关键词: 同源策略, 跨域访问, 多方鉴权, PBFT, 网络弹性

Abstract: Secure cross-origin authentication is essential to providing effective protection for sensitive data and services in high-frequency cross-origin access. The existing cross-origin authentication work mostly focuses on improving the reliability of authentication credentials, and lacks effective protection for authentication service providers. Therefore, a multi-party authentication model COMPA for high-frequency cross-origin access is proposed. Firstly, by analyzing the functional differences between classical consensus and consensus for multi-party authentication, a safe Practical Byzantine fault-tolerant algorithm SPBFT is proposed to realize multi-party security authentication between nodes. Secondly, a network reconfiguration algorithm is designed to locate and replace the risky authentication participants based on the authentication results, and the authentication network is reorganized to make it more flexible. Design simulation experiments to verify the authentication effect of the model and its resistance to malicious attacks. The results show that the model can achieve safe and reliable authentication, fault location and network elastic reorganization within 20 seconds, with good effectiveness and robustness, and controllable time cost.

Key words: same-origin policy, cross-origin access, multi-party authentication, PBFT, cyber resilience