A Secure Authentication Framework to Guarantee the Traceability of Avatars in Metaverse

TL;DR

This paper introduces a two-factor authentication framework for the Metaverse that ensures avatar identity traceability across virtual and physical spaces using chameleon signatures and biometric data.

Contribution

It presents a novel authentication framework combining chameleon signatures and biometric verification to secure avatar identities and enable traceability in the Metaverse.

Findings

Guarantees avatar identity consistency and traceability

Enables virtual-physical avatar tracking

Supports decentralized authentication protocols

Abstract

Metaverse is a vast virtual environment parallel to the physical world in which users enjoy a variety of services acting as an avatar. To build a secure living habitat, it's vital to ensure the virtual-physical traceability that tracking a malicious player in the physical world via his avatars in virtual space. In this paper, we propose a two-factor authentication framework based on chameleon signature and biometric-based authentication. First, aiming at disguise in virtual space, we propose a chameleon collision signature algorithm to achieve the verifiability of the avatar's virtual identity. Second, facing at impersonation in physical world, we construct an avatar's identity model based on the player's biometric template and the chameleon key to realize the verifiability of the avatar's physical identity. Finally, we design two decentralized authentication protocols based on the avatar's identity model to ensure the consistency of the avatar's virtual and physical identities. Security analysis indicates that the proposed authentication framework guarantees the consistency and traceability of avatar's identity. Simulation experiments show that the framework not only completes the decentralized authentication between avatars but also achieves the virtual-physical tracking.