Yukun Niu,Chi Zhang,Lingbo Wei,Yankai Xie,Xia Zhang,Yuguang Fang

DOI: https://doi.org/10.1109/globecom38437.2019.9013131

2019-01-01

Abstract:In Bitcoin, lightweight clients outsource most of storage and computation tasks to full nodes in order to run on resource-limited devices. In the interaction with the full node, the lightweight client leaks considerable information about which address or transaction is relevant to it. The existing schemes to solve this problem do not support efficient yet privacy-preserving transaction search due to the fact that the blockchain is inherently inefficient for transaction query and proposed schemes perform transaction search in a block-by-block manner. Therefore, we propose an efficient transaction query scheme for the privacy-preserving lightweight client with the Intel SGX enclave running on the full node. Our main idea is to leverage the secure enclave to serve transaction-query requests from lightweight clients. However, the usage of secure enclave alone does not achieve our goals. Our scheme reorganizes the blockchain and leverages prefix tree to increase transaction-search efficiency. Due to limited capacity, the secure enclave stores reorganized blockchain data in the untrusted full node. Thus, our scheme integrates prefix tree and oblivious searching technologies to simultaneously support efficient transaction search and protect access pattern of externally stored blockchain data for the secure enclave. Security analysis and performance evaluation show that our scheme provides efficient transaction search and verification functionalities for lightweight Bitcoin clients in a privacy-preserving way.

Yankai Xie,Qingtao Wang,Ruoyue Li,Chi Zhang,Lingbo Wei

DOI: https://doi.org/10.1109/tsc.2023.3290605

IF: 11.019

2023-01-01

IEEE Transactions on Services Computing

Abstract:Running a typical Bitcoin client (also called full node) needs more than 444 GB of disk space, considerable time, and computational resources to synchronize the entire blockchain, which is infeasible for resource-constrained devices. To address such concerns, the lightweight Bitcoin client proposed by Satoshi outsources most of computational and storage burdens to full nodes. Unfortunately, interacting with full nodes to query transactions leaks considerable information like addresses and transactions of lightweight client users. Thus, Bitcoin users that rely on lightweight clients are subject to de-anonymization, which defeats users privacy. Traditional schemes cannot support lightweight clients to query transactions from full nodes in an efficient yet privacy-preserving way. In this paper, we propose a new efficient yet privacy-preserving transaction query scheme that specially targets the missing support for lightweight clients. We identify unique characteristics of the Bitcoin blockchain and craft a highly customized private information retrieval scheme called BIT-PIR to match the Bitcoin transaction query scenario and boost performances. Moreover, we customize a storage structure of the Bitcoin blockchain so that it further improves the query efficiency of our scheme. Finally, we develop a prototype implementation to demonstrate the feasibility of our proposed scheme.

computer science, information systems, software engineering

Yankai Xie,Chi Zhang,Lingbo Wei,Yukun Niu,Faxing Wang

DOI: https://doi.org/10.1109/BLOC.2019.8751352

2019-01-01

Abstract:In the current Bitcoin network, lightweight clients outsource most of the computational and storage tasks to full blockchain nodes in order to run on resource-constrained devices, such as mobile phones. In the interactions with the full node, the lightweight client leaks considerable information about the Bitcoin transactions or addresses associated with this client. Therefore, the benefit of using lightweight client comes at costs of privacy. Existing solutions cannot support the lightweight client to retrieve the relevant transactions from the full node in an efficient and privacy-preserving way. In this paper, we propose a new approach to protect the privacy of lightweight clients in Bitcoin. Our main idea is to use private information retrieval (PIR) to guarantee that the lightweight clients can fetch the relevant transactions from untrusted full nodes without revealing to those nodes which particular transactions are being fetched. Directly using existing PIR scheme incurs high communication overhead for lightweight clients. Therefore, we propose an optimized protocol utilizing two-step PIR to efficiently retrieve the queried transactions without leaking sensitive query information. We developed a prototype implementation to demonstrate the feasibility of our proposed scheme.

