We describe the research undertaken in the six month JISC/EPSRC funded My Private\r\nCloud project, in which we built a demonstration cloud file storage service that\r\nallows users to login to it, by using their existing credentials from a configured\r\ntrusted identity provider. Once authenticated, users are shown a set of accounts that\r\nthey are the owners of, based on their identity attributes. Once users open one of\r\ntheir accounts, they can upload and download files to it. Not only that, but they can\r\nthen grant access to their file resources to anyone else in the federated system,\r\nregardless of whether their chosen delegate has used the cloud service before or\r\nnot. The system uses standard identity management protocols, attribute based\r\naccess controls, and a delegation service. A set of APIs have been defined for the\r\nauthentication, authorisation and delegation processes, and the software has been\r\nreleased as open source to the community. A public demonstration of the system is\r\navailable online.
Loading....