Federated Identity Access Broker Pattern for Cloud Computing

Author

Reimer, Tim ; Abraham, Pierre ; Qing Tan

Author_Institution

Sch. of Comput. & Inf. Syst., Athabasca Univ., Athabasca, AB, Canada

fYear

2013

fDate

4-6 Sept. 2013

Firstpage

134

Lastpage

140

Abstract

With the adoption of cloud computing, a multitude of front-end mobile devices are emerging that require access to services in the cloud. Applications in the cloud are now commonly deployed as software as a service (SaaS). However, with the introduction of SaaS new security challenges need to be addressed. The challenge is to provide a single sign-on environment for services through an identity provider plus sufficient authorization granularity for backend services for the client applications to access. Through detailed discussion of the two standards (SAML 2.0 and OAuth 2.0) this paper presents a study how the two standards can provide a single sign-on solution for cloud computing. Furthermore, by outlining a case study/scenario of the two standards, the Federated Identity Access Broker Pattern for cloud computing is developed to present a solution for these security issues.

Keywords

authorisation; cloud computing; standards; Federated Identity Access Broker Pattern; OAuth 2.0; SAML 2.0; SaaS; authorization granularity; backend services; cloud computing; identity provider; security; single sign-on environment; software as a service; Authentication; Cloud computing; Computer architecture; Servers; Software as a service; Standards; Cloud Computing; Cloud Computing Security; Federated Identity Access; Single Sign-On;

fLanguage

English

Publisher

ieee

Conference_Titel

Network-Based Information Systems (NBiS), 2013 16th International Conference on

Conference_Location

Gwangju

Print_ISBN

978-1-4799-2509-4

Type

conf

DOI

10.1109/NBiS.2013.23

Filename

6685388