Qianwen Wei,Shujun Li,Wei Li,Hong Li,Mingsheng Wang

DOI: https://doi.org/10.1007/978-3-030-23597-0_29

2019-01-01

Abstract:In Bitcoin, the knowledge of private key equals to the ownership of bitcoin, which occurs two problems: the first problem is that the private key must be kept properly, and the second one is that once the private key is given, it can't be taken back, hence the bitcoin system can only implement the transfer function. In this paper, we first propose a new digital signature algorithm and use it to design an online wallet, which can help the user derive the signature without obtaining the user's private key. Secondly, using our proposed online wallet, we extend the application of private key so that the cryptocurrency system can implement the authorization function. In more detail, we define a new primitive that we call decentralized hierarchical authorized payment scheme (DHAP scheme). We next propose a concrete instantiation and prove its correctness. Finally, we analyze the security and usability of our scheme. For security, we prove our scheme to be secure under the random oracle model. For usability, we examine its performance and compare it with bitcoin's performance.

Yining Qi,Zhen Yang,Yubo Luo,Yongfeng Huang,Xing Li

DOI: https://doi.org/10.32604/cmc.2022.027939

2022-01-01

Abstract:Provable Data Possession (PDP) schemes have long been proposed to solve problem of how to check the integrity of data stored in cloud service without downloading. However, with the emerging of network consisting of low performance devices such as Internet of Things, we find that there are still two obstacles for applying PDP schemes. The first one is the heavy computation overhead in generating tags for data blocks, which is essential for setting up any PDP scheme. The other one is how to resist collusion attacks from third party auditors with any possible entities participating the auditing. In this paper, we propose a novel blockchain-based light-weighted PDP scheme for low performance devices, with an instance deployed on a cloud server. We design a secure outsourced tag generating method for low performance devices, which enables a kind of "hash-sign-switch" two-phase tag computing. With this method, users with low performance devices can employ third party auditors to compute modular exponential operations that accounts for the largest portion of computation overhead in tag generation, without leaking their data content. Chaincodes in blockchain network ensure the correctness of such outsourcing and prevent collusion attacks. The security analysis and performance evaluation prove that our scheme is both secure and efficient.

Jiapeng Zhou,Yuxiang Feng,Zhenyu Wang,Danyi Guo

DOI: https://doi.org/10.3390/s21041540

2021-02-23

Abstract:The development of information technology has brought great convenience to our lives, but at the same time, the unfairness and privacy issues brought about by traditional centralized systems cannot be ignored. Blockchain is a peer-to-peer and decentralized ledger technology that has the characteristics of transparency, consistency, traceability and fairness, but it reveals private information in some scenarios. Secure multi-party computation (MPC) guarantees enhanced privacy and correctness, so many researchers have been trying to combine secure MPC with blockchain to deal with privacy and trust issues. In this paper, we used homomorphic encryption, secret sharing and zero-knowledge proofs to construct a publicly verifiable secure MPC protocol consisting of two parts-an on-chain computation phase and an off-chain preprocessing phase-and we integrated the protocol as part of the chaincode in Hyperledger Fabric to protect the privacy of transaction data. Experiments showed that our solution performed well on a permissioned blockchain. Most of the time taken to complete the protocol was spent on communication, so the performance has a great deal of room to grow.

Xudong Li,Farooq Ahmed,Lingbo Wei,Chi Zhang,Yuguang Fang

DOI: https://doi.org/10.1109/globecom42002.2020.9348108

2020-01-01

Abstract:The last decade has witnessed fast development of blockchain techniques. However, the high cost of storage space and network bandwidth caused by data synchronization prevents many nodes from joining the network, and becomes a bottleneck impeding the development of blockchain. Traditional schemes typically attempt to transfer most of the storage and computation tasks from a light client to a full node. Nevertheless, they remain susceptible to privacy attacks because light clients need to query and retrieve blockchain data. In this paper, we first describe the privacy issues and challenges for Ethereum data retrieval and then propose a privacy-preserving scheme based on private information retrieval (PIR) to secure retrieval of blockchain data. The main idea is to achieve pointer based PIR search by keywords and introduce differential privacy to mitigate PIR's performance barrier. Hence we achieve a tradeoff between privacy and performance. The evaluations on the Ethereum dataset and analysis show that our scheme is both effective and practical in protecting blockchain access privacy.

