Cross-domain Authentication Scheme Research Articles

SE-CAS: Secure and Efficient Cross-Domain Authentication Scheme Based on Blockchain for Space TT&C Networks

SE-CAS: Secure and Efficient Cross-Domain Authentication Scheme Based on Blockchain for Space TT&C Networks

Cloud IoT-Oriented Secure College Physical Education Teaching Platform Vased on Deep Learning

In physical education (PE) teaching, the teaching platform is comprehensively applied to provide students with high-quality PE teaching resources to meet their learning needs in different forms. A human motion trajectory detection method is proposed based on deep learning and superpixels. The initial positioning of human body is performed through the attention mechanism and the YOLOv5 model, and the human target tracking is performed through superpixels. Aiming at the difficulty of cross-domain security management due to the lack of security infrastructure in multi-domain cloud IoT, a lightweight certificateless cross-domain authentication scheme is designed. Simulation results show that the proposed detection method has significantly improved accuracy and running time compared with traditional methods and can adapt to different detection scenarios. Furthermore, the proposed certificateless cross-domain authentication scheme can securely access sensor-generated data under the cloud IoT of the PE teaching platform in colleges.

DBCPCA:Double-layer blockchain-assisted conditional privacy-preserving cross-domain authentication for VANETs

Ensuring secure authentication between participating entities in VANETs has emerged as a critical challenge. Most of existing schemes mainly consider authentication issue in single administrative domain and suffer from various limitations that include privacy-preserving and malicious entity tracking. This paper proposes a double-layer blockchain-assisted conditional privacy-preserving cross-domain authentication scheme (DBCPCA) that leverages blockchain technology and certificate-less signatures to address these challenges. In DBCPCA, the upper-layer blockchain is used in cross-domain authentication by sharing inter-domain information among multiple different administrative domains. The lower-layer blockchain is employed in intra-domain authentication. In DBCPCA, we also introduce an anonymity mechanism to protect the real identity of a vehicle while enabling the system to trace a malicious vehicle, thereby addressing conditional privacy-preserving concerns. In addition, a security analysis of the proposed scheme demonstrates that it can meet our specified security objectives. Finally, we make a detailed experimental comparison with the most relative solutions such as BCPPA and BCGS. The results show that the DBCPCA scheme reduces the time cost by at least 66.68 % compared to the BCPPA scheme during the signature generation phase. During the signature verification phase, the DBCPCA scheme reduces the time cost by at least 62.39 % compared to the BCGS scheme.

Lightweight Cross-Domain Authentication Scheme for Securing Wireless IoT Devices Using Backscatter Communication

Lightweight Cross-Domain Authentication Scheme for Securing Wireless IoT Devices Using Backscatter Communication

Cross-Domain Authentication Scheme Based on Distributed Two-Layer Collaborative Blockchains for Cyber–Physical Power Systems

Cross-Domain Authentication Scheme Based on Distributed Two-Layer Collaborative Blockchains for Cyber–Physical Power Systems

Cross-Domain Authentication Scheme for Vehicles Based on Given Virtual Identities

Cross-Domain Authentication Scheme for Vehicles Based on Given Virtual Identities

CABC: A Cross-Domain Authentication Method Combining Blockchain with Certificateless Signature for IIoT

Device management in the Industrial Internet of Things (IIoT) is complex, especially in a cross-domain context. Trust identity authentication between cross-domain devices is required when devices work together. Existing identity authentication methods can result in heavy key management overhead or be computationally demanding on the device. In this paper, we propose a cross-domain authentication scheme based on blockchain and certificateless signature that can be suitable for IIoT devices. First, smart contracts are used to complete trusted identity verification of devices, which reduces the computing overhead of IIoT devices. Second, a trust value-based access control method is proposed, which can quickly and timely identify malicious authentication and ensure the normal operation of the authentication system. Finally, the validity and safety of our proposed methods are proven by experiments. The experiment results showed that our methods can meet the needs in terms of IIoT device security and blockchain system output performance, and can achieve cross-domain authentication for IIoT devices.

A secure cross-domain authentication scheme based on threshold signature for MEC

The widespread adoption of fifth-generation mobile networks has spurred the rapid advancement of mobile edge computing (MEC). By decentralizing computing and storage resources to the network edge, MEC significantly enhances real-time data access services and enables efficient processing of large-scale dynamic data on resource-limited devices. However, MEC faces considerable security challenges, particularly in cross-domain service environments, where every device poses a potential security threat. To address this issue, this paper proposes a secure cross-domain authentication scheme based on a threshold signature tailored to MEC’s multi-subdomain nature. The proposed scheme employs a (t,n) threshold mechanism to bolster system resilience and security, catering to large-scale, dynamic, and decentralized MEC scenarios. Additionally, the proposed scheme features an efficient authorization update function that facilitates the revocation of malicious nodes. Security analysis confirmed that the proposed scheme satisfies unforgeability, collusion resistance, non-repudiation and forward security. Theoretical evaluation and experimental simulation verify the effectiveness and feasibility of the proposed scheme. Compared with existing schemes, the proposed scheme has higher computational performance while implementing secure authorization updates.

