[1]陈立军.区块链跨域身份管理系统的优化[J].计算机技术与发展,2023,33(02):138-145.[doi:10. 3969 / j. issn. 1673-629X. 2023. 02. 021]
 CHEN Li-jun.Optimization of Blockchain Cross-domain Identity Management System[J].,2023,33(02):138-145.[doi:10. 3969 / j. issn. 1673-629X. 2023. 02. 021]
点击复制

区块链跨域身份管理系统的优化()
分享到:

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
33
期数:
2023年02期
页码:
138-145
栏目:
网络空间安全
出版日期:
2023-02-10

文章信息/Info

Title:
Optimization of Blockchain Cross-domain Identity Management System
文章编号:
1673-629X(2023)02-0138-08
作者:
陈立军
广州软件学院 软件工程系,广东 广州 510990
Author(s):
CHEN Li-jun
Department of Software Engineering,Software Engineering Institute of Guangzhou,Guangzhou 510990,China
关键词:
身份管理去中心化区块链单向累加器跨域认证
Keywords:
identity managementdecentralizationblockchainone-way accumulatorcross-domain authentication
分类号:
TP311
DOI:
10. 3969 / j. issn. 1673-629X. 2023. 02. 021
摘要:
身份认证是云计算的安全基础,当前云计算环境下不同信任域之间信息交互频繁,迫切需要研究安全且高效的不同信任域间的跨域身份认证。 由于传统的中央式身份管理系统存在安全性和可扩展性问题,分散式身份管理受到了学术界和工业界的广泛关注,然而,随着各域之间共享交互的日益增多,分散身份的管理和认证对跨域信任提出了更高的要求,面临着巨大的实现挑战。 该文提出了一种基于区块链的去中心化跨域身份管理系统( DCIMB) ,在此系统中设计了一个去中心化标识符,用于联盟区块链技术命名身份,同时,DCIMB 系统中的每个节点都可以参与身份认证和信任建立,从而解决了中心化机制的单点故障问题。 为了进一步提高认证效率,保护用户隐私,DCIMB 引入了单向累加器作为身份数据结构,保证了实体身份的有效性,并从理论上分析了 DCIMB 的可行性和性能,并且与现有的身份管理系统相比,DCIMB在跨域身份验证方面实现了出色的优化。
Abstract:
Identity authentication is the security basis of cloud computing. In the current cloud computing environment, informationinteraction between different trust domains is frequent,so it is urgent to study the secure and efficient cross-domain identity authenticationbetween different trust domains. Because of the security and scalability problems of traditional centralized identity management system,decentralized identity management has been widely concerned by academia and industry. However, with the increasing sharing andinteraction between domains, decentralized identity management and authentication have put forward higher requirements for cross -domain trust,and are faced with great implementation challenges. We propose a decentralized cross-domain identity management system( DCIMB) based on blockchain. In this system, a decentralized identifier is designed to name identities for federated blockchaintechnology. Meanwhile, each node in the DCIMB system can participate in identity authentication and trust establishment, thuseliminating the single point of failure of the centralized mechanism. In order to further improve the certification efficiency and protectuser privacy,DCIMB introduces one-way accumulator as identity data structure to ensure the effectiveness of the entity identity,and thefeasibility and performance of DCIMB are analyzed theoretically. Compared with the existing identity management systems,DCIMB incross-domain authentication excellent optimization is realized.

