Model of NFT Implementation on Web SSO over OpenID Connect and Oauth 2.0 protocols
Abstract
Single Sign-On (SSO) is a mechanism that allows users to access various services using a single set of login credentials. However, in SSO implementations, there are still challenges related to security and authentication management, particularly attacks targeting the Identity Provider (IDP). To address this, the use of Non-Fungible Tokens (NFTs) as proof of IDP ownership has been proposed as a solution to enhance security in the authentication mechanism. The utilization of NFTs in SSO with OpenID Connect and OAuth 2.0 has the potential to improve security and convenience in the authentication process due to the unique and non-duplicable nature of NFTs. The results of this research present a model and design of SSO with NFTs on OpenID Connect and OAuth 2.0. An SSO application with login, register, and password recovery features was also developed to provide convenience to users during the login process. The findings conclude that the utilization of NFTs in SSO with OpenID Connect and OAuth 2.0 has the potential to enhance security and convenience in the authentication mechanism. Further research is needed to explore aspects such as scalability, in-depth security analysis, testing in real-world scenarios, improvement of integration and interoperability, as well as comparative analysis with other SSO technologies.
References
Ahammad Karim, & Muhammad Abdullah Adnan. (2019). An OpenID Based Authentication Service Mechanisms for Internet of Things. 2019 IEEE 4th International Conference on Computer and Communication Systems, ICCCS 2019, 655–659. https://doi.org/10.1109/CCOMS.2019.8821761
Arslan, H., & Aslan, H. (2019). Blockchain based single sign-on support for IoT environments. 27th Signal Processing and Communications Applications Conference, SIU 2019. https://doi.org/10.1109/SIU.2019.8806439
Asnawi, A. (2022). KESIAPAN INDONESIA MEMBANGUN EKONOMI DIGITAL DI ERA REVOLUSI INDUSTRI 4.0. Jurnal Ilmiah Indonesia, 7(1).
Bekmezci, A. B., Eris, C., & Boluk, P. S. (2018). A multi-layered approach to securing enterprise applications by using TLS, two-factor authentication and single sign-on. 26th IEEE Signal Processing and Communications Applications Conference, SIU 2018, 1–4. https://doi.org/10.1109/SIU.2018.8404773
Bellamy-McIntyre, J., Luterroth, C., & Weber, G. (2011). OpenID and the enterprise: A model-based analysis of single sign-on authentication. Proceedings - IEEE International Enterprise Distributed Object Computing Workshop, EDOC, 129–138. https://doi.org/10.1109/EDOC.2011.26
Binu, S., Misbahuddin, M., & Raj, P. (2014). A Single Sign on based secure remote user authentication scheme for Multi-Server Environments. International Conference on Computing and Communication Technologies, ICCCT 2014. https://doi.org/10.1109/ICCCT2.2014.7066715
Chitpinityon, S., & Tossa, M. (2021). New Approach for Single Sign-on Improvement using Load Distribution Method. Proceedings - 2021 Research, Invention, and Innovation Congress: Innovation Electricals and Electronics, RI2C 2021, 44–47. https://doi.org/10.1109/RI2C51727.2021.9559786
Dissanayake, N., & Diaz, G. (2017). Web-based Applications: Extending the General Perspective of the Service of Web. 10th International Research Conference of KDU (KDU-IRC 2017) on Changing Dynamics in the Global Environment: Challenges and Opportunities. https://www.researchgate.net/publication/319058851_Web-based_Applications_Extending_the_General_Perspective_of_the_Service_of_Web
Dodanduwa, K., & Kaluthanthri, I. (2018). Role of Trust in OAuth 2.0 and OpenID Connect. 2018 IEEE 9th International Conference on Information and Automation for Sustainability, ICIAfS 2018. https://doi.org/10.1109/ICIAFS.2018.8913384
Hossain, N., Hossain, M. A., Hossain, M. Z., Sohag, M. H. I., & Rahman, S. (2018). OAuth-SSO: A Framework to Secure the OAuth-Based SSO Service for Packaged Web Applications. Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, 1575–1578. https://doi.org/10.1109/TRUSTCOM/BIGDATASE.2018.00227
Iskandar, D., & Isnaeni, M. (2019). PENGGUNAAN INTERNET DI KALANGAN REMAJA DI JAKARTA. Communicare: Journal of Communication Studies. https://doi.org/https://doi.org/10.37535/101009220222
