SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier

OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this...

Descripción completa

Detalles Bibliográficos
Autores principales: Krishna, Danda Prudhvi, Ramaguru, R., Praveen, K., Sethumadhavan, M., Ravichandran, Kattur Soundarapandian, Krishankumar, Raghunathan, Gandomi, Amir H.
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Nature Publishing Group UK 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10603108/
https://www.ncbi.nlm.nih.gov/pubmed/37884584
http://dx.doi.org/10.1038/s41598-023-44586-6
_version_ 1785126532456382464
author Krishna, Danda Prudhvi
Ramaguru, R.
Praveen, K.
Sethumadhavan, M.
Ravichandran, Kattur Soundarapandian
Krishankumar, Raghunathan
Gandomi, Amir H.
author_facet Krishna, Danda Prudhvi
Ramaguru, R.
Praveen, K.
Sethumadhavan, M.
Ravichandran, Kattur Soundarapandian
Krishankumar, Raghunathan
Gandomi, Amir H.
author_sort Krishna, Danda Prudhvi
collection PubMed
description OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this problem, we need a distributed framework to authenticate and authorize the user without third-party involvement. This paper proposes a distributed authentication and authorization framework using a secret-sharing mechanism that comprises a blockchain-based decentralized identifier and a private distributed storage via an interplanetary file system. We implemented our proposed framework in Hyperledger Fabric (permissioned blockchain) and Ethereum TestNet (permissionless blockchain). Our performance analysis indicates that secret sharing-based authentication takes negligible time for generation and a combination of shares for verification. Moreover, security analysis shows that our model is robust, end-to-end secure, and compliant with the Universal Composability Framework.
format Online
Article
Text
id pubmed-10603108
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher Nature Publishing Group UK
record_format MEDLINE/PubMed
spelling pubmed-106031082023-10-28 SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier Krishna, Danda Prudhvi Ramaguru, R. Praveen, K. Sethumadhavan, M. Ravichandran, Kattur Soundarapandian Krishankumar, Raghunathan Gandomi, Amir H. Sci Rep Article OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this problem, we need a distributed framework to authenticate and authorize the user without third-party involvement. This paper proposes a distributed authentication and authorization framework using a secret-sharing mechanism that comprises a blockchain-based decentralized identifier and a private distributed storage via an interplanetary file system. We implemented our proposed framework in Hyperledger Fabric (permissioned blockchain) and Ethereum TestNet (permissionless blockchain). Our performance analysis indicates that secret sharing-based authentication takes negligible time for generation and a combination of shares for verification. Moreover, security analysis shows that our model is robust, end-to-end secure, and compliant with the Universal Composability Framework. Nature Publishing Group UK 2023-10-26 /pmc/articles/PMC10603108/ /pubmed/37884584 http://dx.doi.org/10.1038/s41598-023-44586-6 Text en © The Author(s) 2023 https://creativecommons.org/licenses/by/4.0/Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article's Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article's Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/ (https://creativecommons.org/licenses/by/4.0/) .
spellingShingle Article
Krishna, Danda Prudhvi
Ramaguru, R.
Praveen, K.
Sethumadhavan, M.
Ravichandran, Kattur Soundarapandian
Krishankumar, Raghunathan
Gandomi, Amir H.
SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title_full SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title_fullStr SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title_full_unstemmed SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title_short SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier
title_sort ssh-dauth: secret sharing based decentralized oauth using decentralized identifier
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10603108/
https://www.ncbi.nlm.nih.gov/pubmed/37884584
http://dx.doi.org/10.1038/s41598-023-44586-6
work_keys_str_mv AT krishnadandaprudhvi sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT ramagurur sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT praveenk sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT sethumadhavanm sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT ravichandrankattursoundarapandian sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT krishankumarraghunathan sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier
AT gandomiamirh sshdauthsecretsharingbaseddecentralizedoauthusingdecentralizedidentifier

Ejemplares similares