Xiaofang Li,Yurong Mei,Jing Gong,Feng Xiang,Zhixin Sun

DOI: https://doi.org/10.1109/access.2020.2987831

IF: 3.9

2020-01-01

IEEE Access

Abstract:Blockchain is a point-to-point distributed ledger technology based on cryptographic algorithms. However, the open and transparent blockchain ledger supplemented by statistical methods such as sociological mining and data mining has caused users' privacy to face major threats. Therefore, privacy protection has become a focus of current blockchain technology research. Ring signature technology is a commonly used encryption technology in the field of privacy protection. Therefore, this paper constructs a blockchain privacy protection scheme based on ring signature. This solution built a privacy data storage protocol based on the ring signature on the elliptic curve, and used the complete anonymity of the ring signature to ensure the security of data and user identity privacy in blockchain applications. The correctness and safety proof analysis of the proposed scheme were also carried out.

computer science, information systems,telecommunications,engineering, electrical & electronic

S. Devidas,N. Rukma Rekha,Y. V. Subba Rao

DOI: https://doi.org/10.1007/s41870-023-01282-y

2023-05-25

International Journal of Information Technology

Abstract:The revolutionary technology blockchain is spreading into many applications because of its features like immutability, decentralization, verifiability, and security. One such application is an e-auction, where the buyer submits the bids to buy the products or services from the sellers. To make this process work, a trusted third party must host the e-auction to ensure the participants’ anonymity and the exchange’s fairness. However, the third party has access to critical information about the users. As a result, there are constant risks ranging from single-point failure to collusion attacks, and finding a totally trustworthy institution to serve such a role, in reality, is difficult. As a solution, blockchain can be considered as a potential trusted party that can be trusted for correctness and availability. But it does not provide identity privacy to its participants. So, a crypto primitive is necessary to handle the user identity privacy challenges on blockchain-based e-auctions, and one such primitive is a ring signature scheme. Although everlasting anonymity in ring signatures seems to benefit users, they cannot identify the message’s real signers. So, to protect user identity privacy and determine the message’s real signer in blockchain-based e-auctions, we propose an identity-verifiable ring signature scheme (IVRSS) in this article. This paper also carries out the correctness proof and security analysis of the proposed scheme.

Dimitrios Kasimatis,Sam Grierson,William J. Buchanan,Chris Eckl,Pavlos Papadopoulos,Nikolaos Pitropakis,Craig Thomson,Baraq Ghaleb

DOI: https://doi.org/10.48550/arXiv.2403.05271

2024-03-08

Cryptography and Security

Abstract:Decentralised identifiers have become a standardised element of digital identity architecture, with supra-national organisations such as the European Union adopting them as a key component for a unified European digital identity ledger. This paper delves into enhancing security and privacy features within decentralised identifiers by integrating ring signatures as an alternative verification method. This allows users to identify themselves through digital signatures without revealing which public key they used. To this end, the study proposed a novel decentralised identity method showcased in a decentralised identifier-based architectural framework. Additionally, the investigation assesses the repercussions of employing this new method in the verification process, focusing specifically on privacy and security aspects. Although ring signatures are an established asset of cryptographic protocols, this paper seeks to leverage their capabilities in the evolving domain of digital identities.

Christopher D. Clack,Nicolas T. Courtois

DOI: https://doi.org/10.48550/arXiv.1902.02609

2019-02-07

Cryptography and Security

Abstract:Distributed ledger and blockchain systems are expected to make financial systems easier to audit, reduce counter-party risk and transfer assets seamlessly. The key concept is a token controlled by a cryptographic private key for spending, and represented by a public key for receiving and audit purposes. Ownership transfers are authorized with digital signatures and recorded on a ledger visible to numerous participants. Several ways to enhance the privacy of such ledgers have been proposed. In this paper we study two major techniques to enhance privacy of token transfers with the help of improved cryptography: M\"obius and CryptoNote. The comparison is illuminating: both techniques use "ring signatures" and some form of "stealth addressing" or key derivation techniques, yet each does it in a completely different way. M\"obius is more recent and operates in a more co-operative way (with permission) and is not yet specified at a sufficiently detailed level. Our primary goal is to explore the suitability of these two techniques for improving the privacy of payments on cryptographic ledgers. We explain various conflicting requirements and strategic choices which arise when trying to conceal the identity of participants and the exact details of transactions in our context while simultaneously enabling fast final settlement of tokens with a reasonable level of liquidity. We show that in these systems, third-party observers see obfuscated settlement. We finish with a summary of explicit warnings and advice for implementors of such systems.

Xiaohua Wu,Hongji Ling,Huan Liu,Fangjian Yu

DOI: https://doi.org/10.1007/s12083-022-01317-4

2022-03-29

Abstract:The consortium blockchain has three challenges in terms of performance, security, and privacy when adopting the Practical Byzantine Fault Tolerance (PBFT) protocol. The throughput and scalability of consortium blockchain are focused on meanwhile the privacy protection can hardly be ignored. This work proposes a privacy-preserving multi-signature and hierarchical Byzantine consensus protocol. Specifically, the signature combines a ring signature and a Schnorr one to provide three levels of privacy protection. The consensus protocol layers the network nodes into different clusters, which overcomes the shortcomings of PBFT and Schnorr signature. The theoretical analysis proves the security and privacy of the protocol and expounds the application scenarios, and the efficiency evaluation shows that the signature verification speed is 6.28 times faster than the Schnorr scheme, and the consensus in a 250-nodes network is 51.3% faster than the Schnorr-based PBFT consensus.

computer science, information systems,telecommunications

Wenqian Shang,Yulong Gao,Xueting Chen

DOI: https://doi.org/10.1109/SNPD61259.2024.10673921

2024-07-05

Abstract:This paper presents a new blockchain scheme using a linkable ring signature algorithm based on lattice cryptography. This scheme counters quantum attacks on blockchain transaction signatures. The signature algorithm ensures correctness, anonymity, and unforgeability using trap generation and rejection sampling. It’s resilient to quantum attacks due to lattice cryptography’s hardness. Compared to other lattice-based algorithms, it offers reduced signature generation and verification time, minimized signature length, lower storage requirements, and better scalability. Implementing this scheme supports blockchain transaction security and privacy, promoting blockchain’s sustainable development and widespread application. This research enhances blockchain security against quantum attacks, paving the way for more secure and efficient blockchain-based apps.

Computer Science

Xuewang Zhang,Caijin Ye

DOI: https://doi.org/10.1007/s10586-021-03529-4

2022-01-10

Cluster Computing

Abstract:With the rapid development of permissioned blockchains, the problem of privacy leakage within permissioned blockchains is increasingly serious. In this paper, for the privacy problem in permissioned blockchains, a novel privacy protection method has been put forward. In this novel method, the ring signature is used to protect the privacy of the user in permissioned blockchains. On the other hand, the unconditional anonymity of ring signature may be abused maliciously by the adversary. Conditional anonymity is considered to improve the ring signature. Therefore, based on conditionally anonymous ring signature, permissioned blockchains privacy protection scheme has also been laid down. Furthermore, the effects of smart contract for transaction flows are considered. The asynchronous signing transaction process is proposed. The security of the scheme has been formally reduced to the Discrete Logarithm assumption. The comparison with the state-of-the-art and simulation experiment have also demonstrated that the proposed scheme is efficient and practical.

Xingkai Wang,Chunping Zhu,Zhen Liu

DOI: https://doi.org/10.3390/math12030491

IF: 2.4

2024-02-04

Mathematics

Abstract:The linkable ring signature supporting stealth addresses (SALRS) is a recently proposed cryptographic primitive, which is designed to comprehensively address the soundness and privacy requirements associated with concealing the identities of both the payer and payee in cryptocurrency transactions. However, concerns regarding the scalability of SALRS have been underexplored. This becomes notably pertinent in intricate blockchain systems where multiple cryptographic primitives operate concurrently. To bridge this gap, our work revisited and formalized the ideal functionality of SALRS within the universal composability (UC) model. This encapsulates all correctness, soundness, and privacy considerations. Moreover, we established that the newly proposed UC-security property for SALRS is equivalent to the concurrent satisfaction of signer-unlinkability, signer-non-slanderability, signer-anonymity, and master-public-key-unlinkability. These properties represent the four crucial game-based security aspects of SALRS. This result ensures the ongoing security of previously presented SALRS constructions within the UC framework. It also underscores their adaptability for seamless integration with other UC-secure primitives in complex blockchain systems.

