@inproceedings{f025aed9c794499e9caa15145619dbff,
title = "Single sign-on for Java Web Start applications using MyProxy",
abstract = "Single sign-on is critical for the usability of distributed systems. While there are several authentication mechanisms which support single sign-on (e.g. Kerberos and X.509), it may be difficult to modify a particular legacy application to utilize an authentication scheme other than username/password. A simple solution for single sign-on involves transmitting a user's password over the network. However, it is undesirable to expose a user's private password in an insecure environment. This paper describes our effort to create {"} session passwords{"} which are short-lived passwords transmitted in lieu of a user's private password. Our implementation utilizes the MyProxy X.509 credential service as an authentication service. We demonstrate our solution in the MAEviz application portal, a Java Web Start application for earthquake risk management and analysis.",
keywords = "Grid portals, Session passwords, Single sign-on",
author = "Terry Fleury and Jim Basney and Von Welch",
year = "2006",
doi = "10.1145/1180367.1180384",
language = "English (US)",
isbn = "1595935460",
series = "Proceedings of the ACM Conference on Computer and Communications Security",
pages = "95--101",
booktitle = "Proceedings of the 3rd ACM Workshop on Secure Web Services, SWS '06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06",
note = "3rd ACM Workshop on Secure Web Services, SWS'06, Co-located with the 13th ACM Conference on Computer and Communications Security, CCS'06 ; Conference date: 30-10-2006 Through 03-11-2006",
}