Presentation is loading. Please wait.

Presentation is loading. Please wait.

What Makes Users Refuse Web Single Sign-On? An Empirical Investigation of OpenID Daniel Smith.

Published byLinda Dixon Modified over 8 years ago

Similar presentations

Presentation on theme: "What Makes Users Refuse Web Single Sign-On? An Empirical Investigation of OpenID Daniel Smith."— Presentation transcript:

1 What Makes Users Refuse Web Single Sign-On? An Empirical Investigation of OpenID Daniel Smith

2 Summary Explores why users choose not to use single sign-on Proposes and prototypes an identity enabled web browser

3 Appreciative comment Identification bad users’ incorrect mental model or understanding of SSO Important for identification providers as well as services that allow SSO “most (71%) held the incorrect belief that the OpenID credentials are being given to the content providers” “Many (69%) of our participants entered their IdP email and password into the traditional login form directly...... or believed that the website must be integrated with the IdPs in some way... “ “users' security misconceptions negatively impact their adoption intention”

4 Critical comment That browsers should provide SSO support Motivation What is the motivation for browser developers? Websites still need to have SSO “websites do not want to change their authentication procedures until a critical mass of users have adopted Web SSO, and users have little incentive to employ the technology unless many of their websites are supported” “As the browser is the central piece that communicates with all actors in the identity ecosystem, it can potentially provide driving forces for RPs to adopt SSO if it is directly augmented with identity support”

5 Critical comment That browsers should provide SSO support Implementation Is browser based support even possible without cooperation from the websites? “Thus, we decided to employ a Wizard of Oz approach to make it appear to participants that the websites used in the studies have adopted our new approach.” “In order to build OpenID support directly into the browser, we could have adopted the OPenID protocol extensions proposed by Sun et al... … However, as the websites in our study had not yet adopted the protocol extensions…”

6 Is there any motivation for browsers to provide SSO support?

Download ppt "What Makes Users Refuse Web Single Sign-On? An Empirical Investigation of OpenID Daniel Smith."

Similar presentations

SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.

SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.
SAP checks if USER ID & Password combination is valid. No identification. User requests Log-on, enters USER ID & Password, (not necessarily their own)!

SAP checks if USER ID & Password combination is valid. No identification. User requests Log-on, enters USER ID & Password, (not necessarily their own)!
Access Control Methodologies

Access Control Methodologies
FSA ID TRANSITION Ditch the PIN. WHAT IS THE NEW FSA ID AND PASSWORD? U.S. Department of Education has a new login process beginning April 26 th for student-

FSA ID TRANSITION Ditch the PIN. WHAT IS THE NEW FSA ID AND PASSWORD? U.S. Department of Education has a new login process beginning April 26 th for student-
Users Are Not The Enemy A. Adams and M. A. Sasse Presenter: Jonathan McCune Security Reading Group February 6, 2004.

Users Are Not The Enemy A. Adams and M. A. Sasse Presenter: Jonathan McCune Security Reading Group February 6, 2004.
Message Design and Content Creation 23 January 2007 Kathy E. Gill.

Message Design and Content Creation 23 January 2007 Kathy E. Gill.
Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.

Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.
Virtual Observatory Single Sign-on U.S. National Virtual Observatory National Center for Supercomputing Applications Ray Plante, Bill Baker.

Virtual Observatory Single Sign-on U.S. National Virtual Observatory National Center for Supercomputing Applications Ray Plante, Bill Baker.
Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  

Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  
Www.kennisnet.nl Naam van de Auteur 7 januari 2008 Kennisnet Entree: federated authentication Pieter BruringTechnical Product Manager.

Naam van de Auteur 7 januari 2008 Kennisnet Entree: federated authentication Pieter BruringTechnical Product Manager.
General INCLUSION. General INCLUSION What inclusion is and how to implement it. Creating a classroom environment that supports inclusion. The committee.

General INCLUSION. General INCLUSION What inclusion is and how to implement it. Creating a classroom environment that supports inclusion. The committee.
Securing Squid (Proxy) Using Digest Authentication.

Securing Squid (Proxy) Using Digest Authentication.
INCOSE.ORG MIGRATION SharePoint 2013 Presented by Betty Morimoto.

INCOSE.ORG MIGRATION SharePoint 2013 Presented by Betty Morimoto.
IDENTITY MANAGEMENT Hoang Huu Hanh (PhD), OST – Hue University hanh-at-hueuni.edu.vn.

IDENTITY MANAGEMENT Hoang Huu Hanh (PhD), OST – Hue University hanh-at-hueuni.edu.vn.
1 Chapter 11 Drivers of online-selling diffusion.

1 Chapter 11 Drivers of online-selling diffusion.
Copyright 2006 Archistry Limited. All Rights Reserved. SOA Federated Identity Management How much do you really need? Andrew S. Townley Founder and Managing.

Copyright 2006 Archistry Limited. All Rights Reserved. SOA Federated Identity Management How much do you really need? Andrew S. Townley Founder and Managing.
What makes users refuse web single sign-on? An empirical investigation of OpenID S.-T. Sun, E. Pospisil, I. Muslukhov, N. Dindar, K. Hawkey, and K. Beznosov.

What makes users refuse web single sign-on? An empirical investigation of OpenID S.-T. Sun, E. Pospisil, I. Muslukhov, N. Dindar, K. Hawkey, and K. Beznosov.
SASL-SAML update Klaas Wierenga Kitten WG 9-Nov-2010.

SASL-SAML update Klaas Wierenga Kitten WG 9-Nov-2010.
Identity Management Report By Jean Carreon and Marlon Gonzales.

Identity Management Report By Jean Carreon and Marlon Gonzales.
Integrating with UCSF’s Shibboleth system

Integrating with UCSF’s Shibboleth system

Similar presentations

Ads by Google