EduASAC:A Blockchain-Based Education Archive Sharing and Access Control System  

作　　者：Ronglei Hu Chuce He Yaping Chi Xiaoyi Duan Xiaohong Fan Ping Xu Wenbin Gao 

机构地区：[1]Department of Electronics and Communication Engineering,Beijing Electronic Science and Technology Institute,Beijing,100070,China [2]Department of Cyberspace Security,Beijing Electronic Science and Technology Institute,Beijing,100070,China

出　　处：《Computers, Materials & Continua》2023年第12期3387-3422,共36页计算机、材料和连续体（英文）

基　　金：supported by the Fundamental Research Funds for the Central Universities.Nos.3282023017,328202251.RL H received the grant.

摘　　要：In the education archive sharing system,when performing homomorphic ciphertext retrieval on the storage server,there are problems such as low security of shared data,confusing parameter management,and weak access control.This paper proposes an Education Archives Sharing and Access Control(EduASAC)system to solve these problems.The system research goal is to realize the sharing of security parameters,the execution of access control,and the recording of system behaviors based on the blockchain network,ensuring the legitimacy of shared membership and the security of education archives.At the same time,the system can be combined with most homomorphic ciphertext retrieval schemes running on the storage server,making the homomorphic ciphertext retrieval mechanism controllable.This paper focuses on the blockchain access control framework and specifically designs smart contracts that conform to the business logic of the EduASAC system.The former adopts a dual-mode access control mechanism combining Discretionary Access Control(DAC)and Mandatory Access Control(MAC)and improves the tagging mode after user permission verification based on the Authentication and Authorization for Constrained Environments(ACE)authorization framework of Open Authorization(OAuth)2.0;the latter is used in the system to vote on nodes to join requests,define access control policies,execute permission verification processes,store,and share system parameters,and standardize the behavior of member nodes.Finally,the EduASAC system realizes the encryption,storage,retrieval,sharing,and access control processes of education archives.To verify the performance of the system,simulation experiments were conducted.The results show that the EduASAC system can meet the high security needs of education archive sharing and ensure the system’s high throughput,low latency,fast decision-making,and fine-grained access control ability.

关 键 词：Blockchain data security access control smart contract 

分 类 号：TP311.13[自动化与计算机技术—计算机软件与理论]