Using CardSpace as a Password Manager - Policies and Research in Identity Management Access content directly
Conference Papers Year : 2010

Using CardSpace as a Password Manager


In this paper we propose a novel scheme that allows Windows CardSpace to be used as a password manager, thereby improving the usability and security of password use as well as potentially encouraging CardSpace adoption. Usernames and passwords are stored in personal cards, and these cards can be used to sign on transparently to corresponding websites. The scheme does not require any changes to login servers or to the CardSpace identity selector and, in particular, it does not require websites to support CardSpace. We describe how the scheme operates, and give details of a proof-of-concept prototype. Security and usability analyses are also provided.
Fichier principal
Vignette du fichier
CardSpace_Password_Manager_28CPM_29_IDman2010_Final.pdf (305.5 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01054403 , version 1 (06-08-2014)





Haitham S. Al-Sinani, Chris J. Mitchell. Using CardSpace as a Password Manager. Second IFIP WG 11.6 Working Conference on Policies and Reseach Management (IDMAN), Nov 2010, Oslo, Norway. pp.18-30, ⟨10.1007/978-3-642-17303-5_2⟩. ⟨hal-01054403⟩
104 View
190 Download



Gmail Facebook X LinkedIn More