Xianglin Wu,Tianhao Meng,Jingwei Zhang,Qing Yang,Jintao Chen

DOI: https://doi.org/10.1007/s11227-024-06625-5

2025-01-01

Abstract:Exploring diverse education data applications through blockchain technology can offer innovative methods for smart education. Among them, storing multi-platform and multi-dimensional education data on the blockchain can enhance the system's ability to integrate and manage the data effectively. However, the system involves a large number of stakeholders. Furthermore, because the data are stored chronologically, relevant information may be distributed across multiple blocks. They will lead to security issues related to access and inefficient queries. We innovatively design an education data management system that combines access-control views with a consensus algorithm, effectively addressing the issue of low query performance for security data. Additionally, we propose a method that integrates main chain blocks and side blocks within a chained storage structure to recycle view blocks, effectively addressing the issue of block redundancy caused by non-periodic changes in the utilization of education data. For the proposed method, experiments are conducted on two education datasets to validate the efficiency of the proposed access control view in query performance and the effectiveness of the view maintenance consensus algorithm.

Ronghua Xu,Yu Chen

DOI: https://doi.org/10.48550/arXiv.2104.05583

2021-04-12

Abstract:Data marketplaces (DMs) promote the benefits of the Internet of Things (IoT) in smart cities. To facilitate the easy exchanges of real-time IoT data streams between device owners and third-party applications, it is required to provide scalable, interoperable, and secured services for large numbers of distributed IoT devices operated by different application vendors. Thanks to decentralization, immutability, and auditability, Blockchain is promising to enable a tamper-proof and trust-free framework to enhance performance and security issues in centralized DMs. However, directly integrating blockchains into large-scale IoT-based DMs still faces many limitations, such as high resource and energy demands, low transaction throughput, poor scalability, and challenges in privacy preservation. This paper introduces a novel Federated Ledgers-based Framework for Hierarchical Decentralized Data Marketplaces (Fed-DDM). In Fed-DDM, participants are divided into multiple permissioned domains given their registrations. Each domain leverages an efficient Byzantine Fault Tolerance (BFT) consensus protocol to commit transactions of a domain on a private intra-ledger. A public inter-ledger network adopts a scalable Proof-of-Work (PoW) consensus protocol to federate multiple private intra-ledger networks. We design a smart contract-enabled inter-ledger protocol to guarantee the security of the cross-domain operations on a public federated ledger without exposing sensitive privacy information from private ledgers. A proof-of-concept prototype is implemented, and the experimental results verify the feasibility of the proposed Fed-DDM solution with performance and security guarantees.

Distributed, Parallel, and Cluster Computing

Yaoliang Chen,Shi Chen,Jiao Liang,Lance Warren Feagan,Weili Han,Sheng Huang,X. Sean Wang

DOI: https://doi.org/10.1016/j.is.2020.101590

IF: 3.18

2020-01-01

Information Systems

Abstract:Blockchain is an emerging data management technology that enables people in a collaborative network to establish trusted connections with the other participants. Recently consortium blockchains have raised interest in a broader blockchain technology discussion. Instead of a fully public, autonomous network, consortium blockchain supports a network where participants can be limited to a subset of users and data access strictly controlled. Access control policies should be defined by the respective data owner and applied throughout the network without requiring a centralized data administrator. As a result, decentralized data access control (DDAC) emerges as a fundamental challenge for such systems. However, we show from a trust model for consortium collaborative networks that current consortium blockchain systems provide limited support for DDAC. Further, the distributed, replicated nature of blockchain makes it even more challenging to control data access, especially read access, compared with traditional DBMSes. We investigate possible strategies to protect data from being read by unauthorized users in consortium blockchain systems using combinations of ledger partitioning and encryption strategies. A general framework is proposed to help inexperienced users determine appropriate strategies under different application scenarios. The framework was implemented on top of Hyperledger Fabric to evaluate feasibility. Experimental results along with a real-world case study contrasted the performance of different strategies under various conditions and the practicality of the proposed framework.

