CN109936569A - A kind of decentralization digital identity login management system based on ether mill block chain - Google Patents
A kind of decentralization digital identity login management system based on ether mill block chain Download PDFInfo
- Publication number
- CN109936569A CN109936569A CN201910130292.3A CN201910130292A CN109936569A CN 109936569 A CN109936569 A CN 109936569A CN 201910130292 A CN201910130292 A CN 201910130292A CN 109936569 A CN109936569 A CN 109936569A
- Authority
- CN
- China
- Prior art keywords
- user
- module
- decentralization
- block chain
- ether mill
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the invention discloses a kind of, and the decentralization digital identity based on ether mill block chain logs in management system, the system comprises the intelligent contract module on the block chain of ether mill and the identity provider servers under block chain, the identity provider server includes user authentication module and identification authorization module, pass through block chain and cryptological technique, the digital identities conformity of business operation such as single-sign-on are realized in the case where eliminating digital identity identifier and centrally stored password, user can manage independently oneself digital identity identifier and public key by the intelligent contract on block chain on ether mill, the safely and efficiently digital identity login conventional web sites by user's autonomy-oriented can be realized in the private key that oneself need to only be kept, user has complete control power and the right to use to digital identity, without depending on identity data server.
Description
Technical field
The present embodiments relate to field of computer technology, and in particular to a kind of decentralization based on ether mill block chain
Digital identity logs in management system.
Background technique
Currently, the integration of identification system registering service is generally using solutions such as single-sign-ons, traditional solution is all
The identity data server established using open protocols such as OpenID or OAuth is needed, to help to realize registering service
In the certification and authorization flow that are likely to be encountered.
On this basis, when user needs to log in the system after identity business integration, it is necessary to first in identity data service
Device establishes the personal identification archives of oneself, the particularly important is identification identifier and password, identification identifier and password are by identity
Data server is grasped, and user places one's entire reliance upon identity data server for the control power and the right to use of digital identity, is not had
It obtains proper entirely autonomous and ensures.
Summary of the invention
For this purpose, the embodiment of the present invention provides a kind of decentralization digital identity login management system based on ether mill block chain
System, to solve in the prior art since control power and the right to use of the user for digital identity place one's entire reliance upon identity data service
Device, cannot achieve it is entirely autonomous and ensure the problem of.
To achieve the goals above, the embodiment of the present invention provides the following technical solutions: a kind of based on ether mill block chain
Decentralization digital identity logs in management system, and the system comprises the intelligent contract modules and block on the block chain of ether mill
Identity provider server under chain, the identity provider server includes user authentication module and identification authorization module:
It is described intelligence contract module be used for by user's registration and manage decentralization identifier and with the decentralization
The associated public key information of identifier and correlation attribute information, the correlation attribute information includes that user is customized goes with described
The associated third party service provider's website service terminal point information of centralization identifier;
The logging request that the user authentication module is used to be sent according to user to third party service provider website inquires user
Corresponding public key information in the intelligent contract module and to the number by private key encryption subsidiary in the logging request
Signing messages is verified, to authenticate to user identity;
The identification authorization module, which is used to configure corresponding single-sign-on agreement by user and third party service provider website, joins
Number, and after the authentication of user passes through, the corresponding third party's service of user is authorized according to the single-sign-on protocol parameter
The logon rights of quotient website.
Preferably, the system also includes ether mill interactive module, ether mill interactive module is necessary for providing
Intelligent contract interactive interface is to realize the interaction of user and the intelligent contract module.
Preferably, the system also includes ether mill encrypting module, ether mill encrypting module is used to pass through ether mill
The Encryption Algorithm of block chain generates the digital signature information using the private key encryption of user.
Preferably, the system specifically includes that configuration phase, authorization stages to the login management of decentralization digital identity
And entry stage.
Preferably, the configuration phase includes:
The third party service provider establishes website single-sign-on agreement;
User and third party service provider website are in the corresponding single-sign-on protocol parameter of identification authorization module configuration;
User is in the intelligent contract Module registers and formulates decentralization identifier and identifies with the decentralization
Accord with the Managed Solution of associated public key information and correlation attribute information.
Preferably, the authorization stages include:
The approval request that user independently logs in the identification authorization module to the initiation of third party service provider website;
Third party service provider website is looked by user authentication module to the intelligent contract module according to the approval request
It askes and confirms number identity information;
The third party service provider passes through the approval request by identification authorization module and authorizes the corresponding logon rights of user.
Preferably, the entry stage includes:
User initiates logging request in third party service provider website, is accompanied with digital signature information in the logging request;
Third party service provider website obtains the public key information in intelligent contract module to institute by the user authentication module
It states digital signature information and carries out verifying to authenticate to user identity, and confirm the login of user by identification authorization module
Permission;
After user identity authentication passes through and logon rights determine, user successfully logs in third party service provider website and basis
The logon rights obtain respective resources.
Preferably, the single-sign-on agreement includes OpenID, OAuth or SAML agreement.
The embodiment of the present invention has the advantages that
The embodiment of the present invention proposes a kind of decentralization digital identity login management system based on ether mill block chain,
The system includes the intelligent contract module on the block chain of ether mill and the identity provider server under block chain, and identity provides
Quotient's server includes that user authentication module and identification authorization module by block chain and cryptological technique are eliminating digital body
Realize that digital identities conformity of business operation, the users such as single-sign-on can pass through ether in the case that part identifier and password are centrally stored
Intelligent contract on mill on block chain manages independently the identification identifier and public key of oneself, only need to keep the private key of oneself i.e.
It can be achieved safely and efficiently to log in conventional web sites by the digital identity of user's autonomy-oriented, user has to the complete of digital identity
Power and the right to use are controlled, without depending on identity data server.
Detailed description of the invention
It, below will be to embodiment party in order to illustrate more clearly of embodiments of the present invention or technical solution in the prior art
Formula or attached drawing needed to be used in the description of the prior art are briefly described.It should be evident that the accompanying drawings in the following description is only
It is merely exemplary, it for those of ordinary skill in the art, without creative efforts, can also basis
The attached drawing of offer, which is extended, obtains other implementation attached drawings.
Structure depicted in this specification, ratio, size etc., only to cooperate the revealed content of specification, for
Those skilled in the art understands and reads, and is not intended to limit the invention enforceable qualifications, therefore does not have technical
Essential meaning, the modification of any structure, the change of proportionate relationship or the adjustment of size are not influencing the function of the invention that can be generated
Under effect and the purpose that can reach, should all still it fall in the range of disclosed technology contents obtain and can cover.
Fig. 1 is that a kind of decentralization digital identity based on ether mill block chain that the embodiment of the present invention 1 provides logs in pipe
The logical architecture schematic diagram of reason system.
Specific embodiment
Embodiments of the present invention are illustrated by particular specific embodiment below, those skilled in the art can be by this explanation
Content disclosed by book is understood other advantages and efficacy of the present invention easily, it is clear that described embodiment is the present invention one
Section Example, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art are not doing
Every other embodiment obtained under the premise of creative work out, shall fall within the protection scope of the present invention.
Embodiment 1
The embodiment of the present invention proposes a kind of decentralization digital identity login management system based on ether mill block chain.
Block chain technology provide it is a kind of without centrally stored digital identity identifier a possibility that, mainly have benefited from asymmetric encryption
The public and private key of technology, asymmetric encryption has abstract sense in digital identity business relative to traditional identification identifier, password
Great similarity, after realizing digital identification authentication and authorization by asymmetric encryption, it is traditional for using single-sign-on agreement
Website transmission trust data is to realize the business such as digital identity integration login, and relevant, certification means to confirm some user
It is that people that he is stated, the user that authorization meaning determines that an identity determines is able to access that those resources.
Ether mill (Ethereum) is the public block platform chain for having intelligent contract function of an open source, intelligent contract
(Smart contract) is a kind of computer protocol for being intended to propagate, verify or execute in a manner of information-based contract, and intelligence is closed
About allow to carry out credible transaction in no third-party situation, these transaction are traceable and irreversible.The private key in ether mill
It is generated at random by specp256k1 elliptic curve, by the available public key of private key, and ether mill address is then public key
Derivative.In asymmetric encryption techniques, the encryption of information is encrypted with public key, is decrypted with private key, it is ensured that information
Safety;Digital signature is to generate signature with private key encryption and verifying signature is decrypted with public key, it is ensured that digital signature is returned
Attribute has its non-repudiation, it is assumed that the public key encryption message of A B after B is connected to message, is used first with the private key signature of A
The public key verifications of A are signed, and decrypt message with the private key of oneself after confirmation.
As shown in Figure 1, the system includes that the intelligent contract module on the block chain of ether mill and the identity under block chain mention
For quotient's server, identity provider server includes user authentication module and identification authorization module.
Intelligent contract module be used for by user's registration and manage decentralization identifier and with decentralization identifier phase
Associated public key information and correlation attribute information, correlation attribute information include that user is customized related to decentralization identifier
Third party service provider's website service terminal point information of connection.
Specifically, intelligent contract includes three parts, i.e., decentralization identifier ownership (owner), rotation of key with
Manage (public keys) and decentralization identifier association attributes (attribute).
Decentralization identifier (Decentralized Identifiers, be abbreviated as DIDs), which is that one kind is novel, can verify that
And the digital identity identifier that possesses " self sovereignty ", as a kind of authentication data structure of decentralization, can define people,
The method specification of object and mechanism, decentralization identifier is created by World Wide Web Consortium (W3C), and the appearance of block chain technology is to implement
Decentralization Identity Management provides chance, in decentralization identifier, all identity informations all shapes of account book in a distributed manner
Formula shares trusted node, and each decentralization identifier is protected by the private key encryption of the identity owner, it is acknowledged as to weigh
It is new to define the important safety layer lacked in Internet protocol, i.e. identity layer, traditional identity authentication management system be it is centralized,
And decentralization identifier is totally independent of centralized management center, Third Party Authentication service and certification authority.
In the embodiment of the present invention, each entity, which can according to need, possesses DIDs as much as possible, is wished with respecting entity
The identity of prestige, realizes the separation of character and background, and decentralization identifier ownership passes through in decentralization identifier
Binding ether mill address is arranged, and decentralization identifier identifier is subject to Tai Fangdi using Fixed CP " DIDs:idhub "
The data format of location, each decentralization identifier can specify an ether mill address as the institute of decentralization identifier
The side of having, this all side possess unique permission of this centralization identifier corresponding data in modification intelligence and about three parts.
Rotation of key and management are led to for realizing the rotation and management of the public key being independently recorded in intelligent contract to user
It crosses to be traded by user using the ether mill address transmission ether mill of all sides of decentralization identifier and calls intelligence to ether mill
Contract-defined interface is realized.Public key supports the data formats such as hexadecimal string, base64 character string or pem.
In the present embodiment, the reading for data in intelligent contract is real by decentralization identifier document parsing module
It is existing, decentralization identifier document parsing module can read the data recorded in intelligent contract and by data be converted into for
The decentralization identifier document that third party or other users are read.Decentralization identifier document is using the json number that can be read
According to format.In version, decentralization identifier in decentralization identifier document including decentralization identifier standard specification
Appearance, public key json array, the customized service endpoints of user and customization special field information.
