Kota Chin,Keita Emura,Kazumasa Omote,Shingo Sato

DOI: https://doi.org/10.1109/blockchain55522.2022.00062

2024-05-01

IEICE Transactions on Information and Systems

Abstract:Kota CHIN,Keita EMURA,Shingo SATO,Kazumasa OMOTE, Vol.E107-D, No.5, pp.615-624 In an open-bid auction, a bidder can know the budgets of other bidders. Thus, a sealed-bid auction that hides bidding prices is desirable. However, in previous sealed-bid auction protocols, it has been difficult to provide a "fund binding" property, which would guarantee that a bidder has funds more than or equal to the bidding price and that the funds are forcibly withdrawn when the bidder wins. Thus, such protocols are vulnerable to a false bidding. As a solution, many protocols employ a simple deposit method in which each bidder sends a deposit to a smart contract, which is greater than or equal to the bidding price, before the bidding phase. However, this deposit reveals the maximum bidding price, and it is preferable to hide this information. In this paper, we propose a sealed-bid auction protocol that provides a fund binding property. Our protocol not only hides the bidding price and a maximum bidding price, but also provides a fund binding property, simultaneously. For hiding the maximum bidding price, we pay attention to the fact that usual Ethereum transactions and transactions for sending funds to a one-time address have the same transaction structure, and it seems that they are indistinguishable. We discuss how much bidding transactions are hidden. We also employ DECO (Zhang et al., CCS 2020) that proves the validity of the data to a verifier in which the data are taken from a source without showing the data itself. Finally, we give our implementation which shows transaction fees required and compare it to a sealed-bid auction protocol employing the simple deposit method. Publication Date: 2024/05/01

computer science, information systems, software engineering

XIAO Qing-hua,PING Ling-di,PAN Xue-zeng

2005-01-01

Abstract:The protection of bidder privacy and the prevention of bidder default are the keys in the designing of secure auction protocol. But up to now, the research on both of them is still very weak. Aiming at this drawback, this paper designed a new secure and efficient auction protocol. Using the digital signature technology and bit commitment protocol, it not only guarantees the non-repudiation and anonymity of bidders, but also ensures that nobody can manipulate others in the whole auction And also, this protocol achieves the valuable properties of bid secrecy and verifiability. Even when malicious bidders collude with auctioneers, it is still secure and valid. More importantly, this protocol supports the second-price principle and optimal distribution of goods. Compared with previous works, this protocol provides better extensibility and higher efficiency, and is suitable for large-scale distributed auction.

Yanjiao Chen,Xin Tian,Qian Wang,Jianlin Jiang,Minghui Li,Qian Zhang

DOI: https://doi.org/10.1109/tdsc.2020.3045449

2022-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:With the prosperity of wireless and mobile communications, the allocation of wireless resources, e.g., spectrum channels, femtocell access permissions, and resource blocks of D2D connections, has become a matter of great concern, which leads to the emergence and popularity of electronic auction. However, the lack of privacy protection and fairness guarantee in the existing market has posed great obstacles to user participation in electronic auctions. Without privacy protection, users will be worried about the unauthorized exposure of their commercial secrets, which may hurt their payoffs in the long run. Without fairness guarantee, selfish/malicious users may prematurely abort the auction to avoid unsatisfactory payment, thus causing loss to honest users and wasting system resources. Furthermore, the lack of fairness guarantee will incur an exchange dilemma, where mutually distrusting parties may refuse to initiate the goods/money exchange, hindering the market-clearing of auctions. Although extensive efforts have been made to develop privacy-preserving auction mechanisms for wireless markets, the fairness issue, to the best of our knowledge, has never been taken into account in the context of auctions. Moreover, a truly practical framework that can be applied to most mainstream auction formats is also missing in the literature. In this article, we present the first general framework, named SAFE, for representative auctions in (but not limited to) wireless markets. SAFE achieves a wide range of security goals with much higher efficiency than existing solutions. Furthermore, SAFE ensures auction fairness in a trust-free manner by developing a full set of carefully-designed modular protocols that can be easily adapted to any auction format. We implement the SAFE framework over a simulated Ethereum network. Extensive experimental results confirm that SAFE can indeed achieve high economic efficiency in terms of social welfare and participation satisfaction at very low computation and communication overheads.

