后量子时代区块链中哈希函数比较研究

信息安全研究 ›› 2024, Vol. 10 ›› Issue (3): 223-.

后量子时代区块链中哈希函数比较研究

刘昂1,2文津3许盛伟4陈颖5秦晓宏5蓝浩书5

1(北京电子科技学院网络信息化管理处北京100070)
2(北京邮电大学网络空间安全学院北京100876)
3(北京电子科技学院网络空间安全系北京100070)
4(北京电子科技学院信息安全研究所北京100070)
5(北京电子科技学院密码科学与技术系北京100070)

出版日期:2024-03-23 发布日期:2024-03-08
通讯作者: 许盛伟博士,教授,博士生导师.主要研究方向为大数据安全、网络信任体系、密码应用. 18510529691@163.com
作者简介:刘昂博士研究生,工程师.主要研究方向为密码学、区块链. liuang0826@163.com 文津硕士研究生.主要研究方向为信息安全和人工智能安全. wenj_2@163.com 许盛伟博士,教授,博士生导师.主要研究方向为大数据安全、网络信任体系、密码应用. 18510529691@163.com 陈颖博士,教授,硕士生导师.主要研究方向为数据挖掘、人工智能和图像处理. ychen@besti.edu.cn 秦晓宏硕士,讲师.主要研究方向为信息隐藏及密码技术. qinxh@besti.edu.cn 蓝浩书硕士研究生.主要研究方向为区块链. 1015314926@qq.com

A Comparative Research on Hash Function in Blockchain in Post Quantum Era#br#
#br#

Liu Ang1,2, Wen Jin3, Xu Shengwei4, Chen Ying5, Qin Xiaohong5, and Lan Haoshu5#br#

#br#

1(Network and Information Management Division, Beijing Electronic Science and Technology Institute, Beijing 100070)
2(School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing 100876)
3(Department of Cyberspace Security, Beijing Electronic Science and Technology Institute, Beijing 100070)
4(Institute of Information Security, Beijing Electronic Science and Technology Institute, Beijing 100070)
5(Department of Cryptologic Science and Technology, Beijing Electronic Science and Technology Institute, Beijing 100070)

Online:2024-03-23 Published:2024-03-08

摘要/Abstract

摘要： 哈希函数在区块链中扮演着安全基石的重要角色,对区块链系统中共识机制的构建和数据完整性保护发挥着不可替代的作用.然而随着量子技术的加速发展,量子计算机的出现将对经典哈希函数构成严重安全威胁,基于量子算法的并行计算特性,Grover量子算法在寻找哈希冲突时较经典搜索算法能提供2次加速,从而能有效实施针对经典哈希函数的量子计算攻击,例如挖矿攻击、伪造攻击,对区块链的安全构成严重挑战.阐述了哈希函数的抗原像性、弱抗碰撞性及强抗碰撞性,分析了针对经典哈希函数的量子计算攻击主要形式：原像攻击和第二原像攻击.从抗量子安全的角度对区块链中的哈希函数展开比较研究,从构造、输入、输出、优点、缺点等方面出发,对5类典型哈希算法进行分析与对比,并对区块链中的哈希函数提出设计建议,为后量子时代区块链中的哈希函数的设计提供有益参考.

关键词: 量子计算, 区块链, 哈希函数, 量子, Merkle树

Abstract: Hash functions play an important role as the cornerstone of security in blockchain systems, playing an irreplaceable role in building consensus mechanisms and protecting data integrity. However, with the accelerated development of quantum technology, the emergence of quantum computers will pose a serious security threat to classical hash functions. Based on the parallel characteristics of quantum computing, Grover’s algorithm can provide squared acceleration compared with the classical counterpart in searching for hash conflicts. Quantum algorithms represented by the Grover’s algorithm can effectively implement quantum computing attacks against classical hash functions, such as mining attacks and forgery attacks. This paper explains the original image collision resistance, weak collision resistance and strong collision resistance of hash functions, and analyzes the main forms of quantum computing attacks against classical hash functions: preimage collision attacks and second image collision attacks. This paper conducts a comparative study on hash functions in blockchain from the perspective of antiquantum security, and five typical hash functions are analyzed and compared from the aspects of construction, input, output, advantages and disadvantages, and proposes the advice for designing hash functions in blockchain. Overall, this paper provides useful references for the design of hash functions in blockchain in the postquantum era.

Key words: quantum computing, blockchain, hash function, quantum, Merkle tree

中图分类号:

TP309

刘昂, 文津, 许盛伟, 陈颖, 秦晓宏, 蓝浩书, . 后量子时代区块链中哈希函数比较研究[J]. 信息安全研究, 2024, 10(3): 223-.