Qi-Feng Shao,Zhao Zhang,Che-Qing Jin,Ao-Ying Zhou

DOI: https://doi.org/10.1007/s11390-022-1007-2

IF: 1.871

2023-08-09

Journal of Computer Science and Technology

Abstract:Due to limited computing and storage resources, light clients and full nodes coexist in a typical blockchain system. Any query from light clients must be forwarded to full nodes for execution, and light clients verify the integrity of query results returned. Since existing verifiable queries based on an authenticated data structure (ADS) suffer from significant network, storage and computing overheads by virtue of verification objects (VOs), an alternative way turns to the trusted execution environment (TEE), with which light clients do not need to receive or verify any VO. However, state-of-the-art TEEs cannot deal with large-scale applications conveniently due to the limited secure memory space (e.g., the size of the enclave in Intel SGX (software guard extensions), a typical TEE product, is only 128 MB). Hence, we organize data hierarchically in trusted (enclave) and untrusted memory, along with hot data buffered in the enclave to reduce page swapping overhead between two kinds of memory. The cost analysis and empirical study validate the effectiveness of our proposed scheme. The VO size of our scheme is reduced by one to two orders of magnitude compared with that of the traditional scheme.

computer science, software engineering, hardware & architecture

Ting Li,Wei Liu,Shangsheng Xie,Mianxiong Dong,Kaoru Ota,Neal N. Xiong,Qiang Li

DOI: https://doi.org/10.1109/jiot.2021.3117971

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Contemporarily, the fast development of computing, communication, and storage technology has revolutionized the way that various data-based applications reach massive data from underlying sensor networks. However, such a process also raises two challenging but critical issues: 1) trustworthy and 2) privacy issue for data collectors. Therefore, this article proposes a novel system, which is designed over the distributed mobile-edge network to sufficiently exploit advantages of blockchain and differential privacy (DP) to collect trustworthy data and protect privacy for data collectors. First, to improve trustworthiness of data collections, a new consensus mechanism is proposed for blockchain-based data collection structure, which comprehensively incorporates trustworthy, collection contribution, and throughput together to prefer data collectors for the next block. Second, with the assistance of fully trusted devices, a verifiable trustworthy evaluation strategy is designed to accurately compute the trustworthiness for data collectors. Third, we enforce DP on the data stored in a global blockchain maintained by the cloud server to protect privacy for data collectors without influencing data availability. Finally, both theoretical analyses and experimental results prove that the proposed system comprehensively improves performance of data collections in distributed network without adding any additional cost for the cloud server, compared to other schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jingxian Cheng,Saiyu Qi,Yong Qi,Jianfeng Wang,Qin Jiang,Di Wu

DOI: https://doi.org/10.1109/trustcom60117.2023.00178

2024-01-01

Abstract:Blockchain databases have been exploited in many applications to construct trust and share data among multiple participants. However, maintaining the entire blockchain locally will cause heavy communication and storage overhead for users with limited resources. Alternatively, the user could act as a light node that stores block headers only and delegates queries to full nodes that maintain the entire blockchain. However, introducing a light node raises several concerns about query integrity and privacy. In this paper, we propose EPPVChain, the first scheme that simultaneously achieves efficient, privacy-preserving and verifiable conjunctive query for blockchain databases. EPPVChain resorts to a novel symmetric cryptographic primitive named Symmetric Hidden Vector Encryption (SHVE), and deploys several new techniques to achieve the desired goals. In specific, we design a new SHVE-based authenticated data structure to support privacy-preserving verifiable conjunctive queries. We further propose two improved schemes to aggregate data records to optimize query performance. Finally, we propose a dual-chain key escrow protocol to securely escrow the symmetric key of SHVE without relying on any trusted third party. The security analysis and evaluation confirm EPPVChain’s ability to achieve query privacy and integrity with high efficiency.

