English

应用科学学报 >

2019 , Vol. 37 >Issue 2: 224 - 234

DOI: https://doi.org/10.3969/j.issn.0255-8297.2019.02.007

区块链

基于区块链和分层加密的物流隐私保护机制

展开
  • 1. 东南大学网络空间安全学院, 南京 211189;
    2. 浙江工贸职业技术学院图书信息中心, 浙江温州 325003;
    3. 南京网络空间安全技术研究院, 南京 211189
宋宇波,副教授,研究方向:网络安全协议设计、用户隐私保护、区块链技术,E-mail:songyubo@seu.edu.cn

收稿日期: 2018-12-16

  修回日期: 2019-01-04

  网络出版日期: 2019-03-31

基金资助

国家自然科学基金(No.61601113)资助

收起

Logistics Information Privacy Protection Based on Blockchain and Hierarchical Encryption

Expand
  • 1. School of Cyberspace Security, Southeast University, Nanjing 211189, China;
    2. Book Information Center, Zhejiang Industry and Trade Vocational and Technical College, Wenzhou 325003, Zhejiang Province, China;
    3. Nanjing Institute of Cyberspace Security Technology, Nanjing 211189, China

Received date: 2018-12-16

  Revised date: 2019-01-04

  Online published: 2019-03-31

Fold

摘要

研究了物流环节中用户隐私泄露数据问题.现有的物流隐私保护机制通常由第三方保管用户隐私数据,导致用户缺乏对信息的控制权.结合区块链技术和分层加密技术提出一种新型的物流用户隐私数据保护方案.该方案将区块链和匿名认证相结合设计出一种访问权限管理机制,实现用户对隐私数据访问权限的控制管理,以及隐私数据访问记录的可追溯性;此外该方案提出一种分层加密机制,通过嵌套访问控制树结构实现用户根据数据访问方属性确定其隐私数据的访问权限.安全性分析表明,所提出的物流隐私保护机制可以有效地保证隐私数据的安全性.

关键词: 物流隐私保护; 基于密文策略的加密属性; 区块链; 访问权限管理

本文引用格式

赵灵奇, 宋宇波, 张克落, 胡爱群, 罗坚 . 基于区块链和分层加密的物流隐私保护机制[J]. 应用科学学报, 2019 , 37(2) : 224 -234 . DOI: 10.3969/j.issn.0255-8297.2019.02.007

Abstract

In the contemporary logistics industry, user privacy data is usually kept by third parties, which often lead to users lack control over logistics information data. This paper proposes a novel logistics user privacy protection scheme based on layered encryption and blockchain technology. The scheme proposes a novel access rights management mechanism based on blockchain and DAA anonymous authentication to implement the privacy data access rights management and the traceability of private data access records. In addition, the scheme adopts a nested access control tree structure enables users to determine the access rights of their private data according to the attributes of the data accessor. Finally, this paper designs and implements a logistics order proofng verifcation system. The security analysis shows that the system can ensure the security of private data efciently.

Key words: logistics privacy protection; ciphertext policy attribute based encryption (CPABE); blockchain; access rights management

参考文献

[1] Helo P, Szekely B. Logistics information systems:an analysis of software solutions for supplychain co-ordination[J]. Industrial Management & Data Systems, 2005, 105(1):5-18.
[2] Wei Q, Wang C, Li X Y. Express information privacy protection application based on RSA[J]. Application of Electronic Technique, 2014, 40(7):58-60.
[3] Zhang X W, Li H K, Yang Y T, Sun G Z. LIPPS:logistics information privacy protectionsystem based on encrypted QR code[C]//2016 IEEE Trustcom/BigDataSE/I SPA. IEEE, 2016:996-1000.
[4] Zyskind G, Nathan O, Pentland A S. Decentralizing privacy:using blockchain to protect personal data[C]//2015 IEEE Security and Privacy Workshops (SPW). IEEE ComputerSociety, 2015:180-184.
[5] Yue X, Wang H J, Jin D W, Li M Q, Jiang W. Healthcare data gateways:found healthcareintelligence on blockchain with novel privacy risk control[J]. Journal of Medical Systems, 2016, 40(10):1-8.
[6] Aitzhan N Z, Svetinovic D. Security and privacy in decentralized energy trading through multi-signatures, blockchain and anonymous messaging streams[J]. IEEE Transactions on Dependable and Secure Computing, 2018, 15(5):840-852.
[7] White H. Hyperledger project[EB/OL].[2018-03-19] https://github.com/hyperledger/.
[8] Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption[C]//Security and Privacy. IEEE, 2007:321-333
[9] Brickell E. Direct anonymous attestation[C]//Conference on Computer and Communications Security. ACM, 2004:132-145.
Options
文章导航

/