Contents
O Single Sign-Off, Where Art Thou? An Empirical Analysis of Single Sign-On Account Hijacking and Session Management on the Web
https://www.usenix.org/conference/usenixsecurity18/presentation/ghasemisharif
Prior work in this area was presented at the USENIX conference in 2018 by five University of Chicago researchers. It explored how cookie theft could compromise Single Sign-On (SSO) services that people use through an Identity Provider (IdP) like Apple, Facebook, Google, or Microsoft.