A Performant and Secure Single Sign-On System Using Microservices

被引：0

作者：

Moghaddam, Mahyar T. ^{[1
]}

Pedersen, Andreas Edal ^{[1
]}

Bolding, William Walter Lillebroe ^{[2
]}

Worm, Torben ^{[1
]}

机构：

[1] Univ Southern Denmark, Odense, Denmark

[2] VIA Univ Coll, Aarhus, Denmark

来源：

38TH ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING, SAC 2023 | 2023年

关键词：

Empirical Software Engineering; Microservices; Single Sign-On; Performance; Security;

D O I：

10.1145/3555776.3577869

中图分类号：

TP39 [计算机的应用];

学科分类号：

081203 ; 0835 ;

摘要：

The Single Sign-On (SSO) method eases the authentication and authorization process. The solution substantially impacts the users' experience since they only need to authenticate once to access multiple services without re-authenticating. This paper adopts an incremental prototyping approach to develop an SSO system. The research reveals that while SSO improves users' quality of experience, it could imply performance and security issues if traditional architectures are adopted. Thus, a Microservices-based approach with containerization is subsequently proposed to overcome SSO's quality issues in practice. The SSO system is containerized using Docker and managed using Docker Compose. The results show a significant performance and security improvement.

引用

页码：1516 / 1519

页数：4

共 50 条

[21] A User-centric Federated Single Sign-on System
Suriadi, Suriadi
Foo, Ernest
Josang, Audun
2007 IFIP INTERNATIONAL CONFERENCE ON NETWORK AND PARALLEL COMPUTING WORKSHOPS, PROCEEDINGS, 2007, : 99 - 106
[22] An implement of single sign-on system based on cookie mechanism
Cheng Xuexian
Cheng Chuanhui
Zhao Pu
Advanced Computer Technology, New Education, Proceedings, 2007, : 874 - 876
[23] A Security Research on Single Sign-On System Based on CAS
Zhang Xiao-yin
Chen Guo-sheng
2011 INTERNATIONAL CONFERENCE ON COMPUTER APPLICATION AND EDUCATION TECHNOLOGY (ICCAET 2011), 2011, : 209 - 212
[24] An empirical study on the usability of logout in a single sign-on system
Linden, M
Vilpola, I
INFORMATION SECURITY PRACTICE AND EXPERIENCE, 2005, 3439 : 243 - 254
[25] Single Sign-on System Security Authentication Model Research
Liu, Yiqin
2016 ISSGBM INTERNATIONAL CONFERENCE ON INFORMATION, COMMUNICATION AND SOCIAL SCIENCES (ISSGBM-ICS 2016), PT 3, 2016, 68 : 494 - 498
[26] Identity Authentication Research and Design in Single Sign-on System
Tang, Chunhua
Tang, Jinjun
Liang, Cui
2016 INTERNATIONAL CONFERENCE ON MANUFACTURING SCIENCE AND INFORMATION ENGINEERING (ICMSIE 2016), 2016, : 161 - 166
[27] Design on a Single Sign-On Scheme
Lei, Wen
Liang, Xingjian
Zhang, Hong
ADVANCES IN SCIENCE AND ENGINEERING, PTS 1 AND 2, 2011, 40-41 : 531 - 536
[28] PESTO: Proactively Secure Distributed Single Sign-On, or How to Trust a Hacked Server
Baum, Carsten
Frederiksen, Tore
Hesse, Julia
Lehmann, Anja
Yanai, Avishay
2020 5TH IEEE EUROPEAN SYMPOSIUM ON SECURITY AND PRIVACY (EUROS&P 2020), 2020, : 587 - 606
[29] A taxonomy of single sign-on systems
Pashalidis, A
Mitchell, CJ
INFORMATION SECURITY AND PRIVACY, PROCEEDINGS, 2003, 2727 : 249 - 264
[30] A Survey on Single Sign-On Techniques
Radha, V.
Reddy, D. Hitha
2ND INTERNATIONAL CONFERENCE ON COMPUTER, COMMUNICATION, CONTROL AND INFORMATION TECHNOLOGY (C3IT-2012), 2012, 4 : 134 - 139

← 1 2 3 4 5 →