网络与信息安全学报2024,Vol.10Issue(2):47-58,12.DOI:10.11959/j.issn.2096-109x.2024031
基于区块链的跨数据中心匿名可监管身份认证方案
Blockchain-based cross-data center anonymous and verifiable identity authentication scheme
摘要
Abstract
With the progression of big data and cloud computing technologies,there has been an escalating trend in cross-institutional data sharing and interaction within the financial sector.However,the frequent occurrence of privacy breaches poses significant challenges to ensuring data security protection.This necessitates the elevation of requirements for identity authentication across data centers and other technologies related to data security management.The traditional centralized identity authentication schemes are inherently flawed in security and scalability,which hampers their ability to meet the demands of high-frequency cross-center data sharing applications.The blockchain technology has emerged as a potential solution,offering exceptional characteristics such as a distributed nature,tamper-proof properties,traceability,and the ability to achieve multi-party consensus.In practical application scenarios,it is essential to not only protect the privacy of user identities but also to effectively regulate anonymous identities.An anonymous and supervisable cross-data center identity authentication scheme based on blockchain was proposed.This scheme did not necessitate alterations to the original architecture of each data center.Instead,a distributed multi-center consortium blockchain was formed by leveraging more than one server from each data center to establish a data center union.Blockchain technology was utilized to ensure the transparency and reliability of the identity authentication process.Additionally,attribute signatures were employed to safeguard user identity privacy while simultaneously creating an identity mapping table that facilitated the tracking of real user identities.Consequently,the scheme was designed to protect user privacy during cross-data center identity authentication and to enable effective supervision over anonymous identities.A thorough security analysis and the results of experiments demonstrate that the proposed scheme possesses the following attributes:it does not require users to re-register,it exhibits characteristics of unforgeability and traceability,and it is capable of withstanding various network attacks,including replay attacks,denial of service attacks,tampering attacks,and man-in-the-middle attacks.关键词
数据安全/区块链/身份认证/隐私保护/身份监管Key words
data security/blockchain/identity authentication/privacy protection/identity regulation分类
信息技术与安全科学引用本文复制引用
徐淑奖,张朝阳,王连海,张淑慧,邵蔚..基于区块链的跨数据中心匿名可监管身份认证方案[J].网络与信息安全学报,2024,10(2):47-58,12.基金项目
山东省重点研发计划(No.2021CXGC010107) (No.2021CXGC010107)
泰山学者项目(No.tsqn202312231) (No.tsqn202312231)
济南市新高校二十条项目(No.202228017)The Shandong Provincial Key Research and Development Program(No.2021CXGC010107),The Taishan Scholars Program(No.tsqn202312231),The New 20 Project of Higher Education of Jinan(No.202228017). (No.202228017)
