The present invention relates to a web based single-sign-on (SSO) service method. In particular, the method comprises the following steps: an input module requests a target resource to a service providing module; the service providing module requests user authentication to the input module; the input module requests an SSO service to an authentication module; the authentication module performs the user authentication; the authentication module transmits user authentication permission information to the input module; the input module requests an assertion consumer service (ACS) to the service providing module; the service providing module transmits redirect information of the target resource to the input module; the input module requests the target resource to the service providing module; and the service providing module transmits the requested resource to the input module. Accordingly, an authentication step is subdivided and becomes efficient, thus providing effects of reinforcing security through correct information processing and reinforcing a risk management function through interlocking with a risk management substrate.
展开▼