Please use this identifier to cite or link to this item:
http://hdl.handle.net/10609/107189
Title: | Multilevel multifactor single sign-on |
Author: | Linares Zapater, Angel |
Director: | Garcia-Font, Victor |
Tutor: | González Ciria, Antoni |
Abstract: | The single sign-on mechanism (SSO) is a well-known technique to protect access to a set of resources that require prior authentication and authorization. In this work we design an SSO solution consisting of a central authentication server and a user directory, dedicated to protect a set of internal applications behind a perimeter network. We explore how to define complex security policies to set multiple levels of authorization so that some users may only be able to access a subset of the resources depending on their authorization level. Also, we test the use of multiple factors of authentication to access the resources by requesting different types of user credentials (e.g., username/password pairs or digital certificates). We also demonstrate how passing information to the client applications about login attributes allows implementing more complex authorization techniques. Finally, we implement a basic case of a single sign-off mechanism. |
Keywords: | login attribute retrieval multifactor authentication multilevel authorization |
Document type: | info:eu-repo/semantics/masterThesis |
Issue Date: | 31-Dec-2019 |
Publication license: | http://creativecommons.org/licenses/by-sa/3.0/es/ |
Appears in Collections: | Trabajos finales de carrera, trabajos de investigación, etc. |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
alinareszTFM0120memòria.pdf | Memoria del TFM | 2,08 MB | Adobe PDF | View/Open |
Share:
This item is licensed under a Creative Commons License