The power of recognition: secure single sign-on using TLS channel bindings

@inproceedings{Schwenk2011ThePO,
  title={The power of recognition: secure single sign-on using TLS channel bindings},
  author={J{\"o}rg Schwenk and Florian Kohlar and Marcus Amon},
  booktitle={Digital Identity Management},
  year={2011}
}
Today, entity authentication in the TLS protocol involves at least three complex and partly insecure systems: the Domain Name System (DNS), Public Key Infrastructures (PKI), and human users, bound together by the Same Origin Policy (SOP). To solve the security threats resulting from this construction, a new concept was introduced at CCS '07: the strong… CONTINUE READING