Xuyang Ma,Du Xu,Katinka Wolter

DOI: https://doi.org/10.1016/j.ins.2024.120368

IF: 8.1

2024-02-29

Information Sciences

Abstract:The conventional machine learning process typically operates under the premise of centralized data aggregation, where all data is collected at a central location for model training. However, this raises substantial privacy concerns when the data contains private information. In this context, federated learning has emerged as a prominent solution for preserving privacy in machine learning. This innovative paradigm allows multiple data owners, or clients, to collaboratively train a machine learning model while keeping their local data unshared. A federated learning task is typically initiated by companies, often referred to as model owners, who do not possess enough training data and are willing to financially remunerate clients who contribute to the development of the federated learning model. This situation demands a trading platform that enables model owners to effectively select clients, while ensuring robustness against malicious clients who execute poisoning attacks for unfair financial gain. To address these issues, we design a contribution-based exploration-exploitation mechanism implemented as a smart contract. This mechanism cherry-picks clients with high data quality based on the Shapley value, which is calculated based on local models to evaluate the contribution of each client. Unlike other state-of-the-art security mechanisms, the proposed mechanism can adapt to various scenarios with heterogeneous data distribution and various attacks, while mitigating the effect of malicious behaviors without compromising training accuracy. To accelerate the time-consuming calculation of the Shapley value, we design a parallel computing algorithm that partitions blockchain nodes into multiple shards and distributes calculation tasks among them. The algorithm improves efficiency and tolerates potential false calculation results from malicious nodes.

computer science, information systems

Shi Wang,Jing Liu

DOI: https://doi.org/10.1109/CSCWD49262.2021.9437751

2021-01-01

Abstract:There are mainly three traditional data sharing methods. The first is the most direct data copy, the second is to share data based on a data sharing protocol, and the third is to share data through a data center. These methods have a common feature, that is, the data requester will get the data of the data owner. This may cause serious problems in data security, such as data leakage and data abuse. As a data center is a centralized organization, there are risks such as data loss and data tampering. In addition, various countries have also issued a series of policies on data security issues, such as the GDPR implemented by the European Union in 2018. The blockchain technology using a decentralized model can be used as a new attempt to solve the above problems. This paper studies a data sharing scheme based on blockchain, and proposes a model that combines the Ethereum blockchain and federated learning ideas, and uses off-chain storage methods to share data. In this model, users can upload data description information to the blockchain through smart contracts, and can retrieve the required data through keywords, and then send the data identification and data processing model to the data owner in the form of transactions. The data owner can use this model to process the data, and finally return the result to the data requester. Because the data owner is in full control of his data and does not expose the source data to the outside, the use of this model for data sharing can effectively avoid problems such as data leakage, data loss, and data abuse.

Shaoliang Peng,Wenxuan Bao,Hao Liu,Xia Xiao,Jiandong Shang,Lin Han,Shan Wang,Xiaolan Xie,Yang Xu

DOI: https://doi.org/10.1016/j.future.2022.11.010

IF: 7.307

2022-01-01

Future Generation Computer Systems

Abstract:In the era of big data, data is playing an increasingly important role in scientific study, and reliable storage and secure sharing of data have become a research hotspot. At present, centralized solutions based on data centers and cloud storage have problems with data-right confirmation and center trust. A large number of decentralized storage solutions are public systems, in which blockchain technology, as a tool for value exchange, does not solve the problems of data verification and system supervision. We propose a peer-to-peer storage system with identity access, which achieves data validation, cross-organizational data retrieval, trusted authorization, and sharing based on the consortium blockchain. Our solution proposes a peer-to-peer data storage scheme based on the consortium blockchain and a set of identity authentication mechanisms compatible with the consortium blockchain. Based on this, we propose a blockchain-based permission control scheme and a set of retrieval, authorization, and sharing processes. Finally, we implemented and tested the system to prove the feasibility of the scheme.

