Workday, Inc.
SYSTEM AND METHOD FOR BLOCKCHAIN-BASED DEVICE AUTHENTICATION BASED ON A CRYPTOGRAPHIC CHALLENGE

Abstract:

An embodiment herein provides a processor implemented method for blockchain-based device authentication by a user device to enable a second device to perform an action on a first device on behalf of a user linked to the user device, based on a command received from the second device. The method includes the steps of: (i) obtaining an identify information associated with an identity document of the user; (ii) storing the identity information, and a set of credentials, with a blockchain to link the identity information with the set of credentials for the user; (iii) signing a first trust certificate by a user private key on the blockchain to obtain a first signed trust certificate; and (iv) signing a second trust certificate by the user private key on the blockchain to obtain a second signed trust certificate. The first device receives the second trust certificate from the second device when the first device receives the command from the second device. The first device communicates a cryptographic challenge using a public key of the second device, to the second device. The second device transmits a response to the cryptographic challenge to the first device. The first device checks, using the public key of the second device, whether the response matches with a predetermined correct response or not, and the first device authenticates the second device and executes the command received from the second device only if the response matches with the predetermined correct response.