SAGTM: A secure authentication scheme with traceability for avatars in the Metaverse

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2025-03-17 DOI:10.1016/j.comnet.2025.111206

Xingyu Liang , Sen Wang , Ling Xiong , Zhicai Liu , Neal N. Xiong

{"title":"SAGTM: A secure authentication scheme with traceability for avatars in the Metaverse","authors":"Xingyu Liang , Sen Wang , Ling Xiong , Zhicai Liu , Neal N. Xiong","doi":"10.1016/j.comnet.2025.111206","DOIUrl":null,"url":null,"abstract":"<div><div>The Metaverse, by integrating virtual and physical worlds, offers a digital platform that transcends the limitations of time and space, enabling users to engage in entertainment, work, and social interactions. However, these applications also introduce privacy risks, making robust identity authentication systems crucial. Traditional security measures are inefficient and inadequate for the unique requirements of Metaverse environments. The anonymous credential scheme, as a method of anonymous authentication, can effectively prevent attackers from accessing avatar information while ensuring that the accessing server cannot identify the avatar, thereby protecting avatar privacy. Moreover, it facilitates the tracking and management of malicious avatar behavior. Towards this advanced goal, this work proposes a blockchain-based supervised authentication scheme using anonymous credentials. Firstly, non-interactive zero-knowledge proofs are integrated into anonymous credentials technology to achieve avatar anonmity and unlinkability. Secondly, the distributed ElGamal encryption algorithm is used to enable traceability for locating malicious users. Finally, to verify the avatar’s access permission, the proposed scheme combines an accumulator into blockchain technology, enabling the access server to verify the level of access while maintaining anonymity and unlinkability. Security analysis demonstrates that our scheme possesses advantages such as traceability, unlinkability, anonymity, and forgery resistance. Experimental results indicate that the proposed scheme outperforms other anonymous authentication schemes in terms of performance overhead. Therefore, our scheme is more efficient and practical compared to other anonymous schemes.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"263 ","pages":"Article 111206"},"PeriodicalIF":4.4000,"publicationDate":"2025-03-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128625001744","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

The Metaverse, by integrating virtual and physical worlds, offers a digital platform that transcends the limitations of time and space, enabling users to engage in entertainment, work, and social interactions. However, these applications also introduce privacy risks, making robust identity authentication systems crucial. Traditional security measures are inefficient and inadequate for the unique requirements of Metaverse environments. The anonymous credential scheme, as a method of anonymous authentication, can effectively prevent attackers from accessing avatar information while ensuring that the accessing server cannot identify the avatar, thereby protecting avatar privacy. Moreover, it facilitates the tracking and management of malicious avatar behavior. Towards this advanced goal, this work proposes a blockchain-based supervised authentication scheme using anonymous credentials. Firstly, non-interactive zero-knowledge proofs are integrated into anonymous credentials technology to achieve avatar anonmity and unlinkability. Secondly, the distributed ElGamal encryption algorithm is used to enable traceability for locating malicious users. Finally, to verify the avatar’s access permission, the proposed scheme combines an accumulator into blockchain technology, enabling the access server to verify the level of access while maintaining anonymity and unlinkability. Security analysis demonstrates that our scheme possesses advantages such as traceability, unlinkability, anonymity, and forgery resistance. Experimental results indicate that the proposed scheme outperforms other anonymous authentication schemes in terms of performance overhead. Therefore, our scheme is more efficient and practical compared to other anonymous schemes.

查看原文本刊更多论文

SAGTM：具有可追溯性的安全身份验证方案，用于虚拟世界中的角色

Metaverse 将虚拟世界和物理世界融为一体，提供了一个超越时空限制的数字平台，使用户能够参与娱乐、工作和社交互动。然而，这些应用也带来了隐私风险，因此强大的身份验证系统至关重要。传统的安全措施效率低下，无法满足 Metaverse 环境的独特要求。匿名凭证方案作为一种匿名身份验证方法，可以有效防止攻击者获取头像信息，同时确保访问服务器无法识别头像，从而保护头像隐私。此外，它还有利于跟踪和管理恶意化身行为。为了实现这一先进目标，本研究提出了一种基于区块链的匿名凭证监督认证方案。首先，将非交互式零知识证明集成到匿名凭证技术中，以实现虚拟化身的匿名性和不可链接性。其次，利用分布式 ElGamal 加密算法实现可追溯性，以定位恶意用户。最后，为了验证化身的访问权限，拟议方案将累加器与区块链技术相结合，使访问服务器能够验证访问级别，同时保持匿名性和不可链接性。安全分析表明，我们的方案具有可追溯性、不可链接性、匿名性和防伪造性等优势。实验结果表明，所提出的方案在性能开销方面优于其他匿名身份验证方案。因此，与其他匿名方案相比，我们的方案更高效、更实用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.