Consortium Blockchain Data Sharing Scheme Using Lattice Ciphertext Policy Attribute-Based Encryption

doi:10.19678/j.issn.1000-3428.0066556

Abstract

Abstract:

In the process of data sharing, problems of data leakage and trust crisis can arise, and with the emergence of quantum computers, the threat to traditional encryption algorithms is greater. To this end, this paper proposes a consortium blockchain data sharing scheme that uses lattice Ciphertext Policy Attribute-Based Encryption(CP-ABE) to solve the problem of mutual distrust between two data-sharing parties in a distributed network, using the access mechanism of the consortium blockchain and the characteristics that allow the existence of a trusted third party. CP-ABE based on Ring-Learning with Errors(R-LWE) is introduced to resist quantum attacks and improve access tree generation to classify attributes into two categories of high and low sensitivity, to ensure data security through hierarchical encryption of the data. The data sharing model is constructed based on an evolutionary game, whereby the selection strategy of the sharing parties in the consortium blockchain data sharing system and the influence of different parameters on the evolution results are analyzed. The experimental results show that as the number of attributes increases exponentially, the efficiency of the hierarchical encryption scheme in the SystemSetup, DOEncrypt, and DUDecrypt algorithms become 81.6%, 43.8%, and 56.0% higher than that of the CP-ABE scheme which is based on composite order bilinear groups. Each addition of an endorsement node can increase the system efficiency of executing the functions of adding users and querying users by 36.8% and 6.4%, respectively. In addition, simulations of the evolutionary model show that, the inherent benefits of data and the product of loss probability and loss income increase, thereby increasing the income brought by participating in the consortium blockchain, making users more inclined to join the consortium blockchain.

Key words: data sharing, Ciphertext Policy Attribute-Based Encryption(CP-ABE), Ring-Learning with Errors(R-LWE), consortium blockchain, evolutionary game theory

摘要：

数据共享过程中存在数据泄漏、信任危机等问题，且量子计算机的出现对传统加密算法带来了较大威胁。为此，提出一种基于格上密文策略属性基加密（CP-ABE）的联盟链数据共享方案。利用联盟链的准入机制以及允许存在可信第三方的特性解决在分布式网络中数据共享双方相互不信任的问题。引入基于环上容错学习的CP-ABE技术来抵御量子攻击，同时改进访问树的生成方式，将属性分为高敏感、低敏感两类，实现对数据的分级加密以保证数据的安全性。基于演化博弈论构建数据共享模型，对共享双方在联盟链数据共享体系中的选择策略进行求解和分析，并探究不同参数对演化结果的影响。实验结果表明，当属性数量呈指数级增长时，该方案的启动算法、加密算法以及解密算法的效率比基于合数阶双线群的CP-ABE方案分别提高81.6%、43.8%和56.0%，每增加一个背书节点能够使系统在执行增加用户与查询用户函数时效率分别提高36.8%与6.4%。此外，对演化模型进行模拟，结果表明，当数据固有收益、损失概率与损失收益的乘积都提高时，参与联盟链带来的收益提高，用户更倾向于参与联盟链。

关键词: 数据共享, 密文策略属性基加密, 环上容错学习, 联盟链, 演化博弈论

Lingyun ZHANG, Yuling CHEN. Consortium Blockchain Data Sharing Scheme Using Lattice Ciphertext Policy Attribute-Based Encryption[J]. Computer Engineering, 2023, 49(11): 30-39.

张凌云, 陈玉玲. 基于格上密文策略属性基加密的联盟链数据共享方案[J]. 计算机工程, 2023, 49(11): 30-39.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.19678/j.issn.1000-3428.0066556

http://www.ecice06.com/EN/Y2023/V49/I11/30

Figures/Tables 14

Fig.1 Membership composition

Fig.2 Data structure of DO

Fig.3 Data structure of DU

Fig.4 Grading LSSS

Fig.5 Phase diagram corresponding to

$ {R} > {C} $

Fig.6 Phase diagram corresponding to

$ -{P}{Q} < {R} < {C} $

Fig.7 Phase diagram corresponding to

$ {R} < -{P}{Q} $

$ {R}+{P}{Q} > -1 $

Fig.8 Effect of evolutionary strategy

Fig.9 Time comparison of two schemes

References 27

1	QIN Z L X. A blockchain-based access control scheme with multiple attribute authorities for secure cloud data sharing. Journal of Systems Architecture, 2021, 112, 101854. doi: 10.1016/j.sysarc.2020.101854
2	SHARMA P, JINDAL R, BORAH M D. Blockchain-based cloud storage system with CP-ABE-based access control and revocation process. The Journal of Supercomputing, 2022, 78 (6): 7700- 7728. doi: 10.1007/s11227-021-04179-4
3	SAHAI A, WATERS B R. Fuzzy identity-based encryption[C]//Proceedings of the 24th Annual International Conference on Theory and Applications of Cryptographic Techniques. Berlin, Germany: Springer, 2004: 457-473.
4	GOYAL V, PANDEY O, SAHAI A, et al. Attribute-based encryption for fine-grained access control of encrypted data[C]//Proceedings of the 13th ACM Conference on Computer and Communications Security. New York, USA: ACM Press, 2006: 89-98.
5	WATERS B. Ciphertext-policy attribute-based encryption: an expressive, efficient, and provably secure realization[EB/OL]. [2022-11-05]. https://eprint.iacr.org/2008/290.pdf.
6	LEWKO A, WATERS B. New proof methods for attribute-based encryption: achieving full security through selective techniques[EB/OL]. [2022-11-05]. https://eprint.iacr.org/2012/326.pdf.
7	SOO F T, SAMSUDIN A. Lattice ciphertext-policy attribute-based encryption from Ring-LWE[C]//Proceedings of International Symposium on Technology Management and Emerging Technologies. Washington D. C., USA: IEEE Press, 2015: 258-262.
8	LYUBASHEVSKY V, PEIKERT C, REGEV O. On ideal lattices and learning with errors over rings. Journal of the ACM, 2013, 60 (6): 1- 35.
9	张恩, 裴瑶瑶, 杜蛟. 基于RLWE的密文策略属性代理重加密. 通信学报, 2018, 39 (11): 129- 137. doi: 10.11959/j.issn.1000-436x.2018239
	ZHANG E, PEI Y Y, DU J. RLWE-based ciphertext-policy attribute proxy re-encryption. Journal on Communications, 2018, 39 (11): 129- 137. doi: 10.11959/j.issn.1000-436x.2018239
10	闫玺玺, 刘媛, 李子臣, 等. 理想格上支持隐私保护的属性基加密方案. 通信学报, 2018, 39 (3): 128- 135. URL
	YAN X X, LIU Y, LI Z C, et al. Privacy-preserving attribute-based encryption scheme on ideal lattices. Journal on Communications, 2018, 39 (3): 128- 135. URL
11	ZHAO S Y, JIANG R, BHARGAVA B. RL-ABE: a revocable lattice attribute based encryption scheme based on R-LWE problem in cloud storage. IEEE Transactions on Services Computing, 2022, 15 (2): 1026- 1035. doi: 10.1109/TSC.2020.2973256
12	FELSON M, SPAETH J L. Community structure and collaborative consumption: a routine activity approach. American Behavioral Scientist, 1978, 21 (4): 614- 624. doi: 10.1177/000276427802100411
13	XIA Q, SIFAH E, SMAHI A, et al. BBDS: blockchain-based data sharing for electronic medical records in cloud environments. Information, 2017, 8 (2): 44. doi: 10.3390/info8020044
14	LIANG X P, ZHAO J, SHETTY S, et al. Integrating blockchain for data sharing and collaboration in mobile healthcare applications[C]//Proceedings of the 28th IEEE Annual International Symposium on Personal, Indoor, and Mobile Radio Communications. Washington D. C., USA: IEEE Press, 2018: 1-5.
15	XUAN S, ZHENG L, CHUNG I, et al. An incentive mechanism for data sharing based on blockchain with smart contracts. Computers & Electrical Engineering, 2020, 83, 106587.
16	MA X, WANG C, CHEN X. Trusted data sharing with flexible access control based on blockchain. Computer Standards & Interfaces, 2021, 78, 103543.
17	GUO Y, WANG S L, HUANG J H. A blockchain-assisted framework for secure and reliable data sharing in distributed systems. EURASIP Journal on Wireless Communications and Networking, 2021, (1): 1- 19.
18	ZHANG G F, CHEN X, FENG B, et al. BCST-APTS: blockchain and CP-ABE empowered data supervision, sharing, and privacy protection scheme for secure and trusted agricultural product traceability system. Security and Communication Networks, 2022, (22): 1- 11.
19	NAKAMOTO S. Bitcoin: a peer-to-peer electronic cash system[EB/OL]. [2022-11-05]. https://pdos.csail.mit.edu/6.824/papers/bitcoin.pdf.
20	陆尧, 文捷. 基于比特币技术的供应链管控与溯源方案. 计算机工程, 2018, 44 (12): 85-93, 101. URL
	LU Y, WEN J. Scheme of supply chain control and traceability based on bitcoin technology. Computer Engineering, 2018, 44 (12): 85-93, 101. URL
21	贾翁力, 李秀林, 刘汗青, 等. 食品溯源方法分析研究. 食品工业, 2022, 43 (10): 186- 189. URL
	JIA W L, LI X L, LIU H Q, et al. Analysis and research on food traceability method. The Food Industry, 2022, 43 (10): 186- 189. URL
22	ZHAO H J, ZHAO B, CHENG S S. The mechanism of confirming big data property rights based on smart contract[C]//Proceedings of the 4th International Conference on Intelligent Information Technology. New York, USA: ACM Press, 2019: 78-82.
23	王海龙, 田有亮, 尹鑫. 基于区块链的大数据确权方案. 计算机科学, 2018, 45 (2): 15-19, 24. URL
	WANG H L, TIAN Y L, YIN X. Blockchain-based big data right confirmation scheme. Computer Science, 2018, 45 (2): 15-19, 24. URL
24	DAMGARD I, THORBEK R. Linear integer secret sharing and distributed exponentiation[EB/OL]. [2022-11-05]. https://eprint.iacr.org/2006/044.pdf.
25	王爱荣, 郭晓林, 何志星. 基于区块链的农产品溯源体系的演化博弈. 物流技术, 2022, 41 (1): 70- 75. URL
	WANG A R, GUO X L, HE Z X. Evolutionary game of agricultural product traceability system based on blockchain. Logistics Technology, 2022, 41 (1): 70- 75. URL
26	LEWKO A, OKAMOTO T, SAHAI A, et al. Fully secure functional encryption: attribute-based encryption and (hierarchical) inner product encryption[EB/OL]. [2022-11-05]. https://eprint.iacr.org/2010/110.pdf.
27	BONEH D, GOH E J, NISSIM K. Evaluating 2-DNF formulas on ciphertexts[EB/OL]. [2022-11-05]. https://crypto.stanford.edu/~dabo/papers/2dnf.pdf.

[1]	HE Jianjiang, CHEN Yuling. DLIN Encryption-based Auditable Privacy-Preserving Scheme for Consortium Blockchain [J]. Computer Engineering, 2023, 49(6): 170-179.
[2]	YANG Yuejia, HUA Bei, ZHONG Zhiwei, GAO Mi. Collaborative Computing of Privacy-Preserving Logistic Regression Based on Homomorphic Encryption [J]. Computer Engineering, 2023, 49(4): 23-31.
[3]	ZHANG Xiaojun, LIU Qing, ZHENG Shuang, WANG Xin, XUE Jingting, WANG Shixiong. Verifiable Cloud Data Sharing Scheme that Supports Privacy Protection [J]. Computer Engineering, 2023, 49(3): 49-57.
[4]	ZHANG Bojun, GUO Yichen, WANG Zikai, HU Kai. Research on Data Sharing Incentive Mechanism Based on Smart Contract [J]. Computer Engineering, 2022, 48(8): 37-44.
[5]	WEN Yalan, CHEN Meijuan. Medical Data Sharing Scheme Combined with Federal Learning and Blockchain [J]. Computer Engineering, 2022, 48(5): 145-153,161.
[6]	ZHANG Xiaodong, CHEN Taowei, YU Yimin. A Blockchain Data Sharing Scheme Based on LWE-CPABE [J]. Computer Engineering, 2022, 48(10): 158-168,175.
[7]	ZHANG Lihua, CAO Yu, ZHANG Ganzhe, HUANG Yang, CHEN Shihong. Blockchain-based Secure Data Sharing Scheme for Microgrid [J]. Computer Engineering, 2022, 48(1): 43-50.
[8]	WU Xinghua,ZHANG Aixin,LI Jianhua. Data Outsourcing and Sharing Scheme Based on Vector Commitment and Proxy Re-encryption [J]. Computer Engineering, 2018, 44(10): 1-5.
[9]	YANG Wenchao,WANG Jike,CUI Guanghai. Cooperation Promotion Mechanism of Social Networks Based on Nodes Strategy Learning Behaviors [J]. Computer Engineering, 2017, 43(11): 140-145.
[10]	GAN Qingqing,WANG Xiaoming. An Efficient Key-aggregate Encryption Scheme Under Cloud Environment [J]. Computer Engineering, 2016, 42(2): 33-37,44.
[11]	WANG Qian, LI Yan-Jun, LIU Hong. A Privacy Preserving Approach for Multiple Sensitive Attributes Based on Attributes Classification [J]. Computer Engineering, 2013, 39(8): 177-180,186.
[12]	WANG Xiao-Wei, DIAO Yi-Ming. A Task-role-based Access Control Model for Cloud Computing [J]. Computer Engineering, 2012, 38(24): 9-13.
[13]	CHEN Xiao-Yu, LI Xiao-Jing, ZHOU Xu-Chuan. Distributed Anomaly Detection Method Based on Model Share [J]. Computer Engineering, 2012, 38(11): 262-263,267.
[14]	YANG Wen-Chao, DIAO Juan, NA Kai. Search and Sharing System for Literature Metadata [J]. Computer Engineering, 2011, 37(23): 37-39.
[15]	ZHANG Lin-na; WANG Yin-hui;. Distributed Data Sharing Model Based on Node Autonomy [J]. Computer Engineering, 2009, 35(3): 32-35,3.

Please choose a citation manager

Content to export