and yet are able to access to services offered by different companies. The OASIS Security Assertion Markup Language (SAML) 2.0 Web Browser SSO Profile is the emerging standard in this context. In this paper we provide formal models of the protocol corresponding to one of the most applied use case scenario (the SP-Initiated SSO with Redirect/POST Bindings) and of a… CONTINUE READING
Highly Cited
This paper has 380 citations. REVIEW CITATIONS
Recent Discussions
This paper has been referenced on Twitter 1 time over the past 90 days. VIEW TWEETS

Citations

Publications citing this paper.
Showing 1-10 of 140 extracted citations

380 Citations

0204060'09'12'15'18
Citations per Year
Semantic Scholar estimates that this publication has 380 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.

Similar Papers

Loading similar papers…