Abstract
Identity management technology (IdM) is fundamental to an application’s security. Over time, distinct identity management schemes have been developed with their specific advantages and disadvantages. Furthermore, the novel Self-Sovereign Identity (SSI) paradigm emerged along the invention of blockchain technology. However, the distribution of applied concepts on the Internet is an open research field. In particular, any use of the emergent SSI solutions remain undetermined. To close this gap, we research the login method distribution based on the most popular domains identified by the Majestic project. In a period of 3 months, we analyzed the Internet for the IdM model distribution. Thereby, we identified an average use of 27.3% centralized, 65.5% isolated and 0% SSI model. In the centralized model, we identified Facebook with an average of 16.2% as the primary Single Sign-On (SSO) provider.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hunt, T.: PWNed passwords, version 5 (2019). https://www.troyhunt.com/pwned-passwords-version-5/. Accessed 05 Jan 2022
Grüner, A., Mühle, A., Gayvoronskaya, T., Meinel, C.: A comparative analysis of trust requirements in decentralized identity management. In: Proceedings of the 33rd International Conference on Advanced Information Networking and Applications (AINA), pp. 200–213 (2019)
Allen, C.: The path to self-sovereign identity (2016). http://www.lifewithalacrity.com/previous/2016/04/the-path-to-self-soverereign-identity.html. Accessed 04 Mar 2022
Sporny, M., Longley, D., Chadwick, D.: Verifiable credentials data model v1.1. (2022). https://www.w3.org/TR/vc-data-model/. Accessed 29 July 2022
majestic. The majestic million. https://majestic.com/reports/majestic-million. Accessed 02 Apr 2022
Ghasemisharif, M., Ramesh, A., Kanich, S.C.C., Polakis, J.: O single sign-off, where art thou? An empirical analysis of single sign-on account hijacking and session management on the web. In: Proceedings of USENIX Security 2018 (2018)
Amazon. Alexa top sites. https://aws.amazon.com/de/alexa-top-sites/. Accessed 02 Apr 2022
OpenID Foundation. Openid connect core 1.0. https://openid.net/specs/openid-connect-core-1_0.html. Accessed 04 Mar 2022
Zhou, Y., Evans, D.: SSOScan: automated testing of web applications for single Sign-On vulnerabilities. In: 23rd USENIX Security Symposium (USENIX Security 2014), pp. 495–510 (2014)
Cho, E., Kim, J., Sundar, S.S.: Will you log into tinder using your Facebook account? Adoption of single sign-on for privacy-sensitive apps. In: Extended Abstracts of the CHI Conference on Human Factors in Computing Systems 2020, pp. 1–7 (2020)
Hubbard, D.: Cisco umbrella 1 million (2021). https://umbrella.cisco.com/blog/cisco-umbrella-1-million. Accessed 02 Apr 2022
majestic. The open page rank. https://www.domcop.com/openpagerank/frequently-asked-questions. Accessed 02 Apr 2022
Selenium. Selenium. https://www.selenium.dev. Accessed 02 Apr 2022
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Grüner, A., Mühle, A., Rümmler, N., Kadric, A., Meinel, C. (2023). Quo Vadis, Web Authentication? – An Empirical Analysis of Login Methods on the Internet. In: Barolli, L. (eds) Advanced Information Networking and Applications. AINA 2023. Lecture Notes in Networks and Systems, vol 655. Springer, Cham. https://doi.org/10.1007/978-3-031-28694-0_45
Download citation
DOI: https://doi.org/10.1007/978-3-031-28694-0_45
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-28693-3
Online ISBN: 978-3-031-28694-0
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)