2.5 Authentication in Corente Cloud Services Exchange

A significant feature of the Corente Cloud Services Exchange approach to authentication is the automated distribution of authentication materials.

Primary identification between the Corente SCP and a customer is accomplished by a Corente Cloud Services Exchange Gateway-specific, 1024-bit randomly generated shared secret. The secret is securely distributed to the customer using strong cryptographic protocols (SSL authenticated with Corente Cloud Services Exchange's VeriSign certificate).

Secondary authentication is performed using a 1024-bit key. The public/private key pair is generated locally by the gateway at system initialization, and the public key portion is securely transmitted to Corente Cloud Services Exchange where it is bound into a certificate and stored at the Corente SCP. Corente Cloud Services Exchange never generates, receives, or escrows private key information from any customers.

Customers have control of their keys and can regenerate them at any time using App Net Manager.

Copyright © 2016, 2017, Oracle and/or its affiliates. All rights reserved. Legal Notices