Smartcards are becoming increasingly popular as a means for personal identification and authentication in many secure application areas such as e-Banking and e-Commerce. Millions of users have a smart card in their pocket without even knowing it. The SecFuNet project proposes solutions for integrating secure microcontrollers in order to develop a security framework for Cloud Computing and virtual environment. This framework introduces, among its many services: authentication and authorization functions for virtual environments, based on Remote Grid of Secure Elements (RG0SE). The objective is to implement an open standard framework, based on smart cards and OpenSSL. This framework provides TLS secure channels for establishing trust relationships among Users, Virtual Machines (VMs), Hypervisor (XEN) and RG0SE. The authentication is done directly between smart cards (owned by users or associated to VM) and SecFuNet Identity Management (IdM). This framework concerns a highly secure authentication with secure microcontrollers allowing users' (or VMs') strong mutual authentication with SecFuNet Services and provides some libraries to the developers. It defines and describes the features and the modules added to OpenSSL in order to supply easily the Application Protocol Data Unit (APDU) -described by the ISO 7816 standard -transferred to smart cards.
[1]
Pascal Urien,et al.
Cloud of Secure Elements perspectives for mobile and cloud applications security
,
2013,
2013 IEEE Conference on Communications and Network Security (CNS).
[2]
Drummond Reed,et al.
OpenID 2.0: a platform for user-centric identity management
,
2006,
DIM '06.
[3]
Miguel Elias M. Campista,et al.
XTC: A Throughput Control Mechanism for Xen-Based Virtualized Software Routers
,
2011,
2011 IEEE Global Telecommunications Conference - GLOBECOM 2011.
[4]
Larry J. Blunk,et al.
PPP Extensible Authentication Protocol (EAP)
,
1998,
RFC.
[5]
Alan L. Cox,et al.
Optimizing network virtualization in Xen
,
2006
.