Yalin Chen,Jue-Sam Chou,Hung-Min Sun,Ming-Hsun Cho

DOI: https://doi.org/10.1016/j.elerap.2011.06.002

IF: 6

2011-01-01

Electronic Commerce Research and Applications

Abstract:Untraceable electronic cash is an attractive payment tool for electronic-commerce because its anonymity property can ensure the privacy of payers. However, this anonymity property is easily abused by criminals. In this paper, several recent untraceable e-cash systems are examined. Most of these provide identity revealing only when the e-cash is double spent. Only two of these systems can disclose the identity whenever there is a need, and only these two systems can prevent crime. We propose a novel e-cash system based on identity-based bilinear pairing to create an anonymity revocation function. We construct an identity-based blind signature scheme, in which a bank can blindly sign on a message containing a trustee-approved token that includes the user's identity. On demand, the trustee can disclose the identity for e-cash using only one symmetric operation. Our scheme is the first attempt to incorporate mutual authentication and key agreement into e-cash protocols. This allows the proposed system to attain improvement in communication efficiency when compared to previous works.

Lingyue Zhang,Huilin Li,Yannan Li,Yong Yu,Man Ho Au,Baocang Wang

DOI: https://doi.org/10.1016/j.future.2019.05.081

IF: 7.307

2019-12-01

Future Generation Computer Systems

Abstract:<p>Cryptocurrencies, led by bitcoin launched in 2009, have obtained wide attention in recent years. Anonymous cryptocurrencies are highly essential since users need to preserve their privacy when conducting transactions. However, some users might misbehave with the cover of anonymity such as rampant trafficking or extortion. Thus, it is important to balance anonymity and accountability of anonymous cryptocurrencies. In this paper, we address this issue by proposing a linkable group signature for signing cryptocurrency transactions, which can be used to trace a payer's identity in consortium blockchain based anonymous cryptocurrencies, in case a payer misbehaves in the system. The anonymity can be retained if a user behaves honestly. We prove that the proposed scheme achieves full-anonymity, full-traceability and linkability in the random oracle model. Implementation of the proposed linkable group signature scheme demonstrates its high efficiency and thus, can be adopted in anonymous cryptocurrencies in reality.</p>

Zhen Liu,Khoa Nguyen,Guomin Yang,Huaxiong Wang,Duncan S. Wong

DOI: https://doi.org/10.1007/978-3-030-29959-0_35

2019-01-01

Abstract:First proposed in CryptoNote, a collection of popular privacy-centric cryptocurrencies have employed Linkable Ring Signature and a corresponding Key Derivation Mechanism (KeyDerM) for keeping the payer and payee of a transaction anonymous and unlinkable. The KeyDerM is used for generating a fresh signing key and the corresponding public key, referred to as a stealth address, for the transaction payee. The stealth address will then be used in the linkable ring signature next time when the payee spends the coin. However, in all existing works, including Monero, the privacy model only considers the two cryptographic primitives separately. In addition, to be applied to cryptocurrencies, the security and privacy models for Linkable Ring Signature should capture the situation that the public key ring of a signature may contain keys created by an adversary (referred to as adversarially-chosen-key attack), since in cryptocurrencies, it is normal for a user (adversary) to create self-paying transactions so that some maliciously created public keys can get into the system without being detected .In this paper, we propose a new cryptographic primitive, referred to as Linkable Ring Signature Scheme with Stealth Addresses (SALRS), which comprehensively and strictly captures the security and privacy requirements of hiding the payer and payee of a transaction in cryptocurrencies, especially the adversarially-chosen-key attacks. We also propose a lattice-based SALRS construction and prove its security and privacy in the random oracle model. In other words, our construction provides strong confidence on security and privacy in twofolds, i.e., being proved under strong models which capture the practical scenarios of cryptocurrencies, and being potentially quantum-resistant. The efficiency analysis also shows that our lattice-based SALRS scheme is practical for real implementations.

Qianwen Wei,Shujun Li,Wei Li,Hong Li,Mingsheng Wang

DOI: https://doi.org/10.1007/978-3-030-23597-0_29

2019-01-01

Abstract:In Bitcoin, the knowledge of private key equals to the ownership of bitcoin, which occurs two problems: the first problem is that the private key must be kept properly, and the second one is that once the private key is given, it can't be taken back, hence the bitcoin system can only implement the transfer function. In this paper, we first propose a new digital signature algorithm and use it to design an online wallet, which can help the user derive the signature without obtaining the user's private key. Secondly, using our proposed online wallet, we extend the application of private key so that the cryptocurrency system can implement the authorization function. In more detail, we define a new primitive that we call decentralized hierarchical authorized payment scheme (DHAP scheme). We next propose a concrete instantiation and prove its correctness. Finally, we analyze the security and usability of our scheme. For security, we prove our scheme to be secure under the random oracle model. For usability, we examine its performance and compare it with bitcoin's performance.

