区块链数据保密查询的不经意传输协议

doi:10.19678/j.issn.1000-3428.0063861

计算机工程 ›› 2022, Vol. 48 ›› Issue (10): 13-20. doi: 10.19678/j.issn.1000-3428.0063861

区块链数据保密查询的不经意传输协议

刘新¹, 胡翔瑜¹, 徐刚², 陈秀波³

1. 内蒙古科技大学信息工程学院, 内蒙古包头 014010;
2. 北方工业大学信息学院, 北京 100144;
3. 北京邮电大学网络与交换技术国家重点实验室, 北京 100876

收稿日期:2022-01-27 修回日期:2022-03-04 发布日期:2022-06-30
作者简介:刘新(1983—),男,副教授、博士,主研方向为信息安全、区块链;胡翔瑜,硕士研究生;徐刚,博士;陈秀波,教授、博士。
基金资助:
国家自然科学基金（92046001）；内蒙古自治区自然科学基金（2021MS06006）；内蒙古自治区科技重大专项（2019ZD025）；内蒙古自治区纪检监察大数据实验室开放项目（IMDBD2020020）；包头市科技计划项目（YF2020013）；北京市教委基本科研业务费资助项目（110052972027）；北方工业大学科研启动基金（110051360002）。

Oblivious Transfer Protocol for Confidentiality Query of Blockchain Data

LIU Xin¹, HU Xiangyu¹, XU Gang², CHEN Xiubo³

1. School of Information Engineering, Inner Mongolia University of Science and Technology, Baotou, Inner Mongolia 014010, China;
2. College of Information, North China University of Technology, Beijing 100144, China;
3. State Key Laboratory of Network and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China

Received:2022-01-27 Revised:2022-03-04 Published:2022-06-30

摘要/Abstract

摘要： 在区块链数据存储与查询过程中，由于区块链的透明性和公开性，全网所有用户均有可能获取查询者的数据信息，存在泄漏查询者隐私数据的风险。采用区块链链上-链下存储思想，设计区块链数据存储模型，引入代理重加密机制，将存储者加密后的数据分布式存储在链下，将存储者发送的索引信息和Merkle树根哈希值存储在链上，确保了数据的完整性、可靠性和可验证性，并减少了区块链数据对存储资源的占用。利用椭圆曲线加密算法设计区块链数据保密查询的不经意传输协议，使得全网所有用户均无法获取查询者的数据信息，保护了区块链数据传输过程中查询者的隐私。分析结果表明，该协议中查询者完成一次区块链上的不经意传输仅需2n+2k+2次椭圆曲线乘法运算，相比于现有不经意传输协议具有存储空间小、计算复杂度低等优势，并且在相同长度的密钥下具有更高的安全性。

关键词: 区块链, 保密查询, 链上-链下存储模型, 不经意传输, 椭圆曲线加密算法

Abstract: During the data storage and query of a blockchain, owing to the transparency and openness of the blockchain, all users of a network may obtain information regarding the inquirer;thus, confidential information regarding the inquirer may be exposed.This study adopts the idea of a blockchain on-chain off-chain storage, designs a blockchain data storage model, introduces a proxy re-encryption mechanism for storing the encrypted data of the storer off-chain in a distributed manner, and stores the index information sent by the storer as well as the hash value of the root of the Merkle tree on the chain;this, in turn, ensures the integrity, reliability, and verifiability of data and also reduces the utilization of storage resources by the blockchain data.The elliptic curve encryption algorithm is used to design an Oblivious Transfer(OT) protocol for the confidential query of blockchain data, which prevents all the users in the entire network from obtaining the inquirer's information;this protects the privacy of the inquirer during data transmission.Analysis results reveal that the inquirer requires only 2n+2k+2 elliptic curve multiplication operations to complete an OT on the blockchain when using this protocol.Compared with existing protocols, this OT protocol requires a smaller storage space, features lower computational complexity, and offers higher security for the same key length.

