The typical single sign-on technologies are based on Kerberos protocol. There are vulnerabilities in the ticket's lift-time solution. And most of the single sign-on technologies are applied to Web-based application systems. According to these, a new mode of authentication is proposed. And a single sign-on system is designed and implemented. The system uses PKI as security infrastructure, uses a technique called regular check-in to solve the limitation of tickets and authentication information. The client agents of the sign-on and identity authentication use Hook API and BHO. The results show that the system can overcome the shortcoming of the lifetime, without requiring the existing infrastructure support development interface, and with advantages such as flexible deployment and expansion.