计算机工程 ›› 2019, Vol. 45 ›› Issue (5): 29-34.doi: 10.19678/j.issn.1000-3428.0053573

所属专题: 区块链技术专题

• 区块链专题 • 上一篇    下一篇

基于区块链审计的公钥分发方案

胡逸飞,熊焰,黄文超   

  1. 中国科学技术大学 计算机科学与技术学院,合肥 230026
  • 收稿日期:2019-01-04 出版日期:2019-05-15 发布日期:2019-05-15
  • 作者简介:胡逸飞(1994—),男,硕士研究生,主研方向为区块链;熊焰(通信作者),教授、博士;黄文超,副教授、博士
  • 基金项目:

    国家自然科学基金(61572453)

Public key distribution scheme based on blockchain for auditing

HU Yifei,XIONG Yan,HUANG Wenchao   

  1. School of Computer Science and Technology,University of Science and Technology of China,Hefei 230026,China
  • Received:2019-01-04 Online:2019-05-15 Published:2019-05-15

摘要:

点对点加密是一种应用于在线通信软件的加密方式,多数的点对点加密通过非对称加密实现,但公钥分发的方案需要依赖于中心化的服务器,如果中心化的服务器攻击或被攻击则可能造成中间人攻击,从而导致聊天信息被泄露的风险。 为此,提出采用区块链技术进行审计的方式,构建一个去中心化的公钥分发方案。该方案所有公钥修改记录的摘要通过智能合约被保存在由CA共同维护的区块链上,使得恶意的修改记录可被追踪和验证,同时采用基于实用拜占庭容错(PBFT)改进的共识算法,达到低能耗和高效的拜占庭容错。实验结果表明,与原PBFT算法相比,该方案安全性明显提高。

关键词: 区块链, 公钥分发, 实用拜占庭容错, 点对点加密, 分布式网络

Abstract:

Point-to-point encryption is an encryption method widely used in online communication software,and is mostly implemented by asymmetric encryption,but the public key distribution scheme relies on a centralized server.If the centralized server is attacked,there is a risk that chat information will be leaked due to a Man-in-the-Middle Attack(MITM).Therefore,this paper uses blockchain technology for auditing to build a decentralized public key distribution scheme.The scheme saves summary of all the public key modification records in the blockchain maintained by the CA through the smart contract,so that it can track and verify the maliciously modified records.The scheme also abopts the improved consensus algorithm based on Practical Byzantine Fault Tolerance(PBFT) to achieve low energy consymption,and efficient Byzantine fault tolerance.Experimental results show that compared with the algorithm,the scheme has high security.

Key words: blockchain, public key distribution, Practical Byzantine Fault Tolerance(PBFT), Point-to-Point encryption, distributed network

中图分类号: