BIdM:A Blockchain-Enabled Cross-Domain Identity Management System

作     者：Ruibiao Chen Fangxing Shu Shuokang Huang Lei Huang Huafang Liu Jin Liu Kai Lei 

作者机构：ICNLabSchool of Electronic and Computer EngineeringPeking UniversityShenzhen 518000China PCL Research Center of Networks and CommunicationsPeng Cheng LaboratoryShenzhen 518000China 

出 版 物：《Journal of Communications and Information Networks》 (通信与信息网络学报（英文）)

年 卷 期：2021年第6卷第1期

页      面：44-58页

核心收录：

学科分类：0810[工学-信息与通信工程] 0839[工学-网络空间安全] 08[工学] 081001[工学-通信与信息系统] 0812[工学-计算机科学与技术（可授工学、理学学位）] 

基　　金：Key-Area Research and Development Program of Guangdong Province(2020B0101090003) National Natural Science Foundation of China(62072012) Shenzhen Research Project(JSGG20191129110603831) Shenzhen Key Laboratory Project(ZDSYS201802051831427) the project PCL Future Regional Network Facilities for Large Scale Experiments and Applications 

主　　题：decentralized identifier blockchain oneway accumulator cross-domain authentication identity management 

摘      要：Reliable identity management and authentication are significant for network *** recent years,as traditional centralized identity management systems suffer from security and scalability problems,decentralized identity management has received considerable attention in academia and ***,with the increasing sharing interaction among each domain,management and authentication of decentralized identity has raised higher requirements for cross-domain trust and faced implementation challenges *** solve these problems,we propose BIdM,a decentralized crossdomain identity management system based on *** design a decentralized identifier(DID)for naming identities based on the consortium blockchain *** the identity subject fully controls the life cycle and ownership of the proposed DID,it can be signed and issued without a central authentication node’s ***,every node in the system can participate in identity authentication and trust establishment,thereby solving the centralized mechanism’s single point of failure *** further improve authentication efficiency and protect users’privacy,BIdM introduces a one-way accumulator as an identity data structure,which guarantees the validity of entity *** theoretically analyze the feasibility and performance of BIdM and conduct evaluations on a prototype *** experimental results demonstrate that BIdM achieves excellent optimization on cross-domain authentication compared with existing identity management systems.