Cross-domain Identity Authentication Scheme Based On Signcryption Algorith

With the rapid development of cloud computing,cloud computing security has become extremely important.Identity authentication technology is the first line of defense in cloud computing security,providing secure identity authentication for cloud service providers and users,and preventing illegal access users.Cryptography is an important basis for designing secure communication protocols and authentication protocols.Since cloud servers store massive amounts of user data,there are risks of user privacy and data leakage when accessing data.Therefore,it is necessary to use identity authentication technologies and encryption algorithms to reduce these risks.However,when the public key encryption algorithm is used for encryption in the identity authentication scheme,there will be limitations of excessive computational overhead and low efficiency;when using the symmetric encryption algorithm,there will be limitations of low security.In order to solve this thorny problem,the use of signcryption algorithm is a research hotspot in today’s cryptography.Signcryption is an important part of contemporary cryptography.The two algorithms of signature and encryption are completed by one algorithm,which is different from the traditional first algorithm.Compared with the encryption technology after signature,signcryption can simplify the calculation process and greatly improve the calculation efficiency.This paper designs a cross-domain authentication scheme.User U and cloud service provider CSP register their identities in their respective trust domains and generate real identities through a hierarchical ID tree structure.The method of binding with timestamp generates temporary identity to realize the anonymity of trust transfer;in the first cross-domain authentication stage,the signcryption algorithm is used to further strengthen the security of real identity and simplify the calculation process of cross-domain authentication.Based on the signcryption algorithm,this paper proposes a homogeneous cross-domain authentication scheme based on a certificateless signcryption algorithm and a heterogeneous cross-domain authentication scheme based on a public key certificate and a certificateless signcryption algorithm.The main innovations of this paper are as follows:(1)The process of cross-domain authentication scheme is optimized,and a third-party cloud authentication center CA_Iis introduced to complete the mutual authentication of identity information between user U and cloud service provider CSP in different trust domains.User U and cloud service provider CSP directly accept the third-party cloud The identity authentication result of the authentication center CA_Ireduces the computational cost of the user U;(2)The parameter generation process is reconstructed during the user registration and repeated cross-domain authentication stages,and the system parameters are generated through the point multiplication operation and the hash operation,without the need for bilinear operations and exponential operations,which further reduces the computational overhead;This paper While adopting the signcryption algorithm to simplify the calculation process,it can effectively resist other network attack methods such as replay,middleman and replacement,and realize the dynamic balance between the security and calculation cost of the cross-domain authentication scheme.The model analysis tool AVISPA simulation experiment and comparative experiment method are compared with the existing cross-domain authentication schemes,showing that the scheme proposed in this paper has excellent security capability and low computational cost.