基于区块链的可审计隐私保护机密交易

盖珂珂; 陈思源; 祝烈煌

doi:10.12263/DZXB.20221020

您当前的位置：

首页 >

文章列表页 >

基于区块链的可审计隐私保护机密交易

学术论文 | 更新时间：2025-12-08

- 基于区块链的可审计隐私保护机密交易
- Blockchain-Based Privacy-Preserving Auditable Confidential Transaction Scheme
- 电子学报 2025年53卷第2期页码：460-473
- 作者机构：
  
  1.北京理工大学网络空间安全学院，北京 100081
  2.北京理工大学计算机学院，北京 100081
- 作者简介：
  
  [ "盖珂珂男，1982年生，博士，教授，博士生导师，CCF会员.主要研究方向：区块链，数据安全，隐私计算.中国电子学会会员编号：E190023886M.E-mail: gaikeke@bit.edu.cn" ]
  [ "陈思源男，1994年生，硕士.主要研究方向：区块链隐私保护.E-mail: 3220200862@bit.edu.cn" ]
  [ "祝烈煌男，1976年生，博士，教授，博士生导师，CCF会员.主要研究方向：密码学，网络和信息安全.中国电子学会会员编号：E190010255M.E-mail: liehuangz@bit.edu.cn" ]
- 基金信息：
  
  国家重点研发计划(2021YFB2701300)
- DOI：10.12263/DZXB.20221020
  中图分类号： TP309.2;
- 收稿：2022-09-05，
  
  修回：2024-07-13，
  
  纸质出版：2025-02-25
- 稿件说明：
移动端阅览
盖珂珂, 陈思源, 祝烈煌. 基于区块链的可审计隐私保护机密交易[J]. 电子学报, 2025, 53(02): 460-473.

GAI Ke-ke, CHEN Si-yuan, ZHU Lie-huang. Blockchain-Based Privacy-Preserving Auditable Confidential Transaction Scheme[J]. Acta Electronica Sinica, 2025, 53(02): 460-473.
盖珂珂, 陈思源, 祝烈煌. 基于区块链的可审计隐私保护机密交易[J]. 电子学报, 2025, 53(02): 460-473. DOI：10.12263/DZXB.20221020

GAI Ke-ke, CHEN Si-yuan, ZHU Lie-huang. Blockchain-Based Privacy-Preserving Auditable Confidential Transaction Scheme[J]. Acta Electronica Sinica, 2025, 53(02): 460-473. DOI：10.12263/DZXB.20221020

摘要

隐私保护和交易数据审计是区块链系统相关方较为冲突的两个需求.比特币采用未花费交易输出（Unspent Transaction Output，UTXO）的方式，保证用户能迅速查询到每笔交易的资金来源和去向，具有天然的可溯源性，确保了资金不会被“双花”.然而，由于每笔交易的交易金额及交易双方的地址都公开存储于账本，用户的交易行为变得公开可追溯，导致用户面临隐私风险.对交易数据进行加密是一种简单有效的隐私保护手段，但也给交易的验证和审计带来不便.本文提出了一种可审计的隐私保护机密交易方案，利用Pederson承诺实现交易合理性的公开可验证而不泄露交易的具体金额；支持交易发起方独立发起交易而无需经过接收方许可，与其他需要交易双方进行通信的机密交易方案相比，更符合实际情况同时节约了通信开销；引入陷门机制，账本和监管方外其他用户无法辨认交易发起方身份，保护了用户身份隐私；实现了多种审计功能，并根据监管方和私人审计者给出不同的审计方式；本文给出了一种新的范围证明方法，在适用于大数时较Prcash具有一定优势：对于256位大数的范围证明生成时间与Prcash基本相同，对于512位大数的范围证明生成时间节省29.78%，对于1 024位大数的范围证明生成时间节省56.86%.

Abstract

Most current blockchain systems can hardly concurrently satisfy requirements of privacy protection and transaction data auditing. Bitcoin adopts the method of unspent transaction output (UTXO) to ensure that users can quickly query the source as well as fund destinations of each transaction

in order to avoid double spending threats. However

the users’ behaviors

deemed to be privacy

maybe traced by adversaries

since transactions with addresses are stored in the ledger publicly. Even though encryption-based solutions are widely adopted

it often causes restrictions to transaction verifications and auditing. In this paper

we propose an auditable privacy-preserving confidential transaction scheme

which uses Pederson commitment to realize the public verifiability of the transaction rationality without disclosing the specific amount of the transaction. Our scheme supports the initiator of the transaction to initiate the transaction independently without permissions from the receiver

which saves the communication cost comparing with other confidential transaction schemes. By introducing the trapdoor mechanism

the identity of the transaction initiator cannot be recognized by other users outside the ledger and the supervisor

so as to protect users’ privacy. It has realized a variety of audit functions

and different audit methods have been developed according to regulators and private auditors. This paper presents a new range proof method

which has advantages over Prcash when applied to large numbers. The generation time of range proof for 512 bit large numbers is shortened 29.78%

and the generation time of range proof for 1 024 bit large numbers is reduced 56.86%.

