Supervisable blockchain anonymous transaction system model

doi:10.11772/j.issn.1001-9081.2021081408

Abstract

Abstract:

In order to solve the problem that the traceability and privacy protection of the existing blockchain systems are difficult to balance， a supervisable blockchain anonymous transaction system model was designed. Firstly， the advantages of Identity-Based Cryptograph （IBC） and Certificateless Public Key Cryptography （CL-PKC） were combined to remove the hidden dangers caused by the single IBC key escrow， and the user transaction identification was associated with the user identity under safe conditions， thereby ensuring the supervisability of the model. Then， privacy security was achieved through double-layer signature authentication from the network layer and the application layer， which not only guaranteed the security of users’ transaction content and identity privacy， but also ensured that the authority was able to trace back based on abnormal transactions， providing a new idea for the compatibility between the current blockchain anonymity and supervisability. Finally， the proposed model was compared with the self-certified signature model， the multi-center SM9 model and the traceable Monero model， and the transmission time consumptions of this model and the mainstream blockchain systems were compared by computer simulation. Experimental results show that the proposed model has greater advantages in security and traceability； under the same hardware and software environment， the proposed model consumes 168% more time than the Ethereum model when transmitting the same size information for several times， and the difference in efficiency is not significant in the case of long-time transmission； the proposed model consumes 38% more time than the Ethereum model on average when transmitting information of different lengths.

Key words: blockchain, trusted network, multiple authentication, Certificateless Public Key Cryptography (CL-PKC), Identity-Based Cryptography (IBC)

摘要：

针对现有区块链系统可追溯性与隐私保护难以兼顾的问题，设计了一种可监管的区块链匿名交易系统模型。首先，结合标识密码（IBC）和无证书公钥密码体制（CL-PKC）的优点，消除了单一IBC托管密钥带来的隐患，并在可保证安全条件下将用户交易标识与用户身份关联，从而保证了模型中的可监管性；其次，通过从网络层和应用层双层签名认证实现了隐私安全，既保证了用户交易内容和身份隐私的安全性，又确保权威机构能够根据异常交易进行追溯，从而为当下区块链匿名性和可监管性的兼容提供了一种新的思路；最后，把所提模型和自认证签名模型、多中心SM9模型及可追溯门罗币模型等进行对比，并通过计算机模拟仿真比较了所提模型和主流区块链模型的传输耗时。实验结果表明，所提模型在安全性和可追溯性上有较大优势；在相同软硬件环境下，多次传输相同大小信息时，所提模型的信息传输耗时比以太坊模型多168%，而长时间传输情况下效率差距不大；传输不同长度的信息时，所提模型的平均耗时要比以太坊模型多38%。

关键词: 区块链, 可信网络, 多重认证, 无证书公钥密码体制, 标识密码

CLC Number:

TP309

Yangnan GUO, Wenbao JIANG, Shuai YE. Supervisable blockchain anonymous transaction system model[J]. Journal of Computer Applications, 2022, 42(9): 2757-2764.

郭阳楠, 蒋文保, 叶帅. 可监管的区块链匿名交易系统模型[J]. 《计算机应用》唯一官方网站, 2022, 42(9): 2757-2764.

Figures/Tables 11

Fig.1 Overall architecture of the proposed model

Fig.2 Component structure of network layer

Fig.3 Process of transaction

Tab. 1 Partial identity corresponding table

用户名	应用层交易标识	网络层身份标识
A	$W A$	$E I D A$
B	$W B$	$E I D B$
C	$W C$	$E I D C$

Tab. 1 Partial identity corresponding table

用户名	应用层交易标识	网络层身份标识
A	$W A$	$E I D A$
B	$W B$	$E I D B$
C	$W C$	$E I D C$

Fig.4 Process of supervision and tracing

Tab. 2 Time consumption comparison of different algorithms in the proposed model

算法	耗时/ns	算法	耗时/ns
CL-PKC_Encrypt	1 707 156	CL-PKC_Verify	30 326
CL-PKC_Decrypt	1 547 635	SM9_Sign	2 187 579
CL-PKC_Sign	19 392	SM9_Verify	3 599 817

Tab. 3 Efficiency and anti-attack performance comparison of different models

模型	签名耗时	验证耗时	第Ⅰ类攻击	第Ⅱ类攻击
文献［2］模型	2 $T M$ + $T E$	$T M$ +3 $T B$	√	√
文献［7］模型	4 $T M$ +7 $T E$	$T M$ + $T E$ +5 $T B$	√	×
文献［12］模型	3 $T M$ + $T B$	3 $T M$ + $T B$	√	√
文献［20］模型	$T M$ +4 $T E$	$T M$ + $T E$ +3 $T B$	√	√
本文模型	2 $T M$ + $T B$ + $T E$	$T M$ +3 $T B$ +2 $T E$	√	√

