摘要
现有的电子商务系统已经具有较高的运行效率,但在安全性方面存在诸多问题,如交易的中间方不可信,交易数据可被篡改,用户隐私信息容易泄露等。基于以上现状,研究和实现了基于区块链的安全电子商务系统。利用区块链系统的分布式架构以及智能合约的自动执行特性,设计了安全的交易应用系统,实现去中心化,解决了中间方不可信问题。在交易处理方面,交易均通过用户私钥签名,保障交易合法性和不可抵赖。应用Web层面,设计登录验证码,防止DDOS攻击。数据存储基于区块链和链下数据库结合的机制,保证数据安全,区块链只可追加读取的特性可防止系统被篡改。建立数据库索引以及智能合约商品信息和交易信息存储结构提高查询效率。对系统的功能和性能测试表明,多节点环境下交易处理效率较高,订单和商品状态查询响应时间能够达到80ms,系统在保证信息安全的基础上具有完备的交易功能和良好的运行效率。详细介绍了系统的设计和开发过程,对于区块链技术在电子商务中的应用具有重要的参考价值。
The existing electronic commerce system has high efficiency,but there are many security issues.For example,the middle party of the transaction is not credible,transaction data can be tampered by hackers,privacy information of users is easy to leak,etc.Based on the situation,this article researches and implements a blockchain-based secure electronic commerce system.Taking advantage of the distributed architecture of the blockchain system and the automatic execution features of smart contract,a decentralized secure transaction application is designed to solve the problem of untrustworthy.In terms of transaction processing,transactions are signed by the user's private key to ensure the legality and non-repudiation.Login verification codes is designed to prevent DDOS attacks.Data storage is based on combining of blockchain and the off-chain database to ensure data security.The fea⁃ture that blockchain can only be append could prevent the system from being tampered with.Database index and storage structure of commodity and transaction information are built to improve query efficiency.Finally,the function and performance experiments veri⁃fy that the system has relatively high efficiency in a multi-node environment and query response time of order and product status can reach 80ms.With completed transaction function and good operation efficiency on the basis of ensuring information security.The de⁃sign and development process of this system are introduced in detail,which has important reference value for the application of blockchain technology in electronic commerce.
作者
范吉立
张昀
李晓华
聂铁铮
张岩峰
于戈
FAN Jili;ZHANG Yun;LI Xiaohua;NIE Tiezheng;ZHANG Yanfeng;YU Ge(School of Computer Science and Engineering,Northeastern University,Shenyang 110169;Office of Information Construction and Network Security,Northeastern University,Shenyang 110004)
出处
《计算机与数字工程》
2020年第12期2800-2805,2825,共7页
Computer & Digital Engineering
基金
国家自然科学基金项目(编号:61672142)
辽宁省科学技术基金项目(编号:20180550321)资助。
关键词
区块链
安全交易
以太坊
智能合约
分布式系统
blockchain
secure transaction
ethereum
smart contract
distributed system
