Research On Privacy Data Protection And Access Rights Management For Logistics User

With the logistics industry playing an increasingly important role in modern Internet applications,the leakage of privacy data of logistics user has drawn considerable attention.At present,the security of privacy leakage depends mainly on the protection measures carried out by Logistics Company in the logistics industry.Although it can solve some privacy leakage problems to a certain extent,there are still many deficiencies: 1)User's privacy data is usually kept by a third-party,such as Logistics company.Such institutions lack credibility and it is difficult to prevent the disclosure and theft of privacy data.2)User lacks the management of access to privacy data and cannot determine the scope of it.Aiming at these problems,this thesis proposes a logistics user privacy data protection and access rights management scheme.It consists of membership management,access rights management and privacy data protection.In addition,a logistics order prototype system has been designed and implemented to verify the effectiveness of the privacy data protection scheme.The novelty and contribution of this thesis summarizes as follows:1.Based on the research and analyses of existing privacy data encrypted storage security mechanisms and data access rights control management schemes,a novel privacy data protection scheme is proposed by combining hierarchical encryption and blockchain technology.The scheme utilizes a hierarchical encryption algorithm to encrypt privacy data and then upload it to the cloud storage to guarantee the secure storage of privacy data on unauthentic third-party platforms.Mean While,it provides decentralized control of privacy data access rights and enables logistics user to manage private data access rights.2.Given the current situation where user's privacy data is usually stored on an unauthentic third-party data storage platform,we propose a privacy data protection mechanism based on hierarchical encryption.This mechanism adopts an attribute-based hierarchical encryption scheme implemented by the improved CP-ABE algorithm.It describes the identity of data visitor through security attributes and uses a nested access control tree structure to enable users to determine access rights of data visitor to their private data based on attributes of data visitor.Data visitor with a higher privilege level can access low-level data directly.The mechanism determines the range of data visitor can read private data,and uploads the private data ciphertext to the cloud storage platfor.It can effectively prevent the disclosure of privacy data on the untrusted third-party platform,and implements hierarchical access of data visitor to privacy data.3.An access rights management mechanism based on blockchain and DAA is proposed to solve the problem user is unable to manage privacy data unautonomously in the existing privacy data access rights management scheme with untraceable authorization process and unauditable access records.Implement membership management based on DAA anonymous authentication,providing anonymous but verifiable identity for entities on the blockchain.Furthermore,it obtains access rights to control blockchain nodes to prevent the leakage of privacy data by maintaining a transactional public key list.And this mechanism saves user's access rights of privacy data through distributed ledger,and utilizes chaincode to encapsulate the business logical relation between roles in logistics and privacy data,enables user to control access rights of privacy data finally.4.Based on the scheme mentioned in this thesis,a logistics order prototype system has been designed and implemented.The system consists of data owner,data visitor,and cloud storage platforms.Its main functions include generating logistics orders,querying logistics status,managing access rights to privacy data,and accessing to user privacy data.The system ensures the security of logistics user privacy data,enables data owner to control access rights to privacy data,and achieves data visitor's hierarchical access to logistics privacy data.The test shows that this practical system can achieve high computational efficiency while ensuring the security of privacy data,and the interaction delay between user and the blockchain module can be kept within the interval of 80-100 ms.