Enhancing Security and Authentication of Single Sign on Mechanism of Distributed Computer Networks

With wide spreading of distributed computer networks, it has become trendy to allow users accessing various network services offered by distributed service providers. It is usually not recommended by asking one user to maintain different pairs of identity and passwords for different service providers, since this imposes a burden on both users and service providers as well as the communication overhead of computer networks. So, a single sign-on mechanism has been introduced so that after obtaining a credential from a trusted authority each legal user can use this single credential to authenticate itself and then access multiple service providers. There are various attacks and parameters that need to be considered while providing security to authentication system. In this paper, we endow with a comprehensive review of existing work done on Single sign-on. However, most existing Single sign-on schemes have not been proved to satisfy credential privacy and soundness of credential based authentication we formalize the security model of Single sign-on scheme with authenticated key exchange what parameters and attacks should be covered. Next, Implementation of Single Sign-on for distributed computing using user-id and password along with biometric verification and security analysis is done finally, we conclude, specifying the future work.