eprintid: 4066
rev_number: 10
eprint_status: archive
userid: 291
dir: disk0/00/00/40/66
datestamp: 2020-12-04 08:21:42
lastmod: 2020-12-04 08:23:04
status_changed: 2020-12-04 08:21:42
type: article
metadata_visibility: no_search
creators_name: Lin, Ying-Dar
creators_name: Truong, Duc Tai
creators_name: Lai, Yuan-Cheng
creators_name: Li, ChiYu
creators_name: Ali, Asad
creators_name: Dinh, Thi Thai Mai
creators_id: ydlin@cs.nctu.edu.tw
creators_id: taitd95@gmail.com
creators_id: laiyc@cs.nctu.edu.tw
creators_id: lichiyu@gmail.com
creators_id: ali.eed06g@nctu.edu.tw
creators_id: dttmai@vnu.edu.vn
title: Proxy-based Federated Authentication: A Transparent Third-party Solution for Cloud-Edge Federation
ispublished: inpress
subjects: Communications
subjects: ECE
subjects: ElectronicsandComputerEngineering
divisions: avitech
divisions: fac_fet
abstract: Cloud and Edge computing paradigms provide storage and computing services to the traditional and Internet of Things devices. In the past few years, the number IoT devices has increased exponentially and different devices have different requirements due to heterogeneity. Hence, one computing platform is not suitable to fulfill the requirements of all IoT devices. In this case, federation of different computing paradigms comes into play where a user or a device having an account on one computing platform can access the services provided by the other computing platform, federated with the first computing platform, without having to create another account. There are multiple research problems which arise due to the federation among which authentication is the most important one. This work addresses the third-party authentication problem in federated cloud and 3GPP edge systems where a user (first party) having an account on the cloud or edge (second party) needs to access services in the edge or cloud (third party). Related studies in the literature solve these issues by proposing new protocols or by adding new components in the 3GPP system. In this study, we propose the standard-compliant third-party authentication approach, which is the combination of the existing authentication protocols in the cloud and the 3GPP network. we use a federated proxy between cloud and the 3GPP network to solve the problem of message mismatch in the authentication protocols of cloud and edge. The experimental results illustrate that, as compared with the combination of OpenID Connect and EPS-AKA, third-party authentication of edge-to-cloud and cloud-to-edge using federated proxy can reduce the authentication delay time by 27.7% and 37.9% respectively and it is also standard compliant.
date: 2020
date_type: published
publisher: IEEE
full_text_status: none
publication: IEEE Network
refereed: TRUE
issn: 0890-8044
citation:   Lin, Ying-Dar and Truong, Duc Tai and Lai, Yuan-Cheng and Li, ChiYu and Ali, Asad and Dinh, Thi Thai Mai  (2020) Proxy-based Federated Authentication: A Transparent Third-party Solution for Cloud-Edge Federation.  IEEE Network .    ISSN 0890-8044    (In Press)