Research On Sensitive Data Protection And Access Control Scheme Based On Double Chain

In recent years,a series of social concerns caused by the quality of food,vaccines and other products,as well as the emergence of "price drive up" in special time periods indicate that the regulatory authorities need to further strengthen the supervision of transactions in the supply chain.Applying the blockchain to the supply chain supervision can improve the security of the supervision data.At present,most of the blockchain application in the area of supply chain supervision store the original data reported by enterprises in a central database,calculate the hash value of the original data by the central server,and save it to the blockchain to prevent data from being tampered with.These applications exist three problems: the tendency to protect sensitive data leads to low credibility of regulatory data,the existence of a central database leads to low data security,the process of calculating hashes by the central server leads to the possibility of data being tampered and tampered data cannot be recovered.In response to the above problems,this paper takes the supply chain supervision as the research background and proposes a dual-chain-based enterprise sensitive transaction data protection and access control solution,in which the original transaction data being directly stored in the blockchain.The specific work content of this paper as follows:Firstly,this paper presents a data coarse-grained access control scheme based on double chains.Use a dual-chain model composed of commodity chains and capital chains to store and isolate product flow information and capital flow information in transaction data,and provide them to regulatory authorities with different jurisdictions.Using the atomicity scheme to realize the atomicity of transaction data on the double chain.Using the data association scheme based on the DH algorithm to encrypt and decrypt transaction numbers,and in this way transaction data on the two chain can be safely associated.Secondly,this paper presents a correct chaining scheme for transaction data.Using the two-stage data chaining process of signature and submission verification to make sure that the transaction data on the chain has been confirmed by both parties of the transaction.And in this way the credibility and correctness of the data on the chain are guaranteed.Thirdly,this paper presents a fine-grained data access control scheme based on chain code.The private data that is only transmitted between authorized nodes is used to ensure the security of the sensitive enterprise transaction data on the chain.By specifying a list of authorized nodes when writing sensitive data and verifying the identity of the node when reading sensitive data,this scheme can take control of access permissions for different fields in a single transaction record,which can further meet the privacy needs of enterprises.Finally,based on the supply chain model in actual production activities,the correctness experiment of