Authorization for a Multi-Cloud System

This is a project design I am currently working on to consume SPIFFE(Secure Production Identity Framework For Everyone) bootstrapped trust and identification to provide authorization in a dynamically scaling, heterogeneous system, inspired by Mr. Prabath Siriwardena from WSO2 and under the supervision of Prof. Gihan Dias from University of Moratuwa. An enterprise system running across multiple clouds, as in the hybrid cloud, is an obvious example that will be benefitted from this. The objective is to open doors for the SPIFFE standard based systems to co-exist with rest of the systems with minimal effort, without compromising on security aspects while having an authorization solution based on SPIFFE.
What is SPIFFE? In brief, it is a trust bootstrapping and identification framework, submitted as a standard and accepted by CNCF(Cloud Native Computing Foundation)[1]. As of now, this standard has two main implementations as SPIRE and Istio[2], a platform that supports service mesh archit…

GSoC2012 with Apache Wookie

Today I got the news of the proposal I submitted to GSoC2012, is accepted. I consider it a great achievement and so excited to make the project a success. With the nature of the program it is no wonder anyone get excited about it. Firstly having the chance to work for a recognized company(In my case Apache) and the global reputation a gsocer can have is so motivational. Also getting started to work with a strange team, getting to know them, work remotely, add good experience to life and high professional value as I guess. It's amazing to work with the community. Also it is a great chance to broaden the horizons in technical skills while having guidance from an expert in the area, having hands on it.

Also I'm glad to share about my project, which is to implement 'W3C XML Digital Signatures for Widgets Specification in Apache Wookie. Computer Security has become the favorite field of me followed by Big data after my internship at WSO2 Lanka(pvt) Ltd, with experience I had there, relevantly. So no wonder when I saw this idea in the page, I knew it is ideal for me. Also Wookie is an interesting project currently at incubating stage at Apache. It is based on W3C widget specification and also include widgets that use extended APIs such as OpenSocial and Google Wave Gadgets. It will soon graduate with the passionate developer community and glad I can contribute actively. My mentor Scott Wilson is a very friendly and helpful person who guided me in submitting a better proposal and who will be guiding me through out GSoC2012. Here is a blogpost by Scott mentioning of Wookie acceptance to Apache Incubator.

Hoping for a fruitful time ahead and to become a gsocer while contributing to open source world!!! Thank you GSoC organizers, Wookie community, Department of Computer Science and Engineering,University of Moratuwa and WSO2 for the knowledge I gathered and everyone who helped me in my way!!!

The completed project details are can be found at [1].
[1] -


Popular posts from this blog

Signing SOAP Messages - Generation of Enveloped XML Signatures

How to send an HTML email in Java (Using Google SMTP Server)

How to convert WSDL to Java