Federated identity access broker pattern for cloud computing

Tim Reimer; Phil Abraham; Qing Tan

doi:10.1109/NBiS.2013.23

Federated identity access broker pattern for cloud computing

Tim Reimer, Phil Abraham, Qing Tan

School of Computing and Information systems

Athabasca University

Research output: Chapter in Book/Report/Conference proceeding › Published Conference contribution › peer-review

2 Citations (Scopus)

Abstract

With the adoption of cloud computing, a multitude of front-end mobile devices are emerging that require access to services in the cloud. Applications in the cloud are now commonly deployed as software as a service (SaaS). However, with the introduction of SaaS new security challenges need to be addressed. The challenge is to provide a single sign-on environment for services through an identity provider plus sufficient authorization granularity for backend services for the client applications to access. Through detailed discussion of the two standards (SAML 2.0 and OAuth 2.0) this paper presents a study how the two standards can provide a single sign-on solution for cloud computing. Furthermore, by outlining a case study/scenario of the two standards, the Federated Identity Access Broker Pattern for cloud computing is developed to present a solution for these security issues.

Original language	English
Title of host publication	Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013
Pages	134-140
Number of pages	7
DOIs	https://doi.org/10.1109/NBiS.2013.23
Publication status	Published - 2013
Event	16th International Conference on Network-Based Information Systems, NBiS 2013 - Gwangju, Korea, Republic of Duration: 4 Sep. 2013 → 6 Sep. 2013

Publication series

Name	Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013

Conference

Conference	16th International Conference on Network-Based Information Systems, NBiS 2013
Country/Territory	Korea, Republic of
City	Gwangju
Period	4/09/13 → 6/09/13

Keywords

Cloud computing
Cloud computing security
Federated identity access
Single sign-on

Access to Document

10.1109/NBiS.2013.23

Cite this

@inproceedings{794d915ffa14457490cd150cef3ca7ae,

title = "Federated identity access broker pattern for cloud computing",

abstract = "With the adoption of cloud computing, a multitude of front-end mobile devices are emerging that require access to services in the cloud. Applications in the cloud are now commonly deployed as software as a service (SaaS). However, with the introduction of SaaS new security challenges need to be addressed. The challenge is to provide a single sign-on environment for services through an identity provider plus sufficient authorization granularity for backend services for the client applications to access. Through detailed discussion of the two standards (SAML 2.0 and OAuth 2.0) this paper presents a study how the two standards can provide a single sign-on solution for cloud computing. Furthermore, by outlining a case study/scenario of the two standards, the Federated Identity Access Broker Pattern for cloud computing is developed to present a solution for these security issues.",

keywords = "Cloud computing, Cloud computing security, Federated identity access, Single sign-on",

author = "Tim Reimer and Phil Abraham and Qing Tan",

year = "2013",

doi = "10.1109/NBiS.2013.23",

language = "English",

isbn = "9780769550527",

series = "Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013",

pages = "134--140",

booktitle = "Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013",

note = "16th International Conference on Network-Based Information Systems, NBiS 2013 ; Conference date: 04-09-2013 Through 06-09-2013",

}

Reimer, T, Abraham, P & Tan, Q 2013, Federated identity access broker pattern for cloud computing. in Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013., 6685388, Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013, pp. 134-140, 16th International Conference on Network-Based Information Systems, NBiS 2013, Gwangju, Korea, Republic of, 4/09/13. https://doi.org/10.1109/NBiS.2013.23

Federated identity access broker pattern for cloud computing. / Reimer, Tim; Abraham, Phil; Tan, Qing.
Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013. 2013. p. 134-140 6685388 (Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013).

Research output: Chapter in Book/Report/Conference proceeding › Published Conference contribution › peer-review

TY - GEN

T1 - Federated identity access broker pattern for cloud computing

AU - Reimer, Tim

AU - Abraham, Phil

AU - Tan, Qing

PY - 2013

Y1 - 2013

N2 - With the adoption of cloud computing, a multitude of front-end mobile devices are emerging that require access to services in the cloud. Applications in the cloud are now commonly deployed as software as a service (SaaS). However, with the introduction of SaaS new security challenges need to be addressed. The challenge is to provide a single sign-on environment for services through an identity provider plus sufficient authorization granularity for backend services for the client applications to access. Through detailed discussion of the two standards (SAML 2.0 and OAuth 2.0) this paper presents a study how the two standards can provide a single sign-on solution for cloud computing. Furthermore, by outlining a case study/scenario of the two standards, the Federated Identity Access Broker Pattern for cloud computing is developed to present a solution for these security issues.

AB - With the adoption of cloud computing, a multitude of front-end mobile devices are emerging that require access to services in the cloud. Applications in the cloud are now commonly deployed as software as a service (SaaS). However, with the introduction of SaaS new security challenges need to be addressed. The challenge is to provide a single sign-on environment for services through an identity provider plus sufficient authorization granularity for backend services for the client applications to access. Through detailed discussion of the two standards (SAML 2.0 and OAuth 2.0) this paper presents a study how the two standards can provide a single sign-on solution for cloud computing. Furthermore, by outlining a case study/scenario of the two standards, the Federated Identity Access Broker Pattern for cloud computing is developed to present a solution for these security issues.

KW - Cloud computing

KW - Cloud computing security

KW - Federated identity access

KW - Single sign-on

UR - http://www.scopus.com/inward/record.url?scp=84893211443&partnerID=8YFLogxK

U2 - 10.1109/NBiS.2013.23

DO - 10.1109/NBiS.2013.23

M3 - Published Conference contribution

AN - SCOPUS:84893211443

SN - 9780769550527

T3 - Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013

SP - 134

EP - 140

BT - Proceedings - 16th International Conference on Network-Based Information Systems, NBiS 2013

T2 - 16th International Conference on Network-Based Information Systems, NBiS 2013

Y2 - 4 September 2013 through 6 September 2013

ER -

Federated identity access broker pattern for cloud computing

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this