SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier

Danda Prudhvi Krishna; R. Ramaguru; K. Praveen; M. Sethumadhavan; Kattur Soundarapandian Ravichandran; Raghunathan Krishankumar; Amir H. Gandomi

doi:10.1038/s41598-023-44586-6

Scientific Reports (Oct 2023)

SSH-DAuth: secret sharing based decentralized OAuth using decentralized identifier

Danda Prudhvi Krishna,
R. Ramaguru,
K. Praveen,
M. Sethumadhavan,
Kattur Soundarapandian Ravichandran,
Raghunathan Krishankumar,
Amir H. Gandomi

Affiliations

Danda Prudhvi Krishna: TIFAC-CORE in Cyber Security, Amrita School of Engineering, Amrita Vishwa Vidyapeetham
R. Ramaguru: TIFAC-CORE in Cyber Security, Amrita School of Engineering, Amrita Vishwa Vidyapeetham
K. Praveen: TIFAC-CORE in Cyber Security, Amrita School of Engineering, Amrita Vishwa Vidyapeetham
M. Sethumadhavan: TIFAC-CORE in Cyber Security, Amrita School of Engineering, Amrita Vishwa Vidyapeetham
Kattur Soundarapandian Ravichandran: Department of Mathematics, School of Physical Sciences, Amrita Vishwa Vidyapeetham
Raghunathan Krishankumar: Information Technology Systems and Analytics Area, Indian Institute of Management Bodh Gaya
Amir H. Gandomi: Faculty of Engineering and Information Technology, University of Technology Sydney

DOI: https://doi.org/10.1038/s41598-023-44586-6
Journal volume & issue: Vol. 13, no. 1
pp. 1 – 15

Abstract

Read online

Abstract OAuth2.0 is a Single Sign-On approach that helps to authorize users to log into multiple applications without re-entering the credentials. Here, the OAuth service provider controls the central repository where data is stored, which may lead to third-party fraud and identity theft. To circumvent this problem, we need a distributed framework to authenticate and authorize the user without third-party involvement. This paper proposes a distributed authentication and authorization framework using a secret-sharing mechanism that comprises a blockchain-based decentralized identifier and a private distributed storage via an interplanetary file system. We implemented our proposed framework in Hyperledger Fabric (permissioned blockchain) and Ethereum TestNet (permissionless blockchain). Our performance analysis indicates that secret sharing-based authentication takes negligible time for generation and a combination of shares for verification. Moreover, security analysis shows that our model is robust, end-to-end secure, and compliant with the Universal Composability Framework.

Published in Scientific Reports

ISSN: 2045-2322 (Online)
Publisher: Nature Portfolio
Country of publisher: United Kingdom
LCC subjects: Medicine; Science
Website: https://www.nature.com/srep/

About the journal