Single-sign in system Shibboleth

Klemen Železnik (2015) Single-sign in system Shibboleth. EngD thesis.

Preview

Abstract

The aim of Shibboleth protocol is mainly to relieve users within, for example, large public or private institutions such as universities, companies that have a variety of different applications or services that require authentication. Shibboleth protocol operates on the principle of single sign-on, which means that the user needs only one username and password to log in to all applications within an institution. In the first part, we will describe the research and concepts of the Shibboleth protocol and its links with other mechanisms, in particular with the mechanism single sign-on. The emphasis will be placed on SAML (Security Assertion Markup Language) protocol which Shibboleth is based on and referred to. We will also describe the operation of the IDP (identity provide), SP (service provider) and the steps that take part between them in the registration process. In the second part of the thesis, we will describe the course of implementation and configuration of the prototype Shibboleth protocol on a local network based on Windows systems.

Item Type:

Thesis (EngD thesis)

Keywords:

Shibboleth protocol, Single sign-in, SAML, Service provider, Identity provider

Number of Pages:

Language of Content:

Slovenian

Mentor / Comentors:

Name and Surname	ID	Function
doc. dr. Andrej Brodnik	5540	Mentor

Link to COBISS:

http://www.cobiss.si/scripts/cobiss?command=search&base=51012&select=(ID=1536273603)

Institution:

University of Ljubljana

Department:

Faculty of Computer and Information Science

Item ID:

2957

Date Deposited:

18 Mar 2015 14:54

Last Modified:

15 Apr 2015 13:09

URI:

http://eprints.fri.uni-lj.si/id/eprint/2957

Actions (login required)

View Item