相似文献/References:

[1]童岚岚 刘连忠.基于动态联盟的一种身份信任计算模型[J].计算机技术与发展,2010,(02):152.
 TONG Lan-lan,LIU Lian-zhong.One of Arithmetic Models of Identity Trust Management Based on Dynamic Federation[J].,2010,(02):152.
[2]马星晨,朱建涛,邵婧,等.一种基于属性的去中心化访问控制模型[J].计算机技术与发展,2018,28(09):118.[doi:10.3969/ j. issn.1673-629X.2018.09.024]
 MA Xing-chen,ZHU Jian-tao,SHAO Jing,et al.A Decentralized Access Control Model Based on Attribute[J].,2018,28(02):118.[doi:10.3969/ j. issn.1673-629X.2018.09.024]
[3]陈春玲,沈阳,余瀚.去中心化的征信系统模型研究[J].计算机技术与发展,2019,29(03):122.[doi:10.3969/ j. issn.1673-629X.2019.03.026]
 CHEN Chun-ling,SHEN Yang,YU Han.Research on Decentralized Model for Credit Information System[J].,2019,29(02):122.[doi:10.3969/ j. issn.1673-629X.2019.03.026]
[4]董黛莹,汪学明.基于区块链的电子医疗记录共享研究[J].计算机技术与发展,2019,29(05):121.[doi:10. 3969 / j. issn. 1673-629X. 2019. 05. 026]
 DONG Dai-ying,WANG Xue-ming.Research on Electronic Medical Record Sharing Model Based on Blockchain[J].,2019,29(02):121.[doi:10. 3969 / j. issn. 1673-629X. 2019. 05. 026]
[5]许甜华,吴明礼.一种基于 TF-IDF 的朴素贝叶斯算法改进[J].计算机技术与发展,2020,30(02):75.[doi:10. 3969 / j. issn. 1673-629X. 2020. 02. 016]
 XU Tian-hua,WU Ming-li.An Improved Naive Bayes Algorithm Based on TF-IDF[J].,2020,30(02):75.[doi:10. 3969 / j. issn. 1673-629X. 2020. 02. 016]
[6]汪 菲,沈苏彬.一种基于区块链的可信数据共享解决方案[J].计算机技术与发展,2020,30(09):115.[doi:10. 3969 / j. issn. 1673-629X. 2020. 09. 021]
 WANG Fei,SHEN Su-bin.A Solution for Decentralized Data Sharing Based on Blockchain[J].,2020,30(02):115.[doi:10. 3969 / j. issn. 1673-629X. 2020. 09. 021]
[7]曹迪龙,杨文晖,苗 放.基于区块链的数字作品交易系统的研究[J].计算机技术与发展,2021,31(04):192.[doi:10. 3969 / j. issn. 1673-629X. 2021. 04. 033]
 CAO Di-long,YANG Wen-hui,MIAO Fang.Research on Digital Works Transaction System Based on Block Chain[J].,2021,31(02):192.[doi:10. 3969 / j. issn. 1673-629X. 2021. 04. 033]
[8]陈 曦,沈苏彬.一种基于区块链的存储资源可信分配方法[J].计算机技术与发展,2022,32(02):130.[doi:10. 3969 / j. issn. 1673-629X. 2022. 02. 021]
 CHEN Xi,SHEN Su-bin.A Storage Resource Allocation Method Based on Blockchain[J].,2022,32(02):130.[doi:10. 3969 / j. issn. 1673-629X. 2022. 02. 021]
[9]李 铭,沈苏彬.一种基于区块链的自媒体版权管理方案[J].计算机技术与发展,2023,33(01):206.[doi:10. 3969 / j. issn. 1673-629X. 2023. 01. 031]
 LI Ming,SHEN Su-bin.A Solution for Self-media Copyright Management Based on Blockchain[J].,2023,33(02):206.[doi:10. 3969 / j. issn. 1673-629X. 2023. 01. 031]
[10]焦 洋,沈苏彬.一种基于区块链的物联网攻击防御方案[J].计算机技术与发展,2023,33(01):130.[doi:10. 3969 / j. issn. 1673-629X. 2023. 01. 020]
 JIAO Yang,SHEN Su-bin.An IoT Attack Defense Solution Based on Blockchain[J].,2023,33(02):130.[doi:10. 3969 / j. issn. 1673-629X. 2023. 01. 020]

更新日期/Last Update: 2023-02-10