Smartphone-based authorization system Advisor: Dr. Wenjun Zeng - Professor Presenter: Yilihamujiang, Ailiyasijiang Zhou, Guanlong Al-Sinani, H. S. (2011).

Slides:



Advertisements
Similar presentations
Yahoo! OpenID and OAuth 1 Allen Tom Yahoo! Membership Architect OpenID Foundation Board
Advertisements

The How of OAuth OAuth Hackathon – Six Apart
WebDT Content Manager 6.0 Pro
Register merchant 1.Registration 2.Add store 3.Add terminal 4.Installation and settings of FlexPOS 4S.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
SAM 2007 v3.0 The Student Experience Including SAM Projects and Course Assess assignments.
IPad: Tips and Tricks. Overview of the iPad HomeVolume and Mute/Lock CameraDock/Speakers Power Button: Press/Hold.
Using Evernote and Google Docs in your web or mobile application (and potentially Dropbox and Skydrive) By Peter Messenger Senior Developer – Triple Point.
Secure SharePoint mobile connectivity
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Digital DNA Server Login People ®. Login People ˃ IT security vendor ˃ Patented Digital DNA ® technology innovation Digital DNA Server Multi-factor Authentication.
Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.
By: Ansuya Chauhan.
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Multi-Factor Authentication Added protection for a more secure you Presenter: Jeff Penn.
Downloading and Installing AutoCAD Architecture 2015 This is a 4 step process 1.Register with the Autodesk Student Community 2.Downloading the software.
Free Wi-Fi Zone. Detail Process of Free Wi-Fi Access Switch on Wi-Fi setup on your Wi-Fi enabled Device like Cell Phone, Tablet PC, Laptop & search for.
Updating User Information Password – use this field to change your own password Confirm Password – retype the new password for verification purposes To.
CONFIGURING WINDOWS SERVER MIS 424 Professor Sandvig.
Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.
Open the home/programs section Click: Enter : Click : (Registration number and license are provided at the time of purchase. Once these are entered, you.
RefWorks Presented by Suzanne van den Hoogen Angus L. Macdonald Library October 6 th, 2010.
Log on to the site using your User ID and Password and select journal and click “Log In” Click here to create a new account Click here to check the system.
Guide To Sacrificial Giving
Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.
Using Skype to Communicate with Family and Friends Presented by: Karla Lechuga.
Openid Connect
An Overview of Single Sign-On, Federation, Its Benefits, and Basic Procedures for Integrating Applications.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.
Using QR Codes in the Classroom with the…. A QR Code (Quick Response Code) is a type of barcode that can be used to store and share information. The information.
Windows CardSpace Martin Parry Developer Evangelist Microsoft
District 211 Technology iPad Setup Instructions. Turn power on & Start Setup Hold down the power button to turn on your iPad. The power button is located.
Session: MIX09-T27F. Web Developers Customizable identity UX Single Sign On Access to user data ISVs Federation for selling their applications to organizations.
IPSOS / Vodafone / Novartis Kenya 17 December 2014.
1 Mezzanine Ware (Pty) Ltd © 2014 Installing\Uninstalling the Mezzanine Helium Android application.
Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.
How Your Customers Will Pay Online & by Phone
Esri UC 2014 | Demo Theater | Using ArcGIS Online App Logins in Node.js James Tedrick.
Password Reset Instructions PART 1 The following set-up tasks must be performed first in order to use the Automated Password Reset feature. 1.Log into.
Step 1 Remove the wifi Network which is already connected.
Today’s Applications Web API Browser Native app Web API Web API
Business Objects XIr2 Windows NT Authentication Single Sign-on 18 August 2006.
START Application Spencer Johnson Jonathan Barella Cohner Marker.
AZURE AD Haishi DX, Agenda Basic concepts Exercise 1: Creating a new Azure AD tenant and a new user Exercise 2: Enable web app Azure AD authentication.
1 E-Site - FTP Services Setup / install guide. 2 About FTP services can run on any desired port(s) Runs as a windows service Works for all sites installed.
Easy Tutorial Quick Installation Guide Create your 1 st Playlist.
How to Enable Account Key Sign Instead Of Password In Yahoo? For more details:
Welcome to KTH and KTH IT-Support
Single Sign-On Led by Terrice McClain, Jen Paulin, & Leighton Wingerd
Data and Applications Security Developments and Directions
Registering And Joining Developer Program
OpenID Enhanced Authentication Profile (EAP) Working Group
forgot laptop password Windows 10 with no reset disk
First-time Login to Business Banking:
Easy Tutorial Quick Installation Guide Create your 1st Playlist.
Google Classroom Setting Up Using a Computer.
Multi-Factor Authentication
Configuring Internet-related services
How to check out eBooks at RRHS.
How to Download And Install McAfee Mobile Security on iOS?
Martin Parry Developer Evangelist Microsoft
OpenID Enhanced Authentication Profile (EAP) Working Group
This presentation uses a free template provided by FPPT.com Hotmail Help Contact Number USA
This presentation uses a free template provided by FPPT.com Hotmail Help Contact Number USA
The first time you login in to the upgraded system, please select ‘Forgotten your password?’ to reset your password before using the system.
Getting Started With LastPass Enterprise

NCSA Duo.
Presentation transcript:

Smartphone-based authorization system Advisor: Dr. Wenjun Zeng - Professor Presenter: Yilihamujiang, Ailiyasijiang Zhou, Guanlong Al-Sinani, H. S. (2011). Integrating OAuth with Information Card Systems. In Proceedings of IAS '11: 7th International Conference on Information Assurance and Security, Malacca, Malaysia, 5-8 December IEEE.

Abstract The scheme using between the OAuth and Information Card System(CardSpace) (The Scheme in Mid-Term) The drawbacks of OAuth/OpenID and Information Card System The scheme in Smartphone-based authorization system The implementation - The Snap & Go App on Android System Red words are our contribution

In the Mid-term presentation: A scheme using between the OAuth and Information Card System (CardSpace) was presented.

Why dose the paper try to use this scheme? To mitigate identity-oriented attacks, a number of identity systems (e.g. CardSpace, OAuth, OpenID, etc.) have been proposed. An identity provider in such systems supplies a user agent with a security token that can be consumed by a relying party. Whilst one RP might support an Information Card system, another might only sup- port OAuth. To make these systems available to the largest possible group of users, interoperability between such systems is needed.

How CardSpace w/ OAuth works Policy 2. I would like a SAML 1.1 token, containing First Name, Surname, issued by *any* 3. UI filters cards that can satisfy policy 4. User picks a card 5. Token is requested 1.Access resource 6. Token is created 7. Token is presented Relying Party Identity Provider OAuthCard copied check hold & modified hold & modified

How OAuth works? User Token Request modified token Sign in Token Access_token Expire_time Refresh_token Info Request Access_token User Information RP-required user attributes Relying Party Identity Provider retrived &modify retrived &modify

The drawbacks of OAuth/Open-ID and Information Card System 1.The Information Card System requires different extensions installed on the different browsers.

The drawbacks of OAuth/Open-ID and Information Card System 2.The Information Card System has been abandoned. Microsoft announced that Windows CardSpace 2.0 will not be shipped.

The drawbacks of OAuth/Open-ID and Information Card System 3. Users still need to enter username and password when logging using OAuth / Open-ID (On the public computers or they didnt login)

Our scheme: Snap & Go User has some cards in their smart-phone. (the real information behind the cards is saved on the Identity Provider Server) User logs in the Snap & Go app on his smart-phone. User uses the app to shoot at the QR-code on the website. User logged in successfully into his account.

How Snap & Go works? Policy I would like some information, containing First Name, Surname, issued by snap&go 4. Scan the QR code on the page 5. User picks a card 1.Access resource Relying Party Identity Provider Login Snap&Go using any android device 2. Token is requested 3. Access token is presented 6. Information presented

Whats on where? In the App( On Smart-phone) All the cards that contain users information

Whats on where? On Identity Provider Server Users Accounts Information(Username & Password) All the cards that contain users information APIs(Relying Parties Information and keys) The relation between one authorized card and one relying party.

Whats on where? On Relying Party Server API key to connect to Identity Provider Server(IPS) QR-code generator The token got from the IPS The users information got from the IPS

How to use Snap & Go? sng.mizzou1.com Download the Snap n Go app from our website: sng.mizzou1.com Install the app

How to use Snap & Go? Register in the App Login The Account Username and Password will be saved on the Identity Provider Server.

How to use Snap & Go? Choose Enter Passcode(Create New Card)

How to use Snap & Go? Enter the information and save as a card The information card will be saved on the server as well as in the phone.

How to use Snap & Go? We can see, edit or create cards under my account

How to use Snap & Go? Open a relying party website that needed to login. For example:

How to use Snap & Go? Choose Scan QRcode button

How to use Snap & Go? Use the camera on the phone to scan the QRcode on the computer screen

How to use Snap & Go? Choose one card that you want to use

How to use Snap & Go? Login Succeed

How to use Snap & Go? Card Information Received by the Relying Party Server.

Thank You! Smartphone-based authorization system Zhou, Guanlong– Web & Database Developer Yilihamujiang, Ailiyasijiang – App Developer

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.