改进SM2签名方法的区块链数字签名方案

doi:10.11772/j.issn.1001-9081.2020081220

计算机应用 ›› 2021, Vol. 41 ›› Issue (7): 1983-1988.DOI: 10.11772/j.issn.1001-9081.2020081220

所属专题：网络空间安全

改进SM2签名方法的区块链数字签名方案

杨龙海, 王学渊, 蒋和松

西南科技大学信息工程学院, 四川绵阳 621010

收稿日期:2020-08-14 修回日期:2020-11-02 出版日期:2021-07-10 发布日期:2021-07-22
通讯作者: 蒋和松
作者简介:杨龙海(1997-),男,四川眉山人,硕士研究生,主要研究方向:区块链、算法分析;王学渊(1974-),男,四川成都人,副教授,博士,主要研究方向:图像处理、算法分析;蒋和松(1982-),男,重庆人,讲师,博士研究生,主要研究方向:机器人、计算机视觉、物联网。

Blockchain digital signature scheme with improved SM2 signature method

YANG Longhai, WANG Xueyuan, JIANG Hesong

School of Information Engineering, Southwest University of Science and Technology, Mianyang Sichuan 621010, China

Received:2020-08-14 Revised:2020-11-02 Online:2021-07-10 Published:2021-07-22

摘要/Abstract

摘要： 为了提高联盟链实用拜占庭容错（PBFT）算法共识过程中数字签名密钥保存安全性和签名效率问题，结合联盟链PBFT共识算法的实际运用环境提出了一种基于密钥分割和国家标准SM2签名算法的可信第三方证明签名方案。该方案中由可信第三方产生和分割密钥并将子分割私钥分发给共识节点，每次共识须先向可信第三方证明身份后，获取另一半子分割私钥来进行身份签名验证。该签名方案结合联盟链的特性实现了私钥的分割保存，利用共识特性结合哈希摘要消去了传统SM2算法中的模逆的过程。通过理论分析证明了该方案可抗数据篡改和签名伪造，同时借助Java开发工具包（JDK1.8）和TIO网络框架模拟共识中的签名过程。实验结果表明所提方案比传统SM2签名算法效率更高，并且共识节点越多效率差距越明显，在节点数达到30时，其效率较传统SM2算法可以提升27.56%，表明该方案可以满足当前联盟链PBFT共识的应用环境。

关键词: 数字签名, 区块链, 密钥分割, 实用拜占庭容错, 国家标准SM2签名算法

Abstract: In order to improve the storage security and signature efficiency of digital signature keys in the consortium blockchain Practical Byzantine Fault Tolerance (PBFT) algorithm consensus process, considering the actual application environment of the consortium blockchain PBFT consensus algorithm, a trusted third-party proof signature scheme based on key division and Chinese encryption SM2 algorithm was proposed. In this scheme, by a trusted third-party, the key was generated and split, and the sub-split private key was distributed to the consensus nodes. In each consensus, the identity must be proved to the trusted third-party at first, and then the other half of the sub-split private key was obtained by the verification party to perform identity verification. In this signature scheme, the segmentation and preservation of the private key was realized by combining the characteristics of the consortium chain, and the modular inversion process in the traditional SM2 algorithm was eliminated by using consensus feature and hash digest. The theoretical analysis proved that the proposed scheme was resistant to data tampering and signature forgery, while Java Development Kit (JDK1.8) and TIO network framework were used to simulate the signature process in consensus. Experimental results show that compared with the traditional SM2 algorithm, the proposed scheme is more efficient, and the more consensus nodes, the more obvious the efficiency gap. When the node number reaches 30, the efficiency of the scheme is improved by 27.56%, showing that this scheme can satisfy the current application environment of the consortium blockchain PBFT consensus.

