A Performant and Secure Single Sign-On System Using Microservices

被引：0

作者：

Moghaddam, Mahyar T. ^{[1
]}

Pedersen, Andreas Edal ^{[1
]}

Bolding, William Walter Lillebroe ^{[2
]}

Worm, Torben ^{[1
]}

机构：

[1] Univ Southern Denmark, Odense, Denmark

[2] VIA Univ Coll, Aarhus, Denmark

来源：

38TH ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING, SAC 2023 | 2023年

关键词：

Empirical Software Engineering; Microservices; Single Sign-On; Performance; Security;

D O I：

10.1145/3555776.3577869

中图分类号：

TP39 [计算机的应用];

学科分类号：

081203 ; 0835 ;

摘要：

The Single Sign-On (SSO) method eases the authentication and authorization process. The solution substantially impacts the users' experience since they only need to authenticate once to access multiple services without re-authenticating. This paper adopts an incremental prototyping approach to develop an SSO system. The research reveals that while SSO improves users' quality of experience, it could imply performance and security issues if traditional architectures are adopted. Thus, a Microservices-based approach with containerization is subsequently proposed to overcome SSO's quality issues in practice. The SSO system is containerized using Docker and managed using Docker Compose. The results show a significant performance and security improvement.

引用

页码：1516 / 1519

页数：4

共 50 条

[1] SPRESSO: A Secure, Privacy-Respecting Single Sign-On System for the Web
Fett, Daniel
Kuesters, Ralf
Schmitz, Guido
[J]. CCS'15: PROCEEDINGS OF THE 22ND ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2015, : 1358 - 1369
[2] Single sign-on and the system administrator
Grubb, MF
Carter, R
[J]. PROCEEDINGS OF THE TWELFTH SYSTEMS ADMINISTRATION CONFERENCE (LISA XII), 1998, : 63 - 86
[3] Scalable single sign-on system
Huang, He
Shan, Zhiguang
Huang, Dongquan
[J]. Journal of Southeast University (English Edition), 2007, 23 (03) : 465 - 468
[4] Secure Web Based Single Sign-On (SSO) framework using Identity Based Encryption System
Singh, Rajesh Kumar
Pais, Alwyn R.
[J]. 2009 INTERNATIONAL CONFERENCE ON ADVANCES IN RECENT TECHNOLOGIES IN COMMUNICATION AND COMPUTING (ARTCOM 2009), 2009, : 430 - 432
[5] Secure Cross-Cloud Single Sign-On (SSO) using eIDs
Zwattendorfer, Bernd
Tauber, Arne
[J]. 2012 INTERNATIONAL CONFERENCE FOR INTERNET TECHNOLOGY AND SECURED TRANSACTIONS, 2012, : 150 - 155
[6] A Secure Single Sign-On Mechanism for Distributed Computer Networks
Chang, Chin-Chen
Lee, Chia-Yin
[J]. IEEE TRANSACTIONS ON INDUSTRIAL ELECTRONICS, 2012, 59 (01) : 629 - 637
[7] Toward A Secure Single Sign-On Mechanism for Distributed Computer Networks
Lee, Cheng-Chi
Lai, Yan-Ming
[J]. COMPUTER JOURNAL, 2015, 58 (04): : 934 - 943
[8] Single sign-on using dusted platforms
Pashalidis, A
Mitchell, CJ
[J]. INFORMATION SECURITY, PROCEEDINGS, 2003, 2851 : 54 - 68
[9] Using EMV cards for single sign-on
Pashalidis, A
Mitchell, CJ
[J]. PUBLIC KEY INFRASTRUCTURE, PROCEEDINGS, 2004, 3093 : 205 - 217
[10] Using GSM/UMTS for Single Sign-On
Pashalidis, A
Mitchell, C
[J]. SYMPOTIC'03: JOINT IST WORKSHOP ON MOBILE FUTURE & SYMPOSIUM ON TRENDS IN COMMUNICATIONS, PROCEEDINGS, 2003, : 138 - 145

← 1 2 3 4 5 →