BIdM:A Blockchain-Enabled Cross-Domain Identity Management System  被引量：3

作　　者：Ruibiao Chen Fangxing Shu Shuokang Huang Lei Huang Huafang Liu Jin Liu Kai Lei 

机构地区：[1]ICNLab,School of Electronic and Computer Engineering,Peking University,Shenzhen 518000,China [2]PCL Research Center of Networks and Communications,Peng Cheng Laboratory,Shenzhen 518000,China

出　　处：《Journal of Communications and Information Networks》2021年第1期44-58,共15页通信与信息网络学报（英文）

基　　金：Key-Area Research and Development Program of Guangdong Province(2020B0101090003);National Natural Science Foundation of China(62072012);Shenzhen Research Project(JSGG20191129110603831);Shenzhen Key Laboratory Project(ZDSYS201802051831427);the project PCL Future Regional Network Facilities for Large Scale Experiments and Applications。

摘　　要：Reliable identity management and authentication are significant for network security.In recent years,as traditional centralized identity management systems suffer from security and scalability problems,decentralized identity management has received considerable attention in academia and industry.However,with the increasing sharing interaction among each domain,management and authentication of decentralized identity has raised higher requirements for cross-domain trust and faced implementation challenges galore.To solve these problems,we propose BIdM,a decentralized crossdomain identity management system based on blockchain.We design a decentralized identifier(DID)for naming identities based on the consortium blockchain technique.Since the identity subject fully controls the life cycle and ownership of the proposed DID,it can be signed and issued without a central authentication node’s intervention.Simultaneously,every node in the system can participate in identity authentication and trust establishment,thereby solving the centralized mechanism’s single point of failure problem.To further improve authentication efficiency and protect users’privacy,BIdM introduces a one-way accumulator as an identity data structure,which guarantees the validity of entity identity.We theoretically analyze the feasibility and performance of BIdM and conduct evaluations on a prototype implementation.The experimental results demonstrate that BIdM achieves excellent optimization on cross-domain authentication compared with existing identity management systems.

关 键 词：decentralized identifier blockchain oneway accumulator cross-domain authentication identity management 

分 类 号：TN91[电子电信—通信与信息系统]