Jain, K., & Shete, V. V. (2016). Single sign on using bluetooth device. Proceedings of the International Conference on Inventive Computation Technologies, ICICT 2016, 2016. https://doi.org/10.1109/INVENTIVE.2016.7830186
Liu, D., Zhang, Z. J., & Zhang, N. (2012). A biometrics-based SSO authentication scheme in telematics. Proceedings of the 2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2012, 191–194. https://doi.org/10.1109/CYBERC.2012.39
Liu, W., Wang, X., Peng, W., & Xing, Q. (2019). Center-Less Single Sign-On with Privacy-Preserving Remote Biometric-Based ID-MAKA Scheme for Mobile Cloud Computing Services. IEEE Access, 7, 137770–137783. https://doi.org/10.1109/ACCESS.2019.2942987
Mainka, C., Mladenov, V., Schwenk, J., & Wich, T. (2017). SoK: Single Sign-On Security - An Evaluation of OpenID Connect. Proceedings - 2nd IEEE European Symposium on Security and Privacy, EuroS and P 2017, 251–266. https://doi.org/10.1109/EUROSP.2017.32
Mladenov, V., Schwenk, J., & Mainka, C. (2016). Do not trust me: Using malicious IdPs for analyzing and attacking single sign-on. Proceedings - 2016 IEEE European Symposium on Security and Privacy, EURO S and P 2016, 321–336. https://doi.org/10.1109/EUROSP.2016.33
NFC based mobile single sign-on solution as a chrome extension | IEEE Conference Publication | IEEE Xplore. (n.d.). Retrieved April 7, 2023, from https://ieeexplore.ieee.org/document/7509508
Nishioka, S., & Okabe, Y. (2020a). Centralized Control of Account Migration at Single Sign-On in Shibboleth. Proceedings - 2020 IEEE 44th Annual Computers, Software, and Applications Conference, COMPSAC 2020, 1597–1603. https://doi.org/10.1109/COMPSAC48688.2020.00-27
Nishioka, S., & Okabe, Y. (2020b). Centralized Control of Account Migration at Single Sign-On in Shibboleth. Proceedings - 2020 IEEE 44th Annual Computers, Software, and Applications Conference, COMPSAC 2020, 1597–1603. https://doi.org/10.1109/COMPSAC48688.2020.00-27
Roy, S., Matloob, S., & Mukhopadhyay, D. (2021). On Application of Blockchain to Enhance Single Sign-On (SSO) Systems. Proceedings - 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2021, 1191–1195. https://doi.org/10.1109/TRUSTCOM53373.2021.00161
Sharma, P., & Sihag, V. K. (2016). Hybrid Single Sign-On Protocol for Lightweight Devices. Proceedings - 6th International Advanced Computing Conference, IACC 2016, 679–684. https://doi.org/10.1109/IACC.2016.131
Spoorthi, V., & Sekaran, K. C. (2014). Mobile single sign-on solution for enterprise cloud applications. 1st International Conference on Networks and Soft Computing, ICNSC 2014 - Proceedings, 273–277. https://doi.org/10.1109/CNSC.2014.6906717
Su, Z., He, Q., Zhang, J., & Li, H. (2013). Research of single sign-on in mobile RFID middleware based on dynamic tokens and WMMP. Proceedings - 16th IEEE International Conference on Computational Science and Engineering, CSE 2013, 1191–1194. https://doi.org/10.1109/CSE.2013.177
Takahashi, H., & Lakhani, U. (2021). Voting blockchain for High Security NFT. 2021 IEEE 10th Global Conference on Consumer Electronics, GCCE 2021, 358–361. https://doi.org/10.1109/GCCE53005.2021.9621968
Telnoni, P., Munir, R., & Rosmansyah, Y. (2015). SAML single sign-on protocol development using combination of speech and speaker recognition. Proceedings - 2014 International Conference on Advanced Informatics: Concept, Theory and Application, ICAICTA 2014, 299–304. https://doi.org/10.1109/ICAICTA.2014.7005958
Yang, T. J., & Yang, X. J. (2014). Method of single sign-on for independent web systems based on AJAX. Proceedings of 2013 3rd International Conference on Computer Science and Network Technology, ICCSNT 2013, 310–314. https://doi.org/10.1109/ICCSNT.2013.6967119
Zhang, L., Ning, H. Y., Du, Y. Y., Cui, Y. X., & Yang, Y. (2016). A new identity authentication scheme of single sign on for multi-database. Proceedings of the IEEE International Conference on Software Engineering and Service Sciences, ICSESS, 0, 458–461. https://doi.org/10.1109/ICSESS.2016.7883108
Arslan, H., & Aslan, H. (2019). Blockchain based single sign-on support for IoT environments. 27th Signal Processing and Communications Applications Conference, SIU 2019. https://doi.org/10.1109/SIU.2019.8806439
Asnawi, A. (2022). KESIAPAN INDONESIA MEMBANGUN EKONOMI DIGITAL DI ERA REVOLUSI INDUSTRI 4.0. Jurnal Ilmiah Indonesia, 7(1).
