Improving privacy and trust in federated identity using SAML with hash based encryption algorithm

Cloud computing is an upcoming technology that has been designed for commercial needs. One of the major issues in cloud computing is the difficulty to manage federated identities and the trust between the user and the service providers. This paper focuses on how security can be provided between the user and the service provider and how the user information can be authenticated. For the purpose of providing privacy and authentication, Security Assertion Markup Language (SAML) based Single Sign-On is used. Security is provided by using Hash based Encryption algorithm (HBE). HBE algorithm works with the help of Key Exchange Protocol which contains poly hash function. In the algorithm, Identity providers maintain user directory and authenticates user information; service provider provides the service to users. The user has to register their details with the identity provider prior to this. During this stage, Hash based Encryption algorithm is used to provide secure communication between the identity provider and the user. In this paper we suggest that higher security can be given to user login by using an additional cryptographic technique, i.e. Hash based Encryption algorithm with the help of the Key Exchange Protocol.

[1]  B. Prasanalakshmi,et al.  Secure Credential Federation for Hybrid Cloud Environment with SAML Enabled Multifactor Authentication using Biometrics , 2012 .

[2]  Bo Yang,et al.  Identity-Based Cryptography for Cloud Security , 2011, IACR Cryptol. ePrint Arch..

[3]  Clement E. Onime,et al.  A User Identity Management Protocol for Cloud Computing Paradigm , 2011, Int. J. Commun. Netw. Syst. Sci..

[4]  Elisa Bertino,et al.  Privacy-preserving Digital Identity Management for Cloud Computing , 2009, IEEE Data Eng. Bull..

[5]  Bart De Decker,et al.  User-Centric Identity Management Using Trusted Modules , 2010, EuroPKI.

[6]  Manoj V. Thomas,et al.  Single Sign-On in Cloud Federation using CloudSim , 2015 .

[7]  Pinki Harsh Dhiman Shahnawaz Hussain Nida A Survey on Identity and Access Management in Cloud Computing , 2014 .

[8]  Antonio Puliafito,et al.  Federation Establishment Between CLEVER Clouds Through a SAML SSO Authentication Profile , 2011 .

[9]  Roshni Bhandari,et al.  Identity Management Frameworks for Cloud , 2013 .

[10]  Ron Poet,et al.  Dynamic Identity Federation Using Security Assertion Markup Language (SAML) , 2013, IDMAN.

[11]  Bernd Zwattendorfer,et al.  An Overview of Cloud Identity Management-Models , 2014, WEBIST.

[12]  Ling Tian,et al.  Identity-Based Authentication for Cloud Computing , 2009, CloudCom.

[13]  Liang Yan,et al.  Strengthen Cloud Computing Security with Federal Identity Management Using Hierarchical Identity-Based Cryptography , 2009, CloudCom.