NIU Yukun,WEI Lingbo,ZHANG Chi,ZHANG Xia,Gustavo Vejarano

DOI: https://doi.org/10.11959/j.issn.2096-109x.2020022

2020-01-01

Abstract:In designing an access control scheme for public wireless LAN (WLAN), user privacy protection and user accountability are two conflict goals. A novel user management and access control scheme was proposed to solve this problem by utilizing the bitcoin blockchain and Intel SGX. It utilized unmodified bitcoin blockchain to manage the ownership of access credentials for users without relying on any trusted third party. It adopted Intel SGX-based mixing technology to enhance anonymity of users’ access credentials. It designed verification path rule to resolve the conflicts between the privacy-preserving and accountability objectives. The effectiveness and feasibility of the proposed scheme are also demonstrated by security analysis and performance evaluation.

Guy Zyskind,Oz Nathan,Alex Pentland,Alex 'Sandy' Pentland

DOI: https://doi.org/10.1109/spw.2015.27

2015-05-01

Abstract:The recent increase in reported incidents of surveillance and security breaches compromising users' privacy call into question the current model, in which third-parties collect and control massive amounts of personal data. Bit coin has demonstrated in the financial space that trusted, auditable computing is possible using a decentralized network of peers accompanied by a public ledger. In this paper, we describe a decentralized personal data management system that ensures users own and control their data. We implement a protocol that turns a block chain into an automated access-control manager that does not require trust in a third party. Unlike Bit coin, transactions in our system are not strictly financial -- they are used to carry instructions, such as storing, querying and sharing data. Finally, we discuss possible future extensions to block chains that could harness them into a well-rounded solution for trusted computing problems in society.

Yankai Xie,Chi Zhang,Lingbo Wei,Yukun Niu,Faxing Wang,Jianqing Liu

DOI: https://doi.org/10.1109/ICCChina.2019.8855900

2019-01-01

Abstract:By outsourcing most of storage and computational tasks to full nodes, Ethereum lightweight client is able to run on the resource-limited devices such as mobile phones. In the interactions with the lightweight client, the full node obtains considerable information about Ethereum addresses (Ethereum accounts), transactions, and transaction receipts associated with the lightweight client. This behavior obviously violates user privacy. Currently, there is no solution supporting the lightweight client to efficiently retrieve the account state, related transactions, and transaction receipts from the untrust full node without revealing privacy. In this paper, we propose to use private information retrieval (PIR) to design a privacy-preserving Ethereum lightweight client. Since directly using existing PIR scheme significantly increases communication overhead of the lightweight client, we tailor existing PIR schemes to adapt to the lightweight client, which allows the lightweight client to efficiently retrieve account state and transaction data without leaking sensitive query information. Security and performance analysis show that our scheme is capable of efficiently and privately downloading the data of interest to the lightweight client.

