Title :
Federated Authentication Mechanism using Cellular Phone - Collaboration with OpenID
Author :
Watanabe, Ryu ; Tanaka, Toshiaki
Author_Institution :
KDDI R&D Labs., Inc.
Abstract :
OpenID authentication is a method to provide a single sign-on (SSO) service among Internet service sites. OpenID has been widely adopted by blog sites because of its usability and ease of implementation. However, the assurance of the ID in OpenID authentication is a concern because currently anyone can hold accounts on an OpenID provider (OP) simply by sending a registration mail and OPs usually do not check to confirm the real identity of their applicants. In contrast, a telephone company checks the identity of their mobile service users before a contract is completed by referring to such credentials as a driverpsilas license or passport. Therefore, on a cellular phone, the ID, such as subscriber ID, is assured by the contract process and telephone companies can trace the userpsilas identity through the ID. In this paper, we propose a federation authentication scheme between Open ID and a cellular phone in order to assure the ID of the OpenID. In addition, by using the cellular phone at user authentication for each service use, secure authentication is also provided.
Keywords :
Web sites; message authentication; Internet service sites; OpenID authentication; authentication security; blog sites; cellular phone; federated authentication mechanism; single sign-on service; subscriber ID; user authentication; Authentication; Cellular phones; Collaboration; Contracts; Information services; Postal services; Telephony; Usability; Web and internet services; Web sites; ID federation; mobile PKI; network security; privacy protection;
Conference_Titel :
Information Technology: New Generations, 2009. ITNG '09. Sixth International Conference on
Conference_Location :
Las Vegas, NV
Print_ISBN :
978-1-4244-3770-2
Electronic_ISBN :
978-0-7695-3596-8
DOI :
10.1109/ITNG.2009.111
