通信学报 ›› 2023, Vol. 44 ›› Issue (3): 186-197.doi: 10.11959/j.issn.1000-436x.2023031

• 学术论文 • 上一篇    下一篇

区块链架构下高效的车联网跨域数据安全共享研究

刘雪娇1, 曹天聪1, 夏莹杰2,3   

  1. 1 杭州师范大学信息科学与技术学院,浙江 杭州 311121
    2 浙江大学计算机科学与技术学院,浙江 杭州 310027
    3 浙江大学台州研究院,浙江 台州 318000
  • 修回日期:2022-11-14 出版日期:2023-03-25 发布日期:2023-03-01
  • 作者简介:刘雪娇(1984− ),女,河南安阳人,博士,杭州师范大学副教授,主要研究方向为网络安全、云安全、车联网安全等
    曹天聪(1999− ),女,河北唐山人,杭州师范大学硕士生,主要研究方向为网络安全、区块链和车联网
    夏莹杰(1982− ),男,浙江宁波人,博士,浙江大学研究员,主要研究方向为智能交通、信息安全等
  • 基金资助:
    浙江省自然科学基金资助项目(LZ22F030004);浙江省大学生科技创新活动计划(新苗人才计划)基金资助项目(2022R426B067);杭州师范大学研究生科研创新基金资助项目(1115B20500416)

Research on efficient and secure cross-domain data sharing of IoV under blockchain architecture

Xuejiao LIU1, Tiancong CAO1, Yingjie XIA2,3   

  1. 1 School of Information Science and Technology, Hangzhou Normal University, Hangzhou 311121, China
    2 College of Computer Science and Technology, Zhejiang University, Hangzhou 310027, China
    3 Research Institute of Zhejiang University-Taizhou, Taizhou 318000, China
  • Revised:2022-11-14 Online:2023-03-25 Published:2023-03-01
  • Supported by:
    The Natural Science Foundation of Zhejiang Province(LZ22F030004);Zhejiang Students’ Technology and Innovation Program(2022R426B067);The Postgraduate Research Innovation Promotion of Hangzhou Normal University(1115B20500416)

摘要:

为了解决车联网环境下跨信任域数据共享中跨域数据泄露严重、跨域共享不可控、跨域访问效率低的问题,提出了一种区块链架构下高效的车联网跨域数据安全共享方案。不同信任域的可信机构构成区块链,采用改进的密文策略属性基加密算法加密数据,结合区块链和星际文件系统进行存储,构建了基于区块链的跨域数据细粒度、安全共享方案;设计了基于混淆布隆过滤器的跨域访问验证方法,智能合约基于链上访问策略进行快速的解密测试,提高大量跨域密文的访问效率;设计了基于外包解密的跨域数据获取方法,可信机构为跨域访问请求进行密文转换,并执行包含复杂双线性配对运算的外包解密,减少了车辆在解密过程的时间开销。实验结果表明,所提方案有效提高了跨域密文转换和车辆解密的效率,与现有方案相比,跨域数据访问效率平均提升了60%。

关键词: 车联网, 跨域, 数据共享, 属性基加密, 区块链

Abstract:

To solve the problems of data disclosure, uncontrolled data access, and inefficiency of cross-domain data sharing in the Internet of vehicles (IoV), an efficient and secure cross-domain data sharing scheme of IoV under blockchain architecture was proposed.A blockchain was maintained by trusted authorities of different trust domains.A modified ciphertext-policy attribute-based encryption scheme was adopted to encrypt data, and encrypted data was stored in interplanetary file system (IPFS) with relevant information recorded on the blockchain, constructing a fine-grained and secure cross-domain data sharing scheme based on blockchain.A verification algorithm for cross-domain access based on the garbled Bloom filter was designed, and a smart contract executed fast decryption tests based on access policies on the blockchain, improving the access efficiency of a mass of ciphertext.A cross-domain data access method based on outsourcing decryption was designed, and the trusted authorities transformed ciphertexts while performing outsourcing decryption with complex bilinear pairing calculations, reducing the time overhead of vehicle decryption.Experiment results show that the proposed scheme is superior to other schemes in the process of cross-domain ciphertext transformation and vehicle decryption, and the cross-domain data access efficiency is increased by 60% on average.

Key words: IoV, cross-domain, data sharing, attribute-based encryption, blockchain

中图分类号: 

No Suggested Reading articles found!