mathematics

Xianji Cai,Yanli Ren,Xinpeng Zhang

DOI: https://doi.org/10.1109/access.2019.2962816

IF: 3.9

2020-01-01

IEEE Access

Abstract:A deletable blockchain has been proposed recently to change the immutability of the traditional blockchain. However, the users' identities and transaction contents are all public in the scheme, and the public data may reveal the users' privacy. In order to protect the privacy of the users, we propose a privacy-protected deletable blockchain based on the proof-of-space consensus mechanism, which does not rely on complex cryptographic tools or any trusted party. In order to satisfy full transparency and accountability in an anonymous environment, we use a traceable ring signature or a Pedersen commitment scheme to disclose the users' real identities or the real transaction contents respectively according to different deletion reasons. During the deletion process, we propose a linkable multi-signature scheme, which allows multiple users to generate a valid signature by using their one-time addresses as pseudonyms to protect their identity privacy. Moreover, the proposed multi-signature scheme can link two sub-signatures if they are generated by the same malicious user. Finally, we simulate the generation and deletion process of a block under the proof-of-space consensus mechanism and give the time of generating and deleting a block. The experimental results prove the efficiency and feasibility of our proposed scheme.

Zhen Liu,Khoa Nguyen,Guomin Yang,Huaxiong Wang,Duncan S. Wong

DOI: https://doi.org/10.1007/978-3-030-29959-0_35

2019-01-01

Abstract:First proposed in CryptoNote, a collection of popular privacy-centric cryptocurrencies have employed Linkable Ring Signature and a corresponding Key Derivation Mechanism (KeyDerM) for keeping the payer and payee of a transaction anonymous and unlinkable. The KeyDerM is used for generating a fresh signing key and the corresponding public key, referred to as a stealth address, for the transaction payee. The stealth address will then be used in the linkable ring signature next time when the payee spends the coin. However, in all existing works, including Monero, the privacy model only considers the two cryptographic primitives separately. In addition, to be applied to cryptocurrencies, the security and privacy models for Linkable Ring Signature should capture the situation that the public key ring of a signature may contain keys created by an adversary (referred to as adversarially-chosen-key attack), since in cryptocurrencies, it is normal for a user (adversary) to create self-paying transactions so that some maliciously created public keys can get into the system without being detected .In this paper, we propose a new cryptographic primitive, referred to as Linkable Ring Signature Scheme with Stealth Addresses (SALRS), which comprehensively and strictly captures the security and privacy requirements of hiding the payer and payee of a transaction in cryptocurrencies, especially the adversarially-chosen-key attacks. We also propose a lattice-based SALRS construction and prove its security and privacy in the random oracle model. In other words, our construction provides strong confidence on security and privacy in twofolds, i.e., being proved under strong models which capture the practical scenarios of cryptocurrencies, and being potentially quantum-resistant. The efficiency analysis also shows that our lattice-based SALRS scheme is practical for real implementations.

