TY - GEN
T1 - Framework implementation based on grid of smartcards to authenticate users and virtual machines
AU - Aissaoui-Mehrez, Hassane
AU - Urien, Pascal
AU - Pujolle, Guy
PY - 2014/1/1
Y1 - 2014/1/1
N2 - The Security for the Future Networks (SecFuNet) project proposes to integrate the secure microcontrollers in order to introduce, among its many services, authentication and authorization functions for Cloud and virtual environments. One of the main goals of SecFuNet is to develop a secure infrastructure for virtualized environments and Clouds in order to provide strong isolation among virtual infrastructures, and guarantee that one virtual machine (VM) should not interfere with others. The goal of this paper is to describe the implementation and the experimentation of the solution for identifying users and nodes in the SecFuNet architecture. In this implementation, we also employ low-cost smartcards. Only authorized users are allowed to create or instantiate virtual environments. Thus, users and hypervisors are equipped with secure elements, used to open TLS secure channels with strong mutual authentication.
AB - The Security for the Future Networks (SecFuNet) project proposes to integrate the secure microcontrollers in order to introduce, among its many services, authentication and authorization functions for Cloud and virtual environments. One of the main goals of SecFuNet is to develop a secure infrastructure for virtualized environments and Clouds in order to provide strong isolation among virtual infrastructures, and guarantee that one virtual machine (VM) should not interfere with others. The goal of this paper is to describe the implementation and the experimentation of the solution for identifying users and nodes in the SecFuNet architecture. In this implementation, we also employ low-cost smartcards. Only authorized users are allowed to create or instantiate virtual environments. Thus, users and hypervisors are equipped with secure elements, used to open TLS secure channels with strong mutual authentication.
KW - Microcontrollers
KW - OpenID
KW - Secure elements
KW - User-centric identity
KW - Virtualization and cloud computing
UR - https://www.scopus.com/pages/publications/84908876542
U2 - 10.5220/0005046102850290
DO - 10.5220/0005046102850290
M3 - Conference contribution
AN - SCOPUS:84908876542
T3 - SECRYPT 2014 - Proceedings of the 11th International Conference on Security and Cryptography, Part of ICETE 2014 - 11th International Joint Conference on e-Business and Telecommunications
SP - 285
EP - 290
BT - SECRYPT 2014 - Proceedings of the 11th International Conference on Security and Cryptography, Part of ICETE 2014 - 11th International Joint Conference on e-Business and Telecommunications
A2 - Obaidat, Mohammad S.
A2 - Holzinger, Andreas
A2 - Samarati, Pierangela
PB - SciTePress
T2 - 11th International Conference on Security and Cryptography, SECRYPT 2014 - Part of 11th International Joint Conference on e-Business and Telecommunications, ICETE 2014
Y2 - 28 August 2014 through 30 August 2014
ER -