Zhimin Gao,Lei Xu,Keshav Kasichainula,Lin Chen,Bogdan Carbunar,Weidong Shi

DOI: https://doi.org/10.48550/arXiv.1909.06535

2019-09-14

Cryptography and Security

Abstract:Bitcoin brings a new type of digital currency that does not rely on a central system to maintain transactions. By benefiting from the concept of decentralized ledger, users who do not know or trust each other can still conduct transactions in a peer-to-peer manner. Inspired by Bitcoin, other cryptocurrencies were invented in recent years such as Ethereum, Dash, Zcash, Monero, Grin, etc. Some of these focus on enhancing privacy for instance crypto note or systems that apply the similar concept of encrypted notes used for transactions to enhance privacy (e.g., Zcash, Monero). However, there are few mechanisms to support the exchange of privacy-enhanced notes or assets on the chain, and at the same time preserving the privacy of the exchange operations. Existing approaches for fair exchanges of assets with privacy mostly rely on off-chain/side-chain, escrow or centralized services. Thus, we propose a solution that supports oblivious and privacy-protected fair exchange of crypto notes or privacy enhanced crypto assets. The technology is demonstrated by extending zero-knowledge based crypto notes. To address "privacy" and "multi-currency", we build a new zero-knowledge proving system and extend note format with new property to represent various types of tokenized assets or cryptocurrencies. By extending the payment protocol, exchange operations are realized through privacy enhanced transactions (e.g., shielded transactions). Based on the possible scenarios during the exchange operation, we add new constraints and conditions to the zero-knowledge proving system used for validating transactions publicly.

林定康,符朕皓,姜皓晨,颜嘉麒

DOI: https://doi.org/10.11896/jsjkx.210300025

2021-01-01

Computer Science

Abstract:In recent years,relying on the research breakthrough and rapid development of blockchain technology,a variety of di-gital currencies are rising and flooding into the market.As the currency with the strongest privacy in the UTXO model of blockchain so far,the anonymity technology of Zcash not only provides a strong guarantee for users' privacy,but also has high scienti-fic research value and a wide range of application prospects.Therefore,in order to standardize the legal use of digital currency and explore the wider application prospect of digital currency anonymity technology,scholars from all walks oflife have also conducted research on the anonymity and anti-anonymity technology of Zcash from different angles.Focusing on Zcash,a new digital currency,we first introduce thegeneral framework of Zcash.Secondly,the anonymous technology adopted by Zcash:zk-SNARKs and shielded pool transaction technology,are sorted out.Then we summarize and analyzethe research on Zcash tracking technology by scholars from all walks of life.In the end,anonymous technology and tracking technology development of Zcash are prospected.

Wenqian Shang,Yulong Gao,Xueting Chen

DOI: https://doi.org/10.1109/SNPD61259.2024.10673921

2024-07-05

Abstract:This paper presents a new blockchain scheme using a linkable ring signature algorithm based on lattice cryptography. This scheme counters quantum attacks on blockchain transaction signatures. The signature algorithm ensures correctness, anonymity, and unforgeability using trap generation and rejection sampling. It’s resilient to quantum attacks due to lattice cryptography’s hardness. Compared to other lattice-based algorithms, it offers reduced signature generation and verification time, minimized signature length, lower storage requirements, and better scalability. Implementing this scheme supports blockchain transaction security and privacy, promoting blockchain’s sustainable development and widespread application. This research enhances blockchain security against quantum attacks, paving the way for more secure and efficient blockchain-based apps.

Computer Science

Hong Zhao,Xue Bai,Shihui Zheng,Licheng Wang

DOI: https://doi.org/10.3390/e22070712

2020-06-27

Abstract:As the blockchain 2.0 platform, Ethereum's turing complete programming language and smart contract components make it play an important role in the commercialization of blockchain. With the further development of blockchain applications, the privacy and security issues of Ethereum have gradually emerged. To solve this problem, we proposed a blockchain privacy protection model called RZcash in the previous work. It implements the dynamically updateable and verifiable hiding of the asset information in Ethereum, namely the account balance and transaction amount. However, RZcash does not pay attention to the key redundancy problem that may be caused by the creation of secret accounts. In addition, the large size of proofs gives it high communication costs. In response to these problems, we further improve RZcash. For the key redundancy problem, we construct a new signature scheme based on the ciphertext equivalent test commitment. Moreover, we use the Schnorr signature and bulletproof to improve the corresponding proof scheme in RZcash, thereby reducing the size of proof. Based on these improvements, we propose a decentralized payment system, called RZcoin, based on Ethereum. Finally, we implement the algorithm model of RZcoin and evaluate its security and performance. The results show that RZcoin has higher security and Lower communication cost than RZcash.

Jonathan Jogenfors

DOI: https://doi.org/10.1109/BLOC.2019.8751473

2016-04-06

Abstract:The digital currency Bitcoin has had remarkable growth since it was first proposed in 2008. Its distributed nature allows currency transactions without a central authority by using cryptographic methods and a data structure called the blockchain. In this paper we use the no-cloning theorem of quantum mechanics to introduce Quantum Bitcoin, a Bitcoin-like currency that runs on a quantum computer. We show that our construction of quantum shards and two blockchains allows untrusted peers to mint quantum money without risking the integrity of the currency. The Quantum Bitcoin protocol has several advantages over classical Bitcoin, including immediate local verification of transactions. This is a major improvement since we no longer need the computationally intensive and time-consuming method Bitcoin uses to record all transactions in the blockchain. Instead, Quantum Bitcoin only records newly minted currency which drastically reduces the footprint and increases efficiency. We present formal security proofs for counterfeiting resistance and show that a quantum bitcoin can be re-used a large number of times before wearing out - just like ordinary coins and banknotes. Quantum Bitcoin is the first distributed quantum money system and we show that the lack of a paper trail implies full anonymity for the users. In addition, there are no transaction fees and the system can scale to any transaction volume.

Quantum Physics,Cryptography and Security

Yanbing Wu,Haining Fan,Xiaoyun Wang,Guangnan Zou

DOI: https://doi.org/10.1007/s11432-018-9611-3

2019-01-29

Science China Information Sciences

Abstract:The decentralized digital currency Bitcoin is an anonymous alternative to the centralized banking system and enjoys widespread and increasing adoption. Since Bitcoin created, many other electronic currencies have been developed. We propose a protocol for an electronic currency for making anonymous payments that can be supervised by an auditor, who has sole access to the transaction history. Other electronic currencies provide only anonymity, which is convenient for making illegal transactions without regulation. For users, miners, and banks, the transactions of our electronic currency are anonymous, and only auditors can see how it is used. We make use of POW (prove-of-work) technique that allows for distributed decisionmaking within a network, namely the Bitcoin blockchain protocol. We combine the POW and blockchain technology of Bitcoin to give better protection against double-spending attacks.

computer science, information systems,engineering, electrical & electronic

Georgios Fragkos,Cyrus Minwalla,Eirini Eleni Tsiropoulou,Jim Plusquellic

DOI: https://doi.org/10.1145/3441139

IF: 2.013

2022-01-31

ACM Journal on Emerging Technologies in Computing Systems

Abstract:Electronic cash ( e-Cash ) is a digital alternative to physical currency such as coins and bank notes. Suitably constructed, e-Cash has the ability to offer an anonymous offline experience much akin to cash, and in direct contrast to traditional forms of payment such as credit and debit cards. Implementing security and privacy within e-Cash, i.e., preserving user anonymity while preventing counterfeiting, fraud, and double spending, is a non-trivial challenge. In this article, we propose major improvements to an e-Cash protocol, termed PUF-Cash, based on physical unclonable functions ( PUFs ). PUF-Cash was created as an offline-first, secure e-Cash scheme that preserved user anonymity in payments. In addition, PUF-Cash supports remote payments; an improvement over traditional currency. In this work, a novel multi-trusted-third-party exchange scheme is introduced, which is responsible for “blinding” Alice’s e-Cash tokens; a feature at the heart of preserving her anonymity. The exchange operations are governed by machine learning techniques which are uniquely applied to optimize user privacy, while remaining resistant to identity-revealing attacks by adversaries and trusted authorities. Federation of the single trusted third party into multiple entities distributes the workload, thereby improving performance and resiliency within the e-Cash system architecture. Experimental results indicate that improvements to PUF-Cash enhance user privacy and scalability.

engineering, electrical & electronic,computer science, hardware & architecture,nanoscience & nanotechnology

Nasser Alsalami,Bingsheng Zhang

DOI: https://doi.org/10.1109/iwqos49365.2020.9213064

2020-01-01

Abstract:Public blockchains can be abused to covertly store and disseminate potentially harmful digital content which poses a serious regulatory issue. In this work, we show the severity of the problem by demonstrating that blockchains can be exploited to surreptitiously distribute arbitrary content. More specifically, all major blockchain systems use randomized cryptographic primitives, such as digital signatures and non-interactive zero-knowledge proofs; we illustrate how the uncontrolled randomness in such primitives can be maliciously manipulated to enable covert communication and hidden persistent storage. To clarify the potential risk, we design, implement and evaluate our technique against the widely-used ECDSA signature scheme, the CryptoNote's ring signature scheme, and Monero's ring confidential transactions. Importantly, the significance of the demonstrated attacks stems from their undetectability, their adverse effect on the future of decentralized blockchains, and their serious repercussions on users' privacy and crypto funds. Finally, we present a generic framework to immunize blockchains against these attacks.

