|
Work item:
|
X.1284 (ex X.afotak)
|
|
Subject/title:
|
Authentication framework based on one-time authentication key using distributed ledger technology
|
|
Status:
|
[Carried to next study period]
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
Rev.
|
|
Equivalent number:
|
-
|
|
Timing:
|
-
|
|
Liaison:
|
ISO/IEC SC 27/WG 5, ISO TC307 JWG 4
|
|
Supporting members:
|
Korea (Republic of), Malaysia, FNS Malaysia, Soonchunhyang University
|
|
Summary:
|
This Recommendation proposes the authentication framework based on One-Time Authentication Key using Distributed Ledger Technology, to expand the scalability of authentication domain and provide one-time authentication key for user authentication. This One-time Authentication Key based authentication framework is based on hybrid blockchain where one entity manages a blockchain network while a group of authentication domains participates in a blockchain network.
The One-time Authentication Key based authentication framework can accommodate multiple authentication domains where a different type of business can cooperate to manage the blockchain network. The One-time Authentication Key based authentication framework is composed of users, service providers, authentication servers which reside on the hybrid blockchain network.
The authentication procedures of AFOTAK consist of two steps: the first step involves verifying the user’s device subject to authentication, while the second step involves verifying the user using the OTAK. Regarding the first step, it provides a mechanism to verify the user’s device based on distributed ledger technology. Regarding the second step, it provides a mechanism to generate an OTAK by combining randomized device authentication credentials and distributed ledger technology. This OTAK can be a replacement of existing password.
The advantages of this framework are as follows:
· accommodates multiple authentication domains with multiple authentication servers.
· provides a secure OTAK based on randomized device authentication credentials and distributed ledger technology.
also proves the identity of users and the user’s device which is used by user for authentication.
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2023-10-04 11:38:19
|
|
Last update:
2024-09-13 16:51:21
|
