Research And Implementation Of Identity Authentication Technology In Decentralized Network Based On Blockchain

With the rapid development of Internet technology and the increasing popularity of information technology,people have entered an open digital era.How to effectively authenticate legal and credible digital identities,establish safe and reliable communications,and avoid the hidden dangers and risks of information security are crucial to the safe operation of the mobile Internet society.Public Key Infrastructure(PKI)is an infrastructure that provides authentication mechanisms by managing keys and digital certificates.However,the operations of certificates in current PKI systems are concentrated in the third-party organization,Certificate Authority(CA).The transparency and security of the CA will affect the operation of the entire system.Therefore,conducting a research on identifiable and auditable authentication PKI system is necessary.Based on the blockchain technology,in this thesis,the authentication technology of the decentralized network authentication is studied,and a higher credibility authentication scheme with auditable and extensible certificate operation is proposed for the problem that the operation records of the authentication center in the traditional public key infrastructure are difficult to be open and transparent.The main innovations include:1.Proposing a blockchain-based decentralized network identity authentication system which improving the pain points of over-reliance and trust from third-party organizations in the traditional PKI systems by taking full advantages of blockchain in security,irreversibility,non-mutability modification and transparency.Through the protection of the public key cryptography technology and the blockchain technology,the various functions of digital certificate management in identity authentication are implemented,the keys,certificates,and operation execution records are written in the blockchain.The timestamps form a continuous front-to-back association honest data record structure.This system greatly reduces the dependence of the identity authentication system on the original authentication center,realizes the whole process of identity authentication,which is open,transparent and auditable,and can strengthen the credibility of identity authentication.2.A blockchain smart contract is proposed to solve the the defect of losing all previously issued certificates which are not trustworthy after losing the key in the traditional authentication center.This smart contract will be called in time when the authentication center needs to replace its own key.Certificates issued by expired or obsolete certificate authority keys will not be stored in the blockchain,and the updated certificate authority keys and certificates issued prior to key updates will be valid.This method can reduce the security risks caused by the leakage or expiration of the certificate center key and improve the working efficiency of the authentication system.