RBSSO Protocol: Sequence. , 7. Initialization: Cloud machine instances initializes and sent ServiceToken from Service Controller. Authentication: Client sends AuthRequest to AuthenticationService .
Cloud machine instances initializes and sent ServiceToken from Service Controller.
Client sends AuthRequest to AuthenticationService.
AuthenticationService requests user information from a credential store (database, LDAP, etc).
AuthenticationService sends client a AuthToken.
Start Session with Cloud Service:
Client requests instance’s ServiceToken.
Instance sends client it’s ServiceToken.
Client sends SessionKey and optionally first request.
Client sends RequestToken and Request.
Service sends response.
(Encrypted with CKsec)
(Encrypted with AKencpub)
Encrypted with CKsec
Encrypted with SKpub
Encrypted with SEKsec
Implementation of AuthSrever and Client created using Java TCP sockets.
Authentication performance evaluated against a SSL connection and Kerberos.
Performance measured in average time per request on low latency local network and higher latency, nosier wide area network.
Each protocol was tested with 10,000 authentication requests for each network.
Lakehead University's private cloud computing testbed
Based on 10,000 requests per protocol.
Expand on roll model.
Performance testing of all parts of the protocol.
Formal security evaluation of the protocol.
Securing data on the cloud.