参考文献

［1］Nakamoto S. Bitcoin: A peertopeer electronic cash system［EBOL］. 2008［20230606］. https:bitcoin.orgbitcoin.pdf［2］国务院.“十三五”国家信息化规划［EBOL］. ［20230606］. https:www.gov.cnzhengcecontent20161227content_5153411.htm ［3］新华社.习近平主持中央政治局第十八次集体学习并讲话［EBOL］. ［20230606］. https:www.gov.cnxinwen20191025content_5444957.htm ［4］新华社.中华人民共和国国民经济和社会发展第十四个五年规划和2035年远景目标纲要［EBOL］. ［20230606］. https:www.gov.cnxinwen20210313content_5592681.htm ［5］Kan J, Chen S, Huang X. Improve blockchain performance using graph data structure and parallel mining［C］ Proc of the 1st IEEE Int Conf on Hot InformationCentric Networking (HotICN). Piscataway, NJ: IEEE, 2018: 173178 ［6］Harvey C R, Moorman C, Toledo M. How blockchain will change marketing as we know it［EBOL］. ［20230718］. http:dx.doi.org10.2139ssrn.3257511 ［7］Abd ElLatif A A, AbdElAtty B, Mehmood I, et al. Quantuminspired blockchainbased cybersecurity: Securing smart edge utilities in IoTbased smart cities［J］. Information Processing & Management, 2021, 58(4): 102549［8］Bhatia V, Ramkumar K R. An efficient quantum computing technique for cracking RSA using Shor’s algorithm［C］ Proc of the 5th IEEE Int Conf on Computing Communication and Automation (ICCCA). Piscataway, NJ: IEEE, 2020: 8994［9］Kumar A, Ottaviani C, Gill S S, et al. Securing the future internet of things with postquantum cryptography［J］. Security and Privacy, 2022, 5(2): e200 ［10］Lee W K, Jang K, Song G, et al. Efficient implementation of lightweight hash functions on GPU and quantum computers for IoT applications［J］. IEEE Access, 2022, 10: 5966159674［11］Mosca M. Cybersecurity in an era with quantum computers: Will we be ready［J］. IEEE Security & Privacy, 2018, 16(5): 3841 ［12］Ravi P, Chattopadhyay A, Bhasin S. Security and quantum computing: anoverview［C］ Proc of the 23rd IEEE Latin American Test Symposium (LATS). Piscataway, NJ: IEEE, 2022: 16 ［13］Huang H, Sun X, Xiao F, et al. Blockchainbased eHealth system for auditable EHRs manipulation in cloud environments［J］. Journal of Parallel and Distributed Computing, 2021, 148: 4657 ［14］钟锦敏. 基于中间相遇的哈希函数原像攻击［D］. 上海: 上海交通大学, 2011［15］王小云. 区块链的起源性技术［EBOL］. ［20230606］. https:www.sohu.coma372366766_120160794 ［16］Hasanova H, Baek U, Shin M, et al. A survey on blockchain cybersecurity vulnerabilities and possible countermeasures［J］. International Journal of Network Management, 2019, 29(2): e2060［17］Zoli U G. Cryptocurrency in a globalized world: A comparative analysis of Bitcoin as a financial asset［EBOL］. 2017 ［20230606］. http:tesi.luiss.it20947［18］Gibney E. Hello quantum world! Google publishes landmark quantum supremacy claim［J］. Nature, 2019, 574(7779): 461463［19］FernandezCarames T M, FragaLamas P. Towards postquantum blockchain: A review on blockchain cryptography resistant to quantum computing attacks［J］. IEEE Access, 2020, 8: 2109121116［20］田盛平. 基于量子计算的Hash安全性研究［D］. 深圳: 深圳大学, 2020 ［21］Grover L K. A fast quantum mechanical algorithm for database search［C］ Proc of the 28th Annual ACM Symp on Theory of Computing. New York: ACM, 1996: 212219 ［22］Wang X, Lai X, Feng D, et al. Cryptanalysis of the hash functions MD4 and RIPEMD［C］ Proc of Int Conf on Advances in CryptologyEurocrypt. Berlin: Springer, 2005: 118 ［23］Brassard G, Hyer P, Tapp A. Quantum cryptanalysis of hash and clawfree functions［C］ Proc of the 3rd Latin American Symp Campinas. Berlin: Springer, 1998: 163169［24］Stevens H. Hans Peter Luhn and the birth of the hashing algorithm［J］. IEEE Spectrum, 2018, 55(2): 4449 ［25］Wenli L, Jitianbai Z. The power consumption analysis of Java card on different cryptographic algorithm［C］ Proc of 2020 Int Conf on Big Data, Artificial Intelligence and Internet of Things Engineering (ICBAIE). Piscataway, NJ: IEEE, 2020: 150153 ［26］Underwood S. Blockchain beyond bitcoin［J］. Communications of the ACM, 2016, 59(11): 1517［27］Kiktenko E O, Pozhar N O, Anufriev M N, et al. Quantumsecured blockchain［J］. Quantum Science and Technology, 2018, 3(3): 035004［28］Krawczyk H. LFSRbased hashing and authentication［C］ Proc of Annual Int Cryptology Conf. Berlin: Springer, 1994: 129139［29］Nevelsteen W, Preneel B. Software performance of universal hash functions［C］ Proc of Int Conf on the Theory and Applications of Cryptographic Techniques. Berlin: Springer, 1999: 2441 ［30］Wen X J, Chen Y Z, Fan X C, et al. Quantum blockchain system［J］. Modern Physics Letters B, 2021, 35(20): 2150343［31］Hilbert D. Mathematical problems［J］. Bulletin of the American Mathematical Society, 2000, 37(4): 407436［32］Krendelev S, Sazonova P. Parametric hash function resistant to attack by quantum computer［C］ Proc of 2018 Federated Conf on Computer Science and Information Systems (FedCSIS). Piscataway, NJ: IEEE, 2018: 387390