Qh Xiao,Ld Ping

2004-01-01

Abstract:Electronic auction is one of the basic businesses in electronic commerce. The protection of bidder privacy and the prevention of bidder default are the key problems need to be urgently solved At the same time, the study of general auction protocol, which can be applied in any type of auction, is still very weak. Aiming at these shortcomings, this paper designed a new secure auction protocol in the case of protecting bidders. Using the digital signature and encryption technology, this proposed protocol not only guarantees the nonrepudiation and anonymity of bidders, but also ensures that nobody can manipulate other bidders in the whole auction. And also, this protocol achieves the valuable property of bid secrecy and verifiability. Even when malicious bidders collude with auctioneers, it is still secure and valid. Compared with previous works, this protocol provides better generality, and is suitable for large-scale distributed auction.

Qian Zhang,Yong Yu,Huilin Li,Jiguo Yu,Lei Wang

DOI: https://doi.org/10.1016/j.ins.2023.02.069

IF: 8.1

2023-03-02

Information Sciences

Abstract:Auction, widely used by firms and governments, has facilitated trillions of dollars in the world economy. However, when price is the only factor determining the winner, how to guarantee the trustworthiness of the auction outcomes, and at the same time preserve the privacy of losing bidders is a challenging issue. In this paper, to address this issue, we present a sealed-bid auction protocol with privacy preserving and public verifiability atop blockchain. No bidder is able to repudiate or change any bidding to outbid others and all public information comes with proof that even observers are able to validate the auction. Proofs post along the way to validate biddings and identify the winner are in the form of group elements with communication complexity O(log⁡(nm)) , n,m denoting the upper bound bit length of the bidding price and the number of bidders respectively. The logarithmic complexity significantly reduces the communication cost and makes it practical for large-scale auction. Moreover, our protocol can be easily extended to any type of ordinal-price sealed-bid auction such as second-price with privacy preserving. We provide detailed security proofs or analysis of the required security goals. The evaluation of time cost in off-chain operations and gas cost in on-chain functions demonstrate the practicality of our protocol in real-world applications.

computer science, information systems

Honglei Li,Weilian Xue

DOI: https://doi.org/10.1155/2021/5523394

IF: 1.968

2021-05-19

Security and Communication Networks

Abstract:e-Auction improves the efficiency of bid transaction. However, the protection of bidders’ privacy, transaction fairness and verifiability, transaction data security, high cost of third-party auction center, and other issues have attracted more attention. According to the transaction process and basic principles of the sealed auction, we explored the problems existing in the current sealed-bid e-auction schemes. Based on the blockchain technology, we proposed a sealed-bid e-auction scheme with smart contract technology, Bulletproofs zero-knowledge proof protocols, and Pedersen commitment algorithm. The proposed scheme constructed an auction mechanism without the third-party auctioneer so as to restrict the behaviors of auction parties for the sake of auction security, reliability, fairness, and privacy protection. Compared with the related sealed e-auction schemes based on blockchain technologies in six metrics, we conducted the experiment to show that the proposed scheme protected the bid information from leakage well and successfully verified the winning bid price and the related bidder by all transaction participants without the third-party auctioneer.

computer science, information systems,telecommunications

Zijian Zhang,Xin Lu,Meng Li,Jincheng An,Yang Yu,Hao Yin,Liehuang Zhu,Yong Liu,Jiamou Liu,Bakh Khoussainov

