{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,24]],"date-time":"2025-10-24T08:00:19Z","timestamp":1761292819820,"version":"3.38.0"},"publisher-location":"Berlin, Heidelberg","reference-count":17,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642214233"},{"type":"electronic","value":"9783642214240"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-642-21424-0_6","type":"book-chapter","created":{"date-parts":[[2011,6,15]],"date-time":"2011-06-15T11:52:47Z","timestamp":1308138767000},"page":"68-79","source":"Crossref","is-referenced-by-count":12,"title":["From Multiple Credentials to Browser-Based Single Sign-On: Are We More Secure?"],"prefix":"10.1007","author":[{"given":"Alessandro","family":"Armando","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roberto","family":"Carbone","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Luca","family":"Compagna","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jorge","family":"Cuellar","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Giancarlo","family":"Pellegrino","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alessandro","family":"Sorniotti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"6_CR1","doi-asserted-by":"crossref","unstructured":"Armando, A., Carbone, R., Compagna, L.: LTL Model Checking for Security Protocols. Journal of Applied Non-Classical Logics, special issue on Logic and Information Security, 403\u2013429 (2009)","DOI":"10.3166\/jancl.19.403-429"},{"key":"6_CR2","volume-title":"FMSE","author":"A. Armando","year":"2008","unstructured":"Armando, A., Carbone, R., Compagna, L., Cu\u00e9llar, J., Tobarra, M.L.: Formal Analysis of SAML 2.0 Web Browser Single Sign-On: Breaking the SAML-based Single Sign-On for Google Apps. In: FMSE. ACM, New York (2008)"},{"key":"6_CR3","doi-asserted-by":"crossref","unstructured":"Barth, A., Jackson, C., Mitchell, J.C.: Robust defenses for cross-site request forgery. In: 15th ACM Conference on Computer and Communications Security (CCS 2008) (2008)","DOI":"10.1145\/1455770.1455782"},{"key":"6_CR4","series-title":"Lecture Notes in Computer Science","first-page":"1","volume-title":"Advances in Cryptology - CRYPTO \u201996","author":"M. Bellare","year":"1996","unstructured":"Bellare, M., Canetti, R., Krawczyk, H.: Keying hash functions for message authentication. In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol.\u00a01109, pp. 1\u201315. Springer, Heidelberg (1996)"},{"key":"6_CR5","unstructured":"Google. Web-based SAML-based SSO for Google Apps (2008), http:\/\/code.google.com\/apis\/apps\/sso\/saml_reference_implementation_web.html"},{"key":"6_CR6","volume-title":"Proc. 19th Annual Computer Security Applications Conference","author":"T. Gro\u00df","year":"2003","unstructured":"Gro\u00df, T.: Security analysis of the SAML Single Sign-on Browser\/Artifact profile. In: Proc. 19th Annual Computer Security Applications Conference. IEEE, Los Alamitos (December 2003)"},{"key":"6_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"489","DOI":"10.1007\/11555827_28","volume-title":"Computer Security \u2013 ESORICS 2005","author":"T. Gro\u00df","year":"2005","unstructured":"Gro\u00df, T., Pfitzmann, B., Sadeghi, A.-R.: Browser model for security analysis of browser-based protocols. In: di Vimercati, S.d.C., Syverson, P.F., Gollmann, D. (eds.) ESORICS 2005. LNCS, vol.\u00a03679, pp. 489\u2013508. Springer, Heidelberg (2005)"},{"key":"6_CR8","volume-title":"WITS 2005","author":"S.M. Hansen","year":"2005","unstructured":"Hansen, S.M., Skriver, J., Nielson, H.R.: Using static analysis to validate the SAML single sign-on protocol. In: WITS 2005. ACM Press, New York (2005)"},{"key":"6_CR9","unstructured":"Internet2. Shibboleth Project (2007), http:\/\/shibboleth.internet2.edu\/"},{"key":"6_CR10","volume-title":"Proc. CSFW","author":"G. Lowe","year":"1997","unstructured":"Lowe, G.: A hierarchy of authentication specifications. In: Proc. CSFW. IEEE, Los Alamitos (1997)"},{"key":"6_CR11","unstructured":"Microsoft. Windows Live ID, https:\/\/www.passport.net\/"},{"key":"6_CR12","unstructured":"OASIS. Identity Federation. Liberty Alliance Project (2004), http:\/\/www.projectliberty.org\/resources\/specifications.php"},{"key":"6_CR13","doi-asserted-by":"crossref","unstructured":"OASIS. SAML V2.0 (April 2005), http:\/\/docs.oasis-open.org\/security\/saml\/v2.0\/","DOI":"10.1049\/ic:20050239"},{"key":"6_CR14","unstructured":"OASIS. SAML V2.0 \u2013 Technical Overview (March 2007), http:\/\/www.oasis-open.org\/committees\/tc_home.php?wg_abbrev=security"},{"key":"6_CR15","unstructured":"OpenID Foundation. OpenID Specifications (2007), http:\/\/openid.net\/developers\/specs\/"},{"key":"6_CR16","doi-asserted-by":"crossref","unstructured":"Pfitzmann, B., Waidner, M.: Analysis of Liberty Single-Sign-on with Enabled Clients. IEEE Internet Computing 7(6) (2003)","DOI":"10.1109\/MIC.2003.1250582"},{"key":"6_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1007\/11542322_20","volume-title":"Security Protocols","author":"B. Pfitzmann","year":"2005","unstructured":"Pfitzmann, B., Waidner, M.: Federated identity-management protocols. In: Christianson, B., Crispo, B., Malcolm, J.A., Roe, M. (eds.) Security Protocols 2003. LNCS, vol.\u00a03364, pp. 153\u2013174. Springer, Heidelberg (2005)"}],"container-title":["IFIP Advances in Information and Communication Technology","Future Challenges in Security and Privacy for Academia and Industry"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-21424-0_6.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,6]],"date-time":"2025-03-06T06:09:58Z","timestamp":1741241398000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-21424-0_6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783642214233","9783642214240"],"references-count":17,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-21424-0_6","relation":{},"ISSN":["1868-4238","1861-2288"],"issn-type":[{"type":"print","value":"1868-4238"},{"type":"electronic","value":"1861-2288"}],"subject":[],"published":{"date-parts":[[2011]]}}}