[1]	邱勤, 张高山, 徐天妮, 倪宁宁, 朱华, . 算力网络安全信链技术研究与应用[J]. 信息安全研究, 2023, 9(E2): 87-.
[2]	蒋云浩, 徐梓傑, 徐伟, . 去中心化的边缘驱动视频共享网络虚拟货币安全流动模型[J]. 信息安全研究, 2023, 9(E1): 64-.
[3]	杜君, 王杨, 郑锟, 贾胜男, . 可信计算3.0创新发展与应用实践[J]. 信息安全研究, 2023, 9(E1): 179-.
[4]	滕亮, 陈兵, 赵开斌, 徐涛, 李京昆, 洪薇, . 基于区块链的医疗数据安全共享模型研究与应用[J]. 信息安全研究, 2023, 9(9): 884-.
[5]	王志强, 王姿旖, 王庆德, 徐华福, . 基于LightGBM的区块链异常交易检测技术研究[J]. 信息安全研究, 2023, 9(9): 877-.
[6]	沈传年, 徐彦婷, 陈滢霞. 隐私计算关键技术及研究展望[J]. 信息安全研究, 2023, 9(8): 714-.
[7]	靳军, 蔡维德, 乔亚男, 薄钧戈, 李洁, . 面向小微企业的区块链技术征信新模式探索[J]. 信息安全研究, 2023, 9(8): 814-.
[8]	李宗维, 孔德潮, 牛媛争, 彭红利, 李晓琦, 李文凯, . 基于人工智能和区块链融合的隐私保护技术研究综述[J]. 信息安全研究, 2023, 9(6): 557-.
[9]	李洋, 王萌萌, 朱建明, 王秀利, 王友卫, . 一种基于Paillier和FO承诺的新型区块链隐私保护方案[J]. 信息安全研究, 2023, 9(4): 306-.
[10]	余晗, 梁音, 宋继勐, 李何筱, 奚溪, 原洁璇, . 数据安全共享技术发展综述及在能源电力领域应用研究[J]. 信息安全研究, 2023, 9(3): 208-.
[11]	余晗, 李俊妮, 刘文思, 宣东海, . 基于区块链的能源数据共享访问控制方案[J]. 信息安全研究, 2023, 9(3): 220-.
[12]	余晗, 李俊妮, 吴海涵, 原洁璇, 史嘉伟, 李元诚, . 面向能源大数据的链上链下数据监管方案研究[J]. 信息安全研究, 2023, 9(3): 235-.
[13]	王志强, 王姿旖, 倪安发, . 基于Stacking集成学习的区块链异常交易检测技术研究[J]. 信息安全研究, 2023, 9(2): 98-.
[14]	刘萌, 陈丹伟, 马圣东, . 基于区块链可追溯的个人隐私数据共享技术研究[J]. 信息安全研究, 2023, 9(2): 109-.
[15]	张晴晴, 田潇, 田锦, . 基于区块链预言机的车联网可信身份方案研究[J]. 信息安全研究, 2023, 9(2): 120-.