DOI: https://doi.org/10.1109/tdsc.2024.3353540

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:The sealed-bid auction enables bidders to secretly send their bids to the auctioneer, which compares all bids and publishes the winning one on the bid-opening day. This type of auction is friendly for protecting the bid privacy, and sufficiently fair for all bidders if the auctioneer acts faithfully. Unfortunately, the auctioneer may not always be trustworthy. The auctioneer has the ability to deliberately leak any bid information to a part of bidders for raising the final winning price based on the investigation. Meanwhile, the auctioneer can appoint any bidder as the winner, as long as the bidder accepts a higher winning price than the current highest bid. Since bidders cannot obtain any bid information from others, to the best of our knowledge, it is difficult to prevent bid leakage from the auctioneer, and support bidders to verify the bid comparison results without disclosing the winning bid, simultaneously. To alleviate these problems, we first construct a homomorphic encryption(HE)-based bid comparison circuit. All bidders can directly compute a cipher of the winning bid by using this circuit; hence, the winning bid does not need to be exposed to all bidders. Then, we propose a blockchain-based sealed-bid scheme (BSS) by integrating the circuit with commitment and zero-knowledge proof. The auctioneer only obtains the commitments of bids before the bid-opening day, and he has to prove that the winner's bid is the same as the plaintext of the bidders' computed cipher. Thus, the auctioneer can neither leak the bid information nor publish a higher winning price during in the auction. Detailed performance analysis shows that the computational complexity of BSS is linear with the binary length of bids.

computer science, information systems, software engineering, hardware & architecture

Jichen Li,Yuanchen Tang,Jing Chen,Xiaotie Deng

2024-10-14

Abstract:Sealed-bid auctions play a crucial role in blockchain ecosystems. Previous works introduced viable blockchain sealed-bid auction protocols, leveraging timed commitments for bid encryption. However, a crucial challenge remains unresolved in these works: Who should bear the cost of decrypting these timed commitments? This work introduces a timed commitment outsourcing market as a solution to the aforementioned challenge. We first introduce an aggregation scheme for timed commitments, which combines all bidders' timed commitments into one while ensuring security and correctness and allowing a varying number of bidders. Next, we remodel the utility of auctioneers and timed commitment solvers, developing a new timed commitment competition mechanism and combining it with the sealed-bid auction to form a two-sided market. The protocol includes bid commitment collection, timed commitment solving, and payment. Through game-theoretical analysis, we prove that our protocol satisfies Dominant Strategy Incentive Compatibility (DSIC) for bidders, Bayesian Incentive Compatibility (BIC) for solvers, and achieves optimal revenue for the auctioneer among a large class of mechanisms. Finally, we prove that no mechanism can achieve positive expected revenue for the auctioneer while satisfying DSIC and Individual Rationality (IR) for both bidders and solvers.

Computer Science and Game Theory

Mingwu Zhang,Mingxuan Yang,Gang Shen

DOI: https://doi.org/10.1016/j.sysarc.2022.102619

IF: 5.836

2022-08-01

Journal of Systems Architecture

Abstract:Electronic auctions are becoming more and more popular in business activities, which provide the professionals with competitive prices for their products, pitching the suppliers directly against each other to allow suppliers to bid online against a published specification. In sealed-bid e-auctions, bidders send sealed-bid envelopes to auctioneer and auctioneer only can open them after a certain period of time to announce the highest bidder. In order to solve the issue of the opacity of whole sealed-bid auction process, researchers try to solve this problem by incorporating the blockchain technique into the e-auction systems with the properties of unforgeable transaction and public ledger of the blockchain. However, since the auctioneer might open the bid envelope before the deadline of the auction, it can tamper the bid price by colluding with malicious bidders for personal profit. In this paper, we propose a time-released blockchain-based sealed-bid e-auction scheme. We use time-lock encryption to ensure that the bidders’ bid data will not be available to anyone until a specified time, thus guaranteeing the security of the bidders’ data. At the same time, we use smart contracts for auction verification, which further improves the security of the scheme and avoids tampering by malicious auctioneers. In addition, we propose a secure sealed-bid e-auction scheme with fair arbitration (namely, SSBAS-FA), that is based on time-released blockchain to provide a fair arbitration mechanism in punishing malicious bidders. We give the deployment of a time-released blockchain that eliminates the demand of the trusted third party to perform the validation of the smart contract. We provide the fair arbitration for the bidder and auctioneer. The security analysis and performance evaluation indicate that our scheme is secure, fair and efficient in sealed-bid e-auction system.

