Design and Analysis of a Forward Security Blindcoin Protocol

Abstract

Abstract: To prevent attackers from discovering the relationship between Bitcoin addresses and virtual user identity information, many anonymization and currency mixing techniques have been developed for cryptographic protocols. At present, the common centralized currency mixing protocols include the Mixcoin protocol and the Blindcoin protocol, but these protocols have problems such as long time delay, large number of confusing requesters, and vulnerability to denial of service attacks and adaptive attacks. To address these issues, we design a Blindcoin protocol that is efficient, storageinefficient, and resistant to adaptive attacks. This scheme not only uses blind signature technology to provide internal privacy for centralized currency mixing, but also achieves forward security through signature key update, which can prevent adaptive attacks. In addition, through the security analysis and performance evaluation, the safety and effectiveness of the scheme are illustrated.

Key words: privacy protection, blockchain, Blindcoin, blind signature, forwardsecurity

摘要： 为防止攻击者发现比特币地址与虚拟用户身份信息之间的关系，针对密码协议已经出现了许多匿名化和混币技术.目前常见的中心化混币协议有Mixcoin协议、Blindcoin协议，但是这些协议存在时延较长、混淆请求者多、易遭受拒绝服务攻击、自适应攻击等问题.为解决这些问题，设计了一种具有高效的、存储效率低并且防自适应攻击的盲币协议.该方案利用盲签名技术不但为中心化混币提供了内部隐私性，而且通过签名密钥更新实现了前向安全性，能够防止自适应攻击.此外，通过安全性分析和性能评估，证明了方案的安全性和有效性.

关键词: 隐私保护, 区块链, 盲币, 盲签名, 前向安全

董顺宇, 唐波, 刘金会, . 一种前向安全的盲币协议设计与分析[J]. 信息安全研究, 2022, 8(10): 974-.

References

参考文献
［1］Nakamoto S. Bitcoin: A peertopeer electronic cash system［JOL］. Decentralized Business Review, 2008 ［20220918］. https:www.debr.ioarticle21260.pdf［2］Henry R, Herzberg A, Kate A.Blockchain access privacy: Challenges and directions［J］.  IEEE Security & Privacy, 2018, 16(4): 3845［3］Maxwell G. CoinJoin: Bitcoin privacy for the real world［JOL］. 2013 ［20220918］. https:bitcointalk.orgindex.phpAnderson R. Invited lecture［C］ Proc of the 4th Annual Conf on Computer and Communications Security. New York: ACM, 1997［4］Bonneau J, Narayanan A, Miller A, et al. Mixcoin: Anonymity for bitcoin with accountable mixes［C］ Proc of the Int Conf on Financial Cryptography and Data Security. Berlin: Springer, 2014: 486504［5］Valenta L, Rowan B. Blindcoin: Blinded, accountable mixes for bitcoin［C］ Proc of the Int Conf on Financial Cryptography and Data Security. Berlin: Springer, 2015: 112126［6］Boneh D, Drijvers M, Neven G. Compact multisignatures for smaller blockchains［C］ Proc of the Int Conf on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2018: 435464［7］左黎明,胡凯雨,张梦丽,等.一种具有双向安全性的基于身份的短签名方案［J］. 信息网络安全, 2018, 18(7): 4754 ［8］白国柱, 张文俊, 赵鹏. 智能合约隐私保护技术发展现状研究［J］.  信息安全研究, 2022, 8(5): 484491［9］江汉祥 苏玉海. 数字货币洗钱模式及追踪分析［J］.  信息安全研究, 2021, 7(10): 977983［10］Bonneau J, Miller A, Clark J, et al. Sok: Research perspectives and challenges for bitcoin and cryptocurrencies［C］ Proc of the 2015 IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2015: 104121［11］Heilman E, Baldimtsi F, Goldberg S. Blindly signed contracts: Anonymous onblockchain and offblockchain bitcoin transactions［C］ Proc of the Int Conf on Financial Cryptography and Data Security. Berlin: Springer, 2016: 4360［12］Henry R, Herzberg A, Kate A.Blockchain access privacy: Challenges and directions［J］.  IEEE Security & Privacy, 2018, 16(4): 3845［13］Ruffing T, MorenoSanchez P, Kate A.CoinShuffle: Practical decentralized coin mixing for bitcoin［C］ Proc of the European Symp on Research in Computer Security. Berlin: Springer, 2014: 345364［14］张宪, 蒋钰钊, 闫莺. 区块链隐私技术综述［J］.  信息安全研究, 2017, 3(11): 981989［15］Li Y, Yang G,Susilo W, et al. Traceable Monero: Anonymous cryptocurrency with enhanced accountability［J］.  IEEE Trans on Dependable and Secure Computing, 2019, 18(2): 679691［16］Bowe S,Gabizon A, Green M D. A multiparty protocol for constructing the public parameters of the Pinocchio zkSNARK［C］ Proc of the Int Conf on Financial Cryptography and Data Security.  Berlin: Springer, 2018: 6477［17］Canetti R, Fischlin M. Universally composable commitments［C］ Proc of annual Int Cryptology Conf. Berlin: Springer, 2001: 1940［18］Schnorr C P. Security of blind discrete log signatures against interactive attacks［C］ Proc of the Int Conf on Information and Communications Security. Berlin: Springer, 2001: 112［19］Schnorr C P. Efficient identification and signatures for smart cards［C］ Proc of the Conf on the Theory and Application of Cryptology. Berlin: Springer, 1989: 239252［20］Baldimtsi F, Lysyanskaya A. On the security of onewitness blind signature schemes［C］ Proc of the Int Conf on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2013: 8299［21］Pointcheval D, Stern J. Security arguments for digital signatures and blind signatures［J］.  Journal of Cryptology, 2000, 13(3): 361396［22］Anderson R. Invited lecture［C］ Proc of the 4th Annual Conf on Computer and Communications Security. New York: ACM, 1997［23］Bellare M, Miner S K. A forwardsecure digital signature scheme［C］ Proc of the Annual Int Cryptology Conf. Berlin: Springer, 1999: 431448［24］Song D X. Practical forward secure group signature schemes［C］ Proc of the 8th ACM Conf on Computer and Communications Security. New York: ACM, 2001: 225234［25］Bender A, Katz J,Morselli R. Ring signatures: Stronger definitions, and constructions without random oracles［C］ Proc of the Theory of Cryptography Conf. Berlin: Springer, 2006: 6079［26］Chaum D. Blind signatures for untraceable payments［C］ Proc of the Advances in Cryptology. Berlin: Springer, 1983: 199203［27］Ji S, Mittal P, Beyah R. Graph data anonymization, deanonymization attacks, and deanonymizability quantification: A survey［J］.  IEEE Communications Surveys & Tutorials, 2016, 19(2): 13051326［28］Tran M,Luu L, Kang M S, et al. Obscuro: A bitcoin mixer using trusted execution environments［C］ Proc of the 34th Annual Computer Security Applications Conf. Piscataway, NJ: IEEE, 2018: 692701［29］Katz J, Loss J, Rosenberg M. Boosting the security of blind signature schemes［C］ Proc of the Int Conf on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2021: 468492［30］张席, 杭欢花. 一种改进的前向安全盲签名方案［J］. 武汉大学学报, 2011, 57(5): 434438［31］高伟, 李飞, 徐邦海. 依托BLS签名的基于身份盲签名方案［J］. 计算机应用, 2008 (11): 28272828, 2831

