Improving Privacy and Trust in Federated Identity Using SAML with Hash Based Encryption Algorithm
This addresses privacy and trust issues for users and service providers in cloud computing, but it appears incremental as it builds on existing SAML and encryption techniques.
The paper tackles the problem of managing federated identities and trust in cloud computing by proposing a method using SAML-based Single Sign-On with a Hash Based Encryption algorithm to enhance security and authentication between users and service providers.
Cloud computing is an upcoming technology that has been designed for commercial needs. One of the major issues in cloud computing is the difficulty to manage federated identities and the trust between the user and the service providers. This paper focuses on how security can be provided between the user and the service provider and how the user information can be authenticated. For the purpose of providing privacy and authentication, Security Assertion Markup Language (SAML) based Single Sign-On is used. Security is provided by using Hash based Encryption algorithm (HBE). HBE algorithm works with the help of Key Exchange Protocol which contains poly hash function. In the algorithm, Identity providers maintain user directory and authenticates user information; service provider provides the service to users. The user has to register their details with the identity provider prior to this. During this stage, Hash based Encryption algorithm is used to provide secure communication between the identity provider and the user. In this paper we suggest that higher security can be given to user login by using an additional cryptographic technique, i.e. Hash based Encryption algorithm with the help of the Key Exchange Protocol.