Specifically, decentralization identifier document mainly includes following field:
1, the version of Context: "@context " expression decentralization identifier standard specification;
2, Subject: " id " indicates decentralization identifier contents, be defaulted as " DIDs:idhub:
EthereumAddressExample";
3, PublicKeys: " publicKey " indicates that one is independently recorded in decentralization identifier comprising all users
Public key json array in intelligent contract, for rotation of key and management, third party or other users can pass through this field
Content verification user's signature data.The format of public key json array individual element is exemplified below, and public key format is defaulted as
" publicKeyHex ":
4, ServiceEndpoints: " service " is indicated by user record in intelligent contract " Attribute " field
Data refer in particular to user and carry out required service endpoints when data processing under chain under block.Citing, general format are as follows:
5, customize special field information: user can customize special field and be recorded in decentralization identifier to handle
Customization data in contract.
In addition, decentralization identifier document parsing module by respectively with decentralization identifier ownership contract, close
Key rotation intelligent contract event corresponding with management agreement and decentralization identifier association attributes contract reads the number of each section
According to.Intelligent contract event is to facilitate tool using EVM log build-in function, and in the interface of DAPP, it can be adjusted in turn
With the readjustment of the event of monitoring.Event can be inherited in intelligent contract, when called upon, can trigger the storage of (emit) parameter to friendship
In easy log (a kind of block chain on special data structure), the address information of these logs and contract, and it is merged into block
In chain, always existed as long as block is accessible.
Due to the opening of block chain, anyone can inquire public key data associated with decentralization identifier
And provable private key is taken care of by the corresponding entity of all sides of decentralization identifier.Due to the spy of block chain and asymmetric encryption
Property, as long as user guarantees the safety of private key.Other users or third party can be obtained by decentralization identifier document
User wishes the open public key used to verify the digital signature information of user, can be closed also or intelligently by calling ether mill
About " validPublicKey (address identity, bytes32 publicKeyType, bytes32 publicKey) "
Whether interface check client public key is proper use of.
The logging request inquiry user that user authentication module is used to be sent according to user to third party service provider website is in intelligence
Corresponding public key information in contract module and the digital signature information by private key encryption subsidiary in logging request can be carried out
Verifying, to be authenticated to user identity.
Identification authorization module is used to configure corresponding single-sign-on protocol parameter by user and third party service provider website, and
After the authentication of user passes through, stepping on for the corresponding third party service provider website of user is authorized according to single-sign-on protocol parameter
Record permission.
Preferably, system further includes ether mill interactive module, and ether mill interactive module is for providing necessary intelligent contract
Interactive interface is to realize the interaction of user and intelligent contract module.
Preferably, system further includes ether mill encrypting module, and ether mill encrypting module is used for through ether mill block chain
Encryption Algorithm generates digital signature information using the private key encryption of user.
The system specifically includes that configuration phase, authorization stages and login to the login management of decentralization digital identity
Stage.
Wherein, configuration phase includes:
The third party service provider establishes website single-sign-on agreement, and single-sign-on agreement includes OpenID, OAuth or SAML
Agreement;
User and third party service provider website are in the corresponding single-sign-on protocol parameter of identification authorization module configuration;
User is in intelligent contract Module registers and formulates decentralization identifier and associated with decentralization identifier
Public key information and correlation attribute information Managed Solution.
Single-sign-on SSO (Single Sign On) is in the environment of a condition of multi-system coexistence, and user logs at one
Afterwards, just do not have to log in other systems, that is, the primary login of user can obtain other systematic trusts of institute, it is all
User identity all by unified certification, that is to say, that the proof-of-identity (such as password) of user is only saved at one, other son
System does not directly obtain the sensitive informations such as the password of user, but receives the proof of identification from trusted sources, single-sign-on
It is OpenID, OAuth and SAML with three solutions main in unified certification.
OpenID is the online identity Verification System an of decentralization, and for supporting the website of OpenID, user is not required to
Remember that the conventional authentication as username and password marks, instead, they only need in advance in a conduct
It is registered on the website of OpenID Identity Provider (identityprovider, IdP), OpenID is decentralization, any net
A kind of mode that log in as user of OpenID can be used by standing, and any website also all can serve as OpenID identity and provide
Person.OpenID is both solved the problems, such as and is not need to rely on central website to confirm digital identity.
OAuth2 provides a kind of proxy access mechanism, that is to say, that an application (can be referred to as client) can generation
Belong to the resource of user for acquisition on user to Resource Server or carries out the operation for meeting user right, and user does not have to incite somebody to action
The proof-of-identities such as the user name and password of oneself are shared with client, and OAuth2 is to issue token to third-party application by IDP
(Token) Lai Shixian above functions, third-party application exchanges corresponding resource for resource service by using token.
As a kind of security assertion makeup language, SAML agreement both can be used for authenticating to be also used for authorizing SAML.It is so-called
Security assertions, exactly about certification, authorization and user property (such as with the information such as the effective or address of user)
Statement set, in SAML, these format transmissions asserted with XML.When to verify a user identity, service provider
(Service Provider, SP, i.e. RP should have relying party) can issue SAML certification request to IDP, can be with XML in the request
The setting of format description authentication mode, for example wish that IDP verifies user in which way;IDP certification by user identity it
Afterwards, SAML request response can be returned, equally returns in xml format and asserts and show user identity and association attributes, furthermore SAML pacifies
Full property asserts that information has to using digital signature to guarantee that its integrality and non repudiation (are not strictly required disconnected to SAML
Speech encryption);SP is received after SAML asserts, is verified whether its informed source takes trusted IDP, is parsed after being verified
XML certified Information.
Authorization stages include:
The approval request that user independently logs in identification authorization module to the initiation of third party service provider website;
Third party service provider website to intelligent contract module polls and is confirmed according to approval request by user authentication module
Number identity information;
The third party service provider passes through approval request by identification authorization module and authorizes the corresponding logon rights of user.
