SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier.

Krishna, DP; Ramaguru, R; Praveen, K; Sethumadhavan, M; Ravichandran, KS; Krishankumar, R; Gandomi, AH

SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier.

Krishna, DP Ramaguru, R Praveen, K Sethumadhavan, M Ravichandran, KS Krishankumar, R Gandomi, AH

Permalink

Publisher:: Springer Science and Business Media LLC
Publication Type:: Journal Article
Citation:: Sci Rep, 2023, 13, (1), pp. 18335
Issue Date:: 2023-10-26

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Adobe PDF

Download Published versionAdobe PDF (2.66 MB)

View on publisher's site

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Krishna, DP
dc.contributor.author	Ramaguru, R
dc.contributor.author	Praveen, K
dc.contributor.author	Sethumadhavan, M
dc.contributor.author	Ravichandran, KS
dc.contributor.author	Krishankumar, R
dc.contributor.author	Gandomi, AH
dc.date.accessioned	2023-11-23T06:20:17Z
dc.date.available	2023-10-10
dc.date.available	2023-11-23T06:20:17Z
dc.date.issued	2023-10-26
dc.identifier.citation	Sci Rep, 2023, 13, (1), pp. 18335
dc.identifier.issn	2045-2322
dc.identifier.issn	2045-2322
dc.identifier.uri	http://hdl.handle.net/10453/173523
dc.description.abstract	OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this problem, we need a distributed framework to authenticate and authorize the user without third-party involvement. This paper proposes a distributed authentication and authorization framework using a secret-sharing mechanism that comprises a blockchain-based decentralized identifier and a private distributed storage via an interplanetary file system. We implemented our proposed framework in Hyperledger Fabric (permissioned blockchain) and Ethereum TestNet (permissionless blockchain). Our performance analysis indicates that secret sharing-based authentication takes negligible time for generation and a combination of shares for verification. Moreover, security analysis shows that our model is robust, end-to-end secure, and compliant with the Universal Composability Framework.
dc.format	Electronic
dc.language	eng
dc.publisher	Springer Science and Business Media LLC
dc.relation.ispartof	Sci Rep
dc.relation.isbasedon	10.1038/s41598-023-44586-6
dc.rights	info:eu-repo/semantics/openAccess
dc.title	SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier.
dc.type	Journal Article
utslib.citation.volume	13
utslib.location.activity	England
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
utslib.copyright.status	open_access	*
dc.date.updated	2023-11-23T06:20:11Z
pubs.issue	1
pubs.publication-status	Published online
pubs.volume	13
utslib.citation.issue	1

Abstract:

OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this problem, we need a distributed framework to authenticate and authorize the user without third-party involvement. This paper proposes a distributed authentication and authorization framework using a secret-sharing mechanism that comprises a blockchain-based decentralized identifier and a private distributed storage via an interplanetary file system. We implemented our proposed framework in Hyperledger Fabric (permissioned blockchain) and Ethereum TestNet (permissionless blockchain). Our performance analysis indicates that secret sharing-based authentication takes negligible time for generation and a combination of shares for verification. Moreover, security analysis shows that our model is robust, end-to-end secure, and compliant with the Universal Composability Framework.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/173523