Security Analysis of the OpenID Connect Protocol Integration with an OpenStack Cloud Using an External IdP

Several Internet services require different pairs of usernames and passwords in order to authenticate their users. The password management process is time consuming and sus-ceptible to security issues. Moreover, cloud computing solutions already run into related problems. Single Sign-On is a way to handle all the multiple accounts that a user may have and OpenID Connect has a great adoption as a Single Sign-On solution. As well as OpenID Connect, OpenStack is growing as a cloud software due its large community and because its open source code. In this sense, our goal is to analyze the security aspects related to the usage of OpenID Connect, a single sign-on mechanism, in cloud computing solutions based on OpenStack using a external Identity Provider.