Key words: digital signature, blockchain, key division, Practical Byzantine Fault Tolerance (PBFT), Chinese encryption SM2 algorithm

中图分类号:

TN918.91

杨龙海, 王学渊, 蒋和松. 改进SM2签名方法的区块链数字签名方案[J]. 计算机应用, 2021, 41(7): 1983-1988.

YANG Longhai, WANG Xueyuan, JIANG Hesong. Blockchain digital signature scheme with improved SM2 signature method[J]. Journal of Computer Applications, 2021, 41(7): 1983-1988.

参考文献

[1] 陈纯. 自主可控联盟链的技术难点和案例[N]. 中国信息化周报,2017-10-23(7).(CHEN C. Technical difficulties and cases of autonomous controllable alliance chain[N]. China Information Weekly,2017-10-23(7).)
[2] 汪朝晖, 张振峰. SM2椭圆曲线公钥密码算法综述[J]. 信息安全研究,2016,2(11):972-982.(WANG Z H,ZHANG Z F. Overview on public key cryptographic algorithm SM2 based on elliptic curves[J]. Information Security Research,2016,2(11):972-982.)
[3] 刘懿中, 刘建伟, 张宗洋, 等. 区块链共识机制研究综述[J]. 密码学报,2019,6(4):395-432.(LIU Y Z,LIU J W,ZHANG Z Y, et al. Overview on blockchain consensus mechanisms[J]. Journal of Cryptologic Research,2019,6(4):395-432.)
[4] 甘俊, 李强, 陈子豪, 等. 区块链实用拜占庭容错共识算法的改进[J]. 计算机应用,2019,39(7):2148-2155.(GAN J,LI Q, CHEN Z H,et al. Improvement of blockchain practical Byzantine fault tolerant consensus algorithm[J]. Journal of Computer Applications,2019,39(7):2148-2155.)
[5] 苏吟雪, 田海博. 基于SM2的双方共同签名协议及其应用[J]. 计算机学报,2020,43(4):701-710.(SU Y X,TIAN H B. A twoparty SM2 signing protocol and its application[J]. Chinese Journal of Computers,2020,43(4):701-710.)
[6] 侯红霞, 杨波, 张丽娜, 等. 安全的两方协作SM2签名算法[J]. 电子学报,2020,48(1):1-8.(HOU H X,YANG B,ZHANG L N,et al. Secure two-party SM2 signature algorithm[J]. Acta Electronica Sinica,2020,48(1):1-8.)
[7] 兰修文. ECC计算算法的优化及其在SM2实现中的运用[D]. 成都:电子科技大学,2019. (LAN X W. Optimization of ECC calculation algorithm and its application in SM2 realization[D]. Chengdu:University of Electronic Science and Technology of China,2019.)
[8] 肖帅, 王绪安, 潘峰. 无模逆运算的椭圆曲线数字签名算法[J]. 计算机工程与应用,2020,56(11):118-123.(XIAO S,WANG X A, PAN F. Elliptic curve digital signature algorithm without modular inverse operation[J]. Computer Engineering and Applications,2020,56(11):118-123.)
[9] 韩嗣诚, 朱晓荣, 张秀贤. 优化可扩展的拜占庭容错共识算法[J]. 物联网学报,2020,4(2):18-25.(HAN S C,ZHU X R, ZHANG X X. Optimized scalable Byzantine fault tolerance algorithm[J]. Chinese Journal of the Internet of Things,2020,4(2):18-25.)
[10] POTLAPALLY N R,RAVI S,RAGHUNATHAN A,et al. A study of the energy consumption characteristics of cryptographic algorithms and security protocols[J]. IEEE Transactions on Mobile Computing,2006,5(2):128-143.
[11] SEO J H. Efficient digital signatures from RSA without random oracles[J]. Information Sciences,2020,512:471-480.
[12] 吴邱涵, 胡卫. 基于SM2算法和区块链的移动端身份认证协议设计[J]. 网络与信息安全学报,2018,4(9):60-65.(WU Q H, HU W. Design of identity authentication agreement in mobile terminal based on SM2 algorithm and blockchain[J]. Chinese Journal of Network and Information Security,2018,4(9):60-65.)
[13] FENG Q,HE D,LIU Z,et al. Distributed signing protocol for IEEE P1363-compliant identity-based signature scheme[J]. IET Information Security,2020,14(4):443-451.
[14] TAHAT N,ALOMARI A K,AL-HAZAIMEH O M,et al. An efficient self-certified multi-proxy signature scheme based on elliptic curve discrete logarithm problem[J]. Journal of Discrete Mathematical Sciences and Cryptography,2020,23(4):935-948.
[15] 宋琪杰, 陈铁明, 陈园, 等. 面向物联网区块链的共识机制优化研究[J]. 电信科学,2020,36(2):1-12.(AN Q J,CHEN T M, CHEN Y,et al. Research on consensus mechanism optimization for IoT blockchain[J]. Telecommunications Science,2020,36(2):1-12.)

