A JSON Token-Based Authentication and Access Management Schema for Cloud SaaS Applications

Ethelbert, Obinna; Moghaddam, Faraz Fatemi; Wieder, Philipp; Yahyapour, Ramin

doi:10.1109/ficloud.2017.29

Cited by 43 publications

(24 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The computation/storage resources are outsourced to the cloud in order to perform the expensive authentication process with low latency and limited power consumption. The work in [36] propounded a user authentication and management framework for cloud SaaS application that harnesses the stateless and secure nature of Jason Web Token (JWT) for client authentication and session management. Dsouza et al [37] proposed a policy-driven security management approach for fog resources including policy analysis and its integration with fog paradigm.…”

Section: Related Workmentioning

confidence: 99%

A Mechanism for Securing IoT-enabled Applications at the Fog Layer

Abbas

Asim

Tariq

et al. 2019

JSAN

View full text Add to dashboard Cite

The Internet of Things (IoT) is an emerging paradigm branded by heterogeneous technologies composed of smart ubiquitous objects that are seamlessly connected to the Internet. These objects are deployed as Low power and Lossy Networks (LLN) to provide innovative services in various application domains such as smart cities, smart health, and smart communities. The LLN is a form of a network where the interconnected devices are highly resource-constrained (i.e., power, memory, and processing) and characterized by high loss rates, low data rates, and instability in the communication links. Additionally, IoT devices produce a massive amount of confidential and security-sensitive data. Various cryptographic-based techniques exist that can effectively cope with security attacks but are not suitable for IoT as they incur high consumption of resources (i.e., memory, storage and processing). One way to address this problem is by offloading the additional security-related operations to a more resourceful entity such as a fog-based node. Generally, fog computing enables security and analysis of latency-sensitive data directly at the network’s edge. This paper proposes a novel Fog Security Service (FSS) to provide end-to-end security at the fog layer for IoT devices using two well-established cryptographic schemes, identity-based encryption, and identity-based signature. The FSS provides security services such as authentication, confidentiality, and non-repudiation. The proposed architecture would be implemented and evaluated in an OPNET simulator using a single network topology with different traffic loads. The FSS performed better when compared with the APaaS and the legacy method.

show abstract

Section: Related Workmentioning

confidence: 99%

A Mechanism for Securing IoT-enabled Applications at the Fog Layer

Abbas

Asim

Tariq

et al. 2019

JSAN

View full text Add to dashboard Cite

show abstract

“…Para garantir a integridade dos dados no servidor, evitando que algum estudante com conhecimento em programação possa realizar um processo de engenharia reversa e modifique o comportamento do aplicativo enviando dados inválidos ou alterando notas no webservice, foi adotado como autenticação o modelo JWT. Ethelbert et al (2017) descreve Json Web Token (JWT) como uma estrutura de um token padronizado em três partes (Header, Payload e Signature) de informações armazenadas no formato JSON e compactadas em codificação de Base64. Através desse token é possível armazenar dados de identificação do solicitante, assim como garantir a que os dados do token não foram alterados de forma maliciosa.…”

Section: Desenvolvimento Do Aplicativounclassified

EstomatoPEP: Prontuário eletrônico desenvolvido para otimizar a educação em serviço numa clínica escola de odontologia

Farias¹,

Filho

Wanderley

et al. 2019

RENOTE

View full text Add to dashboard Cite

O sistema de Prontuário Eletrônico do paciente (PEP) é um recurso tecnológicoque consiste em uma ferramenta muito eficaz. Desta forma, o foco principal desta pesquisa foi desenvolver e validar um PEP voltado para estomatologia na forma de aplicativo para Smartphones e Tablets, tendo como parâmetro o prontuário físico utilizado na triagem de pacientes de uma Clínica Escola de Odontologia. O aplicativo foi desenvolvido usando o framework Ionic e Cordova e por questões de segurança foi desenvolvido um webservice que está alocado dentro da própria instituição. Para a construção do webservice foi utilizado o interpretador NodeJS com framework Express, para recebimento das requisições e respostas do aplicativo. A fase de validação foi realizada através da metodologia de grupo focal e oficinas com professores, alunos e pacientes onde foram testadas todas as funcionalidades e realizados os ajustes até a versão final. A versão final está registrada no Instituto Nacional da propriedade Intelectual. Conclui-se nesse estudo que a implantação do PEP na clínica escola de odontologia trará agilidade, segurança, qualidade de armazenamento de informações e geração de relatórios para as atividades clínicas dando suporte para as pesquisas, trazendo um retorno importante para a comunidade acadêmica e para a sociedade.

show abstract

“…We use cryptography to solve most security problems in cloud computing. Key management [6][7][8] is a very important part of cloud computing. There are many challenges in terms of generating, managing, and distributing keys.…”

Section: Introductionmentioning

confidence: 99%

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

Zuo

Kang

et al. 2021

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

It is the most important and challenging problem to share the data safely in cloud computing. Some so-called trusted third parties may also infringe users’ data privacy. It is an urgent problem for data owners to share data safely with the designated users rather than the third party or other users. Traditional encryption schemes utilize different keys to produce multiple encrypted copies of the same data for users. It is no longer applicable for cloud data sharing security. Attribute-based encryption can solve above problems, but it needs to rely on trusted third parties to protect the users’ privacy. In this article, in order to address the above problems, we propose a blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data secure sharing without relying on any trusted third parties. Blockchain-based ciphertext-policy attribute-based encryption scheme can protect the rights and security of data owner. Compared with existing cloud security schemes, the proposed scheme has more advantages in terms of the six aspects: (1) data owners have the authority to decide who can decrypt the data; (2) the operations of users are retained permanently, and all records are tamper-proof; (3) our proposed scheme has the characteristic of “one-to-many” encryption, and data is encrypted only once; (4) our scheme does not rely on any trusted third party; (5) in terms of the discrete logarithm problem and decisional q parallel-bilinear Diffie–Hellman exponent problem, we prove that our proposed scheme is secure; and (6) experiment shows that our proposed scheme is more efficient than the comparative scheme.

show abstract

A JSON Token-Based Authentication and Access Management Schema for Cloud SaaS Applications

Cited by 43 publications

References 14 publications

A Mechanism for Securing IoT-enabled Applications at the Fog Layer

A Mechanism for Securing IoT-enabled Applications at the Fog Layer

EstomatoPEP: Prontuário eletrônico desenvolvido para otimizar a educação em serviço numa clínica escola de odontologia

BCAS: A blockchain-based ciphertext-policy attribute-based encryption scheme for cloud data security sharing

Contact Info

Product

Resources

About