Skip to main content
Privacy Sandstorm
Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Toggle Dark/Light/Auto mode Back to homepage
  1. Privacy Sandstorm
  2. /
  3. Privacy Sandbox Proposals
  4. /
  5. Federated Credential Management API
  6. /
  7. B.S. Thesis 2024
Edit page

B.S. Thesis 2024

Title: FedCM API Integration into Keycloak

Authors: Vacek Šimon (Brno University of Technology), Bürget Radek (Brno University of Technology)

Abstract/Summary: Because of security concerns, trustworthiness, and ongoing privacy-oriented changes, third-party cookies are to be phased out in web browsers. These play a key role in federating user identities in single sign-on applications, so a unified solution with a focus on preserving privacy is being developed. The Federated Credential Management API is the proposed solution; at this time, it is not yet standardized. This thesis deals with implementing the specification of this API to a Cloud Native Computing Foundation incubating project Keycloak. It is an open source single-sign-on application with Red Hat as the main contributor. The OpenID Connect and OAuth 2.0 are discussed together with how they work together with FedCM and all of its extensions. The result is implemented as a service provider interface extension to Keycloak.

gdoc_arrow_left_alt ACSAC 2024 Paper Fenced Frames gdoc_arrow_right_alt