computer science, software engineering, hardware & architecture

Shuangke Wu,Yanjiao Chen,Qian Wang,Minghui Li,Cong Wang,Xiangyang Luo

DOI: https://doi.org/10.1109/tifs.2018.2883275

IF: 7.231

2019-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Auction is an effective way to allocate goods or services to bidders who value them the most. The rapid growth of e-auctions facilitates online transactions but poses new and distinctive challenges. It is difficult to establish trust among sellers, buyers, and auctioneers without centralized auction websites or platforms (the auctioneer) which collect bids and derive the auction results. However, these third parties may be untrustworthy, and malicious sellers or buyers may refuse to deliver the goods or payment according to the protocol. Moreover, the open and anonymous online environment may stimulate auction participants to form collusion coalitions to rig the auction and reap unfair profit. Many auction designs have been proposed to address these concerns, but they fall short of simultaneously achieving decentralization (i.e., held without a trusted third utility), strong consensus (i.e., the establishment of trust), collusion resistance, and practical implementation. We present CReam, the first decentralized collusion-resistant e-auction system that is implemented with smart contract on the blockchain. With the carefully designed smart auction contract, mutually distrustful and rational sellers and buyers are stimulated to operate properly, hence transact safely without trusted third parties. The auction mechanism in the smart contract can effectively prevent bidder collusion and realize economic robustness, i.e., truthfulness. We implement a fully functional CReam on the Ethereum network. Extensive experimental results confirm that CReam can greatly reduce the probability of collusion and achieve an approximate optimal revenue at a low cost of contract execution.

Jie Xiong,Qi Wang

DOI: https://doi.org/10.5121/ijait.2019.9101

2019-04-13

Abstract:The Ethereum blockchain as a decentralized platform is so successful that many applications deployed on it. However, for the inherent transparency properties and the lack of privacy, deploying a financial application on top of it is always a challenge. In this paper, we tackle this challenge and propose an anonymous sealed-bid auction protocol based on time-released encryption atop Consortium Blockchain. We adopt a strict digital certificate-based identity mechanism of the consortium blockchain to permit legitimate participants, and utilize the blind signature based on elliptic curve technology to allowing anonymous participation. Moreover, a timed release public key encryption algorithm is adopted to encrypt bids and prevent auctioneer from colluding with bidders. This is completely different from the method (zero-knowledge proof) used in other papers to prevent collusion between auctioneer and bidder. We provide a specific analysis of our protocol, which shows that our protocol meets anonymity and applicability.

Cryptography and Security

Qh Xiao,Ld Ping,Xz Pan

DOI: https://doi.org/10.1109/ICECT.2004.1319760

2004-01-01

Abstract:The Internet is a prime vehicle for supporting electronic auction, a primitive pricing mechanism for setting price. But up to now, the study of efficient and secure M+1(st) price auction is still very weak. Aiming at this drawback this paper presented a new solution for M+1(st) price auction in the case of protecting bidders. Employing the method of binary search, this scheme resolves the winners and the winning price synchronously and rapidly. If necessary, all auctioneers can collaborate with each other to open the winners' bidding prices without leaking any privacy of losers. Comparison in terms of communication cost between our proposed scheme and others was given at the end of the paper. The result shows that our solution will consume less bandwidth in communication.