Key words: blockchain, confidentiality query, on-chain off-chain storage model, Oblivious Transfer(OT), elliptic curve encryption algorithm

中图分类号:

TP309.2

刘新, 胡翔瑜, 徐刚, 陈秀波. 区块链数据保密查询的不经意传输协议[J]. 计算机工程, 2022, 48(10): 13-20.

LIU Xin, HU Xiangyu, XU Gang, CHEN Xiubo. Oblivious Transfer Protocol for Confidentiality Query of Blockchain Data[J]. Computer Engineering, 2022, 48(10): 13-20.

http://www.ecice06.com/CN/Y2022/V48/I10/13

图/表 9

参考文献

[1] CHENG L C, LIU J Q, JIN Y, et al.Account guarantee scheme:making anonymous accounts supervised in blockchain[J].ACM Transactions on Internet Technology, 2021, 21(1):1-11.
[2] 李莉, 杜慧娜, 李涛.基于群签名与属性加密的区块链可监管隐私保护方案[J].计算机工程, 2022, 48(6):132-138. LI L, DU H N, LI T.Blockchain supervisable privacy protection scheme based on group signature and attribute encryption[J].Computer Engineering, 2022, 48(6):132-138.(in Chinese)
[3] LIU Q Y, LIU Z, LONG Y, et al.Making Monero hard-to-trace and more efficient[C]//Proceedings of the 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications/13th IEEE International Conference on Big Data Science and Engineering(TrustCom/BigDataSE).Washington D.C., USA:IEEE Press, 2019:514-521.
[4] ZHANG Y C, LONG Y, LIU Z, et al.Z-Channel:scalable and efficient scheme in Zerocash[M].Berlin, Germany:Springer, 2018.
[5] 李旭东, 牛玉坤, 魏凌波, 等.比特币隐私保护综述[J].密码学报, 2019, 6(2):133-149. LI X D, NIU Y K, WEI L B, et al.Overview on privacy protection in bitcoin[J].Journal of Cryptologic Research, 2019, 6(2):133-149.(in Chinese)
[6] OBOUR A, KWAME O B, XIA Q, et al.A secured proxy-based data sharing module in IoT environments using blockchain[J].Sensors (Basel, Switzerland), 2019, 19(5):1235.
[7] TRUONG N B, SUN K, LEE G M, et al.GDPR-compliant personal data management:a blockchain-based solution[J].IEEE Transactions on Information Forensics and Security, 2019, 15:1746-1761.
[8] HUANG C, LIU D X, NI J B, et al.Achieving accountable and efficient data sharing in industrial Internet of Things[J].IEEE Transactions on Industrial Informatics, 2021, 17(2):1416-1427.
[9] 吕建富, 赖英旭, 刘静.基于链上链下相结合的日志安全存储与检索[J].计算机科学, 2020, 47(3):298-303. LÜ J F, LAI Y X, LIU J.Log security storage and retrieval based on combination of on-chain and off-chain[J].Computer Science, 2020, 47(3):298-303.(in Chinese)
[10] MIYACHI K, MACKEY T K.hOCBS:a privacy-preserving blockchain framework for healthcare data leveraging an on-chain and off-chain system design[J].Information Processing & Management, 2021, 58(3):102535.
[11] LI T T, REN W, XIANG Y X, et al.FAPS:a fair, autonomous and privacy-preserving scheme for big data exchange based on oblivious transfer, Ether Cheque and smart contracts[J].Information Sciences, 2021, 544:469-484.
[12] JIANG P, GUO F C, LIANG K T, et al.Searchain:blockchain-based private keyword search in decentralized storage[J].Future Generation Computer Systems, 2020, 107:781-792.
[13] YANG H J, SHEN J, LU J Q, et al.A privacy-preserving data transmission scheme based on oblivious transfer and blockchain technology in the smart healthcare[J/OL].Security and Communication Networks:1-12[2021-12-04].https://doi.org/10.1155/2021/5781354.
[14] WANG X A, XHAFA F, MA J F, et al.Controlled secure social cloud data sharing based on a novel identity based proxy re-encryption plus scheme[J].Journal of Parallel and Distributed Computing, 2019, 130:153-165.
[15] 吴立强, 韩益亮, 杨晓元, 等.基于理想格的鲁棒门限代理重加密方案[J].电子学报, 2020, 48(9):1786-1794. WU L Q, HAN Y L, YANG X Y, et al.Robust threshold proxy re-encryption scheme from ideal lattices[J].Acta Electronica Sinica, 2020, 48(9):1786-1794.(in Chinese)
[16] LIU Z, SEO H, CASTIGLIONE A, et al.Memory-efficient implementation of elliptic curve cryptography for the Internet-of-things[J].IEEE Transactions on Dependable and Secure Computing, 2019, 16(3):521-529.
[17] 徐秋亮, 李大兴.椭圆曲线密码体制[J].计算机研究与发展, 1999, 36(11):1281-1288. XU Q L, LI D X.Elliptic curve cryptosystems[J].Journal of Computer Research and Development, 1999, 36(11):1281-1288.(in Chinese)
[18] BANSAL M, GUPTA S, MATHUR S.Comparison of ECC and RSA algorithm with DNA encoding for IoT security[C]//Proceedings of the 6th International Conference on Inventive Computation Technologies.Washington D.C., USA:IEEE Press, 2021:1340-1343.
[19] RABIN M O.How to exchange secrets by oblivious transfer:TR-81[R].Cambridge, USA:Aiken Computation Laboratory, Harvard University, 1981.
[20] 李顺东, 杜润萌, 杨颜璟, 等.安全多方多数据排序[J].计算机学报, 2020, 43(8):1448-1462. LI S D, DU R M, YANG Y J, et al.Secure multiparty multi-data ranking[J].Chinese Journal of Computers, 2020, 43(8):1448-1462.(in Chinese)
[21] CHOU T, ORLANDI C.The simplest protocol for oblivious transfer[M].Berlin, Germany:Springer, 2015.
[22] 魏晓超, 蒋瀚, 赵川.一个高效可完全模拟的n取1茫然传输协议[J].计算机研究与发展, 2016, 53(11):2475-2481. WEI X C, JIANG H, ZHAO C.An efficient 1-out-of-n oblivious transfer protocol with full simulation[J].Journal of Computer Research and Development, 2016, 53(11):2475-2481.(in Chinese)
[23] 赵圣楠, 蒋瀚, 魏晓超, 等.一个单服务器辅助的高效n取k茫然传输协议[J].计算机研究与发展, 2017, 54(10):2215-2223. ZHAO S N, JIANG H, WEI X C, et al.An efficient single server-aided k-out-of-n oblivious transfer protocol[J].Journal of Computer Research and Development, 2017, 54(10):2215-2223.(in Chinese)
[24] 徐彦蛟, 李顺东, 王道顺, 等.基于椭圆曲线公钥系统的不经意传输协议[J].计算机科学, 2013, 40(12):186-191. XU Y J, LI S D, WANG D S, et al.Oblivious transfer based on elliptic curve public key cryptosystems[J].Computer Science, 2013, 40(12):186-191.(in Chinese)
[25] GOYAL V, JAIN A, JIN Z Z, et al.Statistical zaps and new oblivious transfer protocols[C]//Proceedings of Annual International Conference on the Theory and Applications of Cryptographic Techniques.Berlin, Germany:Springer, 2020:668-699.
[26] MOHAN A P, MOHAMED A A R, GLADSTON A.Merkle tree and blockchain-based cloud data auditing[J].International Journal of Cloud Applications and Computing, 2020, 10(3):54-66.
[27] DAVE J, DUTTA A, FARUKI P, et al.Secure proof of ownership using Merkle tree for deduplicated storage[J].Automatic Control and Computer Sciences, 2020, 54(4):358-370.
[28] 姜守旭, 李建中.一种P2P电子商务系统中基于声誉的信任机制[J].软件学报, 2007, 18(10):2551-2563. JIANG S X, LI J Z.A reputation-based trust mechanism for P2P E-commerce systems[J].Journal of Software, 2007, 18(10):2551-2563.(in Chinese)
[29] 温啸林, 李长林, 张馨艺, 等.基于DPoS共识机制的区块链社区演化的可视分析方法[J].计算机科学, 2022, 49(1):328-335. WEN X L, LI C L, ZHANG X Y, et al.Visual analysis method of blockchain community evolution based on DPoS consensus mechanism[J].Computer Science, 2022, 49(1):328-335.(in Chinese)
[30] GOLDREICH O.The fundamental of cryptography:basic applications[M].London, UK:Cambridge University Press, 2004.

选择文件类型/文献管理软件名称

选择包含的内容

区块链数据保密查询的不经意传输协议

Oblivious Transfer Protocol for Confidentiality Query of Blockchain Data

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 9

参考文献

相关文章 15

编辑推荐

Metrics

本文评价

[1]	王群, 李馥娟, 倪雪莉, 夏玲玲, 梁广俊. 区块链数据形成与隐私威胁[J]. 计算机工程, 2023, 49(8): 1-12.
[2]	陈福安, 柳毅. 基于区块链的V2G无证书环签密隐私保护方案[J]. 计算机工程, 2023, 49(6): 34-41,52.
[3]	潘雪, 袁凌云, 黄敏敏. 基于区块链和域信任度的物联网跨域信任评估模型[J]. 计算机工程, 2023, 49(5): 181-190.
[4]	高健博, 张家硕, 李青山, 陈钟. RegLang监管合约规则冲突检测方法[J]. 计算机工程, 2023, 49(5): 12-21,28.
[5]	王群, 李馥娟, 倪雪莉, 夏玲玲, 梁广俊. 区块链隐私保护机制研究[J]. 计算机工程, 2023, 49(4): 1-13.
[6]	黄金荣, 刘百祥, 张亮, 张展鹏. 基于智能合约和非同质化代币的去中心化匿名身份认证模型[J]. 计算机工程, 2023, 49(4): 14-22.
[7]	白首圳, 陈美娟. 面向工业互联网的区块链分层分片研究[J]. 计算机工程, 2023, 49(3): 58-66,79.
[8]	田秀霞, 杨明夷. 家庭物联网中基于智能合约的访问控制机制[J]. 计算机工程, 2023, 49(3): 18-28.
[9]	苏瑞国, 阳建, 秦继伟, 武晓雄, 贾振红. 基于物联网区块链的轻量级共识算法研究[J]. 计算机工程, 2023, 49(2): 175-180.
[10]	孙林昆, 蒋文保, 郭阳楠, 李春强. 基于密码累加器的无状态区块链性能优化[J]. 计算机工程, 2023, 49(2): 46-53.
[11]	刘泽坤, 王峰, 贾海蓉. 结合动态信用机制的PBFT算法优化方案[J]. 计算机工程, 2023, 49(2): 191-198.
[12]	冉玲琴, 彭长根, 许德权, 吴宁博. 基于区块链技术架构的隐私泄露风险评估方法[J]. 计算机工程, 2023, 49(1): 146-153.
[13]	李尤慧子, 俞海涛, 殷昱煜, 高洪皓. 基于超级账本的集群联邦优化模型[J]. 计算机工程, 2023, 49(1): 22-30.
[14]	陈凯, 徐成, 刘宏哲, 代松银. 基于区块链的危险驾驶地图数据评估模型[J]. 计算机工程, 2022, 48(8): 160-165,172.
[15]	张亮, 刘百祥. 区块链与秘密分享融合技术综述[J]. 计算机工程, 2022, 48(8): 1-11.

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

区块链数据保密查询的不经意传输协议

Oblivious Transfer Protocol for Confidentiality Query of Blockchain Data

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 9

参考文献

相关文章 15

编辑推荐

Metrics

本文评价