基于区块链审计的公钥分发方案
Public Key Distribution Scheme Based on Blockchain for Auditing
查看参考文献19篇
|
文摘
|
点对点加密是一种应用于在线通信软件的加密方式,多数的点对点加密通过非对称加密实现,但公钥分发的方案需要依赖于中心化的服务器,如果中心化的服务器攻击或被攻击则可能造成中间人攻击,从而导致聊天信息被泄露的风险.为此,提出采用区块链技术进行审计的方式,构建一个去中心化的公钥分发方案.该方案所有公钥修改记录的摘要通过智能合约被保存在由CA共同维护的区块链上,使得恶意的修改记录可被追踪和验证,同时采用基于实用拜占庭容错(PBFT)改进的共识算法,达到低能耗和高效的拜占庭容错.实验结果表明,与原PBFT算法相比,该方案安全性明显提高. |
|
其他语种文摘
|
Point-to-point encryption is an encryption method widely used in online communication software,and is mostly implemented by asymmetric encryption,but the public key distribution scheme relies on a centralized server. If the centralized server is attacked,there is a risk that chat information will be leaked due to a Man-in-the-Middle Attack (MITM) . Therefore,this paper uses blockchain technology for auditing to build a decentralized public key distribution scheme. The scheme saves summary of all the public key modification records in the blockchain maintained by the CA through the smart contract, so that it can track and verify the maliciously modified records. The scheme also abopts the improved consensus algorithm based on Practical Byzantine Fault Tolerance(PBFT) to achieve low energy consymption, and efficient Byzantine fault tolerance. Experimental results show that compared with the algorithm,the scheme has high security. |
|
来源
|
计算机工程
,2019,45(5):29-34 【扩展库】
|
|
DOI
|
10.19678/j.issn.1000-3428.0053573
|
|
关键词
|
区块链
;
公钥分发
;
实用拜占庭容错
;
点对点加密
;
分布式网络
|
|
地址
|
中国科学技术大学计算机科学与技术学院, 合肥, 230026
|
|
语种
|
中文 |
|
文献类型
|
研究性论文 |
|
ISSN
|
1000-3428 |
|
学科
|
自动化技术、计算机技术 |
|
基金
|
国家自然科学基金
|
|
文献收藏号
|
CSCD:6495273
|
参考文献 共
19
共1页
|
|
1.
WhatsApp Blog.
Connecting one billion users every day
|
被引
1
次
|
|
|
|
|
2.
瞿晓海. 微信加密通信原理分析.
信息安全与技术,2014,5(1):13-16
|
被引
2
次
|
|
|
|
|
3.
Petroff A.
Yes,face book is scanning your messages for abuse,2018
|
被引
1
次
|
|
|
|
|
4.
方兴东. 棱镜门事件与全球网络空间安全战略研究.
现代传播,2014,36(1):115-122
|
被引
1
次
|
|
|
|
|
5.
Biggs L.
Heartbleed, the first security bug with a cool logo,2018
|
被引
1
次
|
|
|
|
|
6.
Goodin D.
Firefox ready to block certificate authority that threatened web security,2018
|
被引
1
次
|
|
|
|
|
7.
Kumar D. Tracking certificate misissuance in the wild.
Proceedings of 2018 IEEE Symposium on Security and Privacy,2018:215-226
|
被引
1
次
|
|
|
|
|
8.
林璟锵. PKI技术的近年研究综述.
密码学报,2015,2(6):487-496
|
被引
18
次
|
|
|
|
|
9.
Kim A. Accountable key infrastructure: a proposal for a public-key validation infrastructure.
Proceedings of the 22nd International Conference on World Wide Web,2013:125-136
|
被引
1
次
|
|
|
|
|
10.
Dermot R M. Enhanced certificate transparency and end-to-end encrypted mail.
Proceedings of IEEE NDSS'14,2014:222-235
|
被引
1
次
|
|
|
|
|
11.
Chariton A A. CCSP: a compressed certificate status protocol.
Proceedings of IEEE Conference on Computer Communications,2017:1-9
|
被引
1
次
|
|
|
|
|
12.
Syta E. Keeping authorities'honest or bust'with decentralized witness cosigning.
Computer Science,2016,42:526-545
|
被引
1
次
|
|
|
|
|
13.
Melara M S. CONIKS: bringing key transparency to end hsers.
Proceedings of UCSS'15,2015:15-29
|
被引
1
次
|
|
|
|
|
14.
袁勇. 区块链技术发展现状与展望.
自动化学报,2016,42(4):481-494
|
被引
422
次
|
|
|
|
|
15.
陆尧. 基于比特币技术的供应链管控与溯源方案.
计算机工程,2018,44(12):85-93,101
|
被引
8
次
|
|
|
|
|
16.
Ethereum White Paper.
A next-generation smart contract and decentralized application platform
|
被引
1
次
|
|
|
|
|
17.
Fergal R. An analysis of anonymity in the bitcoin system.
Proceedings of SPSN'13,2013:197-223
|
被引
1
次
|
|
|
|
|
18.
Miguel C. Practical byzantine fault tolerance.
Proceedings of OSDI'99,1999:19-28
|
被引
1
次
|
|
|
|
|
19.
Gavin W.
Ethereum: a secure decentralised generalised transaction ledger,2018
|
被引
1
次
|
|
|
|
|
了解气象卫星更多信息,请访问