A Cross Domain Authentication Scheme Based on Distributed Key and BLS Signature

doi:10.11871/jfdc.issn.2096-742X.2024.05.002

Abstract

Abstract:

[Objective] In order to solve the problem of node identity authentication in the cross domain traceability system of industrial Internet, this paper proposes Dion, a cross domain authentication scheme based on the distributed key, which aims to overcome the centralization and scalability problems of the certificate authority in the current cross domain authentication scheme. [Methods] Based on the DID decentralized identity technology, this study uses the distributed key generation technology and BLS signature algorithm to build a certificate issuance model, establishes the revocation and update mechanism of user identity certificate through the contract, and uses the certificate to realize cross domain traceability identity authentication. [Results] Experiments on the Ethereum platform simulated the application of the scheme in the cross-domain traceability authentication process. The results show that the scheme realizes the decentralization of the certification authority on the premise of meeting the authentication requirements of cross domain traceability of the industrial Internet, and enhances the system's resistance to the single point of failure. [Conclusions] The DID-based authentication model shows significant potential and application prospects in the field of blockchain technology and provides effective authentication for the interaction between nodes. However, further research is needed in the aspects of authentication efficiency, identity update, and revocation.

Key words: blockchain, cross domain authentication, distributed key, cross domain traceability

ZHENG Qiding, WANG Hexiang, ZHANG Hongwei. A Cross Domain Authentication Scheme Based on Distributed Key and BLS Signature[J]. Frontiers of Data and Computing, 2024, 6(5): 13-23, https://cstr.cn/32002.14.jfdc.CN10-1649/TP.2024.05.002.

Figures/Tables 7

Fig.1

Fig.2

Fig.3

Fig.4

Fig.5

Fig.6

Table 1

References 21

[1]	CHEN JY. Responsible sourcing and supply chain tr-aceability[J]. International Journal of Production E-conomics, 2022, 248: 108462.
[2]	GUO H, YU X. A survey on blockchain technology and its security[J]. Blockchain: research and applications, 2022, 3(2): 100067.
[3]	刘思瀚, 徐石成, 何光宇. 基于区块链技术的电动汽车电池溯源系统构建[J]. 数据与计算发展前沿, 2020, 2(5): 76-83.
[4]	DUTTA P, CHOI TM, SOMANI S, et al. Blockchain technology in supply chain operations: Applications, challenges and research opportunities[J]. Transportation research part e: Logistics and transportation review, 2020, 142: 102067.
[5]	JIN W, ZHENG M, LIU P. Design of Multi-Chain Traceability Model for Pepper Products Based on Traceability Code[J]. Applied Sciences 2024, 14(9):3809.
[6]	HU X, HU K, WANG S, et al. A master-slave chain model for multiple blockchains[C]// Proceedings of th-e 2020 3rd International Conference on Blockchain Technology and Applications, 2020, 14: 12-18.
[7]	钟子岳, 朱长昊, 李浚哲, 等. 基于区块链的数据要素可信流通技术综述[J]. 数据与计算发展前沿, 2023, 5(5): 46-62.
[8]	ZHANG H, CHEN X, LAN X, et al. BTCAS: A blockchain-based thoroughly cross-domain authentication scheme[J]. Journal of Information Security and Applications, 2020, 55: 102538.
[9]	ALI G, AHMAD N, CAO Y, et al. xDBAuth: Blockchain based cross domain authentication and authorization framework for Internet of Things[J]. IEEE access, 2020, 8: 58800-58816.
[10]	ZHANG H, ZHAO F. Cross-domain identity authentication scheme based on blockchain and PKI system[J]. High-Confidence Computing, 2023, 3(1): 100096.
[11]	DING Y, ZHANG Y, QIN B, et al. A scalable cross-chain access control and identity authentication sc-heme[J]. Sensors, 2023, 23(4): 2000.
[12]	HUANG C, XUE L, LIU D, et al. Blockchain-assisted transparent cross-domain authorization and auth-entication for smart city[J]. IEEE Internet of Things Journal, 2022, 9(18): 17194-17209.
[13]	YANG Y, HU M, KONG S, et al. Scheme on cross-domain identity authentication based on group signature for cloud computing[J]. Wuhan University Journal of Natural Sciences, 2019, 24(2): 134-140.
[14]	NITA S L, MIHAILESCU M I. A Novel Authentication Scheme Based on Verifiable Credentials Using Digital Identity in the Context of Web 3.0[J]. Electronics, 2024, 13(6): 1137.
[15]	MANOJ T, MAKKITHAYA K, NARENDRA V. A blockchain based decentralized identifiers for entity authentication in electronic health records[J]. Cogent Engineering, 2022, 9(1): 2035134.
[16]	ALANGOT B, SZALACHOWSKI P, DINH TT, et al. Decentralized identity authentication with auditability and privacy[J]. Algorithms, 2022, 16(1): 4.
[17]	CAO L, ZHAO S, GAO Z, et al. Cross-chain data traceability mechanism for cross-domain access[J]. The Journal of Supercomputing, 2023, 79(5): 4944-4961.
[18]	GUO S, WANG F, ZHANG N, et al. Master-slave chain based trusted cross-domain authentication me-chanism in IoT[J]. Journal of Network and Computer Applications, 2020, 172: 102812.
[19]	WU X, WEI S, ZHANG Z, et al. Main-Secondary Blockchain Framework: Cross-Domain Trust Management Mechanism Using Trust Ticket[J]. IEEE Tr-ansactions on Network and Service Management,20 23, 20(3): 2830-2844.
[20]	SHOUP V, SMART NP. Lightweight asynchronous verifiable secret sharing with optimal resilience[J]. Journal of Cryptology, 2024, 37(3): 27.
[21]	马宇航, 张亮, 吴星雨, 等. 基于分布式密钥生成和属性基密码的多方跨链交易方案[J]. 计算机研究与发展, 2023, 60(11): 2534-2544.

文献方案	可拓展性	去中心化性	自主身份权	抵抗单点故障
文献9	×	√	×	√
文献13	×	×	×	×
文献14	√	√	√	×
Dion	√	√	√	√