Metrika članka

  • citati u SCindeksu: 0
  • citati u CrossRef-u:0
  • citati u Google Scholaru:[=>]
  • posete u poslednjih 30 dana:6
  • preuzimanja u poslednjih 30 dana:4
članak: 1 od 1  
Telfor Journal
2018, vol. 10, br. 2, str. 97-101
jezik rada: engleski
vrsta rada: neklasifikovan
doi:10.5937/telfor1802097E


Identity provider deployment based on container technology
(naslov ne postoji na srpskom)
aUniverzitet u Beogradu, Elektrotehnički fakultet
bAMRES, Belgrade

e-adresa: marko.eremija@gmail.com, nebojsa.ilic@amres.ac.rs, cmilos@etf.bg.ac.rs, jeca@etf.bg.ac.rs, zaki@etf.bg.ac.rs

Projekat

Razvoj digitalnih tehnologija i umreženih servisa u sistemima sa ugrađenim elektronskim komponentama (MPNTR - 44009)
Razvoj hardverske, softverske i telekomunikacione infrastrukture e-sistema za kontrolu prometa i poreza (MPNTR - 32047)

Sažetak

(ne postoji na srpskom)
Identity Providers are an integral part of Identity Federations. Many different and complex technologies are needed to create an Identity Provider. In order to be able to fully utilize all the benefits of Identity Federations, adequate hardware resources are needed for Identity Provider deployment. Containers address the complexity and resources issues, while enabling faster deployment and keeping the functionalities and core concepts intact at the same time. Containers cannot be perceived as a replacement for virtual machines or bare metal servers, as they are meant to co-exist and have already found a wide range of use cases. This paper proposes using containers for easier implementation of Identity Providers, while lowering resource usage and complexity imposed by deployment requirements.

Ključne reči

containers; Docker; Identity Federations; SAML; Single Sign-On

Reference

*** (1996) Address allocation for private internets. RFC1918
*** (2017) OAuth 2.0 for native apps. RFC8252
*** OpenID connect core 1.0. http://openid.net/specs/openidconnect-core-1_0.html
*** (2015) Security assertion markup language (SAML) 2. O profile for OAuth 2. O client authentication and authorization grants. RFC7522
Council of the European Union (2016) General data protection regulation. Available: http://data.consilium.europa.eu/doc/document/ST-5419-2016-INIT/en/pdf
Eremija, M.S., Ilic, N.R., Cvetanovic, M., Protic, J., Radivojevic, Z. (2017) Identity provider deployment based on container technology. u: 2017 25th Telecommunication Forum (TELFOR), Institute of Electrical and Electronics Engineers (IEEE), str. 1-4
Hämmerle, L., Sabatino, R., i dr. (2016) (04.22), (GN4-1-16-37dcb3), https://www.geant.org/Resources/Documents/Comparison-of-AAIs-for-Research_White-Paper_v1.0.pdf
Karl, M., Kane, S. (2015) Docker up and running (vol. 1). https://www.oreilly.com/
Linden, M., Schofield, B., Milsom, S. (2013) eduGAIN policy framework constitution (GN3-10-326 v2. 0). https://technical.edugain.org/doc/GN3-10-326%20eduGAIN_constitution%20v2.O.pdf
Software (2015) Defined Networking (SDN): Layers and Architecture Terminology. RFC 7426
The Linux Foundation Open container initiative charter. https://www.opencontainers.org/about/governance