| CPC H04L 63/02 (2013.01) [H04L 9/0825 (2013.01); H04L 9/0894 (2013.01); H04L 9/3226 (2013.01); H04L 9/3247 (2013.01); H04L 9/50 (2022.05); H04L 63/08 (2013.01); H04L 63/083 (2013.01); H04L 63/0876 (2013.01); H04L 63/10 (2013.01); H04L 63/101 (2013.01); H04L 63/126 (2013.01); H04L 67/10 (2013.01); H04L 67/562 (2022.05); H04L 63/12 (2013.01); H04W 84/047 (2013.01)] | 10 Claims |
|
1. A relay device comprising:
a communication circuit configured to transmit and receive a message to and from any of the plurality of communication devices included in a communication system, the communication system further including a plurality of nodes, each of the plurality of nodes including a first processor circuit configured to perform distributed ledger processing that includes storing, for each of the plurality of communication devices, in a distributed ledger, an identifier of the each of plurality of communication devices and a public key used for communication by the each of the plurality of communication devices, and sharing the distributed ledger with each other nodes of the plurality of nodes, the communication circuit being coupled to at least a node being any one of the plurality of nodes; and
a second processor circuit configured to execute authentication processing, the authentication process including
in response to the communication circuit receiving a first message from a first communication device being the any of the plurality of communication devices, causing the communication circuit to transmit, to the node coupled to the communication circuit a request message for requesting a public key corresponding to a transmission source identifier of first communication device that is a transmission source of the received first message, the first message being a message addressed to a second communication device among the plurality of communication devices, the first message including a signature of the first communication device, the request message including the transmission source identifier of the first communication device;
in response to the transmitting of the request message, causing the communication circuit to receive, from the node, a response message including information indicating whether the public key corresponding to the transmission source identifier indicated in the request message has been detected in the distributed ledger stored in the node, the response message further including, in a case where the public key corresponding to the transmission source identifier indicated in the request message has been detected in the distributed ledger, the detected public key corresponding to the transmission source identifier indicated in the request message;
in response to the receiving of the response message including the detected public key, authenticating the signature included in the received first message with the public key included in the response message;
in a case where the authenticating of the signature of the first communication device is successful, transferring the first message from the first communication device to the second communication device;
in response to the receiving of the response message that does not include the public key corresponding to the transmission source identifier, refraining from the transferring of the first message from the first communication device to the second communication device; and
in a case where the authenticating of the signature of the first communication device is not successful, refraining from the transferring of the first message from the first communication device to the second communication device.
|