all InfoSec news
MISO: Legacy-compatible Privacy-preserving Single Sign-on using Trusted Execution Environments. (arXiv:2305.06833v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Single sign-on (SSO) allows users to authenticate to third-party applications
through a central identity provider. Despite their wide adoption, deployed SSO
systems suffer from privacy problems such as user tracking by the identity
provider. While numerous solutions have been proposed by academic papers, none
were adopted because they require modifying identity providers, a significant
adoption barrier in practice. Solutions do get deployed, however, fail to
eliminate major privacy issues. Leveraging Trusted Execution Environments
(TEEs), we propose MISO, the first privacy-preserving …
academic papers adoption applications environments identity identity provider legacy papers party privacy problems sign single single sign-on solutions sso systems third third-party tracking