Entry stage includes:
User initiates logging request in third party service provider website, is accompanied with digital signature information in logging request;
Third party service provider website obtains the public key information in intelligent contract module by user authentication module and signs to number
Name information carries out verifying to authenticate to user identity, and the logon rights of user are confirmed by identification authorization module;
After user identity authentication passes through and logon rights determine, user successfully logs in third party service provider website and basis
Logon rights obtain respective resources.
It is real in the case where eliminating digital identity identifier and centrally stored password by block chain and cryptological technique
The digital identities conformity of business operation such as existing single-sign-on, user can be managed independently certainly by the intelligent contract on block chain on ether mill
Oneself identification identifier and public key, need to only keep the private key of oneself can be realized safely and efficiently through user's autonomy-oriented
Digital identity logs in conventional web sites, and user has complete control power and the right to use to digital identity, without depending on identity
Data server.
Although above having used general explanation and specific embodiment, the present invention is described in detail, at this
On the basis of invention, it can be made some modifications or improvements, this will be apparent to those skilled in the art.Therefore,
These modifications or improvements without departing from theon the basis of the spirit of the present invention are fallen within the scope of the claimed invention.
Claims (8)
1. a kind of decentralization digital identity based on ether mill block chain logs in management system, which is characterized in that the system
Including the intelligent contract module on the block chain of ether mill and the identity provider server under block chain, the identity provider
Server includes user authentication module and identification authorization module:
The intelligence contract module is used to identify by user's registration and management decentralization identifier and with the decentralization
Associated public key information and correlation attribute information are accorded with, the correlation attribute information, which includes that user is customized, goes to center with described
Change the associated third party service provider's website service terminal point information of identifier;
The logging request inquiry user that the user authentication module is used to be sent according to user to third party service provider website is in institute
State the corresponding public key information in intelligent contract module and to the digital signature by private key encryption subsidiary in the logging request
Information is verified, to authenticate to user identity;
The identification authorization module is used to configure corresponding single-sign-on protocol parameter by user and third party service provider website, and
After the authentication of user passes through, the corresponding third party service provider website of user is authorized according to the single-sign-on protocol parameter
Logon rights.
2. a kind of decentralization digital identity based on ether mill block chain according to claim 1 logs in management system,
It is characterized in that, ether mill interactive module is for providing necessary intelligence the system also includes ether mill interactive module
Contract interactive interface is to realize the interaction of user and the intelligent contract module.
3. a kind of decentralization digital identity based on ether mill block chain according to claim 1 logs in management system,
It is characterized in that, ether mill encrypting module is used to pass through ether mill block the system also includes ether mill encrypting module
The Encryption Algorithm of chain generates the digital signature information using the private key encryption of user.
4. a kind of decentralization digital identity based on ether mill block chain according to claim 1 logs in management system,
It is characterized in that, the system to the login management of decentralization digital identity specifically include that configuration phase, authorization stages and
Entry stage.
5. a kind of decentralization digital identity based on ether mill block chain according to claim 4 logs in management system,
It is characterized in that, the configuration phase includes:
The third party service provider establishes website single-sign-on agreement;
User and third party service provider website are in the corresponding single-sign-on protocol parameter of identification authorization module configuration;
User the intelligent contract Module registers and formulate decentralization identifier and with the decentralization identifier phase
The Managed Solution of associated public key information and correlation attribute information.
6. a kind of decentralization digital identity based on ether mill block chain according to claim 4 logs in management system,
It is characterized in that, the authorization stages include:
The approval request that user independently logs in the identification authorization module to the initiation of third party service provider website;
Third party service provider website according to the approval request by user authentication module to the intelligent contract module polls simultaneously
Confirm number identity information;
The third party service provider passes through the approval request by identification authorization module and authorizes the corresponding logon rights of user.
7. a kind of decentralization digital identity based on ether mill block chain according to claim 4 logs in management system,
It is characterized in that, the entry stage includes:
User initiates logging request in third party service provider website, is accompanied with digital signature information in the logging request;
Third party service provider website obtains the public key information in intelligent contract module to the number by the user authentication module
Word signing messages carries out verifying to authenticate to user identity, and the login power of user is confirmed by identification authorization module
Limit;
User identity authentication pass through and logon rights determine after, user successfully logs in third party service provider website and according to described
Logon rights obtain respective resources.
