计算机应用研究2025,Vol.42Issue(9):2561-2571,11.DOI:10.19734/j.issn.1001-3695.2025.02.0032
单点登录系统隐私保护研究进展
Research advances in privacy-preserving single sign-on system
摘要
Abstract
SSO technology enables users to access multiple application services using a single identity issued by an identity provider.This technology significantly enhances user experience and reduces the identity management cost for service provi-ders,leading to its rapid adoption.However,most existing SSO schemes lack effective user privacy protection,which results in potential leakage of identity information and behavioral data.In recent years,various privacy-preserving SSO schemes have been proposed,yet a comprehensive review of privacy protection mechanisms from the perspective of SSO system architecture remains absent.This paper analyzed the technical characteristics,application scenarios,and privacy preserving challenges of synchronous and asynchronous SSO authentication models.The study proposed key evaluation criteria and methodologies for privacy-preserving SSO based on current development trends.This paper systematically reviewed existing privacy-preserving schemes,and summarized their design principles and technical approaches.It compared and analyzed the schemes in terms of privacy,security,and generality to reveal their strengths and limitations.It outlined current research hotspots and critical chal-lenges in SSO privacy protection,and identified future research directions to support further studies in this field.关键词
单点登录/隐私保护/身份和访问管理/身份认证/匿名凭证Key words
single sign-on(SSO)/privacy-preserving/identity and access management(IAM)/authentication/anonymous credential分类
信息技术与安全科学引用本文复制引用
何俊霖,雷灵光,边毅,马思源,王跃武,寇春静..单点登录系统隐私保护研究进展[J].计算机应用研究,2025,42(9):2561-2571,11.基金项目
国家重点研发计划资助项目(2023YFB3105803) (2023YFB3105803)
