基于动态默克尔哈希树的跨链数据一致性验证模型

doi:10.3969/j.issn.1671-1122.2023.09.009

摘要/Abstract

摘要：

目前，区块链由于其高度的去中心化以及不可篡改的特性被广泛应用于不同领域，文章以解决区块链在应用过程中的链间数据交互一致性无法保证以及不支持数据动态更新的问题为研究目标，设计了一种去中心化的数据一致性审计模型，该模型采用跨链技术来实现异构区块链之间数据的安全可信共享，利用去中心化的变色龙哈希函数构建动态的默克尔哈希树以实现数据的动态更新操作，引入审计链对源链和目标链之间的数据交互进行监管，并利用Cosi多重签名算法来保证数据传输过程中的一致性。经过理论分析和实验验证，结果表明，该模型采用的Cosi算法在时间开销和可扩展性方面与目前主流多重签名算法相比具有较大优势。此外，本文模型在时间开销和通信开销方面与常见的审计模型相比有较大优势，能够以较小的成本完成相同的审计任务，并且可以达到99%的数据审计一致性保证概率。

关键词: 区块链, 跨链, 去中心化的变色龙哈希函数, 动态数据, 一致性验证

Abstract:

Currently, blockchain is widely used in different fields due to its highly decentralized and tamper-proof features, this paper took the problem of unguaranteed inter-chain data interaction consistency and unsupported data dynamic updating faced by blockchain in the process of application as the research objective and designed a decentralized data consistency auditing model, which employed cross-chain technology to implement the security and trustworthy sharing of data between heterogeneous blockchains and constructed a dynamic Merkle hash tree using decentralized chameleon hash function to implement the data dynamic update operation. The audit chain was introduced to supervise the data interaction between the source and target chains and the Cosi multi-signature algorithm was used to ensure the consistency of the data transmission process. After theoretical analysis and experimental verification, the Cosi algorithm used in this model has the advantage over the current mainstream multi-signature algorithm in terms of time overhead and scalability. In addition, the model in this paper has the advantage over the common auditing models in terms of time overhead and communication overhead, which can complete the same auditing task at a low overhead, and can achieve 99% of the consistency of data auditing guarantee.

Key words: blockchain, cross-chain, decentralized chameleon hash function, dynamic data, consistency verification

中图分类号:

TP309

赵佳豪, 蒋佳佳, 张玉书. 基于动态默克尔哈希树的跨链数据一致性验证模型[J]. 信息网络安全, 2023, 23(9): 95-107.

ZHAO Jiahao, JIANG Jiajia, ZHANG Yushu. Cross-Chain Data Consistency Verification Model Based on Dynamic Merkle Hash Tree[J]. Netinfo Security, 2023, 23(9): 95-107.

