| 引用本文: |
-
徐哲清,王宇航,王志伟,刘峰.基于身份的联盟链密封电子拍卖协议[J].信息安全学报,2025,10(1):36-46 [点击复制]
- XU Zheqing,WANG Yuhang,WANG Zhiwei,LIU Feng.Identity-based Sealed Bid Auction Protocol on Consortium Blockchain[J].Journal of Cyber Security,2025,10(1):36-46 [点击复制]
|
|
| 摘要: |
| 密封电子拍卖是一种保护出价隐私的线上拍卖方式,可以最大程度地减小投标者的出价策略导致的成交价格与商品真实价值的偏差。但是传统的密封电子拍卖方案依赖一个可信第三方,这导致了高昂的拍卖成本和出价隐私泄露的风险。近年来,去中心化的区块链技术迅速发展,给密封电子拍卖方案的设计提供了新的思路,一些研究提出了结合区块链的去中心化优势来减少或去除对第三方的依赖,然而这些方案都基于公钥密码学,由于区块链系统的开放性,往往拥有较多的客户端数量,维护公钥基础设施需要高昂的成本,这使得这些方案难以在实际中应用。为了解决现有方案依赖于公钥基础设施的问题,本文将基于身份的加法同态加密算法应用于安全多方整数比较协议,并使用联盟链作为协议的通信交互平台,提出一种基于身份的联盟链密封电子拍卖协议,实现了在不需要可信第三方和公钥基础设施的情况下,使用三轮通信交互即可完成密封拍卖的出价比较和排名证明。安全性方面,我们通过理论证明了我们的方案在半诚实模型下,仅有一名诚实的投标者时也不会泄露任何投标者的出价隐私。我们基于Hyperledger Fabric联盟链实现了我们的密封电子拍卖协议,并进行实验与其他现有方案对比,实验结果表明我们的方案在计算开销和通信开销方面都有较大的优势。 |
| 关键词: 密封电子拍卖 联盟链 基于身份的加密 同态加密 安全多方计算 |
| DOI:10.19363/J.cnki.cn10-1380/tn.2025.01.03 |
| 投稿时间:2023-05-22修订日期:2023-08-14 |
| 基金项目:本文受到国家自然科学基金项目资助(No.62372245)、2022年信息安全国家重点实验室开放课题项目(No.2022-MS-5)、江苏省研究生科研与实践创新计划项目(No.KYCX22_0987)资助。 |
|
| Identity-based Sealed Bid Auction Protocol on Consortium Blockchain |
|
XU Zheqing1, WANG Yuhang1, WANG Zhiwei1, LIU Feng2
|
| (1.School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing 210023, China;2.State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China) |
| Abstract: |
| A type of online auction known as an electronic sealed bid auction which protects the privacy of bidders while decreasing the distance between the transaction price and the actual value of the item generated by participants' bidding strategies. On the other hand, conventional sealed electronic auction techniques all rely on a trustworthy third party, which rises the cost of the auction and increases the risk of bidder confidentiality leaks. Decentralized blockchain technology has grown rapidly in recent years, offering fresh perspectives on how to construct sealed electronic auction solutions. Some research has proposed utilizing the blockchain's decentralized benefits to reduce or do away with the need for third intermediaries. However, all these solutions rely on public key cryptography, but as blockchain systems frequently have numerous users due to property of open, maintaining a public key infrastructure is both expensive and problematic. This has made using these methods in real world situations difficult. This work uses identity-based additively homomorphic encryption algorithms to secure multi-party integer comparison protocols in order to overcome the issue of reliance on a public key infrastructure in prior solutions. It suggests an identity-based consortium blockchain sealed electronic auction system, with a consortium blockchain serving as the protocol's platform for communication and interaction. Through three rounds of communication, this protocol accomplishes the comparison and ranking evidence of sealed bids in a sealed auction without the use of a third party or a public key infrastructure. In terms of security, we present theoretical proof that, even in the case of only one single honest bidder, our protocol does not reveal any bidder's privacy in the semi-honest model. We implemented our sealed electronic auction protocol based on the Hyperledger Fabric consortium blockchain and conducted experiments to compare it with other existing approaches. The experimental results show that our solution has considerable cost-savings and efficiency benefits. |
| Key words: sealed bid auction consortium chain identity-based encryption homomorphic encryption multi-party computation |
