Integrated authentication and authorization for cloud data lakes

A method and SaaS-based computing platform implemented by a service provider provide for authentication and authorization services in association with the provisioning of a cloud data lake. According to the method, a data lake is provisioned across one or more cloud computing services, preferably wi...

Full description

Saved in:
Bibliographic Details
Main Authors Mankekar, Durgesh, Piekos, John, Bradford, Justin
Format Patent
LanguageEnglish
Published 20.10.2022
Subjects
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online AccessGet full text

Cover

More Information
Summary:A method and SaaS-based computing platform implemented by a service provider provide for authentication and authorization services in association with the provisioning of a cloud data lake. According to the method, a data lake is provisioned across one or more cloud computing services, preferably within a private data cloud. The data lake comprises at least a first service and a second service, wherein the first and second services use different authentication mechanisms. An authentication framework including an identity and access manager (e.g., Keycloak provisioned to support both OpenLDAP and Kerberos) is configured to enable a permitted user to use a single identity to access the first and second services in the data lake. An authorization framework also is provisioned in association with the authentication framework. The authorization framework configured to apply authorization or data access rules to the single identity across the first and second services in the data lake.
Bibliography:Application Number: US202117563436