网络安全中的区块链密钥技术研究
A study on blockchain key technology in cybersecurit
朱典 1陶峰 1盛念祖 2张予立2
作者信息
- 1. 安徽省大数据中心,安徽合肥 230011
- 2. 安徽中科晶格技术有限公司,安徽合肥 230088
- 折叠
摘要
[目的/意义]在网络空间安全领域,密钥安全是保障数据流通的关键环节.尽管区块链基础设施提供了共识机制和密码学工具,但是在实际应用中,账户权限和数据访问的管控仍依赖于密钥管理的严密性.若密钥生成、操作或使用不当,将会引发严重的安全隐患,特别是在政务领域,关键数据的存储和访问控制尤为关键.针对此类挑战,以政务数据保护场景为例,提出了基于量子密钥分发和零知识证明技术的区块链密钥安全保护方案.[方法/过程]首先,借助量子密钥分发技术的量子物理属性,构建在网络空间安全框架下的区块链密钥传输安全信道.通过与政务领域密码学安全服务的协同作用,实现更为可靠、抗侧信道攻击的密钥管理系统.其次,利用预先置入区块链的零知识证明智能合约,在不暴露用户密钥的前提下,对用户身份进行验证,实现自动化重要数据的访问验证.[结果/结论]基于量子密钥分发和零知识证明技术的区块链密钥安全方案,为政务数据保护提供了有效的解决方案.通过构建安全的密钥传输信道和自动化的身份验证机制,有效地防范了密钥管理中可能出现的安全隐患,特别是在政务领域,提升了关键数据的存储和访问控制水平,规避了人为错误和恶意操纵风险,有效地提升了网络空间的安全水平.
Abstract
[Purpose/Significance]In the field of cyberspace security,the security of keys is crucial for ensuring the circulation of data.Although blockchain infrastructure provides consensus mechanisms and cryptographic tools,the control of account permissions and data access relies heavily on the rigor of key management in practical applications.Improper generation,operation,or use of keys can lead to serious security risks,particularly in the governmental sector where the storage and access control of critical data are paramount.To address these challenges,this paper proposes a blockchain key security protection scheme based on quantum key distribution and zero-knowledge proof technology,using governmental data protection scenarios as an example.[Method/Process]Firstly,leveraging the quantum properties of quantum key distribution technology,a secure channel for blockchain key transmission is established within the framework of cyberspace security.Through collaborative efforts with cryptographic security services in the governmental sector,a more reliable key management system resistant to side-channel attacks is achieved.Secondly,utilizing zero-knowledge proof smart contracts pre-deployed on the blockchain,user identity verification is conducted without exposing user keys,enabling automated validation of critical data access.[Results/Conclusion]The blockchain key security solution based on quantum key distribution and zero-knowledge proof technology offers an effective approach to safeguarding governmental data.By establishing secure key transmission channels and automated identity verification mechanisms,the solution effectively mitigates potential security risks in key management.Particularly in the governmental sector,it enhances the storage and access control of critical data,mitigates risks of human errors and malicious manipulation,thereby effectively enhancing the level of cybersecurity in cyberspace.
关键词
网络空间安全/区块链/量子密钥分发/零知识证明/智能合约Key words
cyberspace security/blockchain/quantum key distribution/zero knowledge proof/smart contracts引用本文复制引用
出版年
2024
NETL
NSTL
万方数据