Tab. 3 Efficiency and anti-attack performance comparison of different models

模型	签名耗时	验证耗时	第Ⅰ类攻击	第Ⅱ类攻击
文献［2］模型	2 $T M$ + $T E$	$T M$ +3 $T B$	√	√
文献［7］模型	4 $T M$ +7 $T E$	$T M$ + $T E$ +5 $T B$	√	×
文献［12］模型	3 $T M$ + $T B$	3 $T M$ + $T B$	√	√
文献［20］模型	$T M$ +4 $T E$	$T M$ + $T E$ +3 $T B$	√	√
本文模型	2 $T M$ + $T B$ + $T E$	$T M$ +3 $T B$ +2 $T E$	√	√

Tab. 4 Security comparison of different models

模型	匿名性	交易关联性	可溯源性
文献［1］模型	强	弱	弱
文献［2］模型	强	弱	较强
文献［5］模型	强	较强	较强
本文模型	强	弱	强

Fig.5 Transmission time consumption comparison of two models under continuous transmission

Fig.6 Transmission time consumption comparison of two models under transmitting messages with different lengths

Fig.7 Comparison of time consumption of single-layer and double-layer signatures

References 20

1	BEN-SASSON E， CHIESA A， GARMAN C， et al. Zerocash： decentralized anonymous payments from bitcoin［C］// Proceedings of the 2014 IEEE Symposium on Security and Privacy. Piscataway： IEEE， 2014： 459-474. 10.1109/sp.2014.36
2	杨亚涛，蔡居良，张筱薇，等. 基于SM9算法可证明安全的区块链隐私保护方案［J］. 软件学报， 2019， 30（6）：1692-1704.
	YANG Y T， CAI J L， ZHANG X W， et al. Privacy preserving scheme in block chain with provably secure based on SM9 algorithm［J］. Journal of Software， 2019， 30（6）：1692-1704.
3	高峰，毛洪亮，吴震，等. 轻量级比特币交易溯源机制［J］. 计算机学报， 2018， 41（5）：989-1004. 10.11897/SP.J.1016.2018.00989�
	GAO F， MAO H L， WU Z， et al. Lightweight transaction tracing technology for bitcoin［J］. Chinese Journal of Computers， 2018， 41（5）：989-1004. 10.11897/SP.J.1016.2018.00989�
4	魏松杰，李莎莎，王佳贺. 基于身份密码系统和区块链的跨域认证协议［J］. 计算机学报， 2021， 44（5）：908-920. 10.11897/SP.J.1016.2021.00908
	WEI S J， LI S S， WANG J H. A cross-domain authentication protocol by identity-based cryptography on consortium blockchain［J］. Chinese Journal of Computers， 2021， 44（5）：908-920. 10.11897/SP.J.1016.2021.00908
5	LI Y N， YANG G M， SUSILO W， et al. Traceable Monero： anonymous cryptocurrency with enhanced accountability［J］. IEEE Transactions on Dependable and Secure Computing， 2021， 18（2）：679-691. 10.1109/tdsc.2019.2910058
6	GIRAULT M. Self-certified public keys［C］// Proceedings of the 1991 Workshop on the Theory and Application of Cryptographic Techniques， LNCS 547. Berlin： Springer， 1991： 490-497.
7	AL-RIYAMI S S， PATERSON K G. Certificateless public key cryptography［C］// Proceedings of the 2003 International Conference on the Theory and Application of Cryptology and Information Security， LNCS 2894. Berlin： Springer， 2003：452-473.
8	魏爽，江荣旺. 一种无证书签名方案的分析和改进［J］. 软件， 2021， 42（1）：29-31， 58. 10.3969/j.issn.1003-6970.2021.01.009
	WEI S， JIANG R W. Analysis and improvement of a certificateless signature scheme［J］. Computer Engineering and Software， 2021， 42（1）：29-31， 58. 10.3969/j.issn.1003-6970.2021.01.009
9	程朝辉. 基于SM2的无证书加密算法［J］. 密码学报， 2021， 8（1）： 87-95.
	CHENG Z H. Certificateless public key encryption based on SM2［J］. Journal of Cryptologic Research， 2021， 8（1）： 87-95.
10	CHENG Z H， CHEN L Q. Certificateless public key signature schemes from standard algorithms［C］// Proceedings of the 2018 International Conference on Information Security Practice and Experience， LNCS 11125. Cham： Springer， 2018： 179-197.
11	侯红霞，杨波，张丽娜，等. 安全的两方协作SM2签名算法［J］. 电子学报， 2020， 48（1）：1-8. 10.3969/j.issn.0372-2112.2020.01.001
	HOU H X， YANG B， ZHANG L N， et al. Secure two-party SM2 signature algorithm［J］. Acta Electronica Sinica， 2020， 48（1）：1-8. 10.3969/j.issn.0372-2112.2020.01.001
12	CHEN Y， ZHAO Y， XIONG H， et al. A certificateless strong designated verifier signature scheme with non-delegatability［J］. International Journal of Network Security， 2017， 19（4）： 573-582.
13	杨龙海，王学渊，蒋和松. 改进SM2签名方法的区块链数字签名方案［J］. 计算机应用， 2021， 41（7）：1983-1988.
	YANG L H， WANG X Y， JIANG H S. Blockchain digital signature scheme with improved SM2 signature method［J］. Journal of Computer Applications， 2021， 41（7）：1983-1988.
14	SHAMIR A. Identity-based cryptosystems and signature schemes［C］// Proceedings of the 1984 Workshop on the Theory and Application of Cryptographic Techniques， LNCS 196. Berlin： Springer， 1985： 47-53.
15	BONEH D， FRANKLIN M. Identity-based encryption from the Weil pairing［C］// Proceedings of the 2001 Annual International Cryptology Conference， LNCS 2139. Berlin： Springer， 2001： 213-229.
16	SAKAI R， OHGISHI K， KASAHARA M. Cryptosystems based on pairing［C］// Proceedings of the 2000 Symposium on Cryptography and Information Security. Okinawa：［s.n.］， 2000：26-28.
17	CHOON J C， CHEON J H. An identity-based signature from gap Diffie-Hellman groups［C］// Proceedings of the 2003 International Workshop on Public Key Cryptography， LNCS 2567. Berlin： Springer， 2003： 18-30.
18	LIN C Y， WU T C， ZHANG F G. A structured multisignature scheme from the gap Diffie-Hellman group［EB/OL］. ［2020-08-10］..
19	BARRETO P S L M， NAEHRIG M. Pairing-friendly elliptic curves of prime order［C］// Proceedings of the 2005 International Workshop on Selected Areas in Cryptography， LNCS 3897. Berlin： Springer， 2006： 319-331.
20	李艳琼，李继国，张亦辰. 标准模型下安全的无证书签名方案［J］. 通信学报， 2015， 36（4）：186-194. 10.11959/j.issn.1000-436x.2015098
	LI Y Q， LI J G， ZHANG Y C. Certificateless signature scheme without random oracles［J］. Journal on Communications， 2015， 36（4）： 186-194. 10.11959/j.issn.1000-436x.2015098

