《计算机应用》唯一官方网站 ›› 2022, Vol. 42 ›› Issue (8): 2481-2486.DOI: 10.11772/j.issn.1001-9081.2021061127

• 网络空间安全 • 上一篇    下一篇

基于混合算法区块链和节点身份认证的数据存储方案

田洪亮(), 王佳玥, 李晨曦   

  1. 东北电力大学 电气工程学院,吉林 吉林 132012
  • 收稿日期:2021-06-30 修回日期:2021-08-24 接受日期:2021-08-26 发布日期:2021-10-18 出版日期:2022-08-10
  • 通讯作者: 田洪亮
  • 作者简介:田洪亮(1981—),男,吉林吉林人,副教授,博士,主要研究方向:物联网、区块链、电力设备在线监测;
    王佳玥(1998—),女,河北石家庄人,硕士研究生,主要研究方向:区块链、数据管理;
    李晨曦(1997—),女,河北石家庄人,硕士研究生,主要研究方向:区块链、身份认证。

Data storage scheme based on hybrid algorithm blockchain and node identity authentication

Hongliang TIAN(), Jiayue WANG, Chenxi LI   

  1. School of Electrical Engineering,Northeast Electric Power University,Jilin Jilin 132012,China
  • Received:2021-06-30 Revised:2021-08-24 Accepted:2021-08-26 Online:2021-10-18 Published:2022-08-10
  • Contact: Hongliang TIAN
  • About author:TIAN Hongliang, born in 1981, Ph. D., associate professor. His main research interests include internet of things, blockchain, online monitoring of power equipment.
    WANG Jiayue, born in 1998, M. S. candidate. Her research interests include blockchain, data management.
    LI Chenxi, born in 1997, M. S. candidate. Her research interests include blockchain, identity authentication.

摘要:

为了增强云数据存储的完整性和安全性,在无线传感器网络(WSN)中,提出一种基于混合算法区块链的数据存储方案,以及一种集成身份验证和隐私保护的去中心化框架。首先,簇头将采集到的信息传递至基站,而基站在分布式区块链上记录所有关键参数,并传递至云端存储。然后,为了获得更高的安全等级,合并椭圆曲线加密(ECC)的160位密钥与高级加密标准(AES)的128位密钥,并在云存储层之间进行密钥对交换。基于混合算法的区块链结合身份验证方案可以很好地保证云数据的安全性存储,因此所提方案在安全性方面较为优秀。此外,恶意节点可通过基站从区块链中直接移除并撤销认证,方便快捷。仿真结果表明,与去中心化的区块链信息管理(BIM)方案、基于信任和分布式区块链评估的安全定位(DBE)算法和利用密钥衍生加密和数据分析(KDE-DA)管理方案相比,所提方案在延迟、吞吐量、计算开销方面具有一定的优越性。

关键词: 云数据, 无线传感器网络, 区块链, 去中心化框架, 节点身份认证

Abstract:

To enhance the integrity and security of cloud data storage, a data storage scheme based on hybrid algorithm blockchain and a decentralized framework integrating identity authentication and privacy protection were proposed in Wireless Sensor Network (WSN). Firstly, the collected information was transmitted to the base station by the cluster heads, and all the key parameters were recorded on the distributed blockchain and transmitted to the cloud storage by the base station. Then, in order to obtain a higher security level, the 160-bit key of Elliptic Curve Cryptography (ECC) and the 128-bit key of Advanced Encryption Standard (AES) were combined, and the key pairs were exchanged between the cloud storage layers. The proposed blockchain is based on a hybrid algorithm and combined with an identity verification scheme, which can well ensure the secure storage of cloud data, thus achieving excellent security. In addition, malicious nodes were able to be directly removed from the blockchain and also their authentication was able to be revoked through the base stations. And this operation is convenient and fast. Simulation results show that compared with schemes of decentralized Blockchain Information Management (BIM) scheme, secure localization algorithm based on trust and Decentralized Blockchain Evaluation (DBE) and Key Derivation Encryption and Data Analysis (KDE-DA) management scheme, the proposed scheme has some advantages in delay, throughput and computational overhead.

Key words: cloud data, Wireless Sensor Network (WSN), blockchain, decentralized framework, node identity authentication

中图分类号: