Government Data Catalog Security Sharing Model Based on Editable Blockchain

Journal of Information Security Reserach ›› 2025, Vol. 11 ›› Issue (10): 966-.

Zhao Yuqi1,2, Song Zhiming1,2,3,4, Song Junrong1,2, Jiang Rong1,2, Tian Shenghu1,2, and Tong Hui1,2

1(School of Information, Yunnan University of Finance and Economics, Kunming 650221)
2(Yunnan Key Laboratory of Service Computing(Yunnan University of Finance and Economics), Kunming 650221)
3(Yunnan Key Laboratory of Smart City and Cyberspace Security(Yuxi Normal University), Yuxi, Yunnan 653100)
4(Yunnan Provincial Key Laboratory of Forensic Science(Yunnan Police College), Kunming 650223)

Online:2025-10-15 Published:2025-10-17

基于可编辑区块链的政府数据目录安全共享模型

赵雨琦1,2宋智明1,2,3,4宋俊蓉1,2姜茸1,2田生湖1,2童慧1,2

1(云南财经大学信息学院昆明650221)
2(云南省服务计算重点实验室(云南财经大学)昆明650221)
3(云南省智慧城市网络空间安全重点实验室(玉溪师范学院)云南玉溪653100)
4(云南省刑事科学技术重点实验室(云南警官学院)昆明650223)

通讯作者: 宋智明博士，副教授.主要研究方向为信息安全及区块链. zz2145@ynufe.edu.cn
作者简介:赵雨琦硕士研究生.主要研究方向为信息安全及区块链. zhaoyq0201@163.com 宋智明博士，副教授.主要研究方向为信息安全及区块链. zz2145@ynufe.edu.cn 宋俊蓉博士，副教授.主要研究方向为多方安全计算及联邦学习. 916525667@qq.com 姜茸博士，教授.主要研究方向为信息安全及区块链. jiangrong@ynufe.edu.cn 田生湖博士，副教授.主要研究方向为医疗大数据安全及区块链. tshuyx@163.com 童慧硕士研究生.主要研究方向为信息安全及区块链. 122447318@qq.com

Abstract

Abstract: As government demand for data sharing rises, ensuring data security and reliability has become critical. This paper proposes a secure sharing model for government data catalogs using editable blockchain, which facilitates collaborative updates both onchain and offchain, incorporates finegrained editing permissions, and implements robust security controls. The model employs a dualtrapdoor chameleon hash function with a temporary trapdoor key for onchain updates, addressing the problem that traditional key splitting and recovery schemes cannot balance security and efficiency. Additionally, it introduces an editing permission authorization mechanism that combines user IDbased multiinstitution attribute encryption with temporary trapdoor keys, ensuring accurate permission management across departments. A thorough security analysis confirms the model’s effectiveness in mitigating various security threats. The analysis reveals that the proposed model significantly enhances the trustworthiness of government data sharing by effectively addressing security challenges and ensuring data integrity. These findings highlight the potential of editable blockchain technology in transforming how government entities manage and share sensitive information.

Key words: government data catalog, editable blockchain, temporary trapdoor, multiattribute authorization agencies, attribute revocation, accumulator

摘要： 随着政府对数据共享的需求不断增加，确保数据的安全可信性成为一项紧迫的挑战.提出了一种基于可编辑区块链的政府数据目录安全共享模型，以实现链上链下的协同更新、编辑权限的细粒度授权和安全控制.首先，模型引入双陷门变色龙哈希函数，利用临时陷门密钥作为链上数据目录更新的控制机制，解决了传统密钥分割与恢复方案无法兼顾安全和效率的问题.其次，针对政府复杂的组织架构和人员配置，提出了基于用户ID的多机构属性加密算法与临时陷门密钥相结合的编辑权限授权机制，克服了传统授权方案的中心化及粗放问题.此外，设计了基于密码学累加器的编辑权限控制机制，以安全释放编辑权限并防止属性串谋攻击.详细描述了模型的架构，并通过分析与实验验证了其安全性和有效性.最后，讨论了模型的适用性.结果表明该模型在政府数据目录动态更新中具有实际价值和参考意义.

关键词: 政府数据目录, 可编辑区块链, 临时陷门, 多属性授权机构, 属性撤销, 累加器

CLC Number:

TP309

赵雨琦, 宋智明, 宋俊蓉, 姜茸, 田生湖, 童慧, . 基于可编辑区块链的政府数据目录安全共享模型[J]. 信息安全研究, 2025, 11(10): 966-.

