网络与信息安全学报 ›› 2020, Vol. 6 ›› Issue (2): 56-66.doi: 10.11959/j.issn.2096-109x.2020022

• 专栏:区块链技术 • 上一篇    下一篇

基于比特币区块链的公共无线局域网接入控制隐私保护研究

牛玉坤1,魏凌波1(),张驰1,张霞2,GustavoVejarano3   

  1. 1 中国科学技术大学信息科学技术学院,安徽 合肥 230026
    2 武汉理工大学计算机科学与技术学院,湖北 武汉 430047
    3 Department of Electrical Engineering and Computer Science,Loyola Marymount University,Los Angeles,CA 90045
  • 修回日期:2020-02-22 出版日期:2020-04-15 发布日期:2020-04-23
  • 作者简介:牛玉坤(1989- ),男,河南周口人,中国科学技术大学博士生,主要研究方向为应用密码学和区块链技术|魏凌波(1979- ),女,陕西周至人,博士,中国科学技术大学副研究员,主要研究方向为应用密码学和区块链技术|张驰(1977- ),男,广西百色人,博士,中国科学技术大学副教授,主要研究方向为无线网络、网络安全和区块链技术|张霞(1979- ),女,湖北武汉人,博士,武汉理工大学讲师,主要研究方向为无线网络和区块链技术|Gustavo Vejarano(1982- ),男,哥伦比亚人,博士,洛约拉马利蒙特大学副教授,主要研究方向为无线网络和安全技术
  • 基金资助:
    国家自然科学基金资助项目(61702474);国家重点研发计划基金资助项目(2018YFB0804201)

Privacy-preserving access control for public wireless LAN utilizing the bitcoin blockchain

Yukun NIU1,Lingbo WEI1(),Chi ZHANG1,Xia ZHANG2,Vejarano Gustavo3   

  1. 1 School of Information Science and Technology,University of Science and Technology of China,Hefei 230026,China
    2 School of Computer Science and Technology,Wuhan University of Technology,Wuhan 430047,China
    3 Department of Electrical Engineering and Computer Science,Loyola Marymount University,Los Angeles 90045,USA
  • Revised:2020-02-22 Online:2020-04-15 Published:2020-04-23
  • Supported by:
    The Natural Science Foundation of China(61702474);The National Key R&D Program of China(2018YFB0804201)

摘要:

在公共无线局域网的访问控制中,用户隐私保护和用户可问责性是一对相互冲突的目标。针对该问题,提出了一种基于比特币区块链和Intel SGX的匿名且可问责用户管理与访问控制方案。在不修改已有的比特币协议的前提下,实现了对公共无线局域网访问凭证的安全管理,而无须依赖可信第三方;采用基于Intel SGX的混合技术,通过较小的开销提供了用户可控的访问凭证匿名性保护;设计的区块链验证路径规则在保持用户隐私的同时实现了对恶意用户的问责。理论分析和实验结果验证了该方案的安全性和可行性。

关键词: WLAN访问控制, 比特币区块链, IntelSGX, 匿名性, 可问责性, 认证

Abstract:

In designing an access control scheme for public wireless LAN (WLAN),user privacy protection and user accountability are two conflict goals.A novel user management and access control scheme was proposed to solve this problem by utilizing the bitcoin blockchain and Intel SGX.It utilized unmodified bitcoin blockchain to manage the ownership of access credentials for users without relying on any trusted third party.It adopted Intel SGX-based mixing technology to enhance anonymity of users’ access credentials.It designed verification path rule to resolve the conflicts between the privacy-preserving and accountability objectives.The effectiveness and feasibility of the proposed scheme are also demonstrated by security analysis and performance evaluation.

Key words: WLAN access control, bitcoin blockchain, Intel SGX, anonymity, accountability, authentication

中图分类号: 

No Suggested Reading articles found!