Peiran Wang

DOI: https://doi.org/10.48550/arXiv.2308.15095

2023-08-29

Cryptography and Security

Abstract:Blockchain has become a popular decentralized paradigm for various applications in the zero-trust environment. The core of the blockchain is the consensus protocol, which establishes consensus among all the participants. PoW (Proof-of-Work) is one of the most popular consensus protocols. However, the PoW consensus protocol which incentives the participants to use their computing power to solve a meaningless hash puzzle is continuously questioned as energy-wasting. To address these issues, we propose an efficient and secure consensus protocol based on proof of useful federated learning for blockchain (called FedChain). We first propose a secure and robust blockchain architecture that takes federated learning tasks as proof of work. Then a pool aggregation mechanism is integrated to improve the efficiency of the FedChain architecture. To protect model parameter privacy for each participant within a mining pool, a secret sharing-based ring-all reduce architecture is designed. We also introduce a data distribution-based federated learning model optimization algorithm to improve the model performance of FedChain. At last, a zero-knowledge proof-based federated learning model verification is introduced to preserve the privacy of federated learning participants while proving the model performance of federated learning participants. Our approach has been tested and validated through extensive experiments, demonstrating its performance.

Mengfan Xu,Xinghua Li

DOI: https://doi.org/10.1007/978-981-19-7242-3_10

2022-01-01

Abstract:The capacity of federated learning (FL) to tackle the issue of “Data Island” while maintaining data privacy has garnered significant attention. Nonetheless, semi-trusted cloud platforms can infer the actual data distribution of local users via intermediate characteristics such as gradients. The blockchain proposal has resolved the challenge of consistency in decentralized data sharing. It is difficult to guarantee the accuracy of the block’s data based on the existing study. To address this issue, we present a federated consensus mechanism that is both efficient and protective of privacy (FedBC). This approach can effectively limit the impact of Byzantine nodes on consistency and accuracy. During this procedure, crucial intermediate parameters, such as the gradient of the data owner, will not leak. Specifically, we proposed a gradient-similarity-based secure consensus technique (SecPBFT) to minimize Byzantine gradients. All nodes transmit the DO sub-gradients during each consensus round and cluster and partition the sub-gradients in the consensus with care. Then, the dynamic elimination of Byzantine gradients in each round of the consensus procedure is accomplished. Theoretically, we demonstrated the scheme’s security and confirmed the scheme’s efficacy. FedBC’s attack success rate is at least 50% lower than if no defense mechanisms were in place.

Xu Ma,Chen Wang,Laihua Wang

DOI: https://doi.org/10.1145/3384943.3409426

2020-01-01

Abstract:Data sharing is a vital method for data intensive and cooperative work-based applications. A central database system, which collects and stores data generated from different parties and provides open access, can not only save costs on infrastructures, but also provide consistent and uptodate data for all the participants. However, privacy and security issues also emerge especially when the shared data is highly sensitive, such as electronic medical records (EMRs). In this paper, we propose a new data sharing scheme with access control based on CP-ABE, searchable encryption, and blockchain. We realize two main goals in our scheme. First, data owners can share their data with multiple users who satisfy the access policy rather than just a single user. Second, the difficulty of the ciphertext query is overcome by means of searchable encryption technology. Most importantly, data owners do not need to interact with the data querier in the process of sharing. Both theoretical analysis and practical experiments show that the proposed scheme is secure and efficient.