改进SM2签名方法的区块链数字签名方案

Blockchain digital signature scheme with improved SM2 signature method

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	葛纪红, 沈韬. 基于区块链的能源数据访问控制方法[J]. 计算机应用, 2021, 41(9): 2615-2622.
[2]	申玉民, 王金龙, 胡殿凯, 刘星宇. 基于区块链的建筑信息模型图纸多人协同创作系统[J]. 计算机应用, 2021, 41(8): 2338-2345.
[3]	陈葳葳, 曹利, 顾翔. 基于区块链的车联网电子取证模型[J]. 计算机应用, 2021, 41(7): 1989-1995.
[4]	卿欣艺, 陈玉玲, 周正强, 涂园超, 李涛. 基于中国剩余定理的区块链存储扩展模型[J]. 计算机应用, 2021, 41(7): 1977-1982.
[5]	谷正川, 郭渊博, 方晨. 基于代理重加密的消息队列遥测传输协议端到端安全解决方案[J]. 计算机应用, 2021, 41(5): 1378-1385.
[6]	田志宏, 赵金东. 面向物联网的区块链共识机制综述[J]. 计算机应用, 2021, 41(4): 917-929.
[7]	张学旺, 殷梓杰, 冯家琦, 叶财金, 付康. 基于区块链与可信计算的数据交易方案[J]. 计算机应用, 2021, 41(4): 939-944.
[8]	张国潮, 唐华云, 陈建海, 沈睿, 何钦铭, 黄步添. 基于区块链的数字音乐版权管理系统[J]. 计算机应用, 2021, 41(4): 945-955.
[9]	刘宏宇, 梁秀波, 吴俊涵. 基于Kubernetes的Fabric链码管理及高可用技术[J]. 计算机应用, 2021, 41(4): 956-962.
[10]	李蓓, 张问银, 王九如, 赵伟, 王海峰. 基于区块链的密封式投标拍卖方案[J]. 计算机应用, 2021, 41(4): 999-1004.
[11]	刘宇, 朱朝阳, 李金泽, 劳源基, 覃团发. 检测型的联盟区块链共识算法d-PBFT[J]. 计算机应用, 2021, 41(3): 756-762.
[12]	高昊昱, 李雷孝, 林浩, 李杰, 邓丹, 李少旭. 区块链在数据完整性保护领域的研究与应用进展[J]. 计算机应用, 2021, 41(3): 745-755.
[13]	罗长银, 陈学斌, 马春地, 王君宇. 面向区块链的在线联邦增量学习算法[J]. 计算机应用, 2021, 41(2): 363-371.
[14]	巫光福, 王影军. 基于区块链与云-边缘计算混合架构的车联网数据安全存储与共享方案[J]. 计算机应用, 2021, 41(10): 2885-2892.
[15]	陈锦宇, 刘兆伟. 基于改进投票证明共识协议的车联网系统[J]. 计算机应用, 2021, 41(1): 170-176.