Collaboration between SAML federations and OpenStack clouds

被引：1

作者：

Heder, Mihaly ^{[1
]}

Tenczer, Szabolcs ^{[1
]}

Biancini, Andrea ^{[2
]}

机构：

[1] MTA SZTAKI Inst Comp Sci & Control, Kende U 13-17, H-1111 Budapest, Hungary

[2] RETI Inst, Via Dante 6, I-21052 Busto Arsizio, VA, Italy

来源：

SOFTWAREX | 2019年 / 9卷

基金：

欧盟地平线“2020”; 欧洲研究理事会;

关键词：

SAML; OpenStack; Research loud; eduGAIN;

D O I：

10.1016/j.softx.2018.12.003

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

In this paper, we present a novel OpenStack module called regsite for enabling easy access for researchers to OpenStack research clouds. Many researchers have an account in an Academic AAI federation, such as national research and education federations or the eduGAIN SAML meta-federation. The software solution presented here makes it possible to use these institutional accounts together with so-called virtual organization managers for authenticating and authorizing in OpenStack instances in a clean and secure way. An analysis of earlier generations of OpenStack-related developments trying to tackle the same problem is given. Many aspects of this software integration can be generalized to serve as a template for federative research cloud access. (C) 2019 The Authors. Published by Elsevier B.V.

引用

页码：44 / 48

页数：5

共 50 条

[1] Cash tokens for SAML based federations
Lutz, David J.
[J]. ENTERPRISE APPLICATIONS AND SERVICES IN THE FINANCE INDUSTRY, 2008, 4 : 97 - 111
[2] Network Expansion in OpenStack Cloud Federations
Kimmerlin, Mael
Hasselmeyer, Peer
Heikkilae, Seppo
Plauth, Max
Parol, Pawel
Sarolahti, Pasi
[J]. 2017 EUROPEAN CONFERENCE ON NETWORKS AND COMMUNICATIONS (EUCNC), 2017,
[3] A Survey of Payment Approaches for Identity Federations in Focus of the SAML Technology
Lutz, David J.
Stiller, Burkhard
[J]. IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2013, 15 (04): : 1979 - 1999
[4] Token-based payment in dynamic SAML-based federations
Lutz, David J.
Stiller, Burkhard
[J]. RESILIENT NETWORKS AND SERVICES, 2008, 5127 : 185 - +
[5] Using XACML for privacy control in SAML-based identity federations
Hommel, W
[J]. COMMUNICATIONS AND MULTIMEDIA SECURITY, 2005, 3677 : 160 - 169
[6] OpenStack Generalization for Hardware Accelerated Clouds
Erol, Ahmet
Yazar, Alper
Schmidt, Ece Guran
[J]. 2019 28TH INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS (ICCCN), 2019,
[7] Towards Vulnerability Assessment as a Service in OpenStack Clouds
Torkura, Kennedy A.
Meinel, Christoph
[J]. PROCEEDINGS OF THE 2016 IEEE 41ST CONFERENCE ON LOCAL COMPUTER NETWORKS - LCN WORKSHOPS 2016, 2016, : 1 - 8
[8] Federated Networking Services in Multiple OpenStack Clouds
Celesti, Antonio
Levin, Anna
Massonet, Philippe
Schour, Liran
Villari, Massimo
[J]. ADVANCES IN SERVICE-ORIENTED AND CLOUD COMPUTING (ESOCC 2015), 2016, 567 : 338 - 352
[9] Availability modeling in redundant OpenStack private clouds
Faraji Shoyari, Mahsa
Ataie, Ehsan
Entezari-Maleki, Reza
Movaghar, Ali
[J]. SOFTWARE-PRACTICE & EXPERIENCE, 2021, 51 (06): : 1218 - 1241
[10] Identity federation in OpenStack - an introduction to hybrid clouds
Denis, Marek
Leon, Jose Castro
Ormancey, Emmanuel
Tedesco, Paolo
[J]. 21ST INTERNATIONAL CONFERENCE ON COMPUTING IN HIGH ENERGY AND NUCLEAR PHYSICS (CHEP2015), PARTS 1-9, 2015, 664

← 1 2 3 4 5 →