Cross-domain authentication scheme based on consortium blockchain
To solve the security problems of traditional cross-domain authentication schemes, such as single point of failure and excessive dependence on third parties, a cross-domain authentication scheme was proposed which combines IBC and consortium blockchain.The consortium blockchain was introduced into t...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2022-06-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022036 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841529703421181952 |
|---|---|
| author | Jianlin NIU Zhiyu REN Xuehui DU |
| author_facet | Jianlin NIU Zhiyu REN Xuehui DU |
| author_sort | Jianlin NIU |
| collection | DOAJ |
| description | To solve the security problems of traditional cross-domain authentication schemes, such as single point of failure and excessive dependence on third parties, a cross-domain authentication scheme was proposed which combines IBC and consortium blockchain.The consortium blockchain was introduced into the cross-domain authentication scene by designing the layered cross-domain authentication architecture including entity layer, proxy layer, blockchain layer and storage layer.In the storage layer, abstract data format was designed and stored in the chain, and the complete data corresponding to the abstract data was stored in the interplanetary file system under the chain.This safe and reliable on-chain distributed storage scheme solved the limitation problem of on-chain storage caused by introduction of blockchain.Besides, an identity management scheme based on permanent autonomy identity and temporary identity was proposed to solve the challenges that it is difficult to cancel identity and to supervise anonymous identity after combining IBC system.On this basis, complete cross-domain full authentication, re-authentication and key negotiation protocols were designed to implement the cross-domain authentication process.In terms of security, SVO logic was used to analyze the authentication protocol, and the security of the cross-domain authentication protocol was proved.The performance of calculation overhead, communication overhead and consortium blockchain were tested and analyzed by simulation.Analysis results showed that the protocol satisfies the security requirements and has improved calculation overhead performance on both server and client sides, comparing with other related works.In terms of communication overhead, it also has better performance.The query/write latency was tested by the consortium blockchain tool, and the results showed that the scheme has good usability. |
| format | Article |
| id | doaj-art-5fd71f9a2d99443a88e8c5fe3d62cdba |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2022-06-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-5fd71f9a2d99443a88e8c5fe3d62cdba2025-01-15T03:15:48ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2022-06-01812313359572597Cross-domain authentication scheme based on consortium blockchainJianlin NIUZhiyu RENXuehui DUTo solve the security problems of traditional cross-domain authentication schemes, such as single point of failure and excessive dependence on third parties, a cross-domain authentication scheme was proposed which combines IBC and consortium blockchain.The consortium blockchain was introduced into the cross-domain authentication scene by designing the layered cross-domain authentication architecture including entity layer, proxy layer, blockchain layer and storage layer.In the storage layer, abstract data format was designed and stored in the chain, and the complete data corresponding to the abstract data was stored in the interplanetary file system under the chain.This safe and reliable on-chain distributed storage scheme solved the limitation problem of on-chain storage caused by introduction of blockchain.Besides, an identity management scheme based on permanent autonomy identity and temporary identity was proposed to solve the challenges that it is difficult to cancel identity and to supervise anonymous identity after combining IBC system.On this basis, complete cross-domain full authentication, re-authentication and key negotiation protocols were designed to implement the cross-domain authentication process.In terms of security, SVO logic was used to analyze the authentication protocol, and the security of the cross-domain authentication protocol was proved.The performance of calculation overhead, communication overhead and consortium blockchain were tested and analyzed by simulation.Analysis results showed that the protocol satisfies the security requirements and has improved calculation overhead performance on both server and client sides, comparing with other related works.In terms of communication overhead, it also has better performance.The query/write latency was tested by the consortium blockchain tool, and the results showed that the scheme has good usability.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022036cross-domain authenticationconsortium blockchainidentity-based cryptographyidentity management |
| spellingShingle | Jianlin NIU Zhiyu REN Xuehui DU Cross-domain authentication scheme based on consortium blockchain 网络与信息安全学报 cross-domain authentication consortium blockchain identity-based cryptography identity management |
| title | Cross-domain authentication scheme based on consortium blockchain |
| title_full | Cross-domain authentication scheme based on consortium blockchain |
| title_fullStr | Cross-domain authentication scheme based on consortium blockchain |
| title_full_unstemmed | Cross-domain authentication scheme based on consortium blockchain |
| title_short | Cross-domain authentication scheme based on consortium blockchain |
| title_sort | cross domain authentication scheme based on consortium blockchain |
| topic | cross-domain authentication consortium blockchain identity-based cryptography identity management |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022036 |
| work_keys_str_mv | AT jianlinniu crossdomainauthenticationschemebasedonconsortiumblockchain AT zhiyuren crossdomainauthenticationschemebasedonconsortiumblockchain AT xuehuidu crossdomainauthenticationschemebasedonconsortiumblockchain |