Integrating OpenID with proxy re-encryption to enhance privacy in cloud-based identity services

Núñez, David; Agudo, Isaac; López, Javier

doi:10.1109/cloudcom.2012.6427551

Cited by 33 publications

(28 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…This token is unique per user, therefore it enables the third party to track user activity. Nunez et al [9] used OpenID in conjunction with proxy re-encryption in order to provide Cloud based identity management services, whereas Khan et al [10] have implemented OpenID based authentication mechanisms for the OpenStack platform. OpenID provides only user authentication; in an OpenID-based access control system, the Cloud provider is responsible for evaluating the access control policies.…”

Section: Related Workmentioning

confidence: 99%

Access control delegation for the cloud

Fotiou

Machas

Polyzos

et al. 2014

2014 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

Abstract-Cloud computing has become the focus of attention in the industry, from the point of view of both providers and customers, as well as researchers. However, security concerns still impede the widespread adoption of this technology. Most enterprises are particularly worried about the lack of control over their outsourced data since the authentication and authorization systems of Cloud providers are generic and they cannot be easily adapted to the requirements of each individual enterprise. An adaptation process requires the creation of complex protocols, often leading to security problems and "lock-in" conditions. In this paper we present the design of a lightweight solution that overcomes these problems. We have implemented and incorporated this solution in a popular open-source Cloud stack: OpenStack. Our solution eliminates the need for developing complex adaptation protocols, offers data owners the flexibility to switch among Cloud providers, or use multiple, different Cloud providers concurrently, and enhances end-user privacy.

show abstract

Section: Related Workmentioning

confidence: 99%

Access control delegation for the cloud

Fotiou

Machas

Polyzos

et al. 2014

2014 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

show abstract

“…In this model, the identity of a user is represented by a URL, called an OpenID identifier. Hence, users don't need to create a separate account for each site; instead, they just have to use their OpenID identifier, and the authentication procedure will be conducted through the user's identity provider [17]. OpenID is supported in many programming languages like Java, PHP, Perl C/C++, C##, python.…”

Section: Openidmentioning

confidence: 99%

“…OpenID is supported in many programming languages like Java, PHP, Perl C/C++, C##, python. The Flow of OpenID as shown in Figure 7and given below [17]:…”

Section: Openidmentioning

confidence: 99%

Identity Management Frameworks for Cloud

Bhandari¹,

Bhoi²,

Patel³

2013

IJCA

View full text Add to dashboard Cite

show abstract

“…The main flow of OpenID is shown in Figure 1 and is detailed as follows [5]: 2.1.1 The user requests access to a service or resource at the SP site. At this moment, we assume that the user is not authenticated.…”

Section: Openid Authentication Protocolmentioning

confidence: 99%

Improving Privacy of OpenID Cloud Identity Management Framework: Formal Analysis, Verification of Protocol

Bhandari¹,

Patel²,

Bhandari³

2018

IJCA

View full text Add to dashboard Cite

Cloud computing is a new trend of computing paradigm that provides a set of scalable resources on demand. However, it also being a target of cyber attacks and creates risk for data privacy and protection. An Identity Management System (IDM) supports the management of multiple digital identities for authentication and authorization. The various identity management frameworks that help making Cloud environment more secure. OpenID 2.0 is a user-centric Web single sign-on protocol with over one billion OpenID-enabled user accounts, and thousands of supporting websites. The security of the protocol is critical.In OpenID Identity Management Framework, User Privacy is the issue. In this paper we had introduced the results of a systematic analysis of the OpenID authentication protocol using scyther tool. Our formal analysis reveals that the protocol does not guarantee the authenticity and integrity of the authentication request, and it lacks bindings among the protocol messages and the browser. We provide a simple and scalable defense mechanism for service providers to ensure the authenticity and integrity of the protocol messages.

show abstract

Integrating OpenID with proxy re-encryption to enhance privacy in cloud-based identity services

Cited by 33 publications

References 12 publications

Access control delegation for the cloud

Access control delegation for the cloud

Identity Management Frameworks for Cloud

Improving Privacy of OpenID Cloud Identity Management Framework: Formal Analysis, Verification of Protocol

Contact Info

Product

Resources

About