A New Threshold-Based Distributed Single Sign-On Scheme with a Dynamically Changed Threshold Value
【摘要】：正In this paper, we present a new threshold-based distributed Single Sign-On scheme with a dynamically changed threshold value t, based on ThresPassport. In the scheme, two different degree secret polynomials are constructed. Each authentication server has two kinds of secret keys: keys for initiation shares and keys for authentication shares. Trough the simply XOR operation, authentication shares keys can be delivered securely. Our scheme is not only as good as Threspassport on the aspects of security, portability, intrusion and fault tolerance, scalability, reliability, and availability, but also it offers two significant advantages over ThresPassport because it has the dynamically, securely and availably changed threshold value t in the authentication phase, and it can prevent conspiracy-impersonation attacks.