# Dynamic Multiparty Authentication of Data Analytics Services within   Cloud Environments

**Authors:** Hussain Al-Aqrabi, Richard Hill

arXiv: 1901.03051 · 2019-01-11

## TL;DR

This paper presents a novel secure multiparty authentication framework enabling dynamic, trusted collaboration among cloud services and users across different security realms, enhancing security and performance in multi-cloud and IoT scenarios.

## Contribution

It introduces a new authentication framework that distributes a common session secret to establish trust among participants across security realms, improving multi-cloud security interactions.

## Key findings

- Framework enables secure, dynamic interaction across security realms.
- Improves authentication performance in multiparty cloud sessions.
- Applicable to IoT and other multi-realm scenarios.

## Abstract

Business analytics processes are often composed from orchestrated, collaborating services, which are consumed by users from multiple cloud systems (in different security realms), which need to be engaged dynamically at runtime. If heterogeneous cloud systems located in different security realms do not have direct authentication relationships, then it is a considerable technical challenge to enable secure collaboration. In order to address this security challenge, a new authentication framework is required to establish trust amongst business analytics service instances and users by distributing a common session secret to all participants of a session. We address this challenge by designing and implementing a secure multiparty authentication framework for dynamic interaction, for the scenario where members of different security realms express a need to access orchestrated services. This novel framework exploits the relationship of trust between session members in different security realms, to enable a user to obtain security credentials that access cloud resources in a remote realm. The mechanism assists cloud session users to authenticate their session membership, thereby improving the performance of authentication processes within multiparty sessions. We see applicability of this framework beyond multiple cloud infrastructure, to that of any scenario where multiple security realms has the potential to exist, such as the emerging Internet of Things (IoT).

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1901.03051/full.md

## Figures

7 figures with captions in the complete paper: https://tomesphere.com/paper/1901.03051/full.md

## References

35 references — full list in the complete paper: https://tomesphere.com/paper/1901.03051/full.md

---
Source: https://tomesphere.com/paper/1901.03051