Masters Theses

Abstract

"With the advent of a new paradigm in computing known as Cloud Computing which offers computing as a service, the inflow of a variety of service vendors is increasing constantly. One of the main challenges in this distributed network of service provisioning and deprovisioning system is the end user's privacy. Enforcing authentication and authorization protocols customized to the needs of every service provider evolves to a very intricate Identity Management System with respect to both the collaborating service providers as well as the user. This problem was addressed by the Federated Identity Management systems, where the user information is stored at one of the several identity providers and the service providers would contact one of these Identity Providers for user authentication information. One flaw with such a system was the centralized Identity provider. This problem is addressed in this work, where we present a Service Provider Managed-Trust system for communicating the user authentication information. We eliminate the Identity Provider while retaining its core functionality of i) managing user authentication information ii) managing trust between several service providers. Service Providers themselves manage the user authentication information while the trust management is leveraged to all the collaborating service providers in the network. This work also addresses the open challenge of heterogeneous data communication standards with respect to Identity Management. Current systems mostly use SAML (Security Assertion Mark-up Language) for communicating user authentication data over SOAP. We propose a lightweight communication method using REST (Representational State Transfer) while still maintaining the security aspect of SAML using Open-ID"--Abstract, page iv.

Advisor(s)

Madria, Sanjay Kumar

Committee Member(s)

Chellappan, Sriram
Zawodniok, Maciej Jan, 1975-

Department(s)

Computer Science

Degree Name

M.S. in Computer Science

Publisher

Missouri University of Science and Technology

Publication Date

Fall 2011

Journal article titles appearing in thesis/dissertation

  • ETIS - efficient trust identity management system for Cloud
  • SecuREST - a REST-Open-ID framework for secure identify management

Pagination

ix, 48 pages

Note about bibliography

Includes bibliographical references (pages 45-47).

Rights

© 2011 Makarand Bhonsle, All rights reserved.

Document Type

Thesis - Open Access

File Type

text

Language

English

Subject Headings

Authentication -- Methodology -- United States
Cloud computing -- Access control
Cloud computing -- Security measures

Thesis Number

T 9915

Print OCLC #

795360245

Electronic OCLC #

911058079

Download

Share

 
COinS