with Tags: cloud X
I have been pondering over cloud and the authentication schemes that can play in - especially in consideration to public clouds..Every organization will like to re-use their existing authentication schemes and auth data over public cloud to enable and work seamlessly with their existing IT infrastructure. This will force test the flexibility and strength of authentication schemes which are traditionally deployed only within intranet....One would expect auth data stored in KDC, LDAP, Active Directory, etc to touch the new un-ventured grounds of public networks...While TLS will be an obvious choice , but it will be intresting to see how protocols like Kerberos ( my favorite authentication mechanism) evolve in this Era .. especially with a special consortium working around its future ..I also suspect a lot more use of SSH tunneling - a lay mans VPN, - but Good enough - being used in such models - .interesting times..
Well as Cloud starts to flavor in the marketplace with its private and public essence - where do we really stop over consolidation of computing and storage ?We have been weaving all Data Centers spread across geos to formulate a true global cloud embossing it with high availability and performance ( I better be ssshhh with security over clouds in todays time :-).
But what if the planet Black's Out, what if all the data centers formulating our Clouds hit disaster's,- how would one define availability in these cases? I know, I know - I am being Extreme - but its snowing bad out there and I am force to think something that will heat the chilled brain.
Up there, are a dozens of Satellite's laying eggs ( well I know they are busy doing some critical task) - but then lets make the "Cloud" word a reality and weave even the Satellite that are umbrellaed under them.
I know my fellow critics will shoot me with ROI bullets - but there will be times and this blog is an evidence .. ;-)
"If I were GOD, I would Patent all the Diseases & Dreadfulness to protect from any Human Infringement" - Sandeep
I was wondering what are the 5 things in technology
1. Cloud Computing in General
Having understood a many authentication system I must say that Kerberos stands apart , for many good reasons and needless to state. One of the hindrance though is its direct applicability in WWW, though the MIT folks and a lot of Kerberos supporters are doing a good job to gap that up. One thing that that's worth a look is at Kerberos applicability to the Cloud,
and probably MIT consortium can hear from this and have a paper release over it. (unless I have not checked on the latest paper releases which covers it)
There are already customers out there who have their entire authentication systems Kerberos enabled. But to gain from the cost efficient model of Cloud computing, a lot of business would like to expand their business via it. So it becomes important on how practitioners can have their existing kerberized applications work seamlessly in a cloud environment. This springs out a lot many issues, thoughts as well as ways to achieve it. One of the challenges could be how can customer applications on a Public Cloud be enabled to use Kerberos authentication , where the customer KDC is within his/her intranet.
Is SaaS enabled KDC one of the solution to it ?
I think so, though there can be many solutions but they all need to be creased out by lot of us via blogs/articles/papers so that the practitioners can benefit.
I want to see Kerberos on Cloud Number 9 in the World of Clouds....well its the end user and businesses to benefit as it will derive a secure cloud environment to them