双边隐私保护的能源交易多方计算方案  

作　　者：薛婧婷 刘亮 李发根[2] 张文政[3] 张晓均 周宇[3] XUE Jing-Ting;LIU Liang;LI Fa-Gen;ZHANG Wen-Zheng;ZHANG Xiao-Jun;ZHOU Yu(School of Computer Science,Southwest Petroleum University,Chengdu 610500,China;School of Computer Science&Engineering,University of Electronic Science and Technology of China,Chengdu 611731,China;Science and Technology on Communication Security Laboratory,Institute of Southwestern Communication,China Electronic Technology Cyber Security Co.Ltd,Chengdu 610041,China)

机构地区：[1]西南石油大学计算机科学学院,成都610500 [2]电子科技大学计算机科学与工程学院,成都611731 [3]中国电子科技集团公司第三十研究所保密通信重点实验室,中国电子科技网络信息安全有限公司,成都610041

出　　处：《密码学报(中英文)》2025年第1期96-116,共21页Journal of Cryptologic Research

基　　金：国家自然科学基金(61902327);通信安全重点实验室科技基金(61421030107012102);四川省自然科学基金(2023NSFSC1398,2022YFG0172,2022JDRC0061);西南石油大学自然科学启动项目(2021QHZ017)。

摘　　要：点对点能源交易凭借其匹配灵活和去中心化特点受到广泛应用,但同时也暴露出交易组织困难和监管缺失等问题.建立基于联盟链的交易平台已经成为重要解决方案.然而,区块链的公开透明性使得交易者与能源信息的隐私保护变得困难,导致点对点交易多方计算的实现成为挑战.本文首先提出双边隐私保护均价模型.采用数据分割与混淆方法,执行均值计算并确保原始出价的机密性.设计基于SM2的环签名和一次性地址算法,确保交易双方匿名性.以该均价模型为基础,进一步提出链上双边隐私保护的点对点能源交易多方计算方案(blockchain-assisted dual-side privacy-preserving multi-party computation,DPC).DPC采用基于Free-XOR混淆电路的比价机制,实现密态均价比值.通过在图型联盟链上部署比价机制,支持能源供需信息并发上链,并确保比价结果的不可伪造性.基于Miracl密码库和C++编程模拟并设置对比实验,数据表明DPC仅需0.29 s即可完成80个参与者的密态均价计算,混淆比价电路偶数门开销降至常量级,优于现有同类协议.Peer-to-peer energy trading has gained widespread adoption due to the flexibility in matching and decentralized features,but it has also exposed difficulties in trade organization and a lack of regulation.Building a trading platform based on a consortium blockchain has become a significant solution.However,the inherent public transparency of blockchain makes privacy protection for traders and energy information complex,posing a substantial challenge in multi-party computation for peer-to-peer trading.A dual-side privacy-preserving model that calculates the average is first proposed.By employing data splitting and obfuscation methods,the model calculates the average value while ensuring the confidentiality of original bids.Additionally,a ring signature based on SM2 and a one-time address algorithm are designed to safeguard the anonymity of both trading parties.Building on the aforementioned model,this paper further presents a blockchain-assisted dual-side privacy-preserving multi-party computation scheme,known as DPC.DPC utilizes a price comparison mechanism grounded in Free-XOR garbled circuits to output the encrypted lower price.By deploying this mechanism on a directed acyclic graph(DAG)consortium blockchain,DPC enables concurrent on-chain supply and demand information and ensures the non-forgery of price comparison results.Based on the Miracl cryptographic library and C++programming,we simulate and set up comparative experiments.The data show that DPC takes only 0.29 seconds to complete the average price computation for 80 participants,and the obfuscation ratio circuit’s even-gate overhead is reduced to a constant level,which outperforms existing comparable protocols.

关 键 词：安全多方计算 点对点能源交易 SM2环签名 Free-XOR混淆电路 联盟链 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]