arnaucube
/
blockchainIDsystem
mirror of https://github.com/arnaucube/blockchainIDsystem.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19 Commits
1 Branch
0 Tags
17 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
blockchainIDsystem/README.md

78 lines
4.5 KiB
Raw Permalink Normal View History

Initial commit
6 years ago
README.md documentation
6 years ago
peers connection working
6 years ago
fixed blindsign process. Repo outdated.
6 years ago
sendtoserveridsigner
6 years ago
README.md documentation
6 years ago
peers connection working
6 years ago
sendtoserveridsigner
6 years ago
README.md documentation
6 years ago
peers propagation working fine, started to implement serverCA
6 years ago
README.md documentation
6 years ago
peers propagation working fine, started to implement serverCA
6 years ago
README.md documentation
6 years ago
peers propagation working fine, started to implement serverCA
6 years ago
README.md documentation
6 years ago
peers propagation working fine, started to implement serverCA
6 years ago
README.md documentation
6 years ago
added serverIDsigner. At this moment performs: signup, login, blindsign
6 years ago
README.md documentation
6 years ago
peers propagation working fine, started to implement serverCA
6 years ago
README.md documentation
6 years ago
Implemented signup and login users with JWT and MongoDB connection. Added runTmuxTextPeers.sh to deploy the different peers and servers in a unique console
6 years ago
README.md documentation
6 years ago
  1. # blockchainIDsystem
  2. A blockchain based anonymous distributed login system
  4. Outdated repository. The current repository being developed is: https://github.com/arnaucode/darkID
  6. ### Warning! Academical version. Outdated repository.
  7. This version is only for academical purposes, is not a version to run in production. Everything has been developed from scratch (the p2p network, the blockchain, the RSA library, ...) to learn it deeply.
  8. Also this version is not finished.
  10. A new version of this project, being developed using libaries and Ethereum network, is in https://github.com/arnaucode/darkID
  12. ### Main concept
  13. The objective is to guarantee a decentralized login system, but making sure that registered users are real ones and there are no bots generating large amounts of accounts. Only the verified (by email or phone) users can generate an anonymous ID (the Public-Key blind signed).
  16. ![screenshot](https://raw.githubusercontent.com/arnaucode/blockchainIDsystem/master/documentation/screenshot01.png "screenshot")
  18. ![screenshot](https://raw.githubusercontent.com/arnaucode/blockchainIDsystem/master/documentation/screenshot02.png "screenshot")
  20. ## How it works?
  23. #### Network infrastructure
  25. ![network](https://raw.githubusercontent.com/arnaucode/blockchainIDsystem/master/documentation/blockchainIDsystem-network.png "network")
  27. There are different types of nodes:
  28. - peers
  29. - the peers of the p2p network that runs the blockchain
  30. - serverCA
  31. - Is a REST server that has been certified (is the Certified Authority) to validate the peers that will be able to participate of the blockchain.
  32. - Have the webapp (frontend) to validate peers through a GUI interface
  33. - The GUI frontend webapp allows also to view the current peers of the network and the blocks of the blockchain
  34. - server-ID-signer
  35. - The server where the user creates a non anonymous account
  36. - Also is the server that blind signs the Anonymous ID of the users
  37. - Have the webapp (frontend) to interact through a GUI interface
  39. #### Step by step process
  40. 1. Once all the nodes of the network are running, a new user can connect to the server-ID-signer.
  41. 2. The user registers a non anonymous user (using email, phone, password, etc), and performs the login with that user
  42. 3. The user, locally, generates a RSA key pair (private key & public key)
  43. 4. The user blinds his Public-Key with the server-ID-signer Public-Key
  44. 5. The user's Public-Key blinded, is sent to the server-ID-signer
  45. 6. The server-ID-signer Blind Signs the Public-Key blinded from the user, and returns it to the user
  46. 7. The user unblinds the Public-Key signed by the server-ID-signer, and now has the Public-Key Blind Signed by the server-ID-signer
  47. 8. The user sends the Public-Key blind signed to the p2p network
  48. 9. The peers verify that the Public-Key Blind Signed is correctly signed by the server-ID-signer, if it is, they add the Public-Key to the Blockchain, inside a new block
  49. 10. Then, when the user wants to login into a platform, just needs to put his Public-Key
  50. 11. The platform goes to the Blockchain, to check if this Public-Key is registered in the blockchain
  51. 12. The platform sends a message encrypted with the user Public-Key, and the user returns the message decrypted with the Private-Key, to verify that is the owner of that Public-Key
  54. ##### RSA encryption system
  55. https://en.wikipedia.org/wiki/RSA_cryptosystem
  56. - Public parameters: (e, n)
  57. - Private parameters: (d, p, q, phi, sigma)
  58. - Public-Key = (e, n)
  59. - Private-Key = (d, n)
  60. - Encryption:
  61. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/fbfc70524a1ad983e6f3aac51226b9ca92fefb10 "rsa")
  62. - Decryption:
  63. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/10227461ee5f4784484f082d744ba5b8c468668c "rsa")
  66. ##### Blind signature process
  67. https://en.wikipedia.org/wiki/Blind_signature
  68. - m is the message (in our case, is the Public-Key of the user to be blinded)
  69. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/a59b57fa153c8b327605672caadb0ecf59e5795a "rsa")
  71. - server-ID-signer blind signs m'
  72. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/e726b003ff1649f9254032cffae42d80577da787 "rsa")
  74. - user can unblind m, to get m signed
  75. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/e96fad0e1d46ec4c55986d1c8fc84e8c44259ecc "rsa")
  77. - This works because RSA keys satisfy this equation
  78. ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/d6bd21fb4e25c311df07b50c313a248d978c3212 "rsa") and this ![rsa](https://wikimedia.org/api/rest_v1/media/math/render/svg/c13170a26e031125b417f22644fb64384c04eea7 "rsa")