[WG-UMA] Cloud-enabled Enterprise API Security & UMA

Domenico Catalano domenico.catalano at oracle.com
Fri Jun 15 10:25:45 EDT 2012


here is a new scenario with possible implication for Cloud-enabled Enterprise use case:

The Organization X decides to extend own business leveraging a Cloud computing platform and the mobile.
Basically, they decide to expose (RESTful) APIs for mobile application integration, to allow external mobile apps access to the platform.
They protect the API platform using CopMonkey's Authorization Manager. 
They develop a mobile app that use the API platform.
A Requesting Party (Bob) downloads and installs the mobile app on his smartphone.
Any interaction with the API platform will be authorized by the AM, which is able to verify the claims provided by the Requester (on behalf of the Requesting Party).

Does it make sense ?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://kantarainitiative.org/pipermail/wg-uma/attachments/20120615/f6dbe7f3/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PastedGraphic-1.png
Type: image/png
Size: 35530 bytes
Desc: not available
Url : http://kantarainitiative.org/pipermail/wg-uma/attachments/20120615/f6dbe7f3/attachment-0001.png 

More information about the WG-UMA mailing list