The invention provides a single sign on system and method. The system comprises an access module, a redirection module, a login module, an encryption module and an authentication module. The method comprises the steps that: a Web browser accesses a CAS client, and the CAS client obtains authentication information NewTicket in the Web browser for authentication; the NewTicket is generated by a CAS server according to the first time login information of the Web and is stored in the Web browser together with a public key of the CAS server for the next time authentication, the NewTicket comprises Ticket and signature information, the signature information is obtained by converting the Ticket and encrypting the Ticket by a private key of the CAS server, during the authentication, the CAS client decrypts the signature information in the NewTicket by use of the public key of the CAS server to obtain a signature content, and compares whether the signature content is consistent with the converted Ticket, and if so, the authentication is successful; and if not, the authentication is failed. The single sign on system and method provided by the invention are used for realizing the self check and the bidirectional authentication mechanism of the CAS client, greatly reducing the dependence on the CAS server and improving the security at the same time.