8. a kind of decentralization digital identity based on ether mill block chain according to claim 5 logs in management system,
It is characterized in that, the single-sign-on agreement includes OpenID, OAuth or SAML agreement.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910130292.3A CN109936569B (en) | 2019-02-21 | 2019-02-21 | Decentralized digital identity login management system based on Ether house block chain |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910130292.3A CN109936569B (en) | 2019-02-21 | 2019-02-21 | Decentralized digital identity login management system based on Ether house block chain |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109936569A true CN109936569A (en) | 2019-06-25 |
| CN109936569B CN109936569B (en) | 2021-05-28 |
Family
ID=66985685
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910130292.3A Active CN109936569B (en) | 2019-02-21 | 2019-02-21 | Decentralized digital identity login management system based on Ether house block chain |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109936569B (en) |
Cited By (42)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110519277A (en) * | 2019-08-29 | 2019-11-29 | 上海威尔立杰网络科技发展有限公司 | A method of contract is executed based on single-point and realizes the other systems of control |
| CN110545273A (en) * | 2019-08-29 | 2019-12-06 | 广东昭阳信息技术有限公司 | resource allocation method and system based on block chain application |
| CN110798483A (en) * | 2019-11-12 | 2020-02-14 | 北京芯际科技有限公司 | Identity authentication method based on block chain |
| CN111030829A (en) * | 2019-12-24 | 2020-04-17 | 山东爱城市网信息技术有限公司 | Method, device and medium for authorizing login of third-party application based on block chain |
| WO2019179534A3 (en) * | 2019-07-02 | 2020-04-30 | Alibaba Group Holding Limited | System and method for creating decentralized identifiers |
| WO2019179537A3 (en) * | 2019-07-02 | 2020-04-30 | Alibaba Group Holding Limited | System and method for implementing a resolver service for decentralized identifiers |
| CN111260475A (en) * | 2020-02-18 | 2020-06-09 | 腾讯科技(深圳)有限公司 | A data processing method, block chain node device and storage medium |
| US10685099B2 (en) | 2019-07-02 | 2020-06-16 | Alibaba Group Holding Limited | System and method for mapping decentralized identifiers to real-world entities |
| CN111355723A (en) * | 2020-02-26 | 2020-06-30 | 腾讯科技(深圳)有限公司 | Single sign-on method, device, equipment and readable storage medium |
| CN111461710A (en) * | 2020-03-06 | 2020-07-28 | 重庆邮电大学 | Distributed account book access control method based on alliance chain |
| CN111460465A (en) * | 2020-02-19 | 2020-07-28 | 山东爱城市网信息技术有限公司 | A blockchain-based identity authentication method, device and medium |
| US10728042B2 (en) | 2019-07-02 | 2020-07-28 | Alibaba Group Holding Limited | System and method for blockchain-based cross-entity authentication |
| US10756885B2 (en) | 2019-07-02 | 2020-08-25 | Alibaba Group Holding Limited | System and method for blockchain-based cross entity authentication |
| CN111600900A (en) * | 2020-05-26 | 2020-08-28 | 牛津(海南)区块链研究院有限公司 | Blockchain-based single sign-on method, server and system |
| CN111787530A (en) * | 2020-08-06 | 2020-10-16 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN111813999A (en) * | 2020-08-13 | 2020-10-23 | 广州东港安全印刷有限公司 | A method to improve the scalability of Ethereum smart contract fields |
| CN111832001A (en) * | 2020-07-20 | 2020-10-27 | 国家信息中心 | Blockchain-based identity management method and identity management system |
| CN111885049A (en) * | 2020-07-21 | 2020-11-03 | 王海涛 | Memory system based on block chain technology |
| CN112100610A (en) * | 2020-11-20 | 2020-12-18 | 支付宝(杭州)信息技术有限公司 | Method, device and equipment for processing login and user login related services |
| CN112398799A (en) * | 2019-08-19 | 2021-02-23 | 北京国双科技有限公司 | Single sign-on method, device and system |
| US10938569B2 (en) | 2019-07-02 | 2021-03-02 | Advanced New Technologies Co., Ltd. | System and method for verifying verifiable claims |
| CN112468504A (en) * | 2020-11-30 | 2021-03-09 | 四川易诚智讯科技有限公司 | Industrial control network access control method based on block chain |
| CN112653553A (en) * | 2020-12-29 | 2021-04-13 | 上海交通大学 | Internet of things equipment identity management system |
| CN112713990A (en) * | 2019-10-25 | 2021-04-27 | 驷途(上海)科技有限公司 | Identity authentication system |
| CN112768018A (en) * | 2020-12-15 | 2021-05-07 | 扬州大学 | Electronic medical record security sharing method based on integrated credit evaluation intelligent contract |
| CN112800446A (en) * | 2021-01-26 | 2021-05-14 | 南京纯白矩阵科技有限公司 | Safe decentralized application hosting method |
| CN113159682A (en) * | 2021-04-22 | 2021-07-23 | 上海卓钢链科技有限公司 | Electronic warehouse receipt information alliance chain system |
| CN113221093A (en) * | 2021-05-25 | 2021-08-06 | 成都佰纳瑞信息技术有限公司 | Single sign-on system, method, equipment and product based on block chain |
| CN113222595A (en) * | 2021-04-23 | 2021-08-06 | 上海和数软件有限公司 | Electric power data storage and query method and system based on block chain technology |
| CN113378240A (en) * | 2021-06-23 | 2021-09-10 | 浪潮云信息技术股份公司 | Synchronous calling user identity authentication method based on block chain |
| CN113852628A (en) * | 2021-09-23 | 2021-12-28 | 武汉众邦银行股份有限公司 | Decentralized single sign-on method, decentralized single sign-on device and storage medium |
| CN114238897A (en) * | 2021-12-27 | 2022-03-25 | 四川启睿克科技有限公司 | Internet of things data acquisition system and method based on distributed digital identity |
| CN114342322A (en) * | 2019-09-13 | 2022-04-12 | 索尼集团公司 | Single sign-on (SSO) authentication via multiple authentication options |
