Logo des Repositoriums
 

Flexible Method for Supporting OAuth 2.0 Based Security Profiles in Keycloak

dc.contributor.authorNorimatsu, Takashi
dc.contributor.authorNakamura, Yuichi
dc.contributor.authorYamauchi, Toshihiro
dc.contributor.editorRoßnagel, Heiko
dc.contributor.editorSchunck, Christian H.
dc.contributor.editorMödersheim, Sebastian
dc.date.accessioned2022-06-07T07:04:33Z
dc.date.available2022-06-07T07:04:33Z
dc.date.issued2022
dc.description.abstractKeycloak is identity and access control open-source software. When used for open banking, where many OAuth 2.0 clients need to be managed and a different OAuth 2.0-based security profile needs to be applied to each type of API, the problem of increasing managerial costs by the Keycloak administrator occurs because Keycloak's security profile logic depends on the client settings, and the logic cannot be changed for each client's request. This paper proposes its solution by separating the security profile logic from the client settings, and by changing the security profile for each client's request based on the content of the request, and actual security profiles Financial-grade API (FAPI) are implemented to Keycloak. The paper calculates managerial costs in both the existing and proposed methods in scenarios managing FAPI, and compares the results. The comparison shows that using the proposed method reduces costs. Our implementations are contributed to Keycloak.en
dc.identifier.doi10.18420/OID2022_07
dc.identifier.isbn978-3-88579-719-7
dc.identifier.pissn1617-5468
dc.identifier.urihttps://dl.gi.de/handle/20.500.12116/38707
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofOpen Identity Summit 2022
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-305
dc.subjectOAuth 2.0
dc.subjectSecurity Profile
dc.subjectFAPI
dc.subjectOpen Source
dc.subjectKeycloak
dc.subjectOpen Banking
dc.titleFlexible Method for Supporting OAuth 2.0 Based Security Profiles in Keycloaken
dc.typeText/Conference Paper
gi.citation.endPage98
gi.citation.publisherPlaceBonn
gi.citation.startPage87
gi.conference.date07.-08. July 2022
gi.conference.locationCopenhagen, Denmark
gi.conference.sessiontitleRegular Research Papers

Dateien

Originalbündel
1 - 1 von 1
Vorschaubild nicht verfügbar
Name:
proceedings-07.pdf
Größe:
467.72 KB
Format:
Adobe Portable Document Format