Cong T. Nguyen,Dinh Thai Hoang,Diep N. Nguyen,Yong Xiao,Hoang-Anh Pham,Eryk Dutkiewicz,Nguyen Huynh Tuong

DOI: https://doi.org/10.1109/tsc.2023.3240235

IF: 11.019

2023-01-01

IEEE Transactions on Services Computing

Abstract:In this paper, we propose FedChain, a novel framework for federated-blockchain systems, to enable effective transferring of tokens between different blockchain networks. Particularly, we first introduce a federated-blockchain system together with a cross-chain transfer protocol to facilitate the secure and decentralized transfer of tokens between chains. We then develop a novel PoS-based consensus mechanism for FedChain, which can satisfy strict security requirements, prevent various blockchain-specific attacks, and achieve a more desirable performance compared to those of other existing consensus mechanisms. Moreover, a Stackelberg game model is developed to examine and address the problem of centralization in the FedChain system. Furthermore, the game model can enhance the security and performance of FedChain. By analyzing interactions between the stakeholders and chain operators, we can prove the uniqueness of the Stackelberg equilibrium and find the exact formula for this equilibrium. These results are especially important for the stakeholders to determine their best investment strategies and for the chain operators to design the optimal policy to maximize their benefits and security protection for FedChain. Simulations results then clearly show that the FedChain framework can help stakeholders to maximize their profits and the chain operators to design appropriate parameters to enhance FedChain’s security and performance.

computer science, information systems, software engineering

Mingming Meng,Yuancheng Li

DOI: https://doi.org/10.7717/peerj-cs.1027

2022-06-29

Abstract:The intelligence of energy storage devices has led to a sharp increase in the amount of detection data generated. Data sharing among distributed energy storage networks can realize collaborative control and comprehensive analysis, which effectively improves the clustering and intelligence. However, data security problems have become the main obstacle for energy storage devices to share data for joint modeling and analysis. The security issues caused by information leakage far outweigh property losses. In this article, we first proposed a blockchain-based machine learning scheme for secure data sharing in distributed energy storage networks. Then, we formulated the data sharing problem into a machine-learning problem by incorporating secure federated learning. Innovative verification methods and consensus mechanisms were used to encourage participants to act honestly, and to use well-designed incentive mechanisms to ensure the sustainable and stable operation of the system. We implemented the scheme of SFedChain and experimented on real datasets with different settings. The numerical results show that SFedChain is promising.

Xin Wu,Zhi Wang,Jian Zhao,Yan Zhang,Yu Wu

DOI: https://doi.org/10.1109/icaica50127.2020.9182705

2020-01-01

Abstract:Federated learning enables participants to collaborate on model training without directly exchanging raw data. Existing federated learning methods often follow the parameter server architecture, using third-party collaborators to provide aggregation and key management. In this case, the central node obtains information uploaded by other nodes. Studies have shown that with this information, the central node can infer important information, which leads to data privacy leakage. In addition, the failure on the server node can also cause the entire system to fail. We designed a completely decentralized federated learning framework based on blockchain, thereby avoiding the privacy and failure risk of the centralized structure. Moreover, we develop the corresponding model training approach. Compared with the existing methods, our framework performs better in terms of accuracy, robustness, and privacy.

Guangfu Wu,Haiping Wang,Zi Yang,Daojing He,Sammy Chan

DOI: https://doi.org/10.1007/s10916-024-02120-9

IF: 4.92

2024-11-24

Journal of Medical Systems

Abstract:In recent years, Electronic health records (EHR) has gradually become the mainstream in the healthcare field. However, due to the fact that EHR systems are provided by different vendors, data is dispersed and stored, which leads to the phenomenon of data silos, making medical information too fragmented and bringing some challenges to current medical services. Therefore, in view of the difficulties in sharing EHR between medical institutions, the risk of privacy leakage, and the lack of EHR usage control by patients, an EHR sharing model based on consortium blockchain is proposed in this paper. Firstly, the Interplanetary File System is combined with consortium blockchain, which forms a hybrid storage scheme of EHR, this technology effectively improves data security, privacy protection, and operational efficiency. Secondly, the model combines unidirectional multi-hop conditional proxy re-encryption based on type and identity with distributed key generation technology to achieve secure EHR sharing with fine grained control. At the same time, users are required to link the operation records of EHR, so as to realize the traceability of EHR usage. A dynamic Byzantine fault-tolerant algorithm based on reputation and clustering is then proposed to solve the problems of arbitrary master node selection, high latency and low throughput of PBFT, enabling the nodes to reach consensus more efficiently. Finally, the model is analyzed in terms of security and user control, showing that the model is less energy intensive in terms of communication overhead and time consumption, and can effectively achieve secure sharing between medical data.

health care sciences & services,medical informatics

Shiwei Xu,Ao Sun,Zhengwei Ren,Yizhi Zhao,Qiufen Ni,Yan Tong

DOI: https://doi.org/10.1007/s10878-023-01047-0

Abstract:Consortium blockchains offer privacy for members while allowing supervision peers access to on-chain data under certain circumstances. However, current key escrow schemes rely on vulnerable traditional asymmetric encryption/decryption algorithms. To address this issue, we have designed and implemented an enhanced post-quantum key escrow system for consortium blockchains. Our system integrates NIST post-quantum public-key encryption/KEM algorithms and various post-quantum cryptographic tools to provide a fine-grained, single-point-of-dishonest-resistant, collusion-proof and privacy-preserving solution. We also offer chaincodes, related APIs, and invoking command lines for development. Finally, we perform detailed security analysis and performance evaluation, including the consumed time of chaincode execution and the needed on-chain storage space, and we also highlight the security and performance of related post-quantum KEM algorithms on consortium blockchain.

Tao Feng,Xusheng Wang,Chunyan Liu,Junli Fang

DOI: https://doi.org/10.1155/2021/6630291

IF: 1.968

2021-01-13

Security and Communication Networks

Abstract:With the rapid development of information technology, different organizations cooperate with each other to share data information and make full use of data value. Not only should the integrity and privacy of data be guaranteed but also the collaborative computing should be carried out on the basis of data sharing. In this paper, in order to achieve the fairness of data security sharing and collaborative computing, a security data collaborative computing scheme based on blockchain is proposed. A data storage query model based on Bloom filter is designed to improve the efficiency of data query sharing. The MPC contract is designed according to the specific requirements. The participants are rational, and the contract encourages the participants to implement the agreement honestly to achieve fair calculation. A secure multiparty computation based on secret sharing is introduced. The problem of identity and vote privacy in electronic voting is solved. The scheme is analyzed and discussed from storage expansion, anticollusion, verifiability, and privacy.

computer science, information systems,telecommunications

Yanping Wang,Xiaosong Zhang,Xiaofen Wang,Teng Hu,Peng Lu,Mingyong Yin

DOI: https://doi.org/10.1155/2022/1317626

IF: 1.968

2022-01-01

Security and Communication Networks

Abstract:With the increasingly prominent value of big data, data sharing within enterprises and organizations has become increasingly popular, and many institutions have established data centers to achieve effective data storage and sharing. Meanwhile, cyberspace data security and privacy have become the most critical issue that people are concerned about since shared data often involves commercial secrets and sensitive information. At present, data encryption techniques have been applied to protect the security of the sensitive data stored in and shared by the data centers. However, the challenges of efficient data sharing, secure management of decryption keys, deduplication of the plaintext, and transparency and auditability of the data access arise. These challenges may obstruct the development of data sharing in data-driven systems. To meet these challenges, we propose a secure and trustworthy data sharing scheme and introduce blockchain, proxy re-encryption (PRE), and trusted execution environments (TEEs) into the data-driven systems. Our scheme mainly enables (1) automatic distribution and management of the decryption keys, (2) reduction of the reduplicative data, and (3) trustworthy data sharing and recording. Finally, we implement the proposed scheme and compare it with other existing schemes. It is demonstrated that our scheme reduces the computation and communication overhead.

