CardSpace-OpenID Integration for CardSpace Users

Al-Sinani, Haitham and Mitchell, Chris J

(2011)

Al-Sinani, Haitham and Mitchell, Chris J (2011) CardSpace-OpenID Integration for CardSpace Users.

Our Full Text Deposits

Full text access: Open

Abstract

Whilst the growing number of identity management systems have the potential to reduce the threat of identity attacks, major deployment problems remain because of the lack of interoperability between such systems. In this paper we propose a novel, simple scheme to provide interoperability between two of the most widely discussed identity management systems, namely CardSpace and OpenID\@. In this scheme, CardSpace users are able to obtain an assertion token from an OpenID-enabled identity provider, the contents of which can be processed by a CardSpace-enabled relying party. The scheme, based on a browser extension, is transparent to OpenID providers and to the CardSpace identity selector, and only requires minor changes to the operation of a CardSpace-enabled relying party. We specify its operation and also describe an implementation of a proof-of-concept prototype. Additionally, security and operational analyses are provided.

Information about this Version

This is a Submitted version
This version's date is: 24/5/2011
This item is not peer reviewed

Link to this Version

https://repository.royalholloway.ac.uk/items/07fcb56b-6525-8e37-d46a-5c8de936349e/4/

Identifiers
Item Type	Monograph
Title	CardSpace-OpenID Integration for CardSpace Users
Authors	Al-Sinani, Haitham Mitchell, Chris J
Departments	Faculty of Science\Mathematics

Deposited by Research Information System (atira) on 19-Sep-2012 in Royal Holloway Research Online.Last modified on 19-Sep-2012

Details

Owner: Research Information System
Collection: Royal Holloway Research Online
Version: 4 (show all)
Status: Archived