Registration and Authorization System for OpenStack Cloud Platform

The development of cloud computing brings a shift paradigm to information technologies. With cloud computing, the distributed resources can be pooled together and used on demand without human interaction. The property of virtualization and abstraction enables cloud computing to provide low cost and high efficiency services. While along with the growth of this innovative technology, security and privacy issues also become the major consideration for both cloud providers and consumers. Identity as a service is one solution for these security issues. It offers identity management and role-based access control system which can effectively to protect the cloud environments.The purpose of this master thesis is to provide identity services to cloud computing platforms no matter what service model they use. The approach is to use shared security services provider, in particular, identity services provider to support registration and authorization services for multiple cloud platform. The shared security system used in this research is in charge of provisioning security services, such as identity management and role-based access control. As one of the open source cloud computing platforms, OpenStack has been selected to be the target integrated platform in this research. The features of modularity independence and scalability make OpenStack easy for integration and combination with external systems and modules.