Xiao Qing-hua,Ping Ling-di,Pan Xue-zeng

DOI: https://doi.org/10.1109/icect.2004.1319760

2004-01-01

Abstract:The Internet is a prime vehicle for supporting electronic auction, a primitive pricing mechanism for setting price. But up to now, the study of efficient and secure M+1/sup st/ price auction is still very weak. Aiming at this drawback, this paper presented a new solution for M+1/sup st/ price auction in the case of protecting bidders. Employing the method of binary search, this scheme resolves the winners and the winning price synchronously and rapidly. If necessary, all auctioneers can collaborate with each other to open the winners' bidding prices without leaking any privacy of losers. Comparison in terms of communication cost between our proposed scheme and others was given at the end of the paper. The result shows that our solution consumes less bandwidth in communication.

Biwen Chen,Xue Li,Tao Xiang,Peng Wang

DOI: https://doi.org/10.1016/j.jisa.2021.103082

IF: 4.96

2022-03-01

Journal of Information Security and Applications

Abstract:Electronic auction (e-auction) has become one of the most popular approaches to allocate resources or services in contemporary society because of removing physical limitations of traditional auctions. The rapid expansion of e-auction enhances work efficiency but incurs some new and distinctive challenges such as low-robustness, data privacy, and lack of trust. To address the above concerns, various auction designs have been proposed by researchers from the academic and industrial circles. However, most of them fail in simultaneously achieving decentralization (i.e. auctioneer-free), privacy-preserving (i.e. bids privacy), collusion-resistance, and secure-channel free. In this paper, we present an effective smart contract-based verifiable privacy-preserving sealed-bid reverse auction scheme, which not only has no need for trusted third parties, but also achieves robustness and privacy protection of losing bids even in the face of overwhelming collusion. In this scheme, the central auctioneer is replaced with some carefully designed smart contracts for decentralization, while zero-knowledge proof and anonymous veto networks are used to avoid the secret communication channel, support the public verifiability and detect the malicious behaviors of bidders. More practically, the complexity of the designed scheme is independent of the number of bidders. Finally, we implement a prototype of our design based on a locally simulated Ethereum test network. The extensive experimental results demonstrate the scheme is the high efficiency and practicality.

computer science, information systems

Marcel Antal,Mirela Prata,I. Salomie,T. Cioara,Claudia Pop,I. Anghel

DOI: https://doi.org/10.1109/ICCP51029.2020.9266180

2020-09-03

Abstract:This paper addresses the problem of the traditional online auctions by proposing an Ethereum based implementation for three of the most popular auctions: English, Dutch, First-price sealed-bid (FPSB). Such centralized systems are subjects to malicious attacks, unreliable third-party for payment module or repudiation of bids. We present a set of properties that advantages a blockchain auction, which tackles the drawbacks of a traditional one. Furthermore, we define smart contracts for expressing the auctions based on strict rules regarding the role of the participants and stage delimitation. While English and Dutch auction have a public character, the sealed bids from a FPSB can be questioned. The proposed solution incorporates the Merkle proof algorithm for honest verification of these offers. The experimental results show that a Dutch auction is more suitable for sellers, while an English auction for bidders in terms of transaction fees. Based on the behavior of each type of auction, the solution is exemplified by an English auction in the real-estate field, including a protocol for storing data off-chain.

Computer Science

Jan Christoph Schlegel,Akaki Mamageishvili

DOI: https://doi.org/10.48550/arXiv.2103.16681

2022-07-17

Abstract:Second-price auctions with deposits are frequently used in blockchain environments. An auction takes place on-chain: bidders deposit an amount that fully covers their bid (but possibly exceeds it) in a smart contract. The deposit is used as insurance against bidders not honoring their bid if they win. The deposit, but not the bid, is publicly observed during the bidding phase of the auction. The visibility of deposits can fundamentally change the strategic structure of the auction if bidding happens sequentially: Bidding is costly since deposit are costly to make. Thus, deposits can be used as a costly signal for a high valuation. This is the source of multiple inefficiencies: To engage in costly signalling, a bidder who bids first and has a high valuation will generally over-deposit in equilibrium, i.e.~deposit more than he will bid. If high valuations are likely there can, moreover, be entry deterrence through high deposits: a bidder who bids first can deter subsequent bidders from entering the auction. Pooling can happen in equilibrium, where bidders of different valuations deposit the same amount. The auction fails to allocate the item to the bidder with the highest valuation.