Yankai Xie,Ruian Li,Yan Huang,Chi Zhang,Lingbo Wei,Yani Sun

DOI: https://doi.org/10.1109/tsc.2024.3390396

2024-01-01

Abstract:The Bitcoin blockchain enables users to conduct transactions securely, but its performance is restricted by the need for global consensus. Payment channels, as a promising solution to this issue, overcome this limitation through off-chain transactions. Instead of conducting each transaction on-chain, they only settle the final payment balances with the underlying blockchain. However, the most prominent scheme, the Lightning Network payment channel, requires participants to regularly monitor blockchain; otherwise, there is a potential risk of fund loss. Moreover, this scheme also fails to support participants in settling the final payment balances in real time, compromising the efficiency of fund utilization. Existing payment channel enhancing technologies are unable to overcome the above issues without compromising payment privacy. To solve the above issues, we apply the Intel Software Guard Extensions (SGX), which provides trusted execution environments with confidentiality and integrity guarantees, to design a novel Bitcoin payment channel scheme. The scheme can support real-time settlement yet guarantee the participants' fund security without monitoring the blockchain. Through a combination of the additive homomorphic property of keys, the secret sharing scheme, and customized punishments, our scheme can still guarantee fund security and off-chain transaction privacy, even if the confidentiality of SGX is compromised by side-channel attacks. Finally, security and performance analysis demonstrate that our scheme allows participants to construct a secure yet efficient payment channel to transfer value.

Sheng Peng,Linkai Zhu,Shanwen Hu,Zhiming Cai,Wenjian Liu

DOI: https://doi.org/10.3390/math12101481

IF: 2.4

2024-05-11

Mathematics

Abstract:Blockchain technology, initially developed as a decentralized and transparent mechanism for recording transactions, faces significant privacy challenges due to its inherent transparency, exposing sensitive transaction data to all network participants. This study proposes a blockchain privacy protection algorithm that employs a digital mutual trust mechanism integrated with advanced cryptographic techniques to enhance privacy and security in blockchain transactions. The contribution includes the development of a new dynamic Byzantine consensus algorithm within the Practical Byzantine Fault Tolerance framework, incorporating an authorization mechanism from the reputation model and a proof consensus algorithm for robust digital mutual trust. Additionally, the refinement of homomorphic cryptography using the approximate greatest common divisor technique optimizes the encryption process to support complex operations securely. The integration of a smart contract system facilitates automatic and private transaction execution across the blockchain network. Experimental evidence demonstrates the superior performance of the algorithm in handling privacy requests and transaction receipts with reduced delays and increased accuracy, marking a significant improvement over existing methods.

mathematics

SHI Kun,ZHOU Yong,ZHANG Qi-liang,JIANG Shun-rong

DOI: https://doi.org/10.11896/jsjkx.220300138

2022-01-01

Abstract:Blockchain technology could effectively solve the problems of lack of trust,malicious tampering and false transactions.However,the open and transparent characteristics of the blockchain make the distributed energy trading model based on the blockchain extremely vulnerable to be attacked,leading to the disclosure of user’s privacy.Therefore,a privacy-preserving scheme BLDP-AM based on differential privacy algorithm and account mapping technology is proposed to protect the privacy information of trading data.Our scheme redesigns the data perturbation mechanism of the local differential privacy algorithm to make it applicable to blockchain technology,and constructs the BLDP algorithm based on this perturbation mechanism to protect the privacy of transaction data.At the same time,in order to ensure the correctness of trading and hide the characteristics of the trading curve,our scheme first associates users with multiple accounts through account mapping technology,then uses the exponential smoo-thing prediction algorithm to calculate the trading prediction value of each account,and finally uses the BLDP algorithm to perturb the trading prediction value to obtain the real trading value and conduct trading.Our scheme not only guarantee the correctness of transactions but also achieve the purpose of protecting the privacy of trading data.The privacy analysis proves the feasibility of the scheme in protecting user privacy,and the experimental analysis shows that the scheme has better performance.

Yang Xu,Quanrun Zeng,Ju Ren,Yaoxue Zhang,Guojun Wang,Hao Min

DOI: https://doi.org/10.1109/smartworld.2018.00331

2018-01-01

Abstract:The wide use of network computing technologies has promoted the popularity of outsourced storage services. Meanwhile, the provable data possession (PDP) techniques are widely studied as the outsourcing storage servers are not always trustworthy and dependable in maintaining the outsourced data. However, most existing PDP solutions are either costly for the current Internet of things (IoT) devices, or vulnerable to spoofing attacks. In this paper, we propose a succinct anti-spoofing provable data possession scheme for lightweight clients in network computing. We employ the basic integrity comparison-based verification to fit for the resource-constrained verifiers, and propose a random sentinel metadata setup mechanism and the true-fake blended challenge scheme to improve the robustness against spoofing attacks of untrusted servers. The analyses reveal that our approach is effective in data possession verification with the robustness against spoofing attacks, while the overhead on the verifier side is low.

