A Security Analysis of OpenID - Policies and Research in Identity Management Access content directly
Conference Papers Year : 2010

A Security Analysis of OpenID

Bart Delft
  • Function : Author
Martijn Oostdijk
  • Function : Author


OpenID, a standard for Web single sign-on, has been gaining popularity both with Identity Providers, Relying Parties, and users. This paper collects the security issues in OpenID found by others, occasionally extended by the authors, and presents them in a uniform way. It attempts to combine the shattered knowledge into a clear overview. The aim of this paper is to raise awareness about security issues surrounding OpenID and similar standards and help shape opinions on what (not) to expect from OpenID when deployed in a not-so-friendly context.
Fichier principal
Vignette du fichier
paper.pdf (258.83 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01054399 , version 1 (06-08-2014)





Bart Delft, Martijn Oostdijk. A Security Analysis of OpenID. Second IFIP WG 11.6 Working Conference on Policies and Reseach Management (IDMAN), Nov 2010, Oslo, Norway. pp.73-84, ⟨10.1007/978-3-642-17303-5_6⟩. ⟨hal-01054399⟩
815 View
1164 Download



Gmail Facebook X LinkedIn More