Secure web based Single Sign-On (SSO) framework using identity based encryption system

Abstract

Due to the vulnerability caused by poor password selection it is very important to have a secure authentication and authorization infrastructure for web based applications. In the current scenario it is very difficult to remember different passwords for different web based applications. We propose centralized password based multiuser and multi-application Single Sign-On (SSO) framework for such applications. Unlike traditional Single Sign-On architectures we are using Identity Based Encryption System (IBES) instead of Public key infrastructure (PKI). Our proposed design provides better security for the users and the system is efficient. This framework is deployed as a web service and can be deployed on a web server. � 2009 IEEE.