Page 862 - Cloud computing: From paradigm to operation
P. 862
5 Intercloud and interoperability
Table I.3 – Selecting CSP by reputation-based trust evaluation
Figure (optional)
Pre-conditions (optional) – All of CSP2(SaaS), CSP3(SaaS) and CSP4(SaaS) can provide the services CSP1
needs.
– CSP1 has an internal trust evaluation system.
– There is a third-party trust evaluation system.
Post-conditions (optional) – CSP1 establishes a trust relationship with CSP2(SaaS) and provides service to
the CSC with an inter-cloud intermediary pattern.
Derived requirements – Inter-cloud reputation-based trust evaluation (refer to clause 7.3).
I.4 Use case of SSO authentication within inter-cloud environment
This use case illustrates SSO authentication in inter-cloud. The federation pattern of inter-cloud used to
illustrate the use case is an example only.
Table I.4 – SSO authentication within inter-cloud environment
Title SSO authentication within inter-cloud environment
Description – The CSC requests SaaS service X from CSP1(SaaS);
– The CSPs(SaaS) form inter-cloud federation pattern among them. The service X is integrated
from services provided by CSP1(SaaS), CSP2(SaaS) and CSP3(SaaS);
– Each CSP has its own identity management system, and the CSC is not willing to be
authenticated more than one time when accessing SaaS service X;
– There is a trusted third-party SSO system which provides a certification service to certify
credentials on behalf of all parties in the federation. With this SSO mechanism, the CSC is able
to access various SaaS services offered by different CSPs once it is successfully authenticated by
any member of the federation;
– Each CSP supports a periodical verification mechanism to check if the CSC still has the privilege
to access the CSP's service.
Roles CSC, CSPs(SaaS).
854
