A Federated Cloud Identity Broker-Model for Enhanced Privacy via Proxy Re-Encryption - Communications and Multimedia Security
Conference Papers Year : 2014

A Federated Cloud Identity Broker-Model for Enhanced Privacy via Proxy Re-Encryption

Bernd Zwattendorfer
  • Function : Author
  • PersonId : 994638
Daniel Slamanig
  • Function : Author
  • PersonId : 994639
Klaus Stranacher
  • Function : Author
  • PersonId : 994640
Felix Hörandner
  • Function : Author
  • PersonId : 994641

Abstract

Reliable and secure user identification and authentication are key enablers for regulating access to protected online services. Since cloud computing gains more and more importance, identification and authentication in and across clouds play an increasing role in this domain too. Currently, existing web identity management models are often just mapped to the cloud domain. Besides, within recent years several cloud identity management models such as the cloud identity broker-model have emerged. In the aforementioned model, an identity broker in the cloud acts as hub between various service and identity providers. While this seems to be a promising approach for adopting identity management in cloud computing, still some problems can be identified. A notable issue is the dependency of users and service providers on the same central broker for identification and authentication processes. Additionally, letting an identity broker store or process sensitive data such as identity information in the cloud brings up new issues, in particular with respect to user’s privacy. To overcome these problems, we propose a new cloud identity management model based on the federation between different cloud identity brokers. Thereby, users and service providers can select their favorite cloud identity broker without being dependent on one and the same broker. Moreover, it enhances user’s privacy by the use of appropriate cryptographic mechanisms and in particular proxy re-encryption. Besides introducing the model we also provide a proof of concept implementation thereof.
Fichier principal
Vignette du fichier
978-3-662-44885-4_8_Chapter.pdf (989.93 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01404190 , version 1 (28-11-2016)

Licence

Identifiers

Cite

Bernd Zwattendorfer, Daniel Slamanig, Klaus Stranacher, Felix Hörandner. A Federated Cloud Identity Broker-Model for Enhanced Privacy via Proxy Re-Encryption. 15th IFIP International Conference on Communications and Multimedia Security (CMS), Sep 2014, Aveiro, Portugal. pp.92-103, ⟨10.1007/978-3-662-44885-4_8⟩. ⟨hal-01404190⟩
168 View
285 Download

Altmetric

Share

More