Hitesh Tewari

DOI: https://doi.org/10.48550/arXiv.2105.04485

2021-05-11

Abstract:Numerous electronic cash schemes have been proposed over the years - however none have been embraced by financial institutions as an alternative to fiat currency. David Chaum's ecash scheme was the closest to something that mimicked a modern day currency system, with the important property that it provided anonymity for users when purchasing coins from a bank, and subsequently spending them at a merchant premises. However it lacked a crucial element present in current fiat-based systems - the ability to continuously spend or transfer coins. Bitcoin reignited the interest in cryptocurrencies in the last decade but is now seen as more of an asset store as opposed to a financial instrument. One interesting thing that has come out of the Bitcoin system is blockchains and the associated distributed consensus protocols. In this paper we propose a transferable electronic cash scheme using blockchain technology which allows users to continuously reuse coins within the system.

Cryptography and Security

Wang Changji,Wu Jianping,Duan Haixin

DOI: https://doi.org/10.1007/bf02826297

IF: 4.278

2004-01-01

Geo-spatial Information Science

Abstract:A new fair off-line electronic cash scheme on elliptic curve cryptography was presented. The new scheme is more efficient than those by extending fair off-line electronic cash scheme from finite field into elliptic curve cryptography and introducing a new elliptic curve discrete logarithm assumption. The expiry date and denomination are embedded into the blindly signed coin by integrating partially blind signature with restrictive blind signature. A bank need not use different public keys for different coin values, shops and users need not carry a list of bank's public keys to verify in their electronic wallet. At the same time, the bank just needs to keep undue electronic coins for double spending check in his database, thus bank's database can be dramatically reduced.

Huimin Niu,Ting Li,Xiugang Gong

DOI: https://doi.org/10.1371/journal.pone.0270454

IF: 3.7

2022-07-07

PLoS ONE

Abstract:The security of the tax system is directly related to the development of a country. The conventional process of tax payment laborious steps, so this process becomes a cause of irregularities among taxpayers and tax authorities, increasing the rate of corruption in tax collection. Blockchain, as a distributed ledger technology, its unique advantages and promising applications in taxation offer an effective solution to the problems of electronic taxation. However, the transparency of blockchain exists the risk of privacy disclosure, the high degree of anonymity brings the problem of lack of user supervision. Therefore, for balancing the contradiction of taxpayer privacy and supervision, we propose a blockchain-based self-certified and anonymous e-taxing scheme, which uses blockchain as the underlying support, and utilizes cryptography technology such as self-certified public key, Diffie-Hellman, to reduce the taxpayer′s reliance on the certificate authority, and protects the taxpayer′s anonymity while realizing the tracking of the real identity of malicious taxpayers. The security analysis proves that the scheme has the properties such as anonymity, conditional privacy and unforgeability, etc. Finally, performance analysis shows that compared with similar schemes, the scheme significantly improves the registration efficiency, proving its practicability and implementability.

multidisciplinary sciences

Xiao Zhang,Faguo Wu,Wang Yao,Wenhua Wang,Zhiming Zheng

DOI: https://doi.org/10.32604/cmc.2020.08008

2020-01-01

Abstract:Blockchain is an emerging decentralized architecture and distributed computing paradigm underlying Bitcoin and other cryptocurrencies, and has recently attracted intensive attention from governments, financial institutions, high-tech enterprises, and the capital markets. Its cryptographic security relies on asymmetric cryptography, such as ECC, RSA. However, with the surprising development of quantum technology, asymmetric cryptography schemes mentioned above would become vulnerable. Recently, lattice-based cryptography scheme was proposed to be secure against attacks in the quantum era. In 2018, with the aid of Bonsai Trees technology, Yin et al. [Yin, Wen, Li et al. (2018)] proposed a lattice-based authentication method which can extend a lattice space to multiple lattice spaces accompanied by the corresponding key. Although their scheme has theoretical significance, it is unpractical in actual situation due to extremely large key size and signature size. In this paper, aiming at tackling the critical issue of transaction size, we propose a post quantum blockchain over lattice. By using SampleMat and signature without trapdoor, we can reduce the key size and signature size of our transaction authentication approach by a significant amount. Instead of using a whole set of vectors as a basis, we can use only one vector and rotate it enough times to form a basis. Based on the hardness assumption of Short Integer Solution (SIS), we demonstrate that the proposed anti-quantum transaction authentication scheme over lattice provides existential unforgeability against adaptive chosen-message attacks in the random oracle. As compared to the Yin et al. [Yin, Wen, Li et al. (2018)] scheme, our scheme has better performance in terms of energy consumption, signature size and signing key size. As the underlying lattice problem is intractable even for quantum computers, our scheme would work well in the quantum age.

Jie Xiong,Qi Wang

DOI: https://doi.org/10.5121/ijait.2019.9101

2019-04-13

Abstract:The Ethereum blockchain as a decentralized platform is so successful that many applications deployed on it. However, for the inherent transparency properties and the lack of privacy, deploying a financial application on top of it is always a challenge. In this paper, we tackle this challenge and propose an anonymous sealed-bid auction protocol based on time-released encryption atop Consortium Blockchain. We adopt a strict digital certificate-based identity mechanism of the consortium blockchain to permit legitimate participants, and utilize the blind signature based on elliptic curve technology to allowing anonymous participation. Moreover, a timed release public key encryption algorithm is adopted to encrypt bids and prevent auctioneer from colluding with bidders. This is completely different from the method (zero-knowledge proof) used in other papers to prevent collusion between auctioneer and bidder. We provide a specific analysis of our protocol, which shows that our protocol meets anonymity and applicability.

Cryptography and Security

QingChun ShenTu,JianPing Yu

DOI: https://doi.org/10.48550/arXiv.1510.07782

2015-10-27

Abstract:The Bitcoin system is an anonymous, decentralized crypto-currency. There are some deanonymizating techniques to cluster Bitcoin addresses and to map them to users' identifications in the two research directions of Analysis of Transaction Chain (ATC) and Analysis of Bitcoin Protocol and Network (ABPN). Nowadays, there are also some anonymization methods such as coin-mixing and transaction remote release (TRR) to cover the relationship between Bitcoin address and the user. This paper studies anonymization and de-anonymization technologies and proposes some directions for further research.

Cryptography and Security

Ya-nan Li,Tian Qiu,Qiang Tang

DOI: https://doi.org/10.48550/arXiv.2309.01667

2023-09-04

Abstract:Cryptocurrency exchange platforms such as Coinbase, Binance, enable users to purchase and sell cryptocurrencies conveniently just like trading stocks/commodities. However, because of the nature of blockchain, when a user withdraws coins (i.e., transfers coins to an external on-chain account), all future transactions can be learned by the platform. This is in sharp contrast to conventional stock exchange where all external activities of users are always hidden from the platform. Since the platform knows highly sensitive user private information such as passport number, bank information etc, linking all (on-chain) transactions raises a serious privacy concern about the potential disastrous data breach in those cryptocurrency exchange platforms. In this paper, we propose a cryptocurrency exchange that restores user anonymity for the first time. To our surprise, the seemingly well-studied privacy/anonymity problem has several new challenges in this setting. Since the public blockchain and internal transaction activities naturally provide many non-trivial leakages to the platform, internal privacy is not only useful in the usual sense but also becomes necessary for regaining the basic anonymity of user transactions. We also ensure that the user cannot double spend, and the user has to properly report accumulated profit for tax purposes, even in the private setting. We give a careful modeling and efficient construction of the system that achieves constant computation and communication overhead (with only simple cryptographic tools and rigorous security analysis); we also implement our system and evaluate its practical performance.

Cryptography and Security

Shunli Ma,Yi Deng,Debiao He,Jiang Zhang,Xiang Xie

DOI: https://doi.org/10.1109/tdsc.2020.2969418

2021-03-01

IEEE Transactions on Dependable and Secure Computing

Abstract:We introduce the abstract framework of decentralized smart contracts system with balance and transaction amount hiding property over account-model blockchain. To build a concrete system with such properties, we utilize a homomorphic public-key encryption scheme and construct a highly efficient non-interactive zero knowledge (NIZK) argument based upon the encryption scheme to ensure the validity of the transactions. Our NIZK scheme is perfect zero knowledge in the common reference string model, while its soundness holds in the random oracle model. Compared to previous similar constructions, our proposed NIZK argument dramatically improves the time efficiency in generating a proof, at the cost of relatively longer proof size.

computer science, information systems, software engineering, hardware & architecture