Secure cloud authentication using eIDs

Author

Zwattendorfer, Bernd ; Tauber, Arne

Author_Institution

E-Gov. Innovation Center (EGIZ), Graz Univ. of Technol., Graz, Austria

Volume

01

fYear

2012

fDate

Oct. 30 2012-Nov. 1 2012

Firstpage

397

Lastpage

401

Abstract

Identification and authentication are essential security functions for regulating access to protected data. Considering that, most cloud service providers rely on weak authentication mechanisms such as username/password schemes. While username/password authentication may be sufficient for simple customized applications, cloud applications in more sensitive areas such as in e-Government require more reliable and secure mechanisms. We close this gap for such cloud applications by applying the STORK framework for secure cloud authentication using eIDs. The STORK framework supports various national eID solutions and will be the relevant eID framework across Europe in future. We demonstrated our approach by enabling eID authentication at two selected public cloud service providers. Finally, we also moved the STORK framework to the cloud to apply the full cloud computing paradigm.

Keywords

cloud computing; message authentication; Europe; STORK framework; cloud computing; eID authentication; electronic identity; national eID solutions; public cloud service providers; secure cloud authentication; secure identity across borders linked; Authentication; Cloud computing; Computational modeling; Computer architecture; Europe; Google; Interoperability; authentication; cloud computing; eID; electronic identity; identification;

fLanguage

English

Publisher

ieee

Conference_Titel

Cloud Computing and Intelligent Systems (CCIS), 2012 IEEE 2nd International Conference on

Conference_Location

Hangzhou

Print_ISBN

978-1-4673-1855-6

Type

conf

DOI

10.1109/CCIS.2012.6664435

Filename

6664435