IMT Atlantique - IMT Atlantique Bretagne-Pays de la Loire (Campus Brest : Technopôle Brest-Iroise CS 8381829238 BREST Cedex 3 -
Campus Nantes : 4, rue Alfred Kastler- La chantrerie 44300 NANTES -
Campus Rennes : 2 Rue de la Châtaigneraie, 35510 CESSON SEVIGNE - France)
Abstract : In this paper we describe our implementation of the WebRTC identity architecture. We adapt OpenID Connect servers to support WebRTC peer to peer authentication and detail the issues and solutions found in the process. We observe that although WebRTC allows for the exchange of identity assertion between peers, users lack feedback and control over the other party authentication. To allow identity negotiation during a WebRTC communication setup, we propose an extension to the Session Description Protocol. Our implementation demonstrates current limitations with respect to the current WebRTC specification.
https://hal.archives-ouvertes.fr/hal-01611057
Contributeur : Kevin Corre
<>
Soumis le : jeudi 5 octobre 2017 - 13:40:50
Dernière modification le : mercredi 16 mai 2018 - 11:24:13
Kevin Corre, Simon Bécot, Olivier Barais, Gerson Sunyé. A WebRTC Extension to Allow Identity Negotiation at Runtime. Lecture Note in Computer Science, Springer, 2017, Web Engineering, 10360, pp.412-419. 〈10.1007/978-3-319-60131-1_27〉. 〈hal-01611057〉
