计算机科学
零知识证明
计算机安全
认证(法律)
领域(数学分析)
方案(数学)
数据认证算法
身份验证协议
保密
身份验证服务器
私人信息检索
计算机网络
相互认证
信息泄露
密码学
数学
数学分析
作者
Ruxu Du,Xiaoya Li,Yan Liu
标识
DOI:10.1007/978-3-030-95388-1_43
摘要
This paper proposes an anonymous, cross-domain authentication scheme based on zero-knowledge proof to combat the privacy leakage problem of cross-domain authentication when users in the heterogeneous domain access network services from different trust domains. First, we use the zero-knowledge proof algorithm to make the scheme independent of the trusted third party and realise secure data exchange between the device and the agent server (AS). The AS verifies the identity of the device through the proof that does not contain any private user information that can be reconstructed, which plays an effective role in protecting the privacy of the device. Second, the device submits the proof, which is generated from private device information and public parameter information. It has nothing to do with the trust domain authentication mechanism. Therefore, it can be used for mutual authentication between heterogeneous domains. Finally, we use the characteristics of decentralisation and tamper proof of blockchain technology to ensure the consistency of interdomain message storage and realise cross-domain authentication. Theoretical analysis shows that the scheme meets the security requirements of confidentiality, integrity and availability. The experimental results show that compared with the existing schemes, our scheme is feasible and effective.
科研通智能强力驱动
Strongly Powered by AbleSci AI