Systematically breaking and fixing OpenID security: Formal analysis, semi-automated empirical evaluation, and practical countermeasures
Keywords: OpenID; Web single sign-on; Authentication; Security protocol analysis; Empirical evaluation; Web application security