| CN114401100A (en) * | 2021-10-02 | 2022-04-26 | 杭州荔藤网络科技有限公司 | A cross-application platform login method and system for a blockchain account |
| CN114826618A (en) * | 2022-05-06 | 2022-07-29 | 珠海复旦创新研究院 | Certificate distribution and access control integrated system |
| CN115102760A (en) * | 2022-06-21 | 2022-09-23 | 上海万向区块链股份公司 | Passwordless secure login system, method and medium based on blockchain and DID |
| CN115191104A (en) * | 2020-02-28 | 2022-10-14 | 微软技术许可有限责任公司 | Decentralized identity anchored by decentralized identifier |
| CN115208886A (en) * | 2022-07-13 | 2022-10-18 | 上海柚子工道物联技术有限公司 | DID-based data authorization method, system and medium |
| CN115378605A (en) * | 2022-08-16 | 2022-11-22 | 中国银行股份有限公司 | Data processing method and device based on block chain |
| CN115632795A (en) * | 2022-10-20 | 2023-01-20 | 西安热工研究院有限公司 | A blockchain-based approach to self-sovereign identity management |
| CN115766018A (en) * | 2022-10-14 | 2023-03-07 | 蚂蚁区块链科技(上海)有限公司 | Authentication method, device and equipment based on decentralized identity |
| CN117056900A (en) * | 2023-10-12 | 2023-11-14 | 中电数创(北京)科技有限公司 | Method for main body whole-flow trusted authentication in trusted data space |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107659429A (en) * | 2017-08-11 | 2018-02-02 | 四川大学 | Data sharing method based on block chain |
| CN107705125A (en) * | 2017-08-28 | 2018-02-16 | 杭州云象网络技术有限公司 | A kind of payment marking method based on block chain |
| CN108173850A (en) * | 2017-12-28 | 2018-06-15 | 杭州趣链科技有限公司 | A kind of identity authorization system and identity identifying method based on block chain intelligence contract |
| CN108235805A (en) * | 2017-12-29 | 2018-06-29 | 深圳前海达闼云端智能科技有限公司 | Account unifying method and device and storage medium |
| CN108259467A (en) * | 2017-12-13 | 2018-07-06 | 晖保智能科技(上海)有限公司 | A kind of encryption and authentication method of block chain communication system |
| CN108551437A (en) * | 2018-03-13 | 2018-09-18 | 百度在线网络技术(北京)有限公司 | Method and apparatus for authentication information |
| WO2018165763A1 (en) * | 2017-03-17 | 2018-09-20 | Royal Bank Of Canada | Systems and methods for hybrid blockchain platform |
-
2019
- 2019-02-21 CN CN201910130292.3A patent/CN109936569B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2018165763A1 (en) * | 2017-03-17 | 2018-09-20 | Royal Bank Of Canada | Systems and methods for hybrid blockchain platform |
| CN107659429A (en) * | 2017-08-11 | 2018-02-02 | 四川大学 | Data sharing method based on block chain |
| CN107705125A (en) * | 2017-08-28 | 2018-02-16 | 杭州云象网络技术有限公司 | A kind of payment marking method based on block chain |
| CN108259467A (en) * | 2017-12-13 | 2018-07-06 | 晖保智能科技(上海)有限公司 | A kind of encryption and authentication method of block chain communication system |
| CN108173850A (en) * | 2017-12-28 | 2018-06-15 | 杭州趣链科技有限公司 | A kind of identity authorization system and identity identifying method based on block chain intelligence contract |
| CN108235805A (en) * | 2017-12-29 | 2018-06-29 | 深圳前海达闼云端智能科技有限公司 | Account unifying method and device and storage medium |
| CN108551437A (en) * | 2018-03-13 | 2018-09-18 | 百度在线网络技术(北京)有限公司 | Method and apparatus for authentication information |
Non-Patent Citations (1)
| Title |
|---|
| 董贵山等: "基于区块链的身份管理认证研究", 《计算机科学》 * |
Cited By (79)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11477032B2 (en) | 2019-07-02 | 2022-10-18 | Advanced New Technologies Co., Ltd. | System and method for decentralized-identifier creation |
| TWI725793B (en) * | 2019-07-02 | 2021-04-21 | 開曼群島商創新先進技術有限公司 | System and method for mapping decentralized identifiers to real-world entities |
| US11159526B2 (en) | 2019-07-02 | 2021-10-26 | Advanced New Technologies Co., Ltd. | System and method for decentralized-identifier authentication |
| US11171789B2 (en) | 2019-07-02 | 2021-11-09 | Advanced New Technologies Co., Ltd. | System and method for implementing a resolver service for decentralized identifiers |
| WO2019179534A3 (en) * | 2019-07-02 | 2020-04-30 | Alibaba Group Holding Limited | System and method for creating decentralized identifiers |
| WO2019179537A3 (en) * | 2019-07-02 | 2020-04-30 | Alibaba Group Holding Limited | System and method for implementing a resolver service for decentralized identifiers |
| US11277268B2 (en) | 2019-07-02 | 2022-03-15 | Advanced New Technologies Co., Ltd. | System and method for verifying verifiable claims |
| US10685099B2 (en) | 2019-07-02 | 2020-06-16 | Alibaba Group Holding Limited | System and method for mapping decentralized identifiers to real-world entities |
| US10700851B2 (en) | 2019-07-02 | 2020-06-30 | Alibaba Group Holding Limited | System and method for implementing a resolver service for decentralized identifiers |
| US11082233B2 (en) | 2019-07-02 | 2021-08-03 | Advanced New Technologies Co., Ltd. | System and method for issuing verifiable claims |
| US10708060B2 (en) | 2019-07-02 | 2020-07-07 | Alibaba Group Holding Limited | System and method for blockchain-based notification |
| US11316697B2 (en) | 2019-07-02 | 2022-04-26 | Advanced New Technologies Co., Ltd. | System and method for issuing verifiable claims |
| US11038883B2 (en) | 2019-07-02 | 2021-06-15 | Advanced New Technologies Co., Ltd. | System and method for decentralized-identifier creation |
| US10728042B2 (en) | 2019-07-02 | 2020-07-28 | Alibaba Group Holding Limited | System and method for blockchain-based cross-entity authentication |
| WO2021000337A1 (en) * | 2019-07-02 | 2021-01-07 | Advanced New Technologies Co., Ltd. | System and method for mapping decentralized identifiers to real-world entities |
