Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/buehler/mse-project-thesis-2

Documentation, Description and Report of the MSE Project Thesis 2
https://github.com/buehler/mse-project-thesis-2

Last synced: 29 days ago
JSON representation

Documentation, Description and Report of the MSE Project Thesis 2

Host: GitHub
URL: https://github.com/buehler/mse-project-thesis-2
Owner: buehler
Created: 2021-09-20T16:49:35.000Z (about 3 years ago)
Default Branch: main
Last Pushed: 2022-03-07T10:19:47.000Z (over 2 years ago)
Last Synced: 2024-05-02T05:48:00.657Z (7 months ago)
Language: Lua
Homepage: https://buehler.github.io/mse-project-thesis-2/report.pdf
Size: 5.42 MB
Stars: 0
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- Citation: CITATION.cff

Awesome Lists containing this project

README

# Common Identities in a Distributed Authentication Mesh

> Definition and Implementation of a Common Identity for Secure Transport

Spring Semester 2021\
University of Applied Science of Eastern Switzerland (OST)

## Abstract

The "Distributed Authentication Mesh" is a concept to dynamically convert authentication information (such as access tokens from OpenID Connect) to other authentication schemes (like HTTP Basic). In contrast to "Security Assertion Markup Language" (SAML), the concept does not require all participants to share the same authentication scheme. It eliminates the requirement to introduce code changes into existing applications such that they can support other authentication schemes.

A central part of the mesh is the "common language format". This format is eminently important to the mesh because it delivers the users' identity to other participants. While the previous project included the concept of the mesh and implemented a Proof of Concept for the modification of HTTP headers, it did not provide a definition nor implementation for the common language format.

This project targets the topic of the common language and analyzes several possibilities for such a format. The project also defines the objects that must be transmitted between mesh participants. The concept of the mesh is extended with a "Rule Engine" that improves the security and versatility of the mesh. Additionally, this project implements the "Distributed Authentication Mesh" as open-source software such that it can be operated on Kubernetes. The conclusion provides further information about the project and possible topics of follow-up work.

## Thanks

I would like to express my appreciation to [Mirko Stocker](https://github.com/misto) for guiding and reviewing this work. Furthermore, special thanks to [Florian Forster](https://github.com/fforootd), who provided the initial inspiration and technical expertise of the topic.

## Full Report

To view the full project report please visit:
[Common Identities in a Distributed Authentication Mesh](https://buehler.github.io/mse-project-thesis-2/report.pdf)