Research On Identity Authentication And Privacy Protection Based On Blockchain

In recent decades,the global revolutionary wave of new-generation information technology has been rushing incessantly,continuously promoting the rapid development of the information age.Security and trustworthiness are the basis for digital society’s regular and efficient operation.As human beings move from the physical world to the digital world at high speed,the security of Internet infrastructure becomes paramount,and the needs for security such as identity security,data security,and transmission security become one of the core objectives of today’s Internet development.Public Key Infrastructure(PKI)is the cornerstone of secure information exchange on the Internet,enabling network participants to verify their identities by querying and verifying public keys.However,traditional PKI is organized into a tree-like centralized structure that many security incidents have proved to have availability and security flaws,especially single point of failure issues.The privacy protection mechanism is also a missing link in traditional centralized PKI.In some specific scenarios,such as Telematics and Io T,it is challenging to avoid malicious entities in the network tracing a particular entity’s identity information through a public key in the PKI.In addition,different organizations or institutions trust various PKI certification authorities,thus forming multiple mutually inde-pendent trust domains.Still,the cross-domain certification mechanism in traditional PKI often has problems such as complex certification paths,frequent signature verification,and difficult certificate management.Blockchain is a highly integrated and comprehensive application of a new generation of information technology,which has the advantages of anonymity,the difficulty of tampering,safety and reliability,full trace,and intelligent execution.It can establish collaborative trust among multiple participants who do not trust each other.The outstanding features of blockchain can provide new solutions to the availability,security,and privacy faced by traditional PKI.Promoting the deep integration of blockchain and identity authentication is conducive to giving security technology support for the future development of the Internet.Therefore,this thesis will focus on blockchain combined with identity authentication and pri-vacy protection issues.Firstly,this thesis reviews the development history of traditional authentication systems,investigates the applications of authentication technology in several research fields,investigates the current research status of combining blockchain technology with authentication and privacy protection,and introduces the basic concept and structure of blockchain and its key components.This thesis provides theoretical and technical support for this research.Secondly,this thesis proposes a blockchain-based distributed authentication scheme,explores the compatibility of traditional certificates on the blockchain,describes in detail the cer-tificate operation under the blockchain distributed authentication scheme,and designs a cross-domain authentication mechanism based on blockchain for entities with different trust domains.The thesis presents a simulation analysis and evaluation of the proposed blockchain-based distributed authentication scheme.The simulation results show that blockchain can enhance the successful authentication capability of the authentication system and can better integrate authentication resources to improve authentication performance.Thirdly,this thesis improves the privacy protection aspects of blockchain authentication by designing a privacy protection mechanism that can support different privacy protection levels so that non-trusted external entities cannot obtain the identity information of a target entity by tracing its key update chain.An authoritative regulator can disclose the identity information of a specific entity in the case of authority and responsibility disputes.The thesis presents a simulation analysis and evaluation of the proposed blockchain-based identity privacy protection mechanism.The simulation results show that the proposed scheme can reduce the privacy leakage risk of the blockchain identity system and can exchange a low computational cost for a considerable privacy security enhancement.Finally,this thesis conducts the prototype verification of the blockchain authentication scheme,clarifies the system model of blockchain PKI,details its architecture and workflow,and completes the construction of the underlying blockchain,then writes smart contracts to build the blockchain PKI distributed application,and verifies the overall functionality of the system through the authentication process of the authenticated end entities.The results show that the prototype verification system has significant advantages in terms of operational efficiency,carrying capacity and execution overhead.