| The consortium blockchain has advantages in high availability,high performance,programmable,and privacy protection.It can be applied in different fields,and thus has received extensive attention from people.As the most-concerned permissioned blockchain development platform,Fabric adopts a hierarchical model certification authority(Certificate Authority,CA)and pre-configured root certificates.In the entire Fabric consortium blockchain,CA has great rights,which conflicts with the decentralized nature of the blockchain.Therefore,in view of the problem of unequal rights among consortium members caused by high CA rights in the consortium blockchain system,the paper proposes a decentralized CA management system for the consortium blockchain to realize the collective self-management of consortium members.The main work of the paper is as follows:(1)Based on the trust transfer of Pretty Good Privacy(PGP),this paper proposes a method for calculating the trust degree of consortium blockchain nodes including indirect trust.Build an extended trust chain that includes indirect trust based on trust transfer,extend the user's trusted neighborhood through the PGP public key introduction mechanism,and build a trust model that extends PGP;calculate the k-level aggregation degree of the node based on the k-step reachable trust transfer path number adjacency matrix;Rank node trust based on Page Rank.(2)Based on the PKI certificate management system,a decentralized consortium blockchain CA management system was constructed.According to the trust ranking,the top n nodes are selected as the bookkeepers of the consortium blockchain and jointly act as the CA certification management.Based on the CA management system in PKI,study the consortium blockchain CA management system,including role division,processing flow,Processes such as certificate issuance,certificate update,certificate revocation,key recovery,etc.Combined with the idea of blockchain verification credibility,bookkeepers reach consensus through consensus to achieve authentication management of users in the consortium blockchain,thereby solving the problem of power imbalance caused by a single CA.In this management system,bookkeepers can supervise each other to jointly realize the collective self-management of members and users in the consortium blockchain.The research content of this article is of great significance to consortium blockchain authentication technology and consortium blockchain distributed application promotion. |
PDF Full Text Request