| WO2021000420A1 (en) * | 2019-07-02 | 2021-01-07 | Advanced New Technologies Co., Ltd. | System and method for blockchain-based cross-entity authentication |
| WO2021000419A1 (en) * | 2019-07-02 | 2021-01-07 | Advanced New Technologies Co., Ltd. | System and method for blockchain-based cross-entity authentication |
| US11165576B2 (en) | 2019-07-02 | 2021-11-02 | Advanced New Technologies Co., Ltd. | System and method for creating decentralized identifiers |
| US10938562B2 (en) | 2019-07-02 | 2021-03-02 | Advanced New Technologies Co., Ltd. | System and method for creating decentralized identifiers |
| US10938569B2 (en) | 2019-07-02 | 2021-03-02 | Advanced New Technologies Co., Ltd. | System and method for verifying verifiable claims |
| US10938551B2 (en) | 2019-07-02 | 2021-03-02 | Advanced New Technologies Co., Ltd. | System and method for implementing a resolver service for decentralized identifiers |
| US10924284B2 (en) | 2019-07-02 | 2021-02-16 | Advanced New Technologies Co., Ltd. | System and method for decentralized-identifier authentication |
| US10917246B2 (en) | 2019-07-02 | 2021-02-09 | Advanced New Technologies Co., Ltd. | System and method for blockchain-based cross-entity authentication |
| US10756885B2 (en) | 2019-07-02 | 2020-08-25 | Alibaba Group Holding Limited | System and method for blockchain-based cross entity authentication |
| US11025435B2 (en) | 2019-07-02 | 2021-06-01 | Advanced New Technologies Co., Ltd. | System and method for blockchain-based cross-entity authentication |
| CN112398799A (en) * | 2019-08-19 | 2021-02-23 | 北京国双科技有限公司 | Single sign-on method, device and system |
| WO2021031689A1 (en) * | 2019-08-19 | 2021-02-25 | 北京国双科技有限公司 | Single sign-on method, device, and system |
| CN110545273B (en) * | 2019-08-29 | 2022-05-03 | 广东昭阳信息技术有限公司 | Resource allocation method and system based on block chain application |
| CN110545273A (en) * | 2019-08-29 | 2019-12-06 | 广东昭阳信息技术有限公司 | resource allocation method and system based on block chain application |
| CN110519277A (en) * | 2019-08-29 | 2019-11-29 | 上海威尔立杰网络科技发展有限公司 | A method of contract is executed based on single-point and realizes the other systems of control |
| CN110519277B (en) * | 2019-08-29 | 2020-08-21 | 上海威尔立杰网络科技发展有限公司 | Method for realizing control of other systems based on single-point execution contract |
| CN114342322A (en) * | 2019-09-13 | 2022-04-12 | 索尼集团公司 | Single sign-on (SSO) authentication via multiple authentication options |
| CN112713990A (en) * | 2019-10-25 | 2021-04-27 | 驷途(上海)科技有限公司 | Identity authentication system |
| CN110798483A (en) * | 2019-11-12 | 2020-02-14 | 北京芯际科技有限公司 | Identity authentication method based on block chain |
| CN111030829B (en) * | 2019-12-24 | 2024-07-26 | 浪潮云信息技术股份公司 | Method, equipment and medium for authorizing third party application login based on blockchain |
| CN111030829A (en) * | 2019-12-24 | 2020-04-17 | 山东爱城市网信息技术有限公司 | Method, device and medium for authorizing login of third-party application based on block chain |
| CN111260475A (en) * | 2020-02-18 | 2020-06-09 | 腾讯科技(深圳)有限公司 | A data processing method, block chain node device and storage medium |
| CN111460465A (en) * | 2020-02-19 | 2020-07-28 | 山东爱城市网信息技术有限公司 | A blockchain-based identity authentication method, device and medium |
| CN111355723B (en) * | 2020-02-26 | 2023-04-18 | 腾讯科技(深圳)有限公司 | Single sign-on method, device, equipment and readable storage medium |
| CN111355723A (en) * | 2020-02-26 | 2020-06-30 | 腾讯科技(深圳)有限公司 | Single sign-on method, device, equipment and readable storage medium |
| CN115191104A (en) * | 2020-02-28 | 2022-10-14 | 微软技术许可有限责任公司 | Decentralized identity anchored by decentralized identifier |
| CN115191104B (en) * | 2020-02-28 | 2025-02-21 | 微软技术许可有限责任公司 | Decentralized identities anchored by decentralized identifiers |
| CN111461710A (en) * | 2020-03-06 | 2020-07-28 | 重庆邮电大学 | Distributed account book access control method based on alliance chain |
| CN111600900A (en) * | 2020-05-26 | 2020-08-28 | 牛津(海南)区块链研究院有限公司 | Blockchain-based single sign-on method, server and system |
| CN111832001A (en) * | 2020-07-20 | 2020-10-27 | 国家信息中心 | Blockchain-based identity management method and identity management system |
| CN111832001B (en) * | 2020-07-20 | 2024-05-24 | 国家信息中心 | Identity management method and identity management system based on blockchain |
| CN111885049A (en) * | 2020-07-21 | 2020-11-03 | 王海涛 | Memory system based on block chain technology |
| CN111787530A (en) * | 2020-08-06 | 2020-10-16 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN111787530B (en) * | 2020-08-06 | 2024-01-09 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN111813999A (en) * | 2020-08-13 | 2020-10-23 | 广州东港安全印刷有限公司 | A method to improve the scalability of Ethereum smart contract fields |
| CN111813999B (en) * | 2020-08-13 | 2024-01-05 | 广州科创空间信息科技有限公司 | A method to improve the scalability of Ethereum smart contract fields |
| CN112100610A (en) * | 2020-11-20 | 2020-12-18 | 支付宝(杭州)信息技术有限公司 | Method, device and equipment for processing login and user login related services |
| CN112468504A (en) * | 2020-11-30 | 2021-03-09 | 四川易诚智讯科技有限公司 | Industrial control network access control method based on block chain |
| CN112768018A (en) * | 2020-12-15 | 2021-05-07 | 扬州大学 | Electronic medical record security sharing method based on integrated credit evaluation intelligent contract |
| CN112653553B (en) * | 2020-12-29 | 2022-07-12 | 上海交通大学 | Internet of things equipment identity management system |
| CN112653553A (en) * | 2020-12-29 | 2021-04-13 | 上海交通大学 | Internet of things equipment identity management system |
| CN112800446A (en) * | 2021-01-26 | 2021-05-14 | 南京纯白矩阵科技有限公司 | Safe decentralized application hosting method |