图/表 15

表1

图1

图2

图3

图4

图5

图6

图7

图8

图9

图10

图11

图12

图13

图14

参考文献 26

[1]	CHEN Jing, YAO Shixiong, YUAN Quan, et al. Certchain: Public and Efficient Certificate Audit Based on Blockchain for TLS Connections[C]// IEEE. 37th IEEE Conference on Computer Communications. New York: IEEE, 2018: 2060-2068.
[2]	KUBILAY M Y, KIRAZ M S, MANTAR H A. CertLedger: A New PKI Model with Certificate Transparency Based on Blockchain[J]. Computers & Security, 2019, 85(2): 333-352. doi: 10.1016/j.cose.2019.05.013 URL
[3]	CAI Chengjun, ZHENG Yifeng, DU Yuefeng, et al. Towards Private, Robust, and Verifiable Crowdsensing Systems via Public Blockchains[J]. IEEE Transactions on Dependable and Secure Computing, 2019, 18(4): 1893-1907.
[4]	AUJLA G S, JINDAL A. A Decoupled Blockchain Approach for Edge-Envisioned IoT-Based Healthcare Monitoring[J]. IEEE Journal on Selected Areas in Communications, 2020, 39(2): 491-499. doi: 10.1109/JSAC.49 URL
[5]	PAN Chen, LIU Zhiqiang, LIU Zhen, et al. Research on Scalability of Blockchain Technology: Problems and Methods[J]. Journal of Computer Research and Development, 2018, 55(10): 2099-2110.
	潘晨, 刘志强, 刘振, 等. 区块链可扩展性研究:问题与方法[J]. 计算机研究与发展, 2018, 55(10): 2099-2110.
[6]	BACK A, CORALLO M, DASHJR L, et al. Enabling Blockchain Innovations with Pegged Sidechains[J]. Open Science Review, 2014, 72(3): 201-224.
[7]	WOOD G. Polkadot: Vision for a Heterogeneous Multi-Chain Framework[J]. White Paper, 2016, 21: 2327-4662.
[8]	ZHANG Shitong, QIN Bo, ZHENG Haibin. Research on the Protocol of Multiple Cross-Chains Based on the Hash Lock[J]. Cyberspace Security, 2018, 9(11): 57-62, 67.
	张诗童, 秦波, 郑海彬. 基于哈希锁定的多方跨链协议研究[J]. 网络空间安全, 2018, 9(11): 57-62,67.
[9]	ATZEI N, BARTOLETTI M, CIMOLI T. A Survey of Attacks on Ethereum Smart Contracts (SoK)[C]// Springer. 4th International Conference on Principles of Security and Trust. Berlin: Springer, 2017: 164-186.
[10]	SHEN Jian, SHEN Jun, CHEN Xiaofeng, et al. An Efficient Public Auditing Protocol with Novel Dynamic Structure for Cloud Data[J]. IEEE Transactions on Information Forensics and Security, 2017, 12(10): 2402-2415. doi: 10.1109/TIFS.2017.2705620 URL
[11]	HE Kun, CHEN Jing, YUAN Quan, et al. Dynamic Group-Oriented Provable Data Possession in the Cloud[J]. IEEE Transactions on Dependable and Secure Computing, 2019, 18(3): 1394-1408.
[12]	PATIL J, CHAUDHARI S. Privacy Preserving and Dynamic Audit Service for Secure Cloud Storage[C]// IEEE. 7th International Conference on Smart City and Emerging Technology (ICSCET). New York: IEEE, 2018: 1-6.
[13]	ZHANG Yushu, JIANG Jiajia, DONG Xuewen, et al. BeDCV: Blockchain-Enabled Decentralized Consistency Verification for Cross-Chain Calculation[J]. IEEE Transactions on Cloud Computing, 2022, 28(2): 1-12.
[14]	JIANG Jiajia, ZHANG Yushu, ZHU Youwen, et al. DCIV: Decentralized Cross-Chain Data Integrity Verification with Blockchain[J]. Journal of King Saud University-Computer and Information Sciences, 2022, 34(10): 7988-7999. doi: 10.1016/j.jksuci.2022.07.015 URL
[15]	JIA Meng, CHEN Jing, HE Kun, et al. Redactable Blockchain from Decentralized Chameleon Hash Functions[J]. IEEE Transactions on Information Forensics and Security, 2022, 17(6): 2771-2783. doi: 10.1109/TIFS.2022.3192716 URL
[16]	SYTA E, TAMAS I, VISHER D, et al. Keeping Authorities "Honest or Bust" with Decentralized Witness Cosigning[C]// IEEE. 37th IEEE Symposium on Security and Privacy (SP). New York: IEEE, 2016: 526-545.
[17]	LI Dawei, LIU Jianwei, TANG Zongxun, et al. AgentChain: A Decentralized Cross-Chain Exchange System[C]// IEEE. 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications. New York: IEEE, 2019: 491-498.
[18]	TSAI W T, BLOWER R, ZHU Yan, et al. A System View of Financial Blockchains[C]// IEEE. 10th IEEE Symposium on Service-Oriented System Engineering. New York: IEEE, 2016: 450-457.
[19]	HE Yunhua, ZHANG Cui, WU Bin, et al. Cross-Chain Trusted Service Quality Computing Scheme for Multi-Chain Model-Based 5G Network Slicing SLA[J]. IEEE Internet of Things Journal, 2021, 14(10): 12126-12139.
[20]	ATENIESE G, PIETRO D R, MANCINI L V, et al. Scalable and Efficient Provable Data Possession[C]// ACM. 4th International Conference on Security and Privacy in Communication Netowrks. New York: ACM, 2008: 1-10.
[21]	TIAN Hui, CHEN Yuxiang, CHANG C C, et al. Dynamic-Hash-Table Based Public Auditing for Secure Cloud Storage[J]. IEEE Transactions on Services Computing, 2015, 10(5): 701-714. doi: 10.1109/TSC.2015.2512589 URL
[22]	ERWAY C C, KUPCU A, PAPAMANTHOU C, et al. Dynamic Provable Data Possession[J]. ACM Transactions on Information and System Security (TISSEC), 2015, 17(4): 1-29.
[23]	WANG Cong, WANG Qian, REN Kui, et al. Toward Secure and Dependable Storage Services in Cloud Computing[J]. IEEE Transactions on Services Computing, 2012, 5(2): 220-232. doi: 10.1109/TSC.2011.24 URL
[24]	CAMENISCH J, DERLER D, KRENN S, et al. Chameleon-Hashes with Ephemeral Trapdoors[C]// Springer. Public Key Cryptography. Berlin:Springer, 2017: 152-182.
[25]	BELLARE M, NEVEN G. Multi-Signatures in the Plain Public-Key Model and a General Forking Lemma[C]// ACM. 13th ACM Conference on Computer and Communications Security. New York: ACM, 2006: 390-399.
[26]	LYNN B. The Pairing-Based Cryptography (PBC) Library[EB/OL]. (2010-06-05)[2023-06-10]. http://crypto.stanford.edu/pbc/.

跨链技术	公证人机制	侧链技术	中继链技术	哈希锁定
优点	具有高度的安全性、可靠性和实时性	具有高度的灵活性和可扩展性，并且可以提高交易速度和吞吐量	通用的跨链技术，具有高度的通用性和互操作性	具有高度的实时性
缺点	中心化程度高	开发和维护成本高	需要一定的开发和维护成本	维护成本高，应用场景局限