Skip to content
/ paper-mirroring-pki Public

Supplementary Material to "Mirroring Public Key Infrastructures to Blockchains for On-Chain Authentication"

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

UliGall/paper-mirroring-pki

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
implementation
implementation
 
 
slides
slides
 
 
README.md
README.md
 
 

Repository files navigation

Mirroring Public Key Infrastructures to Blockchains for On-Chain Authentication

5th Workshop on Trusted Smart Contracts In Association with Financial Cryptography 2021

Ulrich Gallersdörfer1, Friederike Groschupp2 and Florian Matthes1

1 Technical University Munich, Munich, Germany {ulrich.gallersdoerfer,matthes}@tum.de

2 Department of Computer Science, ETH Zurich, Switzerland [email protected]

Abstract

In blockchain systems, the lack of established identity management processes pose a problem for applications requiring smart contract owners to be authenticated. One issue that previously proposed solutions face is the accumulation of a critical mass of trusted data that makes the system usable. In this work, we propose an identity assertion and verification framework for Ethereum that overcomes this bootstrapping problem. It achieves this by leveraging TLS certificates, which are part of the established infrastructure that is commonly used for authenticating internet connections. We design and implement an TLS certificate-based authentication framework whose key features are the smart contract-based validation and storage of certificates and address-identity bindings. Looking at the current TLS ecosystem, we find that a large share of all domain certificates is issued by a small number of intermediate and root certificates. Therefore, we decide to store and maintain certificates in one smart contract to minimize processing costs. The evaluation of our prototype implementation shows that the associated cost of our system is within a feasible operating range, with the costs of submitting a new certificate currently averaging around $1.81 and the cost of creating an address-identity binding averaging around $1.32. Our system is a pragmatic and, most importantly, quickly bootstrapped method for an identity assertion and verification framework for Ethereum.

Presentation & Slides

The presentation is available on YouTube, the slides are available here.

Paper

The submission-ready paper (without author affiliation) is available here.

Code

The code can be found in the directory /implementation.

To deploy and fill with Alexa certificates:

cd implementation
ganache-cli --allowUnlimitedContractSize -l 90000000 -d

Second window:
cd implementation
truffle console
> migrate --reset
> exec setupar.js
> exec setupai.js
> exec setupas.js #takes several minutes, comment lines in document out for shorter run

About

Supplementary Material to "Mirroring Public Key Infrastructures to Blockchains for On-Chain Authentication"

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages