Основные понятия
Formal security analysis of SAML V2.0 SP-initiated SSO with POST/Artifact Bindings.
Аннотация
Single Sign-On (SSO) protocols streamline user authentication for multiple services, enhancing usability and security.
The Security Assertion Markup Language (SAML) V2.0 is widely used in government, education, and enterprise sectors.
This paper focuses on a comprehensive formal security analysis of the SAML V2.0 SP-initiated SSO with POST/Artifact Bindings.
Modeling and analysis conducted using the Tamarin prover tool for automated verification of security protocols.
Verification of critical security properties for different protocol variants was performed, highlighting vulnerabilities.
Contributions include building the first formal model of the SAML 2.0 POST/Artifact use case and providing automated proofs for key security properties.
Статистика
"SAML V2.0 has emerged as the predominant SSO framework in government, education, and enterprise environments."
"Tamarin prover is a state-of-the-art tool for symbolic modeling and automated analysis of security protocols."
"28 security properties were considered and verified for each of the 8 protocol variants."
Цитаты
"Despite its mission-critical nature, SAML V2.0 has received very little attention from the formal methods community."
"The analysis presented in this paper bridges the gap by performing a comprehensive formal security analysis."