Single sign-on for Java Web Start applications using MyProxy

Terry Fleury, James Alan Basney, Von Welch

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Single sign-on is critical for the usability of distributed systems. While there are several authentication mechanisms which support single sign-on (e.g. Kerberos and X.509), it may be difficult to modify a particular legacy application to utilize an authentication scheme other than username/password. A simple solution for single sign-on involves transmitting a user's password over the network. However, it is undesirable to expose a user's private password in an insecure environment. This paper describes our effort to create " session passwords" which are short-lived passwords transmitted in lieu of a user's private password. Our implementation utilizes the MyProxy X.509 credential service as an authentication service. We demonstrate our solution in the MAEviz application portal, a Java Web Start application for earthquake risk management and analysis.

Original languageEnglish (US)
Title of host publicationProceedings of the 3rd ACM Workshop on Secure Web Services, SWS '06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06
Pages95-101
Number of pages7
DOIs
StatePublished - Dec 1 2006
Event3rd ACM Workshop on Secure Web Services, SWS'06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06 - Alexandria, VA, United States
Duration: Oct 30 2006Nov 3 2006

Publication series

NameProceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)1543-7221

Other

Other3rd ACM Workshop on Secure Web Services, SWS'06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06
CountryUnited States
CityAlexandria, VA
Period10/30/0611/3/06

Keywords

  • Grid portals
  • Session passwords
  • Single sign-on

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Single sign-on for Java Web Start applications using MyProxy'. Together they form a unique fingerprint.

  • Cite this

    Fleury, T., Basney, J. A., & Welch, V. (2006). Single sign-on for Java Web Start applications using MyProxy. In Proceedings of the 3rd ACM Workshop on Secure Web Services, SWS '06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06 (pp. 95-101). (Proceedings of the ACM Conference on Computer and Communications Security). https://doi.org/10.1145/1180367.1180384