research-article

Secure storage of user credentials and attributes in federation of clouds

Authors:

Luciano Barreto,

Leomar Scheunemann,

Joni Fraga, and

Frank SiqueiraAuthors Info & Claims

SAC '17: Proceedings of the Symposium on Applied Computing

April 2017

Pages 364 - 369

https://doi.org/10.1145/3019612.3019627

Published: 03 April 2017 Publication History

Get Access

Abstract

The use of cloud computing and cloud federations has been the focus of studies in the last years. Many of these infrastructures delegate user authentication to Identity Providers. Once these services are available through the Internet, concerns about the confidentiality of user credentials and attributes are high. The main focus of this work is the security of the credentials and user attributes in authentication infrastructures, exploring secret sharing techniques and using cloud federations as a base for storing this information.

References

[1]

N. Grozev and R. Buyya, "Inter-Cloud architectures and application brokering: taxonomy and survey," Softw. Pract. Exp., pp. 1--22, 2012.

Digital Library

Google Scholar

[2]

A. Celesti, F. Tusa, M. Villari, and A. Puliafito, "How to Enhance Cloud Architectures to Enable Cross-Federation," in Cloud Computing (CLOUD), 2010 IEEE 3rd International Conference on, 2010, pp. 337--345.

Digital Library

Google Scholar

[3]

A. Jøsang, J. Fabre, B. Hay, J. Dalziel, and S. Pope, "Trust requirements in identity management," CRPIT '44 Proc. 2005 Australas. Work. Grid Comput. e-research, pp. 99--108, 2005.

Digital Library

Google Scholar

[4]

A. Shamir, "How to share a secret," Commun. ACM, vol. 22, no. 11, pp. 612--613, 1979.

Digital Library

Google Scholar

[5]

B. Schoenmakers, "A Simple Publicly Verifiable Secret Sharing Scheme and its Application to Electronic Voting," Adv. Cryptol., vol. 1666, no. i, pp. 148--164, 1999.

Digital Library

Google Scholar

[6]

M. O. Rabin, "Efficient dispersal of information for security, load balancing, and fault tolerance," J. ACM, vol. 36, no. 2, pp. 335--348, 1989.

Digital Library

Google Scholar

[7]

S. Chow, Y. He, L. Hui, and S. Yiu, "Spice-simple privacy-preserving identity-management for cloud environment," Appl. Cryptogr. Netw. ..., pp. 526--543, 2012.

Digital Library

Google Scholar

[8]

D. Boneh, X. Boyen, and H. Shacham, "Short Group Signatures," Adv. Cryptol. - CRYPTO 2004, vol. 3152, pp. 227--242, 2004.

Crossref

Google Scholar

[9]

L. Yan, C. Rong, and G. Zhao, "Strengthen cloud computing security with federal identity management using hierarchical identity-based cryptography," CloudCom 2009, pp. 167--177, 2009.

Digital Library

Google Scholar

[10]

P. Angin, B. Bhargava, R. Ranchal, N. Singh, M. Linderman, L. Ben Othmane, and L. Lilien, "An Entity-Centric Approach for Privacy and Identity Management in Cloud Computing," 2010 29th IEEE Symp. Reliab. Distrib. Syst., pp. 177--183, Oct. 2010.

Digital Library

Google Scholar

[11]

D. Boger, L. Barreto, J. Fraga, P. Urien, H. Aissaoui, A. Santos, and G. Pujolle, "User-centric Identity Management based on secure elements," Proc. - Int. Symp. Comput. Commun., no. 590047, 2014.

Crossref

Google Scholar

[12]

A. Bessani, M. Correia, B. Quaresma, and P. Sousa, "DEPSKY: Dependable and Secure Storage in a Cloud-of-Clouds," Eur. Syst. Conf., 2011.

Digital Library

Google Scholar

[13]

B. Sujana, P. Tejaswini, G. Srinivasulu, and S. Karimulla, "Secure Framework for Data Storage from Single to Multi clouds in Cloud Networking," Int. J. Emerg. Trends Technol. Comput. Sci., vol. 2, no. 2, 2013.

Google Scholar

Cited By

View all

Munster JJacobsen H(2018)Secret Sharing in Pub/Sub Using Trusted Execution EnvironmentsProceedings of the 12th ACM International Conference on Distributed and Event-based Systems10.1145/3210284.3210290(28-39)Online publication date: 25-Jun-2018
https://dl.acm.org/doi/10.1145/3210284.3210290
Kumar VRathore R(2018)Security Issues with Virtualization in Cloud Computing2018 International Conference on Advances in Computing, Communication Control and Networking (ICACCCN)10.1109/ICACCCN.2018.8748405(487-491)Online publication date: Oct-2018
https://doi.org/10.1109/ICACCCN.2018.8748405

Index Terms

Secure storage of user credentials and attributes in federation of clouds
1. Computer systems organization
  1. Architectures
    1. Distributed architectures
      1. Cloud computing
2. Security and privacy
  1. Security services
    1. Authentication

Recommendations

A business-oriented Cloud federation model for real-time applications

Cloud federation can allow individual Cloud providers working collaboratively to offer best-effort services to service customers. However, the current federated Cloud computing model is not appropriate for computationally intensive Real-time Online ...
Read More
Authorization Federation in IaaS Multi Cloud
SCC '15: Proceedings of the 3rd International Workshop on Security in Cloud Computing

As more and more organizations move to cloud, it is inevitable that cross-organizational collaboration will need to be supported in the cloud. In this paper, we explore models for collaboration among clouds whose resources are distributed across ...
Read More
Interconnecting Federated Clouds by Using Publish-Subscribe Service

Cloud Federation is an emerging computing model where multiple resources from independent Cloud providers are leveraged to create large-scale distributed virtual computing clusters, operating as into a single Cloud organization. This model enables the ...
Read More

Comments

Information & Contributors

Information

Published In

SAC '17: Proceedings of the Symposium on Applied Computing

April 2017

2004 pages

ISBN:9781450344869

DOI:10.1145/3019612

Conference Chair:
Sung Y. Shin
South Dakota State University
,
Program Chairs:
Dongwan Shin
New Mexico Tech
,
Maria Lencastre
University of Pernambuco, Brazil

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 03 April 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

SAC 2017

Sponsor:

SIGAPP

SAC 2017: Symposium on Applied Computing

April 3 - 7, 2017

Marrakech, Morocco

Acceptance Rates

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
156
Total Downloads

Downloads (Last 12 months)6
Downloads (Last 6 weeks)0

Other Metrics

View Author Metrics

Citations

Cited By

View all

Munster JJacobsen H(2018)Secret Sharing in Pub/Sub Using Trusted Execution EnvironmentsProceedings of the 12th ACM International Conference on Distributed and Event-based Systems10.1145/3210284.3210290(28-39)Online publication date: 25-Jun-2018
https://dl.acm.org/doi/10.1145/3210284.3210290
Kumar VRathore R(2018)Security Issues with Virtualization in Cloud Computing2018 International Conference on Advances in Computing, Communication Control and Networking (ICACCCN)10.1109/ICACCCN.2018.8748405(487-491)Online publication date: Oct-2018
https://doi.org/10.1109/ICACCCN.2018.8748405

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

A business-oriented Cloud federation model for real-time applications

Authorization Federation in IaaS Multi Cloud

Interconnecting Federated Clouds by Using Publish-Subscribe Service