A Federated Cloud Identity Broker-Model for Enhanced Privacy via Proxy Re-Encryption

Abstract : Reliable and secure user identification and authentication are key enablers for regulating access to protected online services. Since cloud computing gains more and more importance, identification and authentication in and across clouds play an increasing role in this domain too. Currently, existing web identity management models are often just mapped to the cloud domain. Besides, within recent years several cloud identity management models such as the cloud identity broker-model have emerged. In the aforementioned model, an identity broker in the cloud acts as hub between various service and identity providers. While this seems to be a promising approach for adopting identity management in cloud computing, still some problems can be identified. A notable issue is the dependency of users and service providers on the same central broker for identification and authentication processes. Additionally, letting an identity broker store or process sensitive data such as identity information in the cloud brings up new issues, in particular with respect to user’s privacy. To overcome these problems, we propose a new cloud identity management model based on the federation between different cloud identity brokers. Thereby, users and service providers can select their favorite cloud identity broker without being dependent on one and the same broker. Moreover, it enhances user’s privacy by the use of appropriate cryptographic mechanisms and in particular proxy re-encryption. Besides introducing the model we also provide a proof of concept implementation thereof.
Complete list of metadatas

Cited literature [11 references]  Display  Hide  Download

https://hal.inria.fr/hal-01404190
Contributor : Hal Ifip <>
Submitted on : Monday, November 28, 2016 - 2:47:06 PM
Last modification on : Monday, November 28, 2016 - 2:59:36 PM
Long-term archiving on : Monday, March 27, 2017 - 9:29:39 AM

File

978-3-662-44885-4_8_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Bernd Zwattendorfer, Daniel Slamanig, Klaus Stranacher, Felix Hörandner. A Federated Cloud Identity Broker-Model for Enhanced Privacy via Proxy Re-Encryption. 15th IFIP International Conference on Communications and Multimedia Security (CMS), Sep 2014, Aveiro, Portugal. pp.92-103, ⟨10.1007/978-3-662-44885-4_8⟩. ⟨hal-01404190⟩

Share

Metrics

Record views

153

Files downloads

165