基于混合链结构的隐私保护交易系统监管方案

doi:10.11959/j.issn.2096-109x.2023083

网络与信息安全学报 ›› 2023, Vol. 9 ›› Issue (6): 56-70.doi: 10.11959/j.issn.2096-109x.2023083

• 学术论文 • 上一篇

基于混合链结构的隐私保护交易系统监管方案

贾雪丹¹^,², 黄龙霞¹, 经普杰¹, 王良民³, 宋香梅¹

¹ 江苏大学计算机科学与通信工程学院，江苏镇江 212013
² 江苏省食品质量安全重点实验室-国家重点实验室培育基地，江苏南京210014
³ 东南大学网络空间安全学院，江苏南京 211189

修回日期:2023-10-23 出版日期:2023-12-01 发布日期:2023-12-01
作者简介:贾雪丹（1988- ），女，山东德州人，江苏大学博士生，主要研究方向为区块链安全、隐私保护技术
黄龙霞（1991- ），女，江苏泰州人，博士，江苏大学副教授，主要研究方向为信息安全、云存储安全、区块链安全
经普杰（1996- ），男，河北廊坊人，江苏大学博士生，主要研究方向为密码学、区块链安全、区块链跨链技术
王良民（1977- ），男，安徽潜山人，博士，东南大学教授、博士生导师，主要研究方向为密码学与安全协议、物联网安全、大数据安全及区块链技术
宋香梅（1979- ），女，吉林桦甸人，博士，江苏大学副教授，主要研究方向为信息安全和隐私保护
基金资助:
国家重点研发计划(2022YFD2100605);国家自然科学基金(62102168);江苏省前沿引领技术基础研究专项(BK20202001);江苏省自然科学基金(BK20200888)

Hybrid-chain-based supervision scheme for privacypreserving trading system

Xuedan JIA¹^,², Longxia HUANG¹, Pujie JING¹, Liangmin WANG³, Xiangmei SONG¹

¹ School of Computer Science and Communication Engineering, Jiangsu University, Zhenjiang 212013, China
² Jiangsu Key Laboratory for Food Quality and Safety-State Key Laboratory Cultivation Base, Nanjing 210014, China
³ School of Cyber Science and Engineering, Southeast University, Nanjing 211189, China

Revised:2023-10-23 Online:2023-12-01 Published:2023-12-01
Supported by:
The National Key R＆D Program of China(2022YFD2100605);The National Natural Science Foundation of China(62102168);The Leading-Edge Technology Program of Jiangsu Natural Science Foundation(BK20202001);The Natural Science Foundation of Jiangsu Province(BK20200888)

摘要/Abstract

摘要：

区块链技术因其去中心化、透明性和安全性等特点，广泛应用于金融、物联网和供应链等行业。但区块链技术的应用在带来行业变革机会的同时，给行业监管带来了新的挑战。一方面，传统中心化监管手段会破坏区块链去中心化和自治性的可信基础，导致区块链应用系统面临监管困境；另一方面，区块链应用系统存在隐私保护需求，交易中通常包含比货币数量更多的敏感信息，交易暴露会直接导致隐私泄露。区块链应用系统隐私保护会增加监管部门对交易情况的监管难度。针对隐私保护的区块链交易系统监管需求，提出基于混合链结构的监管方案，设计了基于多委员会的通用跨链协作监管方法；设置监管链和业务链监管委员会，通过业务链监管委员会对业务链信息产生隐私保护的证明，进而实现隐私保护的监管；在链内交易监管的同时，通过跨链通信委员会和监管委员会共同实现对业务链之间的跨链交易监管。根据监管方案的安全需求，证明了当每个组件满足其安全要求时，监管方案是安全的。为了验证方案的可行性，用有效组件实现，并进行实验评估。结果表明，所提方案以较低的成本实现了跨链监管，并具有通用性和可扩展性。

关键词: 区块链, 监管, 跨链, 隐私

Abstract:

