摘要
为解决用户在混币过程中无法请求退出的问题,该文提出一种支持用户匿名撤销混币的方案。采用承诺技术将用户和其目的地址进行绑定;当用户请求退出混洗服务时,利用累加器和知识签名对承诺进行零知识证明。最后将撤销用户的混淆输出地址修改为其指定的目的地址。安全性分析表明,该方案基于双离散对数问题和强RSA假设满足退群用户匿名性,且不用修改当前比特币系统即可实施。在n(n≥10)个诚实用户参与的混淆过程中,方案允许至多n–2个用户退出混币操作。
In order to solve the problem that users can not request to exit during the bitcoin confusion process,an anonymous revocation scheme for Bitcoin confusion is proposed. The commitment is used to bind the user with its destination address. When the user requests to quit the shuffle service, a zero-knowledge proof of the commitment is made using the accumulator and the signatures of knowledge. Finally, the shuffled output address of the user who quits the service is modified to its destination address. Security analysis shows that the scheme satisfies the anonymity of the user who quits the service based on the double discrete logarithm problem and the strong RSA assumption, and can be implemented without modifying the current bitcoin system. The scheme allows at most n–2 users to exit in the confusion process of n(n≥10) honest users participation.
作者
李雪莲
王海玉
高军涛
李伟
LI Xuelian;WANG Haiyu;GAO Juntao;LI Wei(School of Mathematics and Statistics, Xidian University, Xi’an 710071, China;School of Telecommunications engineering, Xidian University, Xi’an 710071, China)
出处
《电子与信息学报》
EI
CSCD
北大核心
2019年第8期1815-1822,共8页
Journal of Electronics & Information Technology
基金
国家重点研发计划(2016YFB0800601)
国家自然科学基金(61303217,61502372)~~
关键词
隐私保护
比特币混淆
可撤销
Privacy protection
Bitcoin confusion
Revocable