Kai Zhang,Jiao Tian,Hongwang Xiao,Ying Zhao,Wenyu Zhao,Jinjun Chen

DOI: https://doi.org/10.1109/jiot.2022.3145845

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:Blockchain has gradually attracted widespread attention from the research community of the IoT, due to its decentralization, consistency, and other attributes. It builds a secure and robust system by generating a backup locally for each participant node to collectively maintain the network. However, this feature brings some privacy concerns since all nodes can access the chain data, users’ sensitive information under risk of leakage. The local differential privacy (LDP) mechanism can be a promising way to address this issue as it implements data perturbation before uploading to the chain. While traditional LDP mechanisms cannot fit well with the blockchain since the requirements of a fixed input range, large data volume, and using the same privacy budget, which are practically difficult in a decentralized environment. To overcome these problems, we propose a novel LDP mechanism to split input numerical data and implement perturbation by digital bits, which does not require a fixed input range and large data volume. In addition, we use an iteration approach to adaptively allocate the privacy budget for different perturbation procedures that minimize the total deviation of perturbed data and increase the data utility. We employ mean estimation as the statistical utility metric under the same and randomized privacy budgets to evaluate the performance of our novel LDP mechanism. The experiment results indicate that the proposed LDP mechanism performs better in different scenarios, and our adaptive privacy budget allocation model can significantly reduce the deviation of the perturbation function to provide high data utility while maintaining privacy.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jingxian Cheng,Saiyu Qi,Bochao An,Yong Qi,Jianfeng Wang,Yanan Qiao

DOI: https://doi.org/10.1016/j.future.2024.03.011

2024-01-01

Abstract:Blockchain has been exploited in many applications as a fundamental technology to construct trust and share data among multiple participants. A user with limited resources who runs a light node fetches data records stored on the blockchain by requesting a full node that maintains the complete blockchain data. As a type of broadly used query, top-k queries which ask for data records with the highest k values in a certain region can be useful in many blockchain scenarios. However, untrusted full nodes may return incorrect top-k results. In this paper, we take the first step toward addressing the problem of verifiable blockchain top-k queries without the help of a trusted third-party. First, we design a novel Sorted Merkle tree-based authenticated data structure and based on it we propose a new index named inverted SMT index that supports verifiable top-k query with specific keyword conditions. Second, we propose a fundamental strawman design to support verifiable blockchain top-k queries with arbitrary query regions. We further introduce two improved schemes, named segmentation design and sliding-window design, that overcome the efficiency obstacle of the strawman design. Finally, we confirm the efficiency of our solutions through an extensive experimental evaluation.

Qi Tao,Hongwei Ding,Tian Jiang,Xiaohui Cui

DOI: https://doi.org/10.1109/jiot.2023.3289057

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:The big data of Internet of vehicles contributes to the development of intelligent transportation. Privacy protection in Vehicular Ad-hoc Networks(VANETs) is the core factor to improve user and vehicle participation. This paper proposes a novel blockchain-based dynamic extensible privacy protection and message authentication scheme for VANETs. It minimizes the computation cost of message authentication based on an elliptic curve and message batch verification. Based on the Chinese remainder theorem, this scheme protects transmitted message security by adaptively and dynamically responding to vehicles and RSUs accessing the VANET. It offers a smart contract-based forensics and tracing solution from the accident vehicle. In addition, strict security proof and analysis that the scheme meets the security requirements for the VANET. It evaluates the efficiency of the scheme, and the results show its practicality.

computer science, information systems,telecommunications,engineering, electrical & electronic