面向跨联盟链的隐私保护数据要素交易审计方案  被引量：2

作　　者：张川 王子豪 梁晋文 刘梦轩 邓淏天 祝烈煌[1] Zhang Chuan;Wang Zihao;Liang Jinwen;Liu Mengxuan;Deng Haotian;Zhu Liehuang(School of Cyberspace Science and Technology,Beijing Institute of Technology,Beijing 100081;Department of Computing,The Hong Kong Polytechnic University,Hong Kong 999077,China)

机构地区：[1]北京理工大学网络空间安全学院,北京100081 [2]香港理工大学电子计算学系,中国香港999077

出　　处：《计算机研究与发展》2024年第10期2540-2553,共14页Journal of Computer Research and Development

基　　金：国家自然科学基金项目(62232002);北京理工大学青年学者启动计划项目;中国科协青年人才托举工程项目(2023QNRC001)。

摘　　要：随着企业数据资产化的发展,联盟链成为了企业联盟内部数据交易的核心基础设施.利用联盟链构建去中心化、不可篡改、访问可控的数据交易市场,可以提高数据交易的可信度,降低数据泄露风险.然而,随着企业联盟的增多,如何促进跨企业联盟的数据要素流通,抵御数据隐私泄露、数据欺诈和支付抵赖等安全威胁,成为了数据流通领域亟待解决的难题.为此,提出了一种面向跨联盟链的隐私保护数据要素交易审计方案.该方案利用联盟链进行数据存证,通过中继链上的智能合约进行数据验证和支付管理.结合Pedersen承诺和Shamir秘密分享技术,构建零知识证明机制,在不泄露数据要素的情况下防止数据欺诈的发生.此外,还引入了一种基于双线性映射的数据要素完整性审计机制,允许在不透露数据隐私的情况下验证数据要素的收据,有效解决支付抵赖问题.通过理论分析和实验评估,验证了所提方案的有效性和可靠性,在本地模拟实验环境下,实验结果表明所提方案是可行且高效的.With the development of data assetization in enterprises,consortium blockchains have become the core infrastructure for data transactions within enterprise alliances.Constructing a decentralized,tamper-proof,and accesscontrolled data trading market using consortium blockchains can enhance the credibility of data transactions and reduce the risk of data leakage.However,with the increase in enterprise alliances,how to promote the circulation of data elements across different enterprise alliances and resist security threats such as data privacy leaks,data fraud,and payment repudiation have become an urgent problem in the field of data circulation.To address this,we propose a privacy-preserving data element transaction audit scheme for cross-consortium-blockchains.This scheme uses consortium blockchains for data attestation and employs smart contracts on a relay chain for data verification and payment management.By combining Pedersen commitments and Shamir’s secret sharing techniques,we construct a zero-knowledge proof mechanism to prevent data fraud without disclosing data elements.Additionally,a bilinear mapping-based data element integrity audit mechanism is introduced,allowing for the verification of data element receipts without revealing data privacy,effectively solving the problem of payment repudiation.Through theoretical analysis and experimental evaluation,the proposed scheme’s effectiveness and reliability are verified.The experimental results in a local simulation environment demonstrate that the proposed scheme is feasible and efficient.

关 键 词：数据要素 联盟链 跨链 审计 零知识证明 

分 类 号：TP393[自动化与计算机技术—计算机应用技术]