all InfoSec news
SSOPrivateEye: Timely Disclosure of Single Sign-On Privacy Design Differences. (arXiv:2209.04490v1 [cs.CR])
Sept. 13, 2022, 1:20 a.m. | Srivathsan G. Morkonda, Sonia Chiasson, Paul C. van Oorschot
cs.CR updates on arXiv.org arxiv.org
The number of login options on websites has increased since the introduction
of web single sign-on (SSO) protocols. SSO services allow users to grant
websites or relying parties (RPs) access to their personal profile information
from identity provider (IdP) accounts. When prompting users to select an SSO
login option, many websites do not provide any privacy information that could
help users make informed choices. Moreover, privacy differences in permission
requests across available login options are largely hidden from users and …
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Intermediate Security Engineer, (Incident Response, Trust & Safety)
@ GitLab | Remote, US
Journeyman Cybersecurity Triage Analyst
@ Peraton | Linthicum, MD, United States
Project Manager II - Compliance
@ Critical Path Institute | Tucson, AZ, USA
Junior System Engineer (m/w/d) Cyber Security 1
@ Deutsche Telekom | Leipzig, Deutschland