| CN113159682A (en) * | 2021-04-22 | 2021-07-23 | 上海卓钢链科技有限公司 | Electronic warehouse receipt information alliance chain system |
| CN113222595A (en) * | 2021-04-23 | 2021-08-06 | 上海和数软件有限公司 | Electric power data storage and query method and system based on block chain technology |
| CN113221093B (en) * | 2021-05-25 | 2022-11-25 | 成都佰纳瑞信息技术有限公司 | Single sign-on system, method, equipment and product based on block chain |
| CN113221093A (en) * | 2021-05-25 | 2021-08-06 | 成都佰纳瑞信息技术有限公司 | Single sign-on system, method, equipment and product based on block chain |
| CN113378240A (en) * | 2021-06-23 | 2021-09-10 | 浪潮云信息技术股份公司 | Synchronous calling user identity authentication method based on block chain |
| CN113378240B (en) * | 2021-06-23 | 2023-03-28 | 浪潮云信息技术股份公司 | Synchronous calling user identity authentication method based on block chain |
| CN113852628A (en) * | 2021-09-23 | 2021-12-28 | 武汉众邦银行股份有限公司 | Decentralized single sign-on method, decentralized single sign-on device and storage medium |
| CN113852628B (en) * | 2021-09-23 | 2023-09-05 | 武汉众邦银行股份有限公司 | Decentralizing single sign-on method, device and storage medium |
| CN114401100A (en) * | 2021-10-02 | 2022-04-26 | 杭州荔藤网络科技有限公司 | A cross-application platform login method and system for a blockchain account |
| CN114238897A (en) * | 2021-12-27 | 2022-03-25 | 四川启睿克科技有限公司 | Internet of things data acquisition system and method based on distributed digital identity |
| CN114826618A (en) * | 2022-05-06 | 2022-07-29 | 珠海复旦创新研究院 | Certificate distribution and access control integrated system |
| CN114826618B (en) * | 2022-05-06 | 2023-07-21 | 珠海复旦创新研究院 | An integrated system of certificate distribution and access control |
| CN115102760A (en) * | 2022-06-21 | 2022-09-23 | 上海万向区块链股份公司 | Passwordless secure login system, method and medium based on blockchain and DID |
| CN115208886B (en) * | 2022-07-13 | 2024-05-10 | 上海柚子工道物联技术有限公司 | DID-based data authorization method, system and medium |
| CN115208886A (en) * | 2022-07-13 | 2022-10-18 | 上海柚子工道物联技术有限公司 | DID-based data authorization method, system and medium |
| CN115378605A (en) * | 2022-08-16 | 2022-11-22 | 中国银行股份有限公司 | Data processing method and device based on block chain |
| CN115378605B (en) * | 2022-08-16 | 2024-10-25 | 中国银行股份有限公司 | Data processing method and device based on block chain |
| CN115766018A (en) * | 2022-10-14 | 2023-03-07 | 蚂蚁区块链科技(上海)有限公司 | Authentication method, device and equipment based on decentralized identity |
| CN115632795A (en) * | 2022-10-20 | 2023-01-20 | 西安热工研究院有限公司 | A blockchain-based approach to self-sovereign identity management |
| CN115632795B (en) * | 2022-10-20 | 2025-06-03 | 西安热工研究院有限公司 | A blockchain-based approach to self-sovereign identity management |
| CN117056900A (en) * | 2023-10-12 | 2023-11-14 | 中电数创(北京)科技有限公司 | Method for main body whole-flow trusted authentication in trusted data space |
| CN117056900B (en) * | 2023-10-12 | 2024-02-09 | 中电数创(北京)科技有限公司 | Method for main body whole-flow trusted authentication in trusted data space |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109936569B (en) | 2021-05-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109936569A (en) | A kind of decentralization digital identity login management system based on ether mill block chain | |
| US7487539B2 (en) | Cross domain authentication and security services using proxies for HTTP access | |
| US7949871B2 (en) | Method for creating virtual service connections to provide a secure network | |
| US6490679B1 (en) | Seamless integration of application programs with security key infrastructure | |
| CN109918942B (en) | Decentralized identifier management system based on ether house block chain | |
| CN101171782B (en) | Peer-to-peer authentication and authorization | |
| Laborde et al. | A user-centric identity management framework based on the W3C verifiable credentials and the FIDO universal authentication framework | |
| JP5745690B2 (en) | Dynamic platform reconfiguration with multi-tenant service providers | |
| CN103842984B (en) | Parameter-Based Key Derivation | |
| US20040199768A1 (en) | System and method for enabling enterprise application security | |
| US20080263644A1 (en) | Federated authorization for distributed computing | |
| AU2017225928A1 (en) | Systems and methods for distributed data sharing with asynchronous third-party attestation | |
| CN102893575B (en) | One-time passwords with IPSEC and IKE version 1 authentication | |
| US20170104748A1 (en) | System and method for managing network access with a certificate having soft expiration | |
| US20030135734A1 (en) | Secure mutual authentication system | |
| US11611541B2 (en) | Secure method to replicate on-premise secrets in a cloud environment | |
| Rivera et al. | Secure enrollment token delivery for Zero Trust networks using blockchain | |
| Fugkeaw et al. | Multi-Application Authentication based on Multi-Agent System. | |
| Boi et al. | Decentralized Authentication in Microservice Architectures with SSI and DID in Blockchain | |
| Lock et al. | Grid Security and its use of X. 509 Certificates | |
| CN115664823A (en) | An identity authentication method, device, equipment and storage medium | |
| Fugkeaw et al. | A robust single sign-on model based on multi-agent system and PKI | |
| WO2022146811A1 (en) | Multiworkflow authorization system and method | |
| Xu et al. | Design of terminal unified identity authentication service model | |
| Akhtar et al. | A Decentralized Self-Sovereign-Identity Management and On-Boarding Framework for Industrial IoT Environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |