Automatic Verification of Security of OpenID Connect Protocol with ProVerif

Capítulo de livro

Automatic Verification of Security of OpenID Connect Protocol with ProVerif

2016; Springer International Publishing; Linguagem: Inglês

10.1007/978-3-319-49109-7_20

ISSN

2367-4512

Autores

Jintian Lu, J. ZHANG, Jing Li, Zhongyu Wan, Bo Meng,

Tópico(s)

Access Control and Trust

Resumo

Owning to the widely deployment of OpenID Connect protocol in the important applications, in order to provide a strong confidence in its security for the people, in this study, we firstly review OpenID Connect protocol. And then, we use the formal language: Applied PI calculus to model OpenID Connect protocol and provide a security analysis with the automatic tool ProVerif. Finally, we find it does not have the secrecy and have some authentications. We present some approaches to address the security problems in OpenID Connect protocol.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Automatic Verification of Security of OpenID Connect Protocol with ProVerif