Abstract
The OpenID Connect is an open standard authentication protocol used to authenticate users across multiple domains using a single identity. The Identity Provider(IdP) provides a unique account to each user, which helps them access multiple domains called Relying Parties(RP).Since many web services and applications rely on this protocol for user authentication, it is important to verify the security properties of this protocol. The protocol was modeled and the properties of interest were verified using Tamarin Prover, a tool used for symbolic modeling and formal verification of cryptographic protocols. The results of the protocol verification demonstrate the presence of the Identity Provider (IdP) Mix-up attack and HTTP 307 Redirect attack in the protocol.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