Dong Mao,Qiongqian Yang,Hongkai Wang,Zuge Chen,Chen Li,Yubo Song,Zhongyuan Qin

DOI: https://doi.org/10.3390/electronics13061028

IF: 2.9

2024-03-10

Electronics

Abstract:Federated learning (FL) is increasingly challenged by security and privacy concerns, particularly vulnerabilities exposed by malicious participants. There remains a gap in effectively countering threats such as model inversion and poisoning attacks in existing research. To address these challenges, this paper proposes the Effective Private-Protected Federated Learning Aggregation Algorithm (EPFed), a framework that utilizes a blockchain platform, homomorphic encryption, and secret sharing to fortify the data privacy and computational efficiency in a federated learning environment. EPFed works by establishing "trust groups" through the unique integration of a Chinese Remainder Theorem-based secret sharing scheme with Paillier homomorphic encryption, streamlining secure model parameter exchange and aggregation while minimizing the computational load. Our performance-driven aggregation strategy leverages local performance metrics to safeguard against malicious contributions, ensuring both the integrity and efficiency of the learning process. The evaluations demonstrate that EPFed achieves a remarkable accuracy rate of 92.5%, thereby confirming the advanced nature of the proposed solution in addressing the pressing challenges of FL.

engineering, electrical & electronic,computer science, information systems,physics, applied

Xiaogang Cheng,Ren Guo

2024-09-13

Abstract:Federated learning can solve the privacy protection problem in distributed data mining and machine learning, and how to protect the ownership, use and income rights of all parties involved in federated learning is an important issue. This paper proposes a federated learning data ownership confirmation mechanism based on blockchain and smart contract, which uses decentralized blockchain technology to save the contribution of each participant on the blockchain, and distributes the benefits of federated learning results through the blockchain. In the local simulation environment of the blockchain, the relevant smart contracts and data structures are simulated and implemented, and the feasibility of the scheme is preliminarily demonstrated.

Cryptography and Security

Banghong Qin,Jianwei Liu,Xinxin Xing,Weizhi Meng,Yizhong Liu

DOI: https://doi.org/10.1109/blockchain62396.2024.00051

2024-01-01

Abstract:Cloud data storage service has drawn increasing interest from both academics and industry in recent years due to its efficiency and low cost. To protect sensitive data leakage, attribute-based encryption is an efficient method for achieving fine-grained access control over encrypted data. However, these systems often use a centralized server to store ciphertext, lacking Byzantine resilience and performance bottlenecks. In this work, we propose a novel data access control scheme that applies blockchain and secret sharing to address these concerns. Combining secret sharing, Erasure Code, and blockchain, we achieve Byzantine fault tolerance for both Byzantine data owners and Byzantine nodes. The security and experimental analysis for the system is also presented. The test results indicate that the time cost and bandwidth usage both grow linearly as the number of nodes and attributes increases.

Zhitao Guan,Naiyu Wang,Xunfeng Fan,Xueyan Liu,Longfei Wu,Shaohua Wan

DOI: https://doi.org/10.1145/3408309

IF: 5.3

2021-02-01

ACM Transactions on Internet Technology

Abstract:The advances of Internet technology has resulted in the rapid and pervasive development of e-commerce, which has not only changed the production and operation mode of many enterprises, but also affected the economic development mode of the whole society. This trend has incurred a strong need to store and process large amounts of sensitive data. The traditional data storage and search solutions cannot meet such requirements. To tackle this problem, in this article, we proposed Consortium Blockchain-based Distributed Secure Search (CBDSS) Scheme over encrypted data in e-Commerce environment. By integrating the blockchain and searchable encryption model, sensitive data can be effectively protected. The consortium blockchain can ensure that only authorized nodes can join the system. To fairly assign nodes for the search tasks, we developed an endorsement strategy in which two agent roles are set up to divide and match the search tasks with the virtual resources according to the load capacity of each node. The security analysis and experiments are conducted to evaluate the performance of our proposed scheme. The evaluation results have proved the reliability and security of our scheme over existing methods.

computer science, information systems, software engineering