Meng-Jun Qin,Yun-Lei Zhao,Zhou-Jun Ma

DOI: https://doi.org/10.1007/s11390-018-1838-z

2018-01-01

Abstract:Bitcoin has gained its popularity for almost 10 years as a "secure and anonymous digital currency". However, according to several recent researches, we know that it can only provide pseudonymity rather than real anonymity, and privacy has been one of the main concerns in the system similar to Bitcoin. Ring signature is a good method for those users who need better anonymity in cryptocurrency. It was first proposed by Rivest et al. based upon the discrete logarithm problem (DLP) assumption in 2006, which allows a user to sign a message anonymously on behalf of a group of users even without their coordination. The size of ring signature is one of the dominating parameters, and constant-size ring signature (where signature size is independent of the ring size) is much desirable. Otherwise, when the ring size is large, the resultant ring signature becomes unbearable for power limited devices or leads to heavy burden over the communication network. Though being extensively studied, currently there are only two approaches for constant-size ring signature. Achieving practical constant-size ring signature is a long-standing open problem since its introduction. In this work, we solve this open question. We present a new constant-size ring signature scheme based on bilinear pairing and accumulator, which is provably secure under the random oracle (RO) model. To the best of our knowledge, it stands for the most practical ring signature up to now.

Junke Duan,Shihui Zheng,Wei Wang,Licheng Wang,Xiaoya Hu,Lize Gu

DOI: https://doi.org/10.1109/tdsc.2024.3367888

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Ring Confidential Transactions (RingCT) is a typical privacy-preserving protocol for blockchain, which is used for the most popular anonymous cryptocurrency Monero in recent years. RingCT provides the user's identity anonymity based on the linkable ring signature. At the cost of that, the transaction size is increased linearly to the involved users. In this article, we aim to overcome this inefficient aspect of RingCT by introducing the linkable threshold ring signature (LTRS). We first propose a construction of threshold ring signatures for homomorphic cryptosystems, and present an efficient instantiation based on the intractability assumption of the discrete logarithm problem. Based on this framework, an efficient LTRS scheme and a novel construction of the RingCT protocol are presented. Our proposed RingCT protocol enables multiple payers to co-construct an anonymous transaction without revealing their secret account keys, and it is more concise under multiple input accounts. For a transaction with a ring size of 100 and the input accounts number of 64, the communication overhead is about 4% of the original RingCT protocol.

computer science, information systems, software engineering, hardware & architecture

Zhiwei Wang,Jiaxing Fan

DOI: https://doi.org/10.1109/tcc.2020.2974954

IF: 5.697

2020-01-01

IEEE Transactions on Cloud Computing

Abstract:Edge computing can process data at the network edge rather than in the remote cloud. To protect the security of the collected data, blockchain can be used in edge computing. Any request sent from an edge server requesting data storage is a transaction added into the blockchain, which should include the data owners' signature. For protecting the privacy of data owners, a threshold ring signature can be utilized for the blockchain. In this article, we propose a flexible threshold ring signature scheme in chronological order that has two advantages for solving the update problem and chronological problem in practice. Our scheme is a nontrivial extension of Yuen et al.'s signature scheme and has three security properties: unforgeability, anonymity, and chronological sorting. We prove our scheme without random oracles and test our scheme over the Intel Edison development platform simulating practical edge servers.

computer science, information systems, theory & methods

Rui Zhang,Rui Xue,Ling Liu

DOI: https://doi.org/10.1145/3316481

IF: 16.6

2020-05-31

ACM Computing Surveys

Abstract:Blockchain offers an innovative approach to storing information, executing transactions, performing functions, and establishing trust in an open environment. Many consider blockchain as a technology breakthrough for cryptography and cybersecurity, with use cases ranging from globally deployed cryptocurrency systems like Bitcoin, to smart contracts, smart grids over the Internet of Things, and so forth. Although blockchain has received growing interests in both academia and industry in the recent years, the security and privacy of blockchains continue to be at the center of the debate when deploying blockchain in different applications. This article presents a comprehensive overview of the security and privacy of blockchain. To facilitate the discussion, we first introduce the notion of blockchains and its utility in the context of Bitcoin-like online transactions. Then, we describe the basic security properties that are supported as the essential requirements and building blocks for Bitcoin-like cryptocurrency systems, followed by presenting the additional security and privacy properties that are desired in many blockchain applications. Finally, we review the security and privacy techniques for achieving these security properties in blockchain-based systems, including representative consensus algorithms, hash chained storage, mixing protocols, anonymous signatures, non-interactive zero-knowledge proof, and so forth. We conjecture that this survey can help readers to gain an in-depth understanding of the security and privacy of blockchain with respect to concept, attributes, techniques, and systems.

computer science, theory & methods

FY Miao,Y Xiong,SB Yang,XF Wang

IF: 1.019

2006-01-01

Chinese Journal of Electronics

Abstract:Ring signature is a new kind of signer-ambiguous signature, in which the real signer randomly designates a set of possible signers including itself, and generates totally by itself the ring signature only with its private key and public keys of other possible signers. The signature includes no definite information that identifies the real signer. The paper extends the general notion of ring signature and proposes a provable encrypted ring signature scheme. In the scheme, the real signer produces a signer-ambiguous signature with self-provable evidence and can uniquely prove through the evidence that it is the authentic signer if necessary. Furthermore, by an identity-based encryption algorithm from bilinear pairings the ring signature is encrypted to guarantee that only the right verifier can verify the signature. A variant of the scheme is also given in the paper. Analysis shows that the provable encrypted ring signature is confidential, self-provable, signer-ambiguous and secure. The proposed scheme can be applied in many applications such as e-voting, e-commerce etc.

Chao Yuan,Mi-xue Xu,Xue-ming Si

DOI: https://doi.org/10.1155/2017/8295275

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:With the rise of Bitcoin, blockchain which is the core technology of Bitcoin has received increasing attention. Privacy preserving and performance on blockchain are two research points in academia and business, but there are still some unresolved issues in both respects. An aggregate signature scheme is a digital signature that supports making signatures on many different messages generated by many different users. Using aggregate signature, the size of the signature could be shortened by compressing multiple signatures into a single signature. In this paper, a new signature scheme for transactions on blockchain based on the aggregate signature was proposed. It was worth noting that elliptic curve discrete logarithm problem and bilinear maps played major roles in our signature scheme. And the security properties of our signature scheme were proved. In our signature scheme, the amount will be hidden especially in the transactions which contain multiple inputs and outputs. Additionally, the size of the signature on transaction is constant regardless of the number of inputs and outputs that the transaction contains, which can improve the performance of signature. Finally, we gave an application scenario for our signature scheme which aims to achieve the transactions of big data on blockchain.

Wangze Ni,Peng Cheng,Lei Chen,Xuemin Lin

DOI: https://doi.org/10.1145/3448016.3452825

2021-01-01

Abstract:In privacy-preserving blockchain systems, to protect a sender's identity of a transaction in privacy-preserving blockchain systems, ring signature (RS) schemes have been widely implemented, which allow users to obscure consumed tokens via including "mixin'' (i.e., chaff tokens). However, recent works point out that existing RS schemes are vulnerable to the "chain-reaction'' analysis, where adversaries eliminate mixins of RSs by utilizing the fact that each token can only be consumed in a RS. By "chain-reaction'' analysis, adversaries can find some definite token-RS pair sets (DTRSs) to confirm the sender's identity of a RS. Besides, the existing RS schemes do not consider the diversity of mixins when generating a RS. Moreover, since the transaction fee is proportional to the number of mixins, a use is motivated to use a RS with the minimum number of mixins. In this paper, we formally define the diversity-aware mixins selection (DA-MS) problem, which aims to generate a RS with the minimum number of mixins satisfying the constraints of its diversity and the anonymity of other RSs. We prove the DA-MS problem is $\#P$ and propose a breadth-first search algorithm to get the optimal solution. Furthermore, to efficiently solve the DA-MS problem, we propose two practical configurations and two approximation algorithms with theoretic guarantees. Through comprehensive experiments on real data sets as well as synthetic data sets, we illustrate the effectiveness and the efficiency of our solutions.

Rui Mu,Bei Gong,Zhenhu Ning,Jiangjiang Zhang,Yang Cao,Zheng Li,Wei Wang,Xiaoping Wang

DOI: https://doi.org/10.1002/cpe.6545

2021-01-01

Abstract:Blockchain has decentralization characteristics and requires more targeted security schemes to protect user privacy. In contrast, existing signature schemes have many high‐complexity operations and impose an enormous computational burden on wireless nodes. This article proposes a light‐weighted identity privacy scheme for blockchain‐based on edge computing. We construct linkable identity privacy and non‐linkable identity privacy, which can resist collusion attacks while virtually guaranteeing blockchain nodes' identity privacy. Since edge computing offloads heavily, the proposed scheme has lower computational complexity than the existing techniques.

