北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2025, Vol. 48 ›› Issue (1): 87-91,113.

• 论文 • 上一篇    下一篇

基于零知识证明的区块链密文数据共享与访问控制方案

任志鑫, 闫恩华, 陈韬伟, 余益民   

  1. 云南财经大学
  • 收稿日期:2023-10-26 修回日期:2023-11-25 出版日期:2025-02-26 发布日期:2025-02-25
  • 通讯作者: 陈韬伟 E-mail:twchen@ynufe.edu.cn
  • 基金资助:
    国家自然科学基金项目; 云南省科技厅科技计划项目; 云南省教育厅科学研究基金项目 ; 昆明市国际(对外)科技合作基地项目

Blockchain Ciphertext Data Sharing and Access Control Scheme Based on Zero-Knowledge Proof

REN Zhixin, YAN Enhua, CHEN Taowei, YU Yimin   

  • Received:2023-10-26 Revised:2023-11-25 Online:2025-02-26 Published:2025-02-25

摘要: 当前大多数解决方案仍然在区块链上保留了授权机构,这使得“不可能三角”问题在区块链中变得更为显著。为了打破传统由中央授权机构或可信第三方管理和分发密钥模式,引入了零知识证明机制,提出基于零知识证明的区块链密文数据共享与访问控制方案。首先,使用重加密协议实现了无需授权机构参与的属性基加密算法主密钥的安全管理和分发,并设计零知识证明以完成重加密的链下计算正确性验证;最后,开发区块链密文访问控制事务交易聚合电路进一步提升系统的可扩展性并降低链上成本。理论分析和仿真实验结果表明,相比传统密钥管理和分发模式,所提方案不仅可以实现安全高效的数据共享与访问控制,还可以有效地降低链上开销。

关键词: 数据共享, 访问控制, 零知识证明, 区块链, 属性基加密

Abstract: The majority of existing solutions are observed to still retain an authorization authority on the blockchain, which is viewed as exacerbating the “blockchain trilemma” issue. To address this, a zero- knowledge proof mechanism has been introduced in order to break away from the traditional model where key management and distribution are conducted by a central authority or trusted third party. Initially, a re-encryption protocol is employed to enable secure management and distribution of the attribute-based encryption algorithm’s master key without the involvement of an authorization authority. The correctness of the off-chain computations in re-encryption is then verified by using zero-knowledge proofs. Finally, a transaction aggregation circuit for blockchain ciphertext access control is developed to enhance system scalability and reduce on-chain costs. Through theoretical analysis and simulation, it is demonstrated that, in comparison to the traditional key management and distribution model, secure and efficient data sharing and access control are achieved, and on-chain overhead is effectively reduced.

Key words: data sharing ,  access control ,  zero-knowledge proof ,  blockchain ,   attribute-based encryption

中图分类号: