Architecting a scalable identity fabric is one of the most challenging directions of the cloud computing landscape. Providing contribution in this direction would allow exploiting the e-profile as a basic transversal service towards the Identity as a Service (IdaaS) paradigm. In this paper we describe a content-centric security enabling mechanism allowing identity and profile management to be designed and implemented according to an IaaS (Infrastructure as a Service) approach. The approach presented is based primarily on authentication-based confidentiality. The security enabling content-centric approach relies on two core concepts: 1) the data/information fragment playing an active role to security determination 2) a distributed and layered access control system integrating RBAC and ABAC together. The security system is built on the side of the InterDataNet (IDN) framework, which provides infrastructural support to data aggregation and reuse in human collaboration around documents. keyword: profile management
Content-centric approach for a secure and trusted e-profile management / Maria Chiara Pettenati; Stefano Turchi; Franco Pirri; Lucia Ciofi;Dino Giuli. - (2011), pp. 0-0. (Intervento presentato al convegno e-Challenge 2011 tenutosi a Firenze nel 26-28 ottobre).
Content-centric approach for a secure and trusted e-profile management
PETTENATI, MARIA CHIARA;TURCHI, STEFANO;PIRRI, FRANCO;CIOFI, LUCIA;GIULI, DINO
2011
Abstract
Architecting a scalable identity fabric is one of the most challenging directions of the cloud computing landscape. Providing contribution in this direction would allow exploiting the e-profile as a basic transversal service towards the Identity as a Service (IdaaS) paradigm. In this paper we describe a content-centric security enabling mechanism allowing identity and profile management to be designed and implemented according to an IaaS (Infrastructure as a Service) approach. The approach presented is based primarily on authentication-based confidentiality. The security enabling content-centric approach relies on two core concepts: 1) the data/information fragment playing an active role to security determination 2) a distributed and layered access control system integrating RBAC and ABAC together. The security system is built on the side of the InterDataNet (IDN) framework, which provides infrastructural support to data aggregation and reuse in human collaboration around documents. keyword: profile managementI documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.