Skip to main content
SpringerLink
Log in

A Study on the XML-Based Single Sign-On System Supporting Mobile and Ubiquitous Service Environments

  • Conference paper
Embedded and Ubiquitous Computing (EUC 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3207))

Included in the following conference series:

Abstract

With the integration of mobile and Web applications, the number of services a typical mobile user accesses has grown multi-fold and this forces users to manage multiple user names and passwords daily. The same situation will be extended to ubiquitous service environments. Recently, OMA suggests a new architecture for implementing the Web Services standard for mobile environments, and SAML is recommended for user authentication and authorization on mobile Web Services. SAML is an XML based single sign-on standard, which enables the exchange of authentication, authorization, and profile information between different entities. This provides interoperability between different security services in the distributed environments including mobile and ubiquitous service environments. In this paper, we propose a single sign-on architecture in which a mobile user offers his credential information to the wired service network for obtaining user authentication and accesses to another domain using this authentication, based on the SAML standard. And we verify this architecture by checking the security messages between entities based on a messaging scenario.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. http://www.eastandard.net/financialstandard/commentary/comm01.htm

  2. http://www.sktelecom.com/english/index.html

  3. He, Q., Khosla, P., Su, Z.: A Practical Study on Security of Agent-Based Ubiquitous Computing. In: Falcone, R., Barber, S.K., Korba, L., Singh, M.P. (eds.) AAMAS 2002. LNCS (LNAI), vol. 2631, Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  4. Volchkov, A.: Revisiting single sign-on: a pragmatic approach in a new context. IT Professional 3(1), 39–45 (2001)

    Article  Google Scholar 

  5. Parker, T.A.: Single sign-on systems-the technologies and the products. In: European Convention on Security and Detection, May 16-18, pp. 151–155 (1995)

    Google Scholar 

  6. Pfitzmann, B.: Privacy in Enterprise Identity Federation - Policies for Liberty Single Signon. In: Dingledine, R. (ed.) PET 2003. LNCS, vol. 2760, pp. 189–204. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  7. http://www.open-oasis.org

  8. OMA (Open Mobile Alliance) Web Services Enabler (OWSER): Core Specifications Draft Version 1.0, http://member.openmobilealliance.org/ftp/public_documents/mws/Permanent_documents/

  9. Pilioura, T., Tsalgatidou, A., Hadjiefthymiades, S.: Scenarios of using Web Services in MCommerce. ACM SIGecom Exchanges 3(4), 28–36 (2003)

    Article  Google Scholar 

  10. Pfitzmann, B., Waidner, B.: Token-based web Single Signon with Enabled Clients. IBM Research Report RZ 3458 (#93844) (November 2002)

    Google Scholar 

  11. Pfitzmann, B., Waidner, B.: Token-based web Single Signon with Enabled Clients. IBM Research Report RZ 3458 (#93844) (November 2002)

    Google Scholar 

  12. Semar, V.: Single Sign-On Using Cookies for Web applications. In: Proceedings. IEEE 8th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE 1999), pp. 158–163 (1999)

    Google Scholar 

  13. Bindings and Profiles for the OASIS Security Assertion Markup Language (SAML) V1.1, http://www.oasis-open.org/committees/security/

  14. WAPWhite_Paper1.pdf, http://www.wapforum.org/what/WAPWhite_Paper1.pdf

  15. Assertions and Protocol for the OASIS Security Assertion Markup Language (SAML) V1.1, http://www.oasis-open.org/committees/security/

  16. Jeong, J., Shin, D., Shin, D., Moon, K.: Java-Based Single Sign-On Library Supporting SAML (Security Markup Language) for Distributed Web Services. In: Yu, J.X., Lin, X., Lu, H., Zhang, Y. (eds.) APWeb 2004. LNCS, vol. 3007, Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  17. Godik, S., Moses, T.: eXtensible Access Control Markup Language (XACML) Version 1.0 OASIS Standard (2003), http://www.oasis-open.org/committees/download.php/3164/os-xacml-specification-1.1%20draft%204.pdf

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science and Engineering, Sejong University, 98 Kunja-Dong, Kwangjin-Ku, Seoul, 143-747, Korea

    Jongil Jeong, Dongkyoo Shin & Dongil Shin

  2. Standards & ITA Development Team, National Computerization Agency, NCA Building, 77 MuKyo-Dong, Jung-Ku, Seoul, 100-775, Korea

    Hyun-Mok Oh

Authors
  1. Jongil Jeong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Dongkyoo Shin
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Dongil Shin
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Hyun-Mok Oh
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer Science, St. Francis Xavier University, Antigonish, Canada

    Laurence T. Yang

  2. Department of Computer Science and Engineering, Shanghai Jiao Tong University, 200030, Shanghai, China

    Minyi Guo

  3. University of Delaware, Newark, DE

    Guang R. Gao

  4. Department of Electrical Engineering, Princeton University, NJ 08544, Princeton, USA

    Niraj K. Jha

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Jeong, J., Shin, D., Shin, D., Oh, HM. (2004). A Study on the XML-Based Single Sign-On System Supporting Mobile and Ubiquitous Service Environments. In: Yang, L.T., Guo, M., Gao, G.R., Jha, N.K. (eds) Embedded and Ubiquitous Computing. EUC 2004. Lecture Notes in Computer Science, vol 3207. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30121-9_86

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30121-9_86

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22906-3

  • Online ISBN: 978-3-540-30121-9

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation