nach oben

Erschienen in:

2020 | OriginalPaper | Buchkapitel

An Open Identity Authentication Scheme Based on Blockchain

verfasst von : Yuxiang Chen, Guishan Dong, Yao Hao, Zhaolei Zhang, Haiyang Peng, Shui Yu

Erschienen in: Algorithms and Architectures for Parallel Processing

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

With the development of Public Key Infrastructure (PKI), there implements lots of identity management systems in enterprises, hospitals, government departments, etc. These systems based on PKI are typically centralized systems. Each of them has their own certificate authority (CA) as trust anchor and is designed according their own understanding, thus formalizing lots of trust domains isolated from each other and there is no unified business standards with regard to trust delivery of an identity system to another, which caused a lot of inconveniences to users who have cross-domain requirements, for example, repeatedly register same physical identity in different domains, hard to prove the validity of an attestation issued by a domain to another. Present PKI systems choose solutions such as Trust list, Bridge CA or Cross-authentication of CAs to break trust isolation, but practice shows that they all have obvious defects under existing PKI structure. We propose an open identity authentication structure based on blockchain and design 3 protocols including: Physical identity registration protocol, virtual identity binding protocol and Attribution attestation protocol. The tests and security analysis show that the scheme has better practice value compared to traditional ones.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Improving Performance of Batch Point-to-Point Communications by Active Contention Reduction Through Congestion-Avoiding Message Scheduling

Nächstes Kapitel RBAC-GL: A Role-Based Access Control Gasless Architecture of Consortium Blockchain

ITU-T: NGN Identity Management Framework. http://www.itu.int/rec/T-REC-Y.2720-200901-I. Accessed 4 July 2018

Allen, C.: The Path to Self-Sovereign Identity. http://www.coindesk.com/path-self-sovereign-identity/. Accessed 4 July 2018

UK Government: Identity Proofing and Verification of an Individual. https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/370033/GPG_45_. Accessed 4 July 2018

Guel, M.D.: A framework for choosing your next generation authentication/authorization system. Information Security Technical Report 7.1, pp. 63–78 (2002). https://doi.org/10.1016/S1363-4127(02)00107-3

Adams, C., Lioyd, S.: Understanding PKI: Concepts, Standards and Deployment Considerations, 2nd edn. Addison Wesley Professional, Reading (2002)

Myers, M., Ankney, R., Malpani, A., et al.: X.509 Internet Public Key Infrastructure: Online Certificate Status Protocols. EITFRFC 2560. PKIX Working Group (1999)

Weimerskirch, A., Thonet, G.: A distributed light-weight authentication model for ad-hoc networks. In: Kim, K. (ed.) ICISC 2001. LNCS, vol. 2288, pp. 341–354. Springer, Heidelberg (2002). https://doi.org/10.1007/3-540-45861-1_26CrossRef

Ma, M., Meinel, C.: A proposal for trust model: independent trust intermediary service (ITIS). In: Proceedings of the ICWI 2002, pp. 785–790 (2002)

Thompson, M.R., Olson, D., Cowles, R., et al.: CA-Based trust model for grid authentication and identity delegation. In: Proceedings of the GGF7 (2003)

10.

Comodo: PKI-Public Key Infrastructure - What is it?. https://www.comodo.com/resources/small-business/digital-certificates1.php. Accessed 4 July 2018

11.

Peng, B., Liu, J., Gong, Z., et al.: Cross-domain Trust Model Based on Bridge CA. Ship Electronic Engineering (2017)

12.

Leiba, B.: OAuth web authorization protocol. IEEE Internet Comput. 16(1), 74–77 (2012)CrossRef

13.

FIDO Alliance: The FIDO Alliance specification. http://fidoalliance.org. Accessed 4 July 2018

14.

Lindemann, R., Baghdasaryan, D., Tiffany, E., et al.: FIDO UAF Protocol Specification v1.0: FIDO Alliance Proposed Standard. https://fidoalliance.org/spces/fido-uaf-v1.0-ps-20141208/fido-uaf-protocol-v1.0-ps-20141208.html. Accessed 4 July 2018

15.

Lindemann, R., Baghdasaryan, D., Tiffany, E., et al.: FIDO UAF Protocol Specification v1.0: FIDO Alliance Proposed Standard. https://en.bitcoin.it/wiki/Block. Accessed 4 July 2018

16.

Kexin, H.: Research on FIDO UAF Authentication Protocols Security. University of Science and Technology of China (2016)

17.

Satoshi, N.: Bitcoin: A Peer-to-Peer Electronic Cash System (2009). http://bitcoin.org/bitcoin.pdf. Accessed 4 July 2018

18.

Baars, D.: Towards Self-Sovereign Identity using Blockchain Technology. http://essay.utwente.nl/71274/1/Baars_MA_BMS.pdf. Accessed 4 July 2018

19.

Antonopoulos, A.M.: Mastering Bitcoin: Unlocking Digital Crypto-Currencies. O’Reilly Media Inc, Sebastopol (2014)

20.

Bergan, T., Anderson, O., Devietti, J., et al.: CryptoNote v 2.0. http://xueshu.baidu.com/s?wd=paperuri. Accessed 4 July 2018

21.

Haber, S., Kaliski, B., Stornetta, S.: How do Digital Time-stamps Support Digital Signatures. http://www.x5.net/faqs/crypto/q108. html. Accessed 4 July 2018

22.

Hyperledger: Project Charter. www.hyperledger.org/about/charter. Accessed 4 July 2018

23.

Canetti, R., Shahaf, D., Vald, M.: Universally Composable Authentication and Key-Exchange with Global PKI. http://xueshu.baidu.com/s?wd=Universally+composable+authentication+and+key-exchange+with+global+PKI. Accessed 4 July 2018

24.

Canetti, R., Krawczyk, H.: Universally composable notions of key exchange and secure channels. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 337–351. Springer, Heidelberg (2002). https://doi.org/10.1007/3-540-46035-7_22CrossRef

25.

Canetti, R.: Universally composable signature, certification, and authentication. In: CSFW, p. 219. IEEE Computer society (2004)

26.

Maurer, U., Tackmann, B., Coretti, S.: Key exchange with unilateral authentication: composable security definition and modular protocol design. IACR Cryptology ePrint Archive 2013, 555 (2013)

27.

Kohlweiss, M., Maurer, U., Onete, C., Tackmann, B., Venturi, D.: (De-)Constructing TLS. IACR Cryptology ePrint Archive 2014, 20 (2014)

28.

Weinberg, J.T.: Biometric identity. Soc. Sci. Electron. Publ. 59(1), 30–32 (2016)

29.

Ding, W., Ping, W.: Two birds with one stone: two-factor authentication with security beyond conventional bound. IEEE Trans. Dependable Secure Comput. PP(99), 1 (2016)

Titel: An Open Identity Authentication Scheme Based on Blockchain
verfasst von: Yuxiang Chen
Guishan Dong
Yao Hao
Zhaolei Zhang
Haiyang Peng
Shui Yu
Verlag: Springer International Publishing
Buch: Algorithms and Architectures for Parallel Processing
Print ISBN: 978-3-030-38990-1

Electronic ISBN: 978-3-030-38991-8

Copyright-Jahr: 2020
DOI: https://doi.org/10.1007/978-3-030-38991-8_28

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner