Please use this identifier to cite or link to this item:
Title: Multilevel multifactor single sign-on
Author: Linares Zapater, Angel
Director: García Font, Víctor
Tutor: González Ciria, Antoni
Keywords: login attribute retrieval
multifactor authentication
multilevel authorization
Issue Date: 31-Dec-2019
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: The single sign-on mechanism (SSO) is a well-known technique to protect access to a set of resources that require prior authentication and authorization. In this work we design an SSO solution consisting of a central authentication server and a user directory, dedicated to protect a set of internal applications behind a perimeter network. We explore how to define complex security policies to set multiple levels of authorization so that some users may only be able to access a subset of the resources depending on their authorization level. Also, we test the use of multiple factors of authentication to access the resources by requesting different types of user credentials (e.g., username/password pairs or digital certificates). We also demonstrate how passing information to the client applications about login attributes allows implementing more complex authorization techniques. Finally, we implement a basic case of a single sign-off mechanism.
Language: English
Appears in Collections:Bachelor thesis, research projects, etc.

Files in This Item:
File Description SizeFormat 
alinareszTFM0120memòria.pdfMemoria del TFM2.08 MBAdobe PDFView/Open

This item is licensed under a Creative Commons License Creative Commons