User-centered multi-factor authentication method for multi-IDP aggregation

User-centered multi-factor authentication method for multi-IDP aggregation

A user-centered multi-IDP aggregation-oriented multi-factor authentication method is used for solving the problems of user identity privacy and incapability of realizing multi-IDP expandability, and comprises the following specific steps: a data registration center generates a public parameter and a...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: ZHAO GUICHUAN, JIANG QI, YANG XUE, LIU YIJING
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A user-centered multi-IDP aggregation-oriented multi-factor authentication method is used for solving the problems of user identity privacy and incapability of realizing multi-IDP expandability, and comprises the following specific steps: a data registration center generates a public parameter and a signature key and a verification key of each identity provider IDP; each identity provider IDP issues identity certificates for different authentication factors of the user and stores the identity certificates in the data registration center; according to an authorization strategy of a service provider (SP), the user obtains a certificate from the data registration center; the user aggregates a plurality of certificates into one certificate; a service provider (SP) verifies authentication factors in credentials using zero-knowledge attestation and bilinear mapping techniques. The method has user non-linkability and non-trackability, reduces the calculation overhead of multi-IDP scene authentication, and can be wid