关键词

Keywords

references

Satoshi Nakamoto . Bitcoin: A peer-to-peer electronic cash system [EB/OL ] . ( 2008-10-31 )[ 2022-09-05 ] . https://nakamotoinstitute.org/library/bitcoin/ https://nakamotoinstitute.org/library/bitcoin/ .

BECH M L , GARRATT R J . Central bank cryptocurrencies [J ] . BIS Quarterly Review September , 2017 , 1 : 1 - 13 .

MILLS D , WANG K , MALONE B , et al . Distributed ledger technology in payments, clearing, and settlement [J ] . Finance and Economics Discussion Series , 2016 , 95 : 1 - 36 .

CAROLYN A , WILKINS . Fintech and the financial ecosystem: Evolution or revolution [EB/OL ] . ( 2016 )[2022 ] . http://www.bankofcanada.ca/wp-content/uploads/2016/06/remarks-170616.pdf http://www.bankofcanada.ca/wp-content/uploads/2016/06/remarks-170616.pdf

MAS . Working with industry to apply distributed ledger technology in securities settlement and cross border payments [EB/OL ] . ( 2017 )[2022 ] . http://www.mas.gov.sg/News-and-Publications/Media-Releases/2017/MAS-working-with-industry-to-apply-Distributed-Ledger-Technology.aspx http://www.mas.gov.sg/News-and-Publications/Media-Releases/2017/MAS-working-with-industry-to-apply-Distributed-Ledger-Technology.aspx .

Koning JP . Fedcoin: A central bank-issued cryptocurrency [EB/OL ] . R 3 Report, 2016 . https://www.scribd.com/document/422431659/FED https://www.scribd.com/document/422431659/FED .

DANEZIS G , MEIKLEJOHN S . Centrally banked cryptocurrencies [C ] // Proceedings 2016 Network and Distributed System Security Symposium . Reston : Internet Society , 2016 : 21 - 24 .

STEFAN I . The e-krona and the payments of the future [EB/OL ] . ( 2018 )( 2022 ). https://www.riksbank.se/globalassets/media/tal/engelska/ingves/2018/the-e-krona-and-the-payments-of-the-future.pdf https://www.riksbank.se/globalassets/media/tal/engelska/ingves/2018/the-e-krona-and-the-payments-of-the-future.pdf

AMANDA B . Now there are plans for ‘e-krona’ in cash-shy sweden [EB/OL ] . ( 2018 )[2022 ] . https://www.bloomberg.com/news/articles/2018-10-26/riksbank-to-develop-pilot-electronic-currency-amid-cash-decline https://www.bloomberg.com/news/articles/2018-10-26/riksbank-to-develop-pilot-electronic-currency-amid-cash-decline .

李智虎 , 钟林 , 许海清 , 等 . 可监管的电力区块链交易隐私保护技术研究 [J ] . 密码学报 , 2022 , 9 ( 6 ): 1014 - 1027 .

LI Z H , ZHONG L , XU H Q , et al . A supervised power blockchain transaction privacy protection system [J ] . Journal of Cryptologic Research , 2022 , 9 ( 6 ): 1014 - 1027 . (in Chinese)

GAI K K , WU Y L , ZHU L H , et al . Privacy-preserving energy trading using consortium blockchain in smart grid [J ] . IEEE Transactions on Industrial Informatics , 2019 , 15 ( 6 ): 3548 - 3558 .

肖瑶 , 冯勇 , 李英娜 , 等 . 基于同态加密的区块链交易数据隐私保护方案 [J ] . 密码学报 , 2022 , 9 ( 6 ): 1053 - 1066 .

XIAO Y , FENG Y , LI Y N , et al . A privacy-preserved scheme for blockchain transaction based on homomorphic encryption [J ] . Journal of Cryptologic Research , 2022 , 9 ( 6 ): 1053 - 1066 . (in Chinese)

陈露 , 相峰 , 孙知信 . 基于属性密码体制的区块链安全技术研究进展 [J ] . 电子学报 , 2021 , 49 ( 1 ): 192 - 200 .

CHEN L , XIANG F , SUN Z X . A survey of blockchain security technologies based on attribute-based cryptography [J ] . Acta Electronica Sinica , 2021 , 49 ( 1 ): 192 - 200 . (in Chinese)

佘维 , 霍丽娟 , 刘炜 , 等 . 一种可隐藏敏感文档和发送者身份的区块链隐蔽通信模型 [J ] . 电子学报 , 2022 , 50 ( 4 ): 1002 - 1013 .

SHE W , HUO L J , LIU W , et al . A blockchain-based covert communication model for hiding sensitive documents and sender identity [J ] . Acta Electronica Sinica , 2022 , 50 ( 4 ): 1002 - 1013 . (in Chinese)

GAI K K , WU Y L , ZHU L H , et al . Differential privacy-based blockchain for industrial Internet-of-Things [J ] . IEEE Transactions on Industrial Informatics , 2020 , 16 ( 6 ): 4156 - 4165 .

祝烈煌 , 高峰 , 沈蒙 , 等 . 区块链隐私保护研究综述 [J ] . 计算机研究与发展 , 2017 , 54 ( 10 ): 2170 - 2186 .

ZHU L H , GAO F , SHEN M , et al . Survey on privacy preserving techniques for blockchain technology [J ] . Journal of Computer Research and Development , 2017 , 54 ( 10 ): 2170 - 2186 . (in Chinese)

姜轶涵 , 李勇 , 朱岩 . ACT: 可审计的机密交易方案 [J ] . 计算机研究与发展 , 2020 , 57 ( 10 ): 2232 - 2240 .

JIANG Y H , LI Y , ZHU Y . ACT: Auditable confidential transaction scheme [J ] . Journal of Computer Research and Development , 2020 , 57 ( 10 ): 2232 - 2240 . (in Chinese)

WÜST K , KOSTIAINEN K , ČAPKUN V , et al . PRCash: Fast, private and regulated transactions for digital currencies [M ] // Lecture Notes in Computer Science . Cham : Springer International Publishing , 2019 : 158 - 178 .

TOM E J . Mimblewimble [EB/OL ] . ( 2012-07-24 )[ 2022-09-05 ] . http://mimblewimble.org/mimblewimble.txt http://mimblewimble.org/mimblewimble.txt .

BUNZ B , BOOTLE J , BONEH D , et al . Bulletproofs: Short proofs for confidential transactions and more [C ] // 2018 IEEE Symposium on Security and Privacy (SP) . Piscataway : IEEE , 2018 : 315 - 334 .

GREGORY M . CoinJoin: Bitcoin privacy for the real world [EB/OL ] . ( 2017 )[2022 ] . http://bitcointalk.org/index.php?topic=279249.0 http://bitcointalk.org/index.php?topic=279249.0

BENEDIKT B , BOOTLE Jonathan , DAN Boneh , et al . Bulletproofs: Effificient range proofs for confifidential transactions [EB/OL ] . reportTechnical, Cryptology ePrint Archive,Report 2017 / 1066 , 2017 . https://eprint.iacr.org/2017/1066 https://eprint.iacr.org/2017/1066 ,2017.

CLINTONIO . Corda [EB/OL ] . ( 2017 )[2022 ] . https://github.com/corda/corda https://github.com/corda/corda .

DIGITAL ASSET . Digital asset holdings [EB/OL ] . 20

[2022] . http://digitalasset.com http://digitalasset.com .

BEN-SASSON E , CHIESA A , GENKIN D , et al . SNARKs for C: Verifying program executions succinctly and in zero knowledge [C ] // Annual Cryptology Conference . Berlin : Springer , 2013 : 90 - 108 .

SASSON E B , CHIESA A , GARMAN C , et al . Zerocash: Decentralized anonymous payments from Bitcoin [C ] // 2014 IEEE Symposium on Security and Privacy . Piscataway : IEEE , 2014 : 459 - 474 .

WALSH S B , CAHN N , KUNZ C L . Digital assets and fiduciaries [M ] // Research Handbook on Electronic Commerce Law . Cham : Springer International Publishing , 2016 : 91 - 112 .

CECCHETTI E , ZHANG F , JI Y , et al . Solidus: Confidential distributed ledger transactions via PVORM [C ] // Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security . New York : ACM , 2017 : 701 - 707 .

NARULA N , VASQUEZ W , VIRZA M . Zkledger: Privacy-preserving auditing for distributed ledgers [C ] // 15th USENIX Symposium on Networked Systems Design and Implementation (NSDI 18) . New York : ACM , 2018 : 65 - 80 .

GOLDWASSER S , MICALI S , RACKOFF C . The knowledge complexity of interactive proof systems [J ] . SIAM Journal on Computing , 1989 , 18 ( 1 ): 186 - 208 .

BOUDOT F . Efficient proofs that a committed number lies in an interval [C ] // International Conference on the Theory and Applications of Cryptographic Techniques . Berlin : Springer , 2000 : 431 - 444 .

TSAI Y C , TSO R , LIU Z Y , et al . An improved non-interactive zero-knowledge range proof for decentralized applications [C ] // 2019 IEEE International Conference on Decentralized Applications and Infrastructures (DAPPCON) . Piscataway : IEEE , 2019 : 129 - 134 .

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

安全的两方协作SM2签名算法

隐匿信息检索技术现状与展望

元组集合子集的保密计算

严格可证明安全的两方协同SM2签名协议