Safe box cloud authentication using TLS extesion

Abstract

Although the great success and the popularity of Cloud computing, an important number of challenges and threats are inherent to this new computing paradigm. One of the serious challenges in Cloud service architecture is managing authentication. Our goal in this paper is to present a flexible authentication solution based on TLS standard and asynchronous one time password mechanism. Our purpose is to be as close as possible to the TLS standard treatment and calculation of different security settings. The addition of a strong password (HOTP) preserves a maximum of operational reliability to TLS protocol. We also offer the same strength client authentication method as digital certificate. In this paper we will also demonstrate the efficiency of the proposed framework as an authentication alternative in case of private Safe Box Cloud Service.