A Zero-Knowledge-Proof-Based Anonymous and Revocable Scheme for Cross-Domain Authentication-Reference-Cited by-同舟云学术

A Zero-Knowledge-Proof-Based Anonymous and Revocable Scheme for Cross-Domain Authentication

Published:2024-07-11 Issue:14 Volume:13 Page:2730
ISSN:2079-9292
Container-title:Electronics
language:en
Short-container-title:Electronics

Author:

Zhao Xinjian¹,Xia Fei¹,Xia Hanning²,Mao Yunlong²,Chen Shi¹

Affiliation:

1. Information & Telecommunication Branch State Grid Jiangsu Electric Power Co., Ltd., Nanjing 210024, China

2. Computer Science and Technology Department, Nanjing University, Nanjing 210023, China

Abstract

Authentication is a crucial security service on the Internet. In real-world applications, multiple independent trust domains often exist, with each recognizing only certain identities within their own systems. During cross-domain access, users cannot directly use their original certificates, which presents a cross-domain authentication problem. Traditional centralized schemes typically employ a trusted third party (TTP) to facilitate the transfer of identity trust across domains. These schemes inevitably inherit the vulnerabilities associated with single points of failure. In contrast, blockchain-based decentralized schemes effectively eliminate the potential threats posed by TTPs. However, the openness and transparency of the blockchain also bring new security issues, such as privacy leakage. In this paper, we propose a zk-SNARK-based anonymous scheme on the blockchain for cross-domain authentication. Specifically, our scheme adopts an authorization-then-proof structure, which strikes a delicate balance between anonymity and revocability. We provide theoretical proofs for the security of our scheme and explain how it achieves proactive revocability. Experimental evaluation results demonstrated that our scheme is both secure and efficient, and the revocation could be accomplished by introducing only 64 bytes of on-chain storage with one hash comparison.

Funder

State Grid Jiangsu Electric Power Corporation Project

Publisher

MDPI AG

Link

https://www.mdpi.com/2079-9292/13/14/2730/pdf

Reference26 articles.

1. Nakamoto, S. (2024, July 08). Bitcoin: A Peer-to-Peer Electronic Cash System. Available online: http://www.bitcoin.org/bitcoin.pdf.

2. A Next Generation Smart Contract & Decentralized Application Platform;Buterin;White Paper,2015

3. Goldwasser, S., Micali, S., and Rackoff, C. (1985, January 5–8). The knowledge complexity of interactive proof-systems. Proceedings of the Seventeenth Annual ACM Symposium on Theory of Computing, New York, NY, USA.

4. Fischlin, M., and Coron, J.S. (2016, January 8–12). On the Size of Pairing-Based Non-interactive Arguments. Proceedings of the Advances in Cryptology—Eurocrypt, Vienna, Austria.

5. Polk, W., and Hastings, N. (2001, January 18–20). Bridge certification authorities: Connecting B2B public key infrastructures. Proceedings of the 16th IST Mobile and Wireless Communications Summit, West Point, NY, USA.