[1]	Hongliang TIAN, Jiayue WANG, Chenxi LI. Data storage scheme based on hybrid algorithm blockchain and node identity authentication [J]. Journal of Computer Applications, 2022, 42(8): 2481-2486.
[2]	Xu WANG, Yumin SHEN, Xiaoyun XIONG, Peng LI, Jinlong WANG. Data management method for building internet of things based on Hashgraph [J]. Journal of Computer Applications, 2022, 42(8): 2471-2480.
[3]	Jie ZHANG, Shanshan XU, Lingyun YUAN. Internet of things access control model based on blockchain and edge computing [J]. Journal of Computer Applications, 2022, 42(7): 2104-2111.
[4]	Chunming TANG, Yuqing CHEN, Zidi ZHANG. Improved consensus algorithm based on binomial swap forest and HotStuff [J]. Journal of Computer Applications, 2022, 42(7): 2112-2117.
[5]	Yang LI, Long XU, Yanqiang LI, Shaopeng LI. Smart contract-based access control architecture and verification for internet of things [J]. Journal of Computer Applications, 2022, 42(6): 1922-1931.
[6]	Zheng DI, Yifan CAO, Chao QIU, Tao LUO, Xiaofei WANG. New computing power network architecture and application case analysis [J]. Journal of Computer Applications, 2022, 42(6): 1656-1661.
[7]	Yuntao XU, Junwu ZHU, Binwen SUN, Maosheng SUN, Sihai CHEN. Election-based supply chain： a supply chain autonomy framework based on blockchain [J]. Journal of Computer Applications, 2022, 42(6): 1770-1775.
[8]	Xiuli REN, Lei ZHANG. Improved multi-primary-node consensus mechanism based on practical Byzantine fault tolerance [J]. Journal of Computer Applications, 2022, 42(5): 1500-1507.
[9]	Jiagui XIE, Zhiping LI, Jian JIN. Cross-chain mechanism based on Spark blockchain [J]. Journal of Computer Applications, 2022, 42(2): 519-527.
[10]	Dingkang LIN, Jiaqi YAN, Nandeng BA, Zhenhao FU, Haochen JIANG. Survey of anonymity and tracking technology in Monero [J]. Journal of Computer Applications, 2022, 42(1): 148-156.
[11]	Li LI, Yi WU, Zhikun YANG, Yunpeng CHEN. Medical electronic record sharing scheme based on sharding-based blockchain [J]. Journal of Computer Applications, 2022, 42(1): 183-190.
[12]	GE Jihong, SHEN Tao. Energy data access control method based on blockchain [J]. Journal of Computer Applications, 2021, 41(9): 2615-2622.
[13]	SHEN Yumin, WANG Jinlong, HU Diankai, LIU Xingyu. Multi-person collaborative creation system of building information modeling drawings based on blockchain [J]. Journal of Computer Applications, 2021, 41(8): 2338-2345.
[14]	QING Xinyi, CHEN Yuling, ZHOU Zhengqiang, TU Yuanchao, LI Tao. Blockchain storage expansion model based on Chinese remainder theorem [J]. Journal of Computer Applications, 2021, 41(7): 1977-1982.
[15]	YANG Longhai, WANG Xueyuan, JIANG Hesong. Blockchain digital signature scheme with improved SM2 signature method [J]. Journal of Computer Applications, 2021, 41(7): 1983-1988.