A Mobile Internet Multi-level Two-way Identity Authentication Scheme Based on Zero Trust

A Mobile Internet Multi-level Two-way Identity Authentication Scheme Based on Zero Trust

연구 분야: Analysis

학회: 2021 IEEE 23rd Int Conf on High Performance Computing & Communications; 7th Int Conf on Data Science & Systems; 19th Int Conf on Smart City; 7th Int Conf on Dependability in Sensor, Cloud & Big Data Systems & Application (HPCC/DSS/SmartCity/DependSys)

With the development of the smart city, power mobile internet services have been widely used. The gradual opening of the power mobile service system has made the network boundary increasingly blurred. The interaction of various services puts forward higher requirements for the flexibility, accuracy, and moderation of user identity authentication. Existing authentication methods assume that the users, equipment, and processes of the intranet are credible, and lack corresponding technical means in terms of risk prevention and control. Combining dynamic and static authentication methods, this paper proposes a multi-level intelligent identity authentication scheme under the zero-trust architecture. This solution realizes the two-way authentication between the user and the server in the mobile internet service. Compared with the existing scheme, this scheme conducts continuous trust assessment and risk prevention for users based on static authentication and constructs a two-way authentication protocol between the user and the server based on attribute encryption. Security analysis shows that this solution realizes the security authentication between the subject to be authenticated and the server, guarantees the confidentiality of the authentication ciphertext, and can resist forgery attacks.