Due to its characteristics of decentralization, transparency, and security, blockchain technology is widely used in finance, the Internet of Things, and supply chain.However, along with the opportunities it brings, the application of blockchain technology also presents new challenges.On one hand, traditional centralized regulatory methods can undermine the decentralized and autonomous nature of blockchain, creating regulatory dilemmas.On the other hand, blockchain-based systems require privacy protection as transactions often contain sensitive information beyond currency amounts.Failure to protect privacy can result in information leakage and make it difficult for authorities to monitor transactions.To address these challenges and enable regulation in privacy-preserving blockchain-based trading systems, a hybrid chain framework was proposed.This framework incorporated a multiple committee-based approach for general cross-chain regulation.Separate committees were established for the supervision chain and service chain.The service chain committee handled service chain data, generating and sending proofs to the supervision chain to achieve private supervision.In addition to single-chain regulation, cross-chain communication committees and supervision committees collaborated to achieve cross-chain transaction supervision among different service chains.Through a security analysis, it is proven that the proposed scheme is secure when each module meets its security requirements.Experimental evaluations have been conducted to demonstrate the feasibility of the proposed scheme, showing that it achieves cross-chain supervision at a low cost and is scalable.

Key words: blockchain, supervision, cross-chain, privacy

中图分类号:

TP393

贾雪丹, 黄龙霞, 经普杰, 王良民, 宋香梅. 基于混合链结构的隐私保护交易系统监管方案[J]. 网络与信息安全学报, 2023, 9(6): 56-70.

Xuedan JIA, Longxia HUANG, Pujie JING, Liangmin WANG, Xiangmei SONG. Hybrid-chain-based supervision scheme for privacypreserving trading system[J]. Chinese Journal of Network and Information Security, 2023, 9(6): 56-70.

