Introduction Nowadays, many Service Providers (SP) rely on external identity Providers (IdPs) for authenticating end-users and providing selected identity attributes of them. The widespread use of IdPs has several advantages, being one of them a kind of backup system for end-users, when they forget their credentials in those SPs, or an extra factor of authentication (to increase robustness against impersonation attacks).