The metaverse, which consists of several universes called verses, is predicted to be the Internet of the future. Recently, this idea has received a lot of discussions, but not enough attention has been paid to the security concerns of these virtual worlds. Primarily when the user and platform server communicate with each other and share sensitive information using the public channel, any attacker can capture the message and can perform various types of attacks such as privacy attack, violation of perfect forward secrecy, impersonation attack, ephemeral secret leakage attack and traceability attack. Therefore, there is impelling need to design an authentication protocol for the metaverse environment that can secure the communication between the user and the platform server. Taking this into account, we designed a zero-knowledge proof authentication protocol based on blockchain for the metaverse environment. The security of the designed protocol is verified through the Burrows-Abadi-Needham (BAN) logic, Scyther tool, and Automated Validation of Internet Security Protocols and Applications (AVISPA) tool. The outcome of the security verification demonstrates that the designed metaverse authentication protocol mitigates all the attacks mentioned above. Moreover, we evaluated the performance of the designed metaverse authentication protocol in terms of computational, communication, storage costs, and energy consumption and compared it with existing metaverse authentication protocols, showing good results taking into account the additional security strength.
Yadav, AK, Braeken, A, Ylianttila, M & Liyanage, M 2023, A Blockchain-based Authentication Protocol for Metaverse Environments using a Zero Knowledge Proof. in Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023. Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023, Institute of Electrical and Electronics Engineers Inc., pp. 242-249, 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023, Kyoto, Japan, 26/06/23. https://doi.org/10.1109/MetaCom57706.2023.00053
Yadav, A. K., Braeken, A., Ylianttila, M., & Liyanage, M. (2023). A Blockchain-based Authentication Protocol for Metaverse Environments using a Zero Knowledge Proof. In Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023 (pp. 242-249). (Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/MetaCom57706.2023.00053
@inproceedings{f481deaacda14695b325a70a334cc16b,
title = "A Blockchain-based Authentication Protocol for Metaverse Environments using a Zero Knowledge Proof",
abstract = "The metaverse, which consists of several universes called verses, is predicted to be the Internet of the future. Recently, this idea has received a lot of discussions, but not enough attention has been paid to the security concerns of these virtual worlds. Primarily when the user and platform server communicate with each other and share sensitive information using the public channel, any attacker can capture the message and can perform various types of attacks such as privacy attack, violation of perfect forward secrecy, impersonation attack, ephemeral secret leakage attack and traceability attack. Therefore, there is impelling need to design an authentication protocol for the metaverse environment that can secure the communication between the user and the platform server. Taking this into account, we designed a zero-knowledge proof authentication protocol based on blockchain for the metaverse environment. The security of the designed protocol is verified through the Burrows-Abadi-Needham (BAN) logic, Scyther tool, and Automated Validation of Internet Security Protocols and Applications (AVISPA) tool. The outcome of the security verification demonstrates that the designed metaverse authentication protocol mitigates all the attacks mentioned above. Moreover, we evaluated the performance of the designed metaverse authentication protocol in terms of computational, communication, storage costs, and energy consumption and compared it with existing metaverse authentication protocols, showing good results taking into account the additional security strength.",
keywords = "Authentication, Avatar, Blockchain, Formal verification, Metaverse, Zero-Knowledge Proof",
author = "Yadav, {Awaneesh Kumar} and An Braeken and Mika Ylianttila and Madhusanka Liyanage",
note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023 ; Conference date: 26-06-2023 Through 28-06-2023",
year = "2023",
doi = "10.1109/MetaCom57706.2023.00053",
language = "English",
isbn = "9798350333343",
series = "Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "242--249",
booktitle = "Proceedings - 2023 IEEE International Conference on Metaverse Computing, Networking and Applications, MetaCom 2023",
address = "United States",
}