Skip to main content

Adding Federated Identity Management to OpenStack

Chadwick, David W., Siu, Kristy W.S., Lee, Craig, Fouillat, Yann, Germonville, Damien (2014) Adding Federated Identity Management to OpenStack. Journal of Grid Computing, 12 (1). pp. 3-27. ISSN 1570-7873. E-ISSN 1572-9184. (doi:10.1007/s10723-013-9283-2) (The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided) (KAR id:43212)

The full text of this publication is not currently available from this repository. You may be able to access a copy if URLs are provided.
Official URL:
http://dx.doi.org/10.1007/s10723-013-9283-2

Abstract

OpenStack is an open source cloud computing project that is enjoying wide. While many cloud deployments may be stand-alone, it is clear that secure federated community clouds, i.e., inter-clouds, are needed. Hence, there must be methods for federated identity management (FIM) that enable authentication and authorisation to be flexibly enforced across federated environments. Since there are many different FIM protocols either in use or in development today, this paper addresses the goal of adding protocol independent federated identity management to the OpenStack services. After giving a motivating example for secure cloud federation, and describing the conceptual design for protocol independent federated access, a detailed federated identity protocol sequence is presented. The paper then describes the implementation of the protocol independent system components, along with the incorporation of two different FIM protocols, namely SAML and Keystone proprietary. Finally performance measurements of the protocol independent components, and the two different protocols dependent components are presented, before the paper concludes with the current limitations.

Item Type: Article
DOI/Identification number: 10.1007/s10723-013-9283-2
Subjects: Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming,
Divisions: Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing
Depositing User: David Chadwick
Date Deposited: 06 Oct 2014 16:43 UTC
Last Modified: 17 Aug 2022 10:57 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/43212 (The current URI for this page, for reference purposes)

University of Kent Author Information

Chadwick, David W..

Creator's ORCID: https://orcid.org/0000-0003-3145-055X
CReDIT Contributor Roles:

Siu, Kristy W.S..

Creator's ORCID:
CReDIT Contributor Roles:
  • Depositors only (login required):

Total unique views for this document in KAR since July 2020. For more details click on the image.