Chunping Zhu,Xingkai Wang,Zhen Liu

DOI: https://doi.org/10.1007/978-981-97-0942-7_3

2024-01-01

Abstract:In recent years, the rapid development of blockchain-based applications, such as cryptocurrencies, has raised concerns about privacy preservation within the blockchain community. One widely adopted technique for privacy preservation is the use of Stealth Address, which serves as a crucial component of Monero’s Ring Confidential Transaction (RingCT) protocol. Liu et al. (EuroS &P’19) introduced and formalized a new signature variant called the Key-Insulated and Privacy-Preserving Signature Scheme with Publicly Derived Public Key (PDPKS), and gave a systematically definition on the Stealth Address in both syntax and security definition. This signature variant goes beyond defining the necessary functionality but also capturing safety and privacy requirements, by introducing two game-based security definitions respectively. Rather than in a standalone mode, PDPKS protocol is typically executed alongside other secure components within a complex blockchain system to achieve various security objectives. However, achieving security of a comprehensive system requires additional analysis on the entire system, considering mutual impacts among protocols. Hence, it is crucial to introduce a unified and systematic definition that can describe the security in a universally composable (UC) manner. This paper focuses on formalizing the security of PDPKS in the UC framework, which provides a stronger security definition and ensures that the protocol can be designed and analyzed modularly, so that any specific constructions that satisfy the security requirements defined in the proposed UC model can be securely used as building blocks in complex blockchain systems, without any security concerns. To have a concrete construction that satisfies the UC-security proposed in this paper, we conducted an analysis of the conventional game-based security definitions put forth by Liu et al., and proved that the equivalence between the UC-security of PDPKS and the simultaneous satisfaction of the two game-based security definitions. As a result, this implies that the construction proposed by Liu et al. is a UC-secure PDPKS construction. Besides, the proved equivalence also contributes to a general framework wherein any PDPKS construction that satisfies Liu et al.’s security definition will also satisfies UC-security. This framework enables the use of these PDPKS constructions as secure building blocks in the design and implementation of UC-secure blockchain systems.

Shuhui Zhang,Ruiyao Zhou,Lianhai Wang,Shujiang Xu,Wei Shao

DOI: https://doi.org/10.3390/electronics12245010

IF: 2.9

2023-12-15

Electronics

Abstract:In recent years, the rapid development of blockchain technology has facilitated the transfer of value and asset exchange between different blockchains. However, achieving interoperability among various blockchains necessitates the exploration of cross-chain technology. While cross-chain technology enables asset flow between different blockchains, it also introduces the risk of identity privacy leakage, thus posing a significant threat to user security. To tackle this issue, this article proposes a cross-chain privacy protection scheme that leverages ring signature and relay chain technology. Specifically, this scheme utilizes RCROSS contracts based on ring signatures to handle cross-chain transactions, thereby ensuring the privacy of both parties involved in the transaction. This cross-chain solution demonstrates practicality and efficiency in facilitating cross-chain asset trading. Furthermore, it effectively combats reuse attacks and man-in-the-middle attacks at the application layer while also providing resistance against denial-of-service attacks at the network layer. To validate the proposed cross-chain solution, we conducted tests by constructing a specific cross-chain scenario and by focusing on the natural gas consumption values generated by the RCROSS contract function used in the application chain. The findings indicate that our proposed solution is highly practical in safeguarding the identity privacy of transaction participants. This article's framework guarantees reliability, security, and efficiency in cross-chain asset transactions. By incorporating ring-based signatures and relay chain technology, users can confidently protect their identity privacy, thus ensuring secure and smooth cross-chain transactions.

engineering, electrical & electronic,computer science, information systems,physics, applied