English

应用科学学报 ›› 2019, Vol. 37 ›› Issue (2): 224-234.doi: 10.3969/j.issn.0255-8297.2019.02.007

• 区块链 • 上一篇    下一篇

基于区块链和分层加密的物流隐私保护机制

赵灵奇1, 宋宇波1, 张克落1, 胡爱群1, 罗坚2,3   

  1. 1. 东南大学网络空间安全学院, 南京 211189;
    2. 浙江工贸职业技术学院图书信息中心, 浙江温州 325003;
    3. 南京网络空间安全技术研究院, 南京 211189
  • 收稿日期:2018-12-16 修回日期:2019-01-04 出版日期:2019-03-31 发布日期:2019-03-31
  • 作者简介:宋宇波,副教授,研究方向:网络安全协议设计、用户隐私保护、区块链技术,E-mail:songyubo@seu.edu.cn
  • 基金资助:
    国家自然科学基金(No.61601113)资助

Logistics Information Privacy Protection Based on Blockchain and Hierarchical Encryption

ZHAO Ling-qi1, SONG Yu-bo1, ZHANG Ke-luo1, HU Ai-qun1, LUO Jian2,3   

  1. 1. School of Cyberspace Security, Southeast University, Nanjing 211189, China;
    2. Book Information Center, Zhejiang Industry and Trade Vocational and Technical College, Wenzhou 325003, Zhejiang Province, China;
    3. Nanjing Institute of Cyberspace Security Technology, Nanjing 211189, China
  • Received:2018-12-16 Revised:2019-01-04 Online:2019-03-31 Published:2019-03-31

PDF

535

摘要: 研究了物流环节中用户隐私泄露数据问题.现有的物流隐私保护机制通常由第三方保管用户隐私数据,导致用户缺乏对信息的控制权.结合区块链技术和分层加密技术提出一种新型的物流用户隐私数据保护方案.该方案将区块链和匿名认证相结合设计出一种访问权限管理机制,实现用户对隐私数据访问权限的控制管理,以及隐私数据访问记录的可追溯性;此外该方案提出一种分层加密机制,通过嵌套访问控制树结构实现用户根据数据访问方属性确定其隐私数据的访问权限.安全性分析表明,所提出的物流隐私保护机制可以有效地保证隐私数据的安全性.

关键词: 物流隐私保护, 基于密文策略的加密属性, 区块链, 访问权限管理

Abstract: In the contemporary logistics industry, user privacy data is usually kept by third parties, which often lead to users lack control over logistics information data. This paper proposes a novel logistics user privacy protection scheme based on layered encryption and blockchain technology. The scheme proposes a novel access rights management mechanism based on blockchain and DAA anonymous authentication to implement the privacy data access rights management and the traceability of private data access records. In addition, the scheme adopts a nested access control tree structure enables users to determine the access rights of their private data according to the attributes of the data accessor. Finally, this paper designs and implements a logistics order proofng verifcation system. The security analysis shows that the system can ensure the security of private data efciently.

Key words: logistics privacy protection, ciphertext policy attribute based encryption (CPABE), blockchain, access rights management

中图分类号: