Ticket model: A generalised model for internet-based three-party authorisation systems

Journal article


Authors/Editors


Strategic Research Themes

No matching items found.


Publication Details

Author listBuranasaksee U., Porkaew K., Supasitthimethee U.

PublisherInderscience

Publication year2014

JournalInternational Journal of Internet Protocol Technology (1743-8209)

Volume number8

Issue number4

Start page159

End page168

Number of pages10

ISSN1743-8209

eISSN1743-8217

URLhttps://www.scopus.com/inward/record.uri?eid=2-s2.0-84961328038&doi=10.1504%2fIJIPT.2014.068250&partnerID=40&md5=b7e8531a16c0dc1a3928a77b80d4e5cf

LanguagesEnglish-Great Britain (EN-GB)


View on publisher site


Abstract

Using web technology, a user may use a web browser to access a service on a web application that runs on a server. In many cases, a user needs to perform the task that requires the use of multiple web applications. Traditionally, a user needs to give his credentials to a third party website which leads to privacy and security issues. Though there are many existing protocols, most of them are ad hoc. Since the way a user accesses two independent web applications can be different, we define a web-based three-party communication model. After that, the well-accepted existing protocols are analysed. However, we found the common work flow in the communication though the protocols are in different scenarios. Therefore, we proposed the generalised model called Ticket model. Then, the details were discussed using a reference implementation. Finally, an accounting extension was added to the reference implementation as an example. Copyright ฉ 2014 Inderscience Enterprises Ltd.


Keywords

AuthorisationExtensibleInternetThree-party


Last updated on 2023-24-09 at 07:35