[1]	. [J]. Journal of Information Security Reserach, 2022, 8(8): 760-.
[2]	. The Detection Method for Token Trading Vulnerability and Authority Transfer Vulnerability Based on Symbolic Execution [J]. Journal of Information Security Reserach, 2022, 8(7): 632-.
[3]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 605-.
[4]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 613-.
[5]	. DB-in-DB: A New Blockchain Database Architecture [J]. Journal of Information Security Reserach, 2022, 8(5): 429-.
[6]	. Research on Key Issues of Blockchain Experimental Platform for Trusted Transactions [J]. Journal of Information Security Reserach, 2022, 8(5): 437-.
[7]	. [J]. Journal of Information Security Reserach, 2022, 8(5): 452-.
[8]	. Design of a Smart Contract Specific Language for Financial Field [J]. Journal of Information Security Reserach, 2022, 8(5): 468-.
[9]	. Research on BPMN Smart Contract Paradigm for Credit Service [J]. Journal of Information Security Reserach, 2022, 8(5): 475-.
[10]	. [J]. Journal of Information Security Reserach, 2022, 8(5): 484-.
[11]	. Secure Sharing Scheme of Sensitive Data Based on Blockchain [J]. Journal of Information Security Reserach, 2022, 8(4): 364-.
[12]	. An Architecture Based on Multi Class SubChains for Government Data Quality Management [J]. Journal of Information Security Reserach, 2022, 8(4): 374-.
[13]	. Research on Smart Contract Method in the Framework of Secure Multi-party Computation [J]. Journal of Information Security Reserach, 2022, 8(10): 956-.
[14]	. Efficient Distributed Anonymous Heterogeneous Cross-domain Authentication Scheme for Industrial Internet of Things [J]. Journal of Information Security Reserach, 2022, 8(10): 964-.
[15]	. A Credit Ranking Method of Notary Mechanism Based on Improved PageRank Algorithm [J]. Journal of Information Security Reserach, 2022, 8(1): 9-.