基于群签名和同态加密的联盟链双重隐私保护方法  被引量：33

作　　者：刁一晴 叶阿勇 张娇美[1,2] 邓慧娜 张强 程保容 Diao Yiqing;Ye Ayong;Zhang Jiaomei;Deng Huina;Zhang Qiang;Cheng Baorong(College of Mathematics and Informatics,Fujian Normal University,Fuzhou 350117;Fujian Provincial Key Laboratory of Network Security and Cryptology(Fujian Normal University),Fuzhou 350117)

机构地区：[1]福建师范大学数学与信息学院,福州350117 [2]福建省网络安全与密码技术重点实验室(福建师范大学),福州350117

出　　处：《计算机研究与发展》2022年第1期172-181,共10页Journal of Computer Research and Development

基　　金：国家自然科学基金项目(61972096,61771140,61872088,61872090);福建省自然科学基金项目(2018J01780);福建省教育厅科技项目(JAT170115)。

摘　　要：区块链账本公开,以实现交易的溯源与可验证,但账本的透明使得区块链用户的隐私成为一个亟待解决的问题.为了解决联盟链交易中的交易金额和身份的隐私暴露问题,提出了基于群签名和同态加密的联盟链双隐私保护方法,在满足交易溯源和可验证的前提下,实现收付款者身份和交易金额的隐私保护.将群签名中群的概念与联盟链恰当结合,并提出一种部分身份匿名的概念,使方案能够满足对其他交易节点匿名,同时确保主要节点可验证.并利用Paillier同态加密的加同态性质验证交易的合法性,保护交易金额的隐私.提出主要节点的4步验证方法,通过对群签名、账户所属权和交易金额合法性的验证,实现主要节点对交易合法性的监管.通过分析,该方案可以抵抗篡改攻击和公钥替换攻击,且交易合法性验证合理,最后,通过与其他方案的对比分析,该方案的计算开销是合理的.The account book of blockchain is open and transparent to realize the traceability and verifiability of transactions.However,this makes the privacy of blockchain users be an urgent problem.In order to solve the problem of transaction amount and identity exposure of both parties in alliance chain transaction,a privacy protection method of alliance chain based on group signature and homomorphic encryption is proposed.This method can protect the identity of the payee and the privacy of the transaction amount on the premise of meeting the traceability and verifiability of the transaction.In this scheme,the concept of group in group signature is combined with the alliance chain properly and we propose the concept of partial identity anonymity to make the user identity anonymous to other secondary nodes but verifiable to the primary nodes.Then the additive homomorphism property of Paillier homomorphism encryption is used to verify the legitimacy of the transaction and protect the privacy of the transaction amount.A four-step verification method for the main nodes is proposed,and through verifying the group signature,account ownership and the validity of the transaction amount,it realizes the supervision of the main nodes on the legality of the transaction.Through analysis,the scheme can resist tamper attacks and public key replacement attacks,and the transaction legitimacy is verified to be reasonable.Finally,by comparing with other schemes,the calculation cost of this scheme is reasonable.

关 键 词：联盟链 身份隐私 交易金额隐私 群签名 Paillier同态加密 

分 类 号：TP393[自动化与计算机技术—计算机应用技术]