摘要
传统的身份认证系统普遍面临中心不可信的安全风险,尤其是在电子商务的环境下,不可信认证会造成巨额的经济损失.针对这一问题,提出一种基于区块链的可信电子商务身份认证系统.为了解决中心化带来的单点故障问题,引入区块链技术,构建分布式的身份管理系统.为了降低密钥管理的中心化风险,引入无证书的密码体制,克服密钥托管问题,简化身份认证过程,增强身份认证的安全性.为了增强认证过程的计算安全,引入可信执行技术,构建基于硬件保护的高安全的身份验证环境.实验结果表明,该方案安全高效,具备良好的可行性.
Traditional identity authentication systems generally face security risks that are not credible at the center.Especially in the environment of e-commerce,untrusted authentication will cause huge economic losses.Aiming at this problem,this paper proposed a trusted e-commerce identity authentication system based on blockchain.In order to solve the single point of failure problem brought by centralization,the blockchain technology was introduced to build a distributed identity management system.In order to reduce the centralization risk of key management,a certificateless cryptosystem was introduced to overcome key escrow problems,simplify the identity authentication process,and enhance the security of identity authentication.In order to enhance the computational security of the authentication process,a trusted execution technology was introduced to build a high-security identity verification environment based on hardware protection.The experimental results show that the scheme is safe and efficient and has good feasibility.
作者
周亮
应欢
戴波
邱意民
Zhou Liang;Ying Huan;Dai Bo;Qiu Yimin(China Electric Power Research Institute,Beijing 102211,China;State Grid Zhejiang Electric Power Co.,Ltd.,Hangzhou 310007,Zhejiang,China)
出处
《计算机应用与软件》
北大核心
2019年第11期322-328,333,共8页
Computer Applications and Software
基金
国家电网公司科技项目(52110417001D)
关键词
身份认证
区块链
无证书签密
可信执行
Identity authentication
Blockchain
Certificateless signcryption
Trusted execution
