Research And Implementation Of Digital Identity Authentication System Based On Blockchain

Identity authentication technology aims to identify digital identities in the network and ensure user information security.Therefore,identity authentication plays an important role in various Internet applications.Public Key Infrastructure(PKI)is an identity authentication technology that uses centralized Certificate authorities(CAs)to manage certificates.The centralized structure of PKI and the shortcomings of opaque certificate management can lead to problems such as a single point of failure and the inability to detect false certificates promptly.At the same time,although the existing identity authentication technology has achieved certificate transparency,there is still the problem of insufficient privacy protection.Therefore,how to solve the problems existing in traditional identity authentication technology and effectively protect user privacy is crucial for the development of identity authentication technology and Internet security.Based on the traditional PKI architecture,this paper implements a digital identity authentication system that takes both certificate transparency and personal privacy protection into consideration.The main work and innovations of the paper are as follows:(1)A digital identity verification mechanism based on zeroknowledge proof is proposed.This mechanism realizes a fine-grained noninteractive certificate encryption verification mechanism based on identity attributes through zero-knowledge proof,enabling users to complete digital identity verification by proving the range of attribute values in the certificate without disclosing private information.At the same time,this mechanism speeds up the generation of proofs and reduces the computational overhead of the prover through the proof generation algorithm based on secure multiparty computation.This mechanism solves the problem of exposing user identity information to the verifier during the traditional certificate verification process,and can effectively reduce the risk of user identity information leakage.(2)A distributed random beacon protocol based on blockchain is proposed.This protocol generates a random beacon sequence with a chain structure under the blockchain through a verifiable delay function and blockchain technology,which can provide more secure sources of randomness for smart contracts.In addition,the verification of the random beacon sequence by the smart contract is completed by combining the distributed key generation protocol and the threshold signature.The random beacons generated by this protocol have unpredictability,biasresistance,liveness,public-verifiability and so on,and can solve the problems of low random source security and reliance on consensus protocols in traditional smart contracts.(3)A blockchain-based multi-centralized digital identity authentication system is designed and implemented.The system realizes the openness and transparency of certificate issuance and revocation through the InterPlanetary File System and blockchain technology and protects user privacy through a digital identity verification mechanism based on zero-knowledge proof.In addition,the system introduces a multiC A mechanism to decentralize CA power,and the smart contract randomly matches certificates and CAs and generates authentication tasks,to periodically authenticate valid certificates in the system.The system can solve the problems of a single point of failure and opaque certificate management in traditional centralized identity authentication,improves the timeliness of false certificate detection,and strengthens the protection of user privacy during certificate verification.