"With the advent of a new paradigm in computing known as Cloud Computing which offers computing as a service, the inflow of a variety of service vendors is increasing constantly. One of the main challenges in this distributed network of service provisioning and deprovisioning system is the end user's privacy. Enforcing authentication and authorization protocols customized to the needs of every service provider evolves to a very intricate Identity Management System with respect to both the collaborating service providers as well as the user. This problem was addressed by the Federated Identity Management systems, where the user information is stored at one of the several identity providers and the service providers would contact one of these Identity Providers for user authentication information. One flaw with such a system was the centralized Identity provider. This problem is addressed in this work, where we present a Service Provider Managed-Trust system for communicating the user authentication information. We eliminate the Identity Provider while retaining its core functionality of i) managing user authentication information ii) managing trust between several service providers. Service Providers themselves manage the user authentication information while the trust management is leveraged to all the collaborating service providers in the network. This work also addresses the open challenge of heterogeneous data communication standards with respect to Identity Management. Current systems mostly use SAML (Security Assertion Mark-up Language) for communicating user authentication data over SOAP. We propose a lightweight communication method using REST (Representational State Transfer) while still maintaining the security aspect of SAML using Open-ID"--Abstract, page iv.
Madria, Sanjay Kumar
Zawodniok, Maciej Jan, 1975-
M.S. in Computer Science
Missouri University of Science and Technology
Journal article titles appearing in thesis/dissertation
- ETIS - efficient trust identity management system for Cloud
- SecuREST - a REST-Open-ID framework for secure identify management
ix, 48 pages
© 2011 Makarand Bhonsle, All rights reserved.
Thesis - Restricted Access
Library of Congress Subject Headings
Authentication -- Methodology -- United States
Cloud computing -- Access control
Cloud computing -- Security measures
Print OCLC #
Electronic OCLC #
Link to Catalog RecordElectronic access to the full-text of this document is restricted to Missouri S&T users. Otherwise, request this publication directly from Missouri S&T Library or contact your local library. http://laurel.lso.missouri.edu/record=b8625028~S5
Bhonsle, Makarand, "A social network of service providers for trust and identity management in the Cloud" (2011). Masters Theses. 4129.