A secure and decentralized SSI authentication protocol with privacy protection and fine-grained access control based on federated blockchain
Open Access
- 23 September 2022
- journal article
- research article
- Published by Public Library of Science (PLoS) in PLOS ONE
- Vol. 17 (9), e0274748
- https://doi.org/10.1371/journal.pone.0274748
Abstract
Self-sovereign identity authentication protocol is an active research topic in the field of identity authentication and management. However, the current SSI authentication protocols pay little attention to privacy protection and the fine-grained access control. Therefore, a secure and decentralized SSI authentication protocol with privacy protection and fine-grained access control is proposed. Firstly, the formal model of SSI including the SDPP-SSI identity model and management model is presented. And then, based on the federated blockchain, the distributed identifier is used as a global identifier for users in the decentralized domain. Finally, the verifiable statement is encapsulated using a policy control signature supporting privacy protection to develop the user’s access control for identity registration in the centralized domain. Compared with the related work (Lin 2018, Zhu 2018, Stokkink 2018, Hammudoglu 2017, Othman 2017, Abraham 2018, Guan 2019, Lin 2019) from controllability, security, flexibility, privacy protection, authentication and fine-grained access control, the proposed SSI authentication protocol not only meets controllability, authentication, and flexibility, but also supports privacy protection and fine-grained access control.Funding Information
- Fundamental Research Funds for Central Universities of the Central South University (CZZ21001, No.CZT20015 and QSZ17007)
- National Key RD Program of China (No. 2020YFC1522900)
- National Natural Science Foundation of China (No.62062019)
- Natural Science Foundation of Hubei Province (No. 2018ADC150)
This publication has 25 references indexed in Scilit:
- AuthLedger: A Novel Blockchain-based Domain Name Authentication SchemePublished by INSTICC ,2019
- User Data Privacy: Facebook, Cambridge Analytica, and Privacy ProtectionComputer, 2018
- Qualified eID Derivation Into a Distributed Ledger Based IdM SystemPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2018
- BSeIn: A blockchain-based secure mutual authentication with fine-grained access control system for industry 4.0Journal of Network and Computer Applications, 2018
- Deployment of a Blockchain-Based Self-Sovereign IdentityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2018
- A Survey on Blockchain-Based Identity Management Systems for the Internet of ThingsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2018
- A New Approach to Client Onboarding Using Self-Sovereign Identity and Distributed LedgerPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2018
- The Horcrux Protocol: A Method for Decentralized Biometric-based Self-sovereign IdentityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2018
- Hyperledger fabricPublished by Association for Computing Machinery (ACM) ,2018
- Decentralized Semantic IdentityPublished by Association for Computing Machinery (ACM) ,2016