Computer Science and Game Theory,Theoretical Economics

Maged hamada Ibrahim

DOI: https://doi.org/10.48550/arXiv.1211.2875

2012-11-13

Abstract:In an electronic auction protocol, the main participants are the seller, a set of trusted auctioneer(s) and the set of bidders. In this paper we consider the situation where there is a seller and a set of n bidders intending to come to an agreement on the selling price of a certain good. Full private or bidder-resolved auction means that this agreement is reached without the help of trusted parties or auctioneers. Therefore, only the seller and the set of bidders are involved, the role of the auctioneers becomes obsolete in this case. <a class="link-external link-http" href="http://property.We" rel="external noopener nofollow">this http URL</a> propose a new technique for the design of a full private sealed-bid auction protocol.

Cryptography and Security,Computers and Society

Da-Wei Zhou Da-Wei Zhou,Su-Zhen Cao Da-Wei Zhou,Xiao Zhao Su-Zhen Cao,Dan-Dan Xing Xiao Zhao,Zheng Wang Dan-Dan Xing

DOI: https://doi.org/10.53106/199115992024023501005

2024-02-01

電腦學刊

Abstract:To solve the problems of existing e-auction protocols such as semi-trustworthiness of outsourced third parties, collusive attacks among participants, unsatisfactory decentralized structure, and inability of public verification, we propose an efficient first-price sealed e-auction protocol under a secure multi-party computational malicious model. First, the protocol combines the additive homomorphism of the ElGamal cryptographic algorithm to achieve a decentralized structure and eliminate the problem of semi-trustworthiness of outsourced third parties; it uses (n, n) threshold encryption and decryption techniques to solve the problem of collusion attacks among participants and uses Hash-based Message Authentication Code (HMAC) technology to achieve public verifiability of auction results. Additionally, the protocol proposes a method to quickly find the maximum value of the data encoding, which can avoid multiple processing of confidential data and thus effectively reduce the number of communication rounds. The combination of zero-knowledge proof and ideal/realistic simulation paradigm proves that the protocol in this paper is resistant to up to n-1 party collusion attacks and satisfies the security of the secure multi-party computational malicious model. Finally, after theoretical analysis and simulation experiments, the protocol not only satisfies higher security performance but also has greater overall operational efficiency. &nbsp;

Menelaos Kokaras,Magda Foti

DOI: https://doi.org/10.1016/j.bcra.2023.100133

2023-02-01

Abstract:In order to preserve privacy in a blockchain ecosystem, the main objective is to keep a transaction&#x27;s data private, such as the sender, the receiver, and the amount transferred. The current work studies the cryptographic tools commonly used to achieve this type of privacy, primarily focusing on the Ethereum blockchain. Such tools usually require many computational and storage resources, leading to additional fees. An anonymous auction protocol was developed as a case study to explore these costs, where hiding the identity and the amount of the bids utilizes a variety of cryptographic primitives. The proposed implementation was compared against three sealed-bid auction protocols, which utilize similar cryptographic tools for preserving privacy throughout the auction process. The results show that providing an additional level of anonymity, such as hiding someone&#x27;s identity, can increase the gas cost significantly, up to 2.5 times, depending on the choice of the cryptographic tools, which determine the usage of the blockchain&#x27;s storage and computational resources. By adjusting the level of decentralization on the application level through moving some operations off-chain and maintaining the role of the auctioneer, we show that we can maintain anonymity while reducing the gas cost by 40%.