References

［1］孙杨, 陈晏鹏, 孙宗臣, 等. 面向政务领域的可信数据交换系统设计与实现［J］. 信息安全研究, 2024, 10(E1): 146150［2］余益民, 陈韬伟, 段正泰, 等. 基于区块链的政务信息资源共享模型研究［J］. 电子政务, 2019 (4): 5867［3］张翠梅, 方宜. 区块链架构下政府数据开放共享治理研究［J］. 南通大学学报: 社会科学版, 2021, 37(6): 6070［4］Ren Y, Cai X, Hu M. Privacypreserving redactable blockchain for Internet of things［J］. Security and Communication Networks, 2021 (1): 4485311［5］张宇, 赵娟, 李强. 基于区块链的电力数据单陷门可编辑方案［J］. 电力工程技术, 2022, 17(5): 24552465［6］Huang K, Zhang X, Mu Y, et al. Building redactable consortium blockchain for industrial Internetofthings［J］. IEEE Trans on Industrial Informatics, 2019,15(6): 36703679［7］罗彬, 温金明, 吴永东, 等. 可编辑区块链的研究现状与挑战［J］. 信息安全学报, 2023, 8(4): 6284［8］Krawczyk H M, Rabin T D. Chameleon hashing and signatures［C］ Proc of the 28th Annual ACM Symp on Theory of Computing (STOC). New York: ACM, 1996: 243253［9］Ateniese G, Magri B, Venturi D, et al. Redactableblockchain: Rewriting history in bitcoin and friends［C］ Proc of the 2017 IEEE European Symp on Security and Privacy (Euro S&P). Piscataway, NJ: IEEE, 2017: 111126［10］李佩丽, 徐海霞, 马添军, 等. 可更改区块链技术研究［J］. 密码学报, 2018, 5(5): 501509［11］Huang K, Zhang X, Mu Y, et al. Scalable andredactable blockchain with update and anonymity［J］. Information Sciences, 2021, 546: 2541［12］Yang W, Guan Z, Wu L, et al. Autonomous andprivacypreserving energy trading based on redactable blockchain in smart grid［C］ Proc of the 2020 IEEE Global Communications Conference. Piscataway, NJ: IEEE, 2020: 16［13］Bethencourt J, Sahai A, Waters B. Ciphertextpolicy attributebased encryption［C］ Proc of the IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2007: 321334 ［14］Zhang T, Zhang L, Wu Q, et al. Redactable blockchainenabled hierarchical access control framework for data sharing in electronic medical records［J］. IEEE Systems Journal, 2022, 17(2): 19621973［15］Tian Y, Li N, Li Y, et al. Policybased chameleon hash for blockchain rewriting with blackbox accountability［COL］ Proc of the Annual Computer Security Applications Conference. 2020: 813828  ［20250913］. https:dl.acm.orgdoiabs10.11453427228.3427247［16］Derler D, Samelin K, Slamanig D, et al. Finegrained and controlled rewriting in blockchains: Chameleonhashing gone attributebased［COL］ Cryptology ePrint Archive, 2019 ［20250913］. https:eprint.iacr.org2019406［17］Zhang Z, Li T, Wang Z, et al. Redactable transactions in consortium blockchain: Controlled by multiauthority CPABE［C］ Proc of the Australasian Conf on Information Security and Privacy (ACISP). Berlin: Springer, 2021: 408429［18］Rouselakis Y, Waters B. Efficient Staticallysecure Largeuniverse Multiauthority Attributebased Encryption［M］. Berlin: Springer, 2015: 315332［19］Ostrovsky R, Sahai A, Waters B. Attributebased encryption with nonmonotonic access structures［C］ Proc of the IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2007: 195203［20］Hur J, Noh D K. Attributebased access control with efficient revocation in data outsourcing systems［J］. IEEE Trans on Parallel & Distributed Systems, 2011, 22(7):12141221［21］Li J G, Yao W, Han J G, et al. Usercollusion avoidance CPABE with efficient attribute revocation for cloud storage［J］. IEEE Systems Journal, 2017, 12(2): 17671777［22］Yamada K, Attrapadung N, Emura K, et al. Generic constructions for fully secure revocable attributebased encryption［J］. IEICE Trans on Fundamentals of Electronics Communications and Computer Sciences, 2018, 101(9): 14561472［23］董国芳, 鲁烨堃, 张楚雯, 等. 支持撤销属性的CPABE密钥更新方法［J］. 计算机应用研究, 2023, 40(2): 583588［24］李谢华, 刘婷, 周茂仁. 云存储中基于多授权机构可撤销的ABE访问控制方法［J］. 计算机应用研究, 2017, 34(3): 897902［25］Derler D, Hanser C, Slamanig D. Revisiting cryptographic accumulators, additional properties and relations to other primitives［C］ Proc of the Cryptographer’s Track at the RSA Conference. Berlin:Springer, 2015: 127144［26］Camenisch J, Derler D, Krenn S, et al. Chameleonhashes with ephemeral trapdoors and applications to invisible sanitizable signatures［G］ LNCS 10175: PublicKey Cryptography. Berlin: Springer, 2017: 152182［27］Zhang C, Ni Z, Xu Y, et al. A trustworthy industrial data management scheme based on redactable blockchain［J］. Journal of Parallel and Distributed Computing, 2021, 152(3): 167176