1 research outputs found
An Approach to Identity Management in Clouds without Trusted Third Parties
The management of sensitive data, including identity management (IDM), is an
important problem in cloud computing, fundamental for authentication and
fine-grained service access control. Our goal is creating an efficient and
robust IDM solution that addresses critical issues in cloud computing. The
proposed IDM scheme does not rely on trusted third parties (TTPs) or trusted
dealers. The scheme is a multiparty interactive solution that combines RSA
distributed key generation and attribute-based encryption. We believe that it
will be a robust IDM privacy-preserving solution in cloud computing, because it
has the following features: (i) protects sensitive data on untrusted hosts
using active bundle; (ii) supports the minimum disclosure property; (iii)
minimizes authentication overhead by providing single sign-on; (iv) supports
authentication with encrypted credentials; (v) avoids using trusted third
parties (TTPs_, incl. using TTPs for key management; (vi) supports revocation
and delegation of access right; and (vii) supports revocation of user
credentials. The scheme should also be efficient because it exploits
parallelism.Comment: Trans. of the Intl. Conf. on Healthcare and Cloud Security, western
Michigan University. Vol. 1. No. 1. 201