In large organizations, we achieve security by limiting unnecessary access to shared resources based on the users' roles. It reduces administrative work and enhances security. Due to the security requirements of role-centric authentication and access management, it is challenging to create an efficient centralized system for distributed applications. Centralized authentication and access control systems are prone to single-point failure, security threats, privacy, and scalability issues. This paper presents a decentralized role-centric authentication and resource access management technique called RC-AAM. It relies on the security features provided by cryptography and blockchain, and provides role ownership proof, role verification, and role validation without depending on a central authority. RC-AAM prototype is deployed and tested on the Ethereum test network. The results show that the proposed technique is efficient in terms of access management, permissions verification, incurs low cost, and is able to satisfy distributed environment requirements. Moreover, it shows superior performance compared to the state-of-the-art techniques of role-centric authentication and access management.

在大型组织中，我们通过基于用户角色限制对共享资源的不必要访问来实现安全性。它减少了管理工作并增强了安全性。由于以角色为中心的身份验证和访问管理的安全要求，为分布式应用程序创建高效的集中式系统具有挑战性。集中式身份验证和访问控制系统容易出现单点故障、安全威胁、隐私和可扩展性问题。本文介绍了一种称为RC-AAM的分散式以角色为中心的身份验证和资源访问管理技术。它依靠密码学和区块链提供的安全特性，在不依赖中央权威的情况下提供角色所有权证明、角色验证和角色验证。RC-AAM原型在以太坊测试网络上部署和测试。结果表明，所提出的技术在访问管理、权限验证方面是有效的，成本低，能够满足分布式环境的要求。此外，与以角色为中心的身份验证和访问管理的最新技术相比，它显示出卓越的性能。