信息网络安全 ›› 2023, Vol. 23 ›› Issue (3): 22-34.doi: 10.3969/j.issn.1671-1122.2023.03.003

• 技术研究 • 上一篇    下一篇

基于双线性映射的区块链安全范围搜索技术研究

李春晓1,2, 王耀飞1(), 徐恩亮3, 赵钰1   

  1. 1.北京师范大学人工智能学院,北京 100875
    2.北京师范大学信息网络中心,北京 100875
    3.东北财经大学数据科学与人工智能学院,大连 116025
  • 收稿日期:2022-12-22 出版日期:2023-03-10 发布日期:2023-03-14
  • 通讯作者: 王耀飞 E-mail:yfwang@mail.bnu.edu.cn
  • 作者简介:李春晓(1987—),男,河北,工程师,博士研究生,主要研究方向为区块链与信息安全|王耀飞(1988—),男,内蒙古,博士研究生,主要研究方向为区块链与数据挖掘|徐恩亮(1986—),男,辽宁,讲师,博士,主要研究方向为机器学习、自然语言处理和数据分析|赵钰(2000—),女,云南,硕士研究生,主要研究方向为区块链与机器学习
  • 基金资助:
    国家自然科学基金(62102035)

Enabling Privacy-Preserving Range Queries in Blockchain-Based Collaborative Databases with Bilinear Pairings

LI Chunxiao1,2, WANG Yaofei1(), XU Enliang3, ZHAO Yu1   

  1. 1. School of Artificial Intelligence, Beijing Normal University, Beijing 100875, China
    2. Center of Information & Network Technology, Beijing Normal University, Beijing 100875, China
    3. School of Data Science and Artificial Intelligence, Dongbei University of Finance and Economics, Dalian 116025, China
  • Received:2022-12-22 Online:2023-03-10 Published:2023-03-14
  • Contact: WANG Yaofei E-mail:yfwang@mail.bnu.edu.cn

摘要:

数据库共享是一种数据聚合方案,为用户检索不同的数据库提供方便。基于区块链的共享数据库更灵活、更透明,并且不像传统的数据库共享系统那样依赖中心化的服务器。但是,区块链上的任意节点都可以访问区块链上的资源,用户的隐私数据如果不经过加密保护就很容易被恶意节点泄露。如果不解决隐私数据的泄露问题,基于区块链的去中心化应用很难被采用。为了保护数据隐私,并且能对数据进行范围查询,文章基于双线性映射设计了一种二进制块加密方案,通过对加密块的匹配来完成密文域的范围查询。文章在以太坊部署了系统原型并进行实验,实验结果表明,文章所提方案不仅查询速度更快,而且安全性更好,方案可以应用于真实环境中。

关键词: 加密数据范围查询, 可搜索加密, 去中心化应用, 智能合约, 区块链

Abstract:

Database sharing is a data aggregation scheme that provides convenience for users to search all databases. Blockchain-based collaborative databases are widely adopted because they are more flexible, transparent, and can eliminate trust servers in the traditional centralized data-sharing model. However, due to wide attacking surfaces in a blockchain network, this decentralized data-sharing paradigm is subject to malicious data breaches. Untrusted blockchain nodes can directly obtain sensitive information from the blockchain. Therefore, failure to address these inherent security issues properly will hinder the wide adoption of secure decentralized applications. This paper devise a novel bit-block encryption scheme to support encrypted range queries via block-based pattern matching.The proposed scheme couldan simultaneously enables a dramatic query speed up and preserves semantic security guarantee. This paper complete the prototype implementation on Enthereum. Experiment results on real-world datasets demonstrate the feasibility and practicability of the proposed scheme.

Key words: encrypted data range query, searchable encryption, decentralized application, smart contract, blockchain

中图分类号: