网络与信息安全学报 ›› 2021, Vol. 7 ›› Issue (6): 88-98.doi: 10.11959/j.issn.2096-109x.2021054

• 专栏Ⅱ:区块链技术 • 上一篇    

基于区块链的电网可信分布式身份认证系统

杨冠群1, 刘荫1, 徐浩1, 邢宏伟2, 张建辉2, 李恩堂2   

  1. 1 国网山东省电力公司信息通信公司,山东 济南 250001
    2 山东鲁软数字科技有限公司,山东 济南 250001
  • 修回日期:2021-10-13 出版日期:2021-12-01 发布日期:2021-12-01
  • 作者简介:杨冠群(1989− ),男,山东济南人,国网山东省电力公司信息通信公司工程师,主要研究方向为机器学习、人工智能及区块链技术
    刘荫(1985− ),男,山东莱芜人,国网山东省电力公司信息通信公司工程师,主要研究方向为大数据分析与共享应用
    徐浩(1988− ),男,山东莱芜人,国网山东省电力公司信息通信公司工程师,主要研究方向为大数据分析
    邢宏伟(1972− ),男,山东青州人,山东鲁软数字科技有限公司公司高级工程师,主要研究方向为新一代信息通信技术在电网生产和企业管理中的应用
    张建辉(1971− ),男,河南洛阳人,山东鲁软数字科技有限公司高级工程师,主要研究方向为人工智能、信息安全及区块链技术
    李恩堂(1977− ),男,甘肃天水人,山东鲁软数字科技有限公司工程师,主要研究方向为人工智能、信息安全及区块链技术
  • 基金资助:
    国网山东省电力公司科技项目(520627200004)

Credible distributed identity authentication system of microgrid based on blockchain

Guanqun YANG1, Yin LIU1, Hao XU1, Hongwei XING2, Jianhui ZHANG2, Entang LI2   

  1. 1 Information & Telecommunications Company.State Grid Shandong Electric Power Company, Ji'nan 250001, China
    2 Shandong Luruan Digital Technology Co., LTD, Ji'nan 250001, China
  • Revised:2021-10-13 Online:2021-12-01 Published:2021-12-01
  • Supported by:
    State Grid Shandong Electric Power Company Science and Technology Project(520627200004)

摘要:

基于区块链的身份认证系统大多基于公有区块链平台,本质上仍是传统的中心式身份管理和验证方式,难以满足微电网中可信接入、细粒度访问控制等需求。因此,基于 FISCO BCOS 联盟区块链技术,设计了一个支持多中心的分布式身份认证系统,提出了基于 DID 的身份管理协议,实现了用户身份的自主控制;研究了微网中终端节点的分布式可信接入技术,设计了基于零知识证明的隐私保护凭证,为用户和上层应用构建一个公开透明可信的底层身份架构,满足了不同的隐私安全场景下用户身份的可信可验证的需求,实现了实体身份的自主控制、细粒度访问控制和可信数据交换。通过系统实验和性能分析证明了所设计系统的可用性和有效性。

关键词: 微网, 区块链, 零知识证明, 隐私保护凭证, 分布式身份认证, 访问控制

Abstract:

Most of the blockchain-based identity authentication systems are based on public blockchain, which are still essentially traditional centralized identity management and verification methods, making it difficult to meet the needs of trusted access and fine-grained access control in microgrids.Therefore, based on the FISCO BCOS consortium blockchain technology, a distributed identity authentication system supporting multi-center was designed.A DID-based identity management protocol to achieve autonomous control of user identity in a practical scenarios was designed.Distributed trusted access technology for end nodes in microgrids was studied, and privacy-protecting credentials based on zero-knowledge proof were designed.This scheme meets the requirements of trustworthy and verifiable user identity in different privacy security scenarios, and achieves autonomous control of entity identity, fine-grained access control and trusted data exchange.The usability and effectiveness of the proposed algorithm are demonstrated through system experiments and performance analysis.

Key words: microgrid, blockchain, zero-knowledge proof, privacy credentials, distributed identity authentication system, access control

中图分类号: 

No Suggested Reading articles found!