摘要
解决联盟链上用户的隐私问题成为加速区块链实际应用落地的关键。基于联盟链的典型代表Hyperledger Fabric平台设计了一套基于公钥基础设施的匿名身份认证方案。通过将私钥d分解为两部分,由不同的角色使用各自私钥对匿名证书生成联合签名的方式实现证书生成过程中的权限分离,并解决匿名证书追踪过程中的单点攻击问题。分析表明,改进后的方案能够以更低的计算和存储开销,实现比原有方案更高的安全性。
Solving the privacy problem of users in the consortium blockchain becomes the key to accelerate the im-plementation of the practical application of blockchain.A set of anonymous identity authentication scheme based on PKI is designed based on Hyperledger Fabric platform,a typical representative of the consortium blockchain.By splitting the private key d into two parts,different roles use each private key to generate the joint signature of the anonymous certificate to achieve the separation of permissions in the process of certificate generation and solve the single point attack problem in the process of anonymous certificate tracking.The analysis shows that the improved scheme can achieve higher security than the original scheme with lower computing and storage overhead.
作者
叶岳洋
张兴兰
YE Yueyang;ZHANG Xinglan(Faculty of Information Technology,Beijing University of Technology,Beijing 100124)
出处
《网络与信息安全学报》
2021年第3期134-140,共7页
Chinese Journal of Network and Information Security
基金
国家自然科学基金(61801008)。
关键词
联盟链
超级账本
公钥基础设施
匿名身份认证
非对称加密
consortium blockchain
Hyperledger Fabric
PKI
anonymous identity authentication
asymmetric en-cryption