图/表 8

图1

图2

图3

图4

图5

图6

图7

图8

参考文献 31

[1]	ZHENG Z , XIE S , DAI H ,et al. An overview of blockchain technology:Architecture,consensus,and future trends[C]// Proceedings of 2017 IEEE International Congress on Big Data (BigData Congress). 2017: 557-564.
[2]	HAYES A . Blockchain explained[EB].
[3]	NIJEHOLT H , OUDEJANS J , ERKIN Z . Decreg:a framework for preventing double-financing using blockchain technology[C]// Proceedings of the ACM Workshop on Blockchain,Cryptocurrencies and Contracts. 2017: 29-34.
[4]	DAI J , VASARHELYI A . Toward blockchain-based accounting and assurance[J]. Journal of Information Systems, 2017,31(3): 5-21.
[5]	AKINS W , CHAPMAN L , GORDON M . A whole new world:income tax considerations of the Bitcoin economy[J]. Pittsburgh Tax Review, 2014,12(1): 24-56.
[6]	JIA X , WANG L , CHENG K ,et al. A blockchain-based privacy-preserving and collusion-resistant scheme(PPCR) for double auctions[J]. Digital Communications and Networks, 2023,5(2).
[7]	YU K , TAN L , ALOQAILY M ,et al. Blockchain-enhanced data sharing with traceable and direct revocation in IIoT[J]. IEEE Transactions on Industrial Informatics, 2021,17(11): 7669-7678.
[8]	ZHU Q , KOUHIZADEH M . Blockchain technology,supply chain information,and strategic product deletion management[J]. IEEE Engineering Management Review, 2019,47(1): 36-44.
[9]	REN K , HO N M , LOGHIN D ,et al. Interoperability in blockchain:a survey[J]. IEEE Transactions on Knowledge and Data Engineering, 2023,35(12): 12750-12769.
[10]	XIE T , ZHANG J , CHENG Z ,et al. Zkbridge:Trustless cross-chain bridges made practical[C]// Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security. 2022: 3003-3017.
[11]	经普杰, 王良民, 董学文 ,等. 分层跨链结构:一种面向区块链系统监管的可行架构[J]. 通信学报, 2023,44(3): 93-104.
	JING P J , WANG L M , DONG X W ,et al. CHA:Cross-chain based hierarchical architecture for practicable blockchain regulatory[J]. Journal on Communications, 2023,44(3): 93-104.
[12]	BIRYUKOV A , KHOVRATOVICH D , PUSTOGAROV I . Deanonymisation of clients in bitcoin P2P network[C]// Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security. 2014: 15-29.
[13]	BIRYUKOV A , TIKHOMIROV S . Deanonymization and linkability of cryptocurrency transactions based on network analysis[C]// Proceedings of 2019 IEEE European Symposium on Security and Privacy (EuroS＆P). 2019: 172-184.
[14]	GAO Y , SHI J , WANG X ,et al. Practical deanonymization attack in Ethereum based on P2P network analysis[C]// Proceedings of 2021 IEEE International Congress on Parallel ＆ Distributed Processing with Applications,Big Data ＆ Cloud Computing,Sustainable Computing ＆ Communications,Social Computing ＆ Networking(ISPA/BDCloud/ SocialCom/SustainCom). 2021: 1402-1409.
[15]	李芳, 李卓然, 赵赫 . 区块链跨链技术进展研究[J]. 软件学报, 2019,30(6): 1649-1660.
	LI F , LI Z R , ZHAO H . Research on the progress in cross-chain technology of blockchains[J]. Journal of Software, 2019,30(6): 1649-1660.
[16]	BELCHIOR R , VASCONCELOS A , GUERREIRO S ,et al. A survey on blockchain interoperability:past,present,and future trends[J]. ACM Computing Surveys (CSUR), 2021,54(8): 1-41.
[17]	BUTERIN V . Chain interoperability[J]. R3 Research Paper, 2016.
[18]	TIAN H , XUE K , LUO X ,et al. Enabling cross-chain transactions:a decentralized cryptocurrency exchange protocol[J]. IEEE Transactions on Information Forensics and Security, 2021,16: 3928-3941.
[19]	SHAO S , CHEN F , XIAO X ,et al. IBE-BCIOT:an IBE based cross-chain communication mechanism of blockchain in IoT[J]. World Wide Web, 2021,24(5): 1665-1690.
[20]	ZHANG Y , GE Z , LONG Y ,et al. UCC:universal and committee-based cross-chain framework[C]// Proceedings of International Conference on Information Security Practice and Experience. 2022: 93-111.
[21]	XIONG A , LIU G , ZHU Q ,et al. A notary group-based cross-chain mechanism[J]. Digital Communications and Networks, 2022,8(6): 1059-1067.
[22]	邹萍, 李艳东, 王肖 ,等. 区块链监管的现状与展望[J]. 网络空间安全, 2019,10(6): 51-56.
	ZOU P , LI Y , WANG X ,et al. The status quo and future trends of blockchain regulation[J]. Cyberspace Security, 2019,10(6): 51-56.
[23]	WANG Y , GOU G , LIU C ,et al. Survey of security supervision on blockchain from the perspective of technology[J]. Journal of Information Security and Applications, 2021,60: 1-31.
[24]	余春堂, 韩志耕, 李致远 ,等. 基于区块链的众包物流分级多层智能服务交易监管架构[J]. 网络与信息安全学报, 2020,6(3): 50-58.
	YU C T , HAN Z G , LI Z Y ,et al. Blockchain-based hierarchical and multi-level smart service transaction supervision framework for crowdsourcing logistics[J]. Chinese Journal of Network and Information Security, 2020,6(3): 50-58.
[25]	TAO Q , CUI X , HUANG X ,et al. Food safety supervision system based on hierarchical multi-domain blockchain network[J]. IEEE Access, 2019,7: 51817-51826.
[26]	LI X , WU L , ZHAO R ,et al. Two-layer adaptive blockchain-based supervision model for off-site modular housing production[J]. Computers in Industry, 2021,128:103437.
[27]	PENG X , ZHANG X , WANG X ,et al. A refined supervision model of rice supply chain based on multi-blockchain[J]. Foods, 2022,11(18): 1-25.
[28]	WANG K , ZHANG Z , KIM H . ReviewChain:smart contract based review system with multi-blockchain gateway[C]// Proceedings of 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber,Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData). 2018: 1521-1526.
[29]	PARNO B , HOWELL J , GENTRY C ,et al. Pinocchio:nearly practical verifiable computation[J]. Communications of the ACM, 2016,59(2): 103-112.
[30]	HUANG K , KANHERE S , HU W . Are you contributing trustworthy data? The case for a reputation system in participatory sensing[C]// Proceedings of the 13th ACM International Conference on Modeling,Analysis,and Simulation of Wireless and Mobile Systems. 2010: 14-22.
[31]	GANERIWAL S , BALZANO L , SRIVASTAVA M . Reputation-based framework for high integrity sensor networks[J]. ACM Transactions on Sensor Networks (TOSN), 2008,4(3): 1-37.

基于混合链结构的隐私保护交易系统监管方案

Hybrid-chain-based supervision scheme for privacypreserving trading system

在线阅读

pdf下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 8

参考文献 31

相关文章 15

Metrics

推荐阅读 0

[1]	贾靖宇, 谭畅, 刘哲伟, 李鑫豪, 刘哲理, 张涛. 差分隐私的隐私观与隐私目标[J]. 网络与信息安全学报, 2023, 9(5): 82-91.
[2]	赵守才, 曹利峰, 杜学绘. 基于联盟链的数据溯源机制[J]. 网络与信息安全学报, 2023, 9(5): 92-105.
[3]	何毅凡, 张杰, 张卫明, 俞能海. 可逆神经网络的隐私泄露风险评估[J]. 网络与信息安全学报, 2023, 9(4): 29-39.
[4]	于玥, 林宪正, 李卫海, 俞能海. 基于哈夫曼的k-匿名模型隐私保护数据压缩方案[J]. 网络与信息安全学报, 2023, 9(4): 64-73.
[5]	祖立军, 曹雅琳, 门小骅, 吕智慧, 叶家炜, 李泓一, 张亮. 基于隐私风险评估的脱敏算法自适应方法[J]. 网络与信息安全学报, 2023, 9(3): 49-59.
[6]	陈赛特, 李卫海, 姚远志, 俞能海. 轻量级K匿名增量近邻查询位置隐私保护算法[J]. 网络与信息安全学报, 2023, 9(3): 60-72.
[7]	陈任峰, 朱鸿斌. 基于PU learning的信用卡交易安全监管研究[J]. 网络与信息安全学报, 2023, 9(3): 73-78.
[8]	余锋, 林庆新, 林晖, 汪晓丁. 基于生成对抗网络的隐私增强联邦学习方案[J]. 网络与信息安全学报, 2023, 9(3): 113-122.
[9]	陈晋音, 李荣昌, 黄国瀚, 刘涛, 郑海斌, 程瑶. 纵向联邦学习方法及其隐私和安全综述[J]. 网络与信息安全学报, 2023, 9(2): 1-20.
[10]	蔡召, 荆涛, 任爽. 以太坊钓鱼诈骗检测技术综述[J]. 网络与信息安全学报, 2023, 9(2): 21-32.
[11]	肖敏, 毛发英, 黄永洪, 曹云飞. 基于属性签名的车载网匿名信任管理方案[J]. 网络与信息安全学报, 2023, 9(2): 33-45.
[12]	许建龙, 林健, 黎宇森, 熊智. 分布式用户隐私保护可调节的云服务个性化QoS预测模型[J]. 网络与信息安全学报, 2023, 9(2): 70-80.
[13]	王贺立, 闫巧. 基于交易记录特征的自私挖矿检测方案[J]. 网络与信息安全学报, 2023, 9(2): 104-114.
[14]	余北缘, 任珊瑶, 刘建伟. 区块链资产窃取攻击与防御技术综述[J]. 网络与信息安全学报, 2023, 9(1): 1-17.
[15]	孙哲, 宁洪, 殷丽华, 方滨兴. 基于教学实训靶场的“数据隐私保护”课程建设初探[J]. 网络与信息安全学报, 2023, 9(1): 178-188.