Page Token Mechanism In OpenID Environment

OpenID was introduced as a decentralised and user-centric protocol in Single Sign-On (SSO) system environment. This protocol was chosen based on main characteristic of OpenID authentication that provide a single user identifier to log in into the websites that support this technology. It started with user creating an identity at the OpenID provider, and then redirected to link the identity to any of the relaying party that available and use it later as the main key in order to authenticate the application. The existing OpenID protocol gives the permission to the users to log in and entering relaying party by giving authentication permission from an OpenID provider. This enables OpenID to accelerate up the authentication process by allowing the users to sign in with a single click. It also reduces frustration associated with maintaining multiple username and password. This protocol also can gain greater control over user online identity. Despite the advantages as mentioned, there are several vulnerabilities and security limitations that need to be solve due to the implementation of OpenID such as session hijacking, authentication bugs and phishing attack.