A Decentralized Identity and Trust Management Platform Using Blockchain for Cross-Domain Authentication

Main Article Content

Sethalat Rodhetbhai
Panjai Tantatsanawong

Abstract

As digital ecosystems expand, secure and interoperable identity management across organizational boundaries has become increasingly important. This paper presents a blockchain-based platform for decentralized identity and trust management to support cross-domain authentication and authorization among autonomous organizations, such as government agencies and academic institutions. The proposed platform employs a consortium blockchain as a tamper-resistant credential and policy repository, enabling each organization to administer its own credentials while supporting verifiable identity sharing across domains. On-ledger trust relationships and authorization policies allow trusted interactions without relying on centralized identity authorities or pre-established bilateral agreements. A prototype was implemented using Hyperledger Fabric and evaluated in a multi-domain setting. The results demonstrate correct authentication behavior, sub-second authentication latency, measurable transaction throughput, and effective revocation propagation. Additional experiments under multi-domain and concurrent authentication workloads show that the platform preserves consistent authentication outcomes while maintaining latency within practical bounds. The proposed approach can be applied to multi-institutional environments, such as inter-university digital services, cross-agency e-government systems, and collaborative research infrastructures, where secure identity sharing and cross-domain access control are required.

Article Details

How to Cite
[1]
S. Rodhetbhai and P. Tantatsanawong, “A Decentralized Identity and Trust Management Platform Using Blockchain for Cross-Domain Authentication”, ECTI-CIT Transactions, vol. 20, no. 3, pp. 517–527, Jul. 2026.
Section
Research Article

References

OASIS, “Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0,” Mar. 2005. [Online]. Available: https://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf

D. Hardt, Ed., “The OAuth 2.0 Authorization Framework,” Internet Engineering Task Authentication Force (IETF), RFC 6749, Oct. 2012. [Online]. Available: https://www.rfc-editor.org/rfc/rfc6749

C. Mazzocca, A. Acar, S. Uluagac, R. Montanari, P. Bellavista and M. Conti, “A Survey on Decentralized Identifiers and Verifiable Credentials,” in IEEE Communications Surveys & Tutorials, vol. 27, no. 6, pp. 3641-3671, Dec. 2025.

R. N. Zaeem et al., “Blockchain-based selfsovereign identity: Survey, requirements, usecases, and comparative study,” in Proceedings WI-IAT ’21: IEEE/WIC/ACM International Conference on Web Intelligence, , pp. 583–590, Dec. 2021.

Z. Yan, X. Zhao, Y. Liu and X. Luo, “Blockchain-driven decentralized identity management: An interdisciplinary review and research agenda,” Information & Management, vol. 61, no. 7, p. 104026, Nov. 2024.

Shibboleth Consortium, “Shibboleth Identity Provider v5 Release Notes,” Jul. 2025. [Online]. Available: https: //shibboleth.atlassian.net/wiki/spaces/ IDP5/pages/3199500367/ReleaseNotes ´

G EANT eduGAIN, “eduGAIN Policy Framework Constitution (Version 4.0),” Nov. 2023. [Online]. Available: https: //edugain.org/wp-content/uploads/2023/11/eduGAIN-Constitution-v4-final.pdf

J. Callas, L. Donnerhacke, H. Finney, D. Shaw, and R. Thayer, “OpenPGP Message Format,” Internet Engineering Task Force (IETF), RFC 4880, Nov. 2007. [Online]. Available: https://www.rfc-editor.org/rfc/rfc4880

W3C Decentralized Identifier Working Group, “Decentralized Identifiers (DIDs) v1.0,” W3C Recommendation, Jul. 2022. [Online]. Available: https://www.w3.org/TR/did-core/

W3C Verifiable Credentials Working Group, “Verifiable Credentials Data Model v1.1,” W3C Recommendation, Mar. 2022. [Online]. Available: https://www.w3.org/TR/vc-data-model/

Decentralized Identity Foundation, “ION: Identity Overlay Network (DID Method),” Jun. 2025. [Online]. Available: https://identity.foundation/ion/

Y. Liu, D. He, M. S. Obaidat, N. Kumar, M. K. Khan and K.-K. R. Choo, “Blockchain-based identity management systems: A review,” Journal of Network and Computer Applications, vol. 166, p. 102731, 2020.

M. K. B. Shuhan, S. M. Hasnayeen, T. K. Das, M. N. Sakib and M. S. Ferdous, “Decentralised identity federations using blockchain,” International Journal of Information Security, vol. 23, pp. 2759–2782, 2024.

S. El Haddouti, A. Ouaguid and M. D. E.-C. El Kettani, “Fedidchain: An innovative blockchainenabled framework for cross-border interoperability and trust management in identity federation systems,” Journal of Network and Systems Management, vol. 31, no. 2, p. 42, 2023.

M. Jones, J. Bradley, and N. Sakimura, “JSON Web Token (JWT),” Internet Engineering Task Force (IETF), RFC 7519, May 2015. [Online]. Available: https://www.rfc-editor.org/rfc/rfc7519

Hyperledger Fabric Project, “Hyperledger Fabric Documentation,” Jul. 2025. [Online]. Available: https://hlf.readthedocs.io/en/latest/

Hyperledger Fabric Project, “hyperledger/fabric: Releases,” GitHub, Aug. 2025.

[Online]. Available: https://github.com/hyperledger/fabric/releases