The CONTRAIL project proposes a framework for Cloud Federations, that provides users with a single point of access to Cloud resources and relieves them from managing the credentials for access to individual Cloud service providers. The Federation services dynamically broker access to Cloud resources, ensures that the best available resource is selected, and that diverse resources are accessed consistently. This paper presents the CONTRAIL approach to federated identity management, focusing on authentication and authorization. In particular, we present "usage control" extensions to standard authorization frameworks to dynamically address changes in authorization decisions.
The CONTRAIL approach to cloud federations.
Coppola M;Dazzi P;Lazouski A;Martinelli F;Mori P;
2012
Abstract
The CONTRAIL project proposes a framework for Cloud Federations, that provides users with a single point of access to Cloud resources and relieves them from managing the credentials for access to individual Cloud service providers. The Federation services dynamically broker access to Cloud resources, ensures that the best available resource is selected, and that diverse resources are accessed consistently. This paper presents the CONTRAIL approach to federated identity management, focusing on authentication and authorization. In particular, we present "usage control" extensions to standard authorization frameworks to dynamically address changes in authorization decisions.| File | Dimensione | Formato | |
|---|---|---|---|
|
prod_221043-doc_52368.pdf
accesso aperto
Descrizione: Open Computing Infrastructures for Elastic Services
Tipologia:
Versione Editoriale (PDF)
Dimensione
298.38 kB
Formato
Adobe PDF
|
298.38 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
