Integrated authentication and authorization for cloud data lakes
A method and SaaS-based computing platform implemented by a service provider provide for authentication and authorization services in association with the provisioning of a cloud data lake. According to the method, a data lake is provisioned across one or more cloud computing services, preferably wi...
Saved in:
Main Authors | , , |
---|---|
Format | Patent |
Language | English |
Published |
20.10.2022
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | A method and SaaS-based computing platform implemented by a service provider provide for authentication and authorization services in association with the provisioning of a cloud data lake. According to the method, a data lake is provisioned across one or more cloud computing services, preferably within a private data cloud. The data lake comprises at least a first service and a second service, wherein the first and second services use different authentication mechanisms. An authentication framework including an identity and access manager (e.g., Keycloak provisioned to support both OpenLDAP and Kerberos) is configured to enable a permitted user to use a single identity to access the first and second services in the data lake. An authorization framework also is provisioned in association with the authentication framework. The authorization framework configured to apply authorization or data access rules to the single identity across the first and second services in the data lake. |
---|---|
Bibliography: | Application Number: US202117563436 |