Bekmezci, A. B., Eris, C., & Boluk, P. S. (2018). A multi-layered approach to securing enterprise applications by using TLS, two-factor authentication and single sign-on. 26th IEEE Signal Processing and Communications Applications Conference, SIU 2018, 1–4. https://doi.org/10.1109/SIU.2018.8404773
Bellamy-McIntyre, J., Luterroth, C., & Weber, G. (2011). OpenID and the enterprise: A model-based analysis of single sign-on authentication. Proceedings - IEEE International Enterprise Distributed Object Computing Workshop, EDOC, 129–138. https://doi.org/10.1109/EDOC.2011.26
Binu, S., Misbahuddin, M., & Raj, P. (2014). A Single Sign on based secure remote user authentication scheme for Multi-Server Environments. International Conference on Computing and Communication Technologies, ICCCT 2014. https://doi.org/10.1109/ICCCT2.2014.7066715
Chitpinityon, S., & Tossa, M. (2021). New Approach for Single Sign-on Improvement using Load Distribution Method. Proceedings - 2021 Research, Invention, and Innovation Congress: Innovation Electricals and Electronics, RI2C 2021, 44–47. https://doi.org/10.1109/RI2C51727.2021.9559786
Dissanayake, N., & Diaz, G. (2017). Web-based Applications: Extending the General Perspective of the Service of Web. 10th International Research Conference of KDU (KDU-IRC 2017) on Changing Dynamics in the Global Environment: Challenges and Opportunities. https://www.researchgate.net/publication/319058851_Web-based_Applications_Extending_the_General_Perspective_of_the_Service_of_Web
Dodanduwa, K., & Kaluthanthri, I. (2018). Role of Trust in OAuth 2.0 and OpenID Connect. 2018 IEEE 9th International Conference on Information and Automation for Sustainability, ICIAfS 2018. https://doi.org/10.1109/ICIAFS.2018.8913384
Hossain, N., Hossain, M. A., Hossain, M. Z., Sohag, M. H. I., & Rahman, S. (2018). OAuth-SSO: A Framework to Secure the OAuth-Based SSO Service for Packaged Web Applications. Proceedings - 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications and 12th IEEE International Conference on Big Data Science and Engineering, Trustcom/BigDataSE 2018, 1575–1578. https://doi.org/10.1109/TRUSTCOM/BIGDATASE.2018.00227
Iskandar, D., & Isnaeni, M. (2019). PENGGUNAAN INTERNET DI KALANGAN REMAJA DI JAKARTA. Communicare: Journal of Communication Studies. https://doi.org/https://doi.org/10.37535/101009220222
Jain, K., & Shete, V. V. (2016). Single sign on using bluetooth device. Proceedings of the International Conference on Inventive Computation Technologies, ICICT 2016, 2016. https://doi.org/10.1109/INVENTIVE.2016.7830186
Liu, D., Zhang, Z. J., & Zhang, N. (2012). A biometrics-based SSO authentication scheme in telematics. Proceedings of the 2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery, CyberC 2012, 191–194. https://doi.org/10.1109/CYBERC.2012.39
Liu, W., Wang, X., Peng, W., & Xing, Q. (2019). Center-Less Single Sign-On with Privacy-Preserving Remote Biometric-Based ID-MAKA Scheme for Mobile Cloud Computing Services. IEEE Access, 7, 137770–137783. https://doi.org/10.1109/ACCESS.2019.2942987
Mainka, C., Mladenov, V., Schwenk, J., & Wich, T. (2017). SoK: Single Sign-On Security - An Evaluation of OpenID Connect. Proceedings - 2nd IEEE European Symposium on Security and Privacy, EuroS and P 2017, 251–266. https://doi.org/10.1109/EUROSP.2017.32
Mladenov, V., Schwenk, J., & Mainka, C. (2016). Do not trust me: Using malicious IdPs for analyzing and attacking single sign-on. Proceedings - 2016 IEEE European Symposium on Security and Privacy, EURO S and P 2016, 321–336. https://doi.org/10.1109/EUROSP.2016.33
NFC based mobile single sign-on solution as a chrome extension | IEEE Conference Publication | IEEE Xplore. (n.d.). Retrieved April 7, 2023, from https://ieeexplore.ieee.org/document/7509508
Nishioka, S., & Okabe, Y. (2020a). Centralized Control of Account Migration at Single Sign-On in Shibboleth. Proceedings - 2020 IEEE 44th Annual Computers, Software, and Applications Conference, COMPSAC 2020, 1597–1603. https://doi.org/10.1109/COMPSAC48688.2020.00-27
Nishioka, S., & Okabe, Y. (2020b). Centralized Control of Account Migration at Single Sign-On in Shibboleth. Proceedings - 2020 IEEE 44th Annual Computers, Software, and Applications Conference, COMPSAC 2020, 1597–1603. https://doi.org/10.1109/COMPSAC48688.2020.00-27
Roy, S., Matloob, S., & Mukhopadhyay, D. (2021). On Application of Blockchain to Enhance Single Sign-On (SSO) Systems. Proceedings - 2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2021, 1191–1195. https://doi.org/10.1109/TRUSTCOM53373.2021.00161
Sharma, P., & Sihag, V. K. (2016). Hybrid Single Sign-On Protocol for Lightweight Devices. Proceedings - 6th International Advanced Computing Conference, IACC 2016, 679–684. https://doi.org/10.1109/IACC.2016.131
Spoorthi, V., & Sekaran, K. C. (2014). Mobile single sign-on solution for enterprise cloud applications. 1st International Conference on Networks and Soft Computing, ICNSC 2014 - Proceedings, 273–277. https://doi.org/10.1109/CNSC.2014.6906717
Su, Z., He, Q., Zhang, J., & Li, H. (2013). Research of single sign-on in mobile RFID middleware based on dynamic tokens and WMMP. Proceedings - 16th IEEE International Conference on Computational Science and Engineering, CSE 2013, 1191–1194. https://doi.org/10.1109/CSE.2013.177
Takahashi, H., & Lakhani, U. (2021). Voting blockchain for High Security NFT. 2021 IEEE 10th Global Conference on Consumer Electronics, GCCE 2021, 358–361. https://doi.org/10.1109/GCCE53005.2021.9621968
Telnoni, P., Munir, R., & Rosmansyah, Y. (2015). SAML single sign-on protocol development using combination of speech and speaker recognition. Proceedings - 2014 International Conference on Advanced Informatics: Concept, Theory and Application, ICAICTA 2014, 299–304. https://doi.org/10.1109/ICAICTA.2014.7005958
Yang, T. J., & Yang, X. J. (2014). Method of single sign-on for independent web systems based on AJAX. Proceedings of 2013 3rd International Conference on Computer Science and Network Technology, ICCSNT 2013, 310–314. https://doi.org/10.1109/ICCSNT.2013.6967119
Zhang, L., Ning, H. Y., Du, Y. Y., Cui, Y. X., & Yang, Y. (2016). A new identity authentication scheme of single sign on for multi-database. Proceedings of the IEEE International Conference on Software Engineering and Service Sciences, ICSESS, 0, 458–461. https://doi.org/10.1109/ICSESS.2016.7883108
Published
2023-07-27
Section
Articles