A 3C Authentication: A Cross-Domain, Certificateless, and Consortium-Blockchain-Based Authentication Method for Vehicle-to-Grid Networks in a Smart Grid

As an important component of the smart grid, vehicle-to-grid (V2G) networks can deliver diverse auxiliary services and enhance the overall resilience of electrical power systems. However, V2G networks face two main challenges due to a large number of devices that connect to it. First, V2G networks suffer from serious security threats, such as doubtful authenticity and privacy leakage. Second, the efficiency will decrease significantly due to the massive requirements of authentication. To tackle these problems, this paper proposes a cross-domain authentication scheme for V2G networks based on consortium blockchain and certificateless signature technology. Featuring decentralized, open, and transparent transactions that cannot be tampered with, this scheme achieves good performance on both security and efficiency, which proves to be suitable for V2G scenarios in the smart grid.

Hybrid blockchain-based many-to-many cross-domain authentication scheme for smart agriculture IoT networks

With the development of smart agricultural Internet of Things (IoT) projects, the need for extensive collaboration among agricultural devices from different domains has surged, necessitating the authentication of device identities for secure communication. Existing centralized architecture-dependent authentication mechanisms encounter issues like a sole point of failure and inefficiencies. Most authentication schemes are unable to support plentiful devices synchronously connecting to numerous data servers in other domains. To address these problems, we propose a many-to-many cross-domain authentication scheme based on the hybrid blockchain architecture for smart agriculture IoT networks. The scheme enables multiple devices simultaneously executing mutual authentication with several data service providers from other agricultural systems. This paper designs a groupable batch verification (GBV) algorithm that dynamically adjusts the batch size by performing group verification for a list of requests, enhancing the flexibility of cross-domain batch authentication. Furthermore, the proposed scheme provides a pseudonym update mechanism to protect the privacy of devices and guards services of different domains from illegal access by tracking malicious devices. The security analysis and performance evaluation demonstrate that the proposed scheme has superior security features and performance.

Revocable Certificateless Cross-Domain Authentication Scheme Based on Primary–Secondary Blockchain

Revocable Certificateless Cross-Domain Authentication Scheme Based on Primary–Secondary Blockchain

A Blockchain-Based Efficient Cross-Domain Authentication Scheme for Internet of Vehicles

A Blockchain-Based Efficient Cross-Domain Authentication Scheme for Internet of Vehicles

A Lightweight Cross-Domain Authentication Protocol for Trusted Access to Industrial Internet

This paper proposes a hierarchical framework for industrial Internet device authentication and trusted access as well as a mechanism for industrial security state perception, and designs a cross-domain authentication scheme for devices on this basis. The scheme obtains hardware device platform configuration register (PCR) values and platform integrity measure through periodic perception, completes device identity identification and integrity measure verification when device accessing and data transmission requesting, ensures secure and trustworthy access and interoperation of devices, and designs a cross-domain authentication model for trustworthy access of devices and related security protocols. Through the security analysis, this scheme has good anti-attack abilities, and it can effectively protect against common replay attacks, impersonation attacks, and man-in-the-middle attacks.

DCAGS-IoT: Dynamic Cross-Domain Authentication Scheme Using Group Signature in IoT

Cross-domain authentication requires that there is no trust gap between different trust domains that can cause cross-domain devices to exceed the security control scope of the original trust domain and further expose cross-domain authentication systems to security threats. In addition, as relying on the traditional cross-domain authentication means built by centralized institutions cannot meet the data security needs in a big data environment. Therefore, it is necessary to design a secure dynamic cross-domain authentication scheme. In this paper, we propose a dynamic cross-domain authentication scheme (DCAGS-IoT) in the Internet of Things environment using the group signature technology and the distributed system architecture of blockchain. Specifically aiming at the problem of increasing and revoking users in dynamic cross-domain authentication, a user update algorithm with the complexity of O (logN) was designed to manage users in the trust domain. Moreover, we used the characteristics that group signature users can sign on behalf of a group to protect the users’ privacy and track suspicious users. Since the size of the signature generated by the scheme is independent of the number of group members N and only depends on the security parameters λ, the efficiency of the protocol implementation is improved, and the security and availability of the authentication scheme are guaranteed.

