作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2022, Vol. 48 ›› Issue (3): 10-16,22. doi: 10.19678/j.issn.1000-3428.0062027

• 热点与综述 • 上一篇    下一篇

基于主侧链合作的区块链访问控制策略

刘晶1,2,3, 朱炳旭1, 梁佳杭1, 任女尔5, 季海鹏2,3,4   

  1. 1. 河北工业大学 人工智能与数据科学学院, 天津 300400;
    2. 河北省数据驱动工业智能工程研究中心, 天津 300400;
    3. 天津开发区精诺瀚海数据科技有限公司, 天津 300400;
    4. 河北工业大学 材料科学与工程学院, 天津 300400;
    5. 中汽数据(天津)有限公司, 天津 300393
  • 收稿日期:2021-07-09 修回日期:2021-08-31 发布日期:2021-09-07
  • 作者简介:刘晶(1979-),女,研究员、博士,主研方向为区块链;朱炳旭、梁佳杭,硕士研究生;任女尔,硕士;季海鹏(通信作者),副研究员、博士。
  • 基金资助:
    天津市人工智能重大专项(19ZXZNGX00040);河北省自然科学基金面上项目(F2019202062)。

Blockchain Access Control Strategy Based on Mainchain and Sidechain Cooperation

LIU Jing1,2,3, ZHU Bingxu1, LIANG Jiahang1, REN Nüer5, JI Haipeng2,3,4   

  1. 1. School of Artificial Intelligence and Data Science, Hebei University of Technology, Tianjin 300400, China;
    2. Hebei Data Driven Industrial Intelligent Engineering Research Center, Tianjin 300400, China;
    3. Tianjin Development Zone Jingnuo Data Technology Co., Ltd., Tianjin 300400, China;
    4. School of Materials Science and Engineering, Hebei University of Technology, Tianjin 300400, China;
    5. China Auto Data(Tianjin) Co., Ltd., Tianjin 300393, China
  • Received:2021-07-09 Revised:2021-08-31 Published:2021-09-07

摘要: 传统区块链技术处理交易能力弱、吞吐量低,不仅难以处理工业环境下的海量数据,而且其访问控制策略权限管理效率低,安全性不足。针对上述问题,提出一种基于主侧链合作的工业物联网访问控制策略。通过Plasma Cash框架构建高性能DPOS侧链,并根据合约将侧链与主链双向锚定,实现区块链的主侧链扩容。根据工业物联网的节点特点和主侧链区块链的运行环境,设计适用于主侧链环境的访问控制模型,访问控制模型内的主客体信息收集点阻隔外部实体直接访问,信息处理点实现访问控制策略执行与存储分离。将模型编写成图灵完备智能合约后放至侧链上,侧链负责合约的执行并通过稀疏默克尔树算法与主链进行数据的批量同步验证。实验结果表明,该策略可对基于工业物联网的区块链传输速度和稳定性进行有效优化,提高了控制策略的管理效率和安全性,可满足工业物联网中的使用需求。

关键词: 工业物联网, 区块链, 访问控制, 智能合约, 扩容技术

Abstract: Based on the weak transaction processing capacity and low throughput of traditional blockchain technology, it is not only difficult to process massive amounts of data in an industrial environment, but access control strategies also have low authority management efficiency and insufficient security.To solve these problems, a blockchain access control model strategy based on master side chain cooperation is proposed.This strategy constructs a high-performance Delegated Proof Of Stake(DPOS) side chain using the Plasma Cash framework and anchors the side chain and main chain in both directions through a contract to realize the expansion of the main and side chains of the blockchain. According to the node characteristics of the industrial Internet of Things (IoT) and the environment of the main and side chain blockchains, an access control model suitable for the main and side chain environments is designed.The subject and object information collection points in the model block direct access by external entities and the information processing points separate access control policy execution and storage.The model is defined in a Turing-complete smart contract and located on the side chain.The side chain is responsible for the execution of the contract and performs batch synchronization verification of data with the main chain using the sparse Merkle tree algorithm.Experimental results demonstrate that this strategy not only effectively optimizes the transmission speed and stability of the blockchain based on the industrial IoT, but also improves the management efficiency and security of the control strategy and meets the needs of the industrial IoT.

Key words: industrial Internet of Things(IoT), blockchain, access control, smart contract, expansion technology

中图分类号: