A Blockchain-Based Multi-CA Cross-Domain Authentication Scheme in Decentralized Autonomous Network

Abstract

The continuous development of network technology has driven the emergence of smart devices, and the demand for smart devices interconnection has increased sharply, which requires the identity of devices to be authenticated to carry out secure communication. The traditional certificate-based identity authentication scheme can no longer meet the authentication requirements of massive devices. As an authority that issues and manages certificates, Certificate Authority (CA) creates data islands of intra-domain certificates, increasing the complexity of cross-domain authentication. In order to improve the efficiency of cross-domain authentication, this paper introduces blockchain technology, which can establish trust in an untrusted environment. We propose a multi-CA-based authentication architecture to establish distributed trust and share cross-domain certificate information among multiple domains. On this basis, we design a simplified identity authentication scheme to quickly complete cross-domain identity authentication and reduce authentication overhead. To further improve the efficiency of cross-domain authentication, a cross-domain certificate revocation mechanism is designed. The scheme has passed the formal security analysis, and the simulation results show that the cross-domain authentication scheme is efficient.