BCDAIoD: An Efficient Blockchain-Based Cross-Domain Authentication Scheme for Internet of Drones

During long-distance flight, unmanned aerial vehicles (UAVs) need to perform cross-domain authentication to prove their identity and receive information from the ground control station (GCS). However, the GCS needs to verify all drones arriving at the area it is responsible for, which leads to the GCS being unable to complete authentication in time when facing cross-domain requests from a large number of drones. Additionally, due to potential threats from attackers, drones and GCSs are likely to be deceived. To improve the efficiency and security of cross-domain authentication, we propose an efficient blockchain-based cross-domain authentication scheme for the Internet of Drones (BCDAIoD). By using a consortium chain with a multi-chain architecture, the proposed method can query and update different types of data efficiently. By mutual authentication before cross-domain authentication, drones can compose drone groups to lighten the authentication workload of domain management nodes. BCDAIoD uses the notification mechanism between domains to enable path planning for drones in advance, which can further improve the efficiency of cross-domain authentication. The performance of BCDAIoD was evaluated through experiments. The results show that the cross-domain authentication time cost and computational overhead of BCDAIoD are significantly lower those of than existing methods when the number of drones is large.

A Multi-Blockchain-Based Cross-Domain Authentication and Authorization Scheme for Energy Internet

The expansion of the scale of the Power Internet of Things stimulated by the development of the Energy Internet makes the growth in demand for the effective authentication and access control technologies in the cross-domain data exchange. Based on the cross-chain technology of the blockchain and the cuckoo filter, this paper proposes a cross-domain authentication scheme for Power Internet of Things. Firstly, a cross-chain authentication architecture is established. Combined with the existing authentication technologies used in intra-domain authentication, a cross-domain authentication process based on the cross-chain technology is proposed to realize the automatic transmission of the authentication credentials from application domain to authentication domain. The cuckoo filter is deployed on the blockchain as smart contracts, and the user certificate fingerprint is inserted into the filter to realize user registration, query, and revocation, which reduces the cost of the user certificate management. Experimental results show the effectiveness and feasibility of our scheme. Based on the proposed authentication scheme, a cross-domain access control scheme based on roles and object classes is presented, by treating the object classes as controlled objects and then applying the role-based access control to the object classes, on the condition that the heterogeneous domains in the Energy Internet have the same kinds of resources.

Efficient and Anonymous Cross-Domain Authentication for IIoT Based on Blockchain

The rapid development of the Industrial Internet of Things (IIoT) has realized the intelligence of industrial manufacturing and improved production efficiency. For improved collaboration, devices from different management domains (e.g., factories) connected through various communication technologies exchange information and share resources. However, they face security and privacy issues when cross-domain communication requires authentication. The limitations of existing schemes include the risk of a single point of failure in a trusted center, leakage of device privacy, high certificate management costs, and low authentication efficiency. Because blockchain with features such as decentralization and tamper-proof can effectively solve some of these problems, we design an efficient and anonymous cross-domain authentication scheme based on blockchain to achieve reliable communication between cross-domain IIoT devices. Specifically, our scheme improves authentication efficiency while enabling device anonymity to ensure that identities are not linkable, and combines blockchain and dynamic accumulator technology to achieve fast authentication. Security analysis demonstrates that our scheme can resist common attacks, and a performance evaluation proves its feasibility and efficiency.

BLECA: A Blockchain-Based Lightweight and Efficient Cross-Domain Authentication Scheme for Smart Parks

BLECA: A Blockchain-Based Lightweight and Efficient Cross-Domain Authentication Scheme for Smart Parks

Cross-Domain Authentication Scheme Based on Blockchain and Consistent Hash Algorithm for System-Wide Information Management

Cross-Domain Authentication Scheme Based on Blockchain and Consistent Hash Algorithm for System-Wide Information Management

A Certificateless Anonymous Cross-Domain Authentication Scheme Assisted by Blockchain for Internet of Vehicles

With the development of the Internet of Things and the increase of intelligent vehicles, the Internet of Vehicles (IoVs) have been widely used in the information communication such as road and traffic conditions. However, heavy overhead of certificate management, high computing load of identity and message authentication, and the privacy disclosure of vehicle nodes have hindered the development of intelligent transportation. In this study, we propose a certificateless cross-domain anonymous authentication scheme based on blockchain for IoVs. Specifically, the vehicle identity information is authenticated by the first roadside unit (RSU), and transactions are recorded permanently and immutably in the blockchain to reduce the repeated authentication load of other RSUs. To achieve conditional privacy, the trusted authority (TA) generates pseudonyms for each registered user. The relation between the pseudonym and the real identity is kept confidential by the TA and only can only be revealed in case of disputes. Meanwhile, the private key of the vehicle is generated anonymously on the basis of certificateless technology and the pairing-free signature verification. Correctness and security proof demonstrate that our proposed scheme is provably secure and can withstand different types of attacks. A simulation environment has been built to test the packet loss rate and delay of messages in the network. Results show that the proposed scheme is more efficient than the related schemes.