Abstract

Cloud computing provides people the way to share distributed resources and services that belong to different organizations or sites. Since cloud computing shares distributed resources via the network in an open environment, it makes security problems a major burden while developing and deploying cloud computing applications. This paper proposes a model which will make use of the oPass, a user authentication protocol resistant to password stealing and password reuse attacks, to register and authenticate a system in an organization followed by deployment of a key generator algorithm sent to the client system by syncing a plugin that will keep generating keys in regular time intervals. The same algorithm will be running on the cloud server and the keys generated on the server will be compared to the client’s keys at regular time intervals. All systems of the organization will have their respective algorithms and thus the cloud server will be able to identify authenticated systems. A method has been proposed to build a trusted computing environment for cloud computing system by integrating the trusted computing platform into cloud computing system along with oPass. In this model, some important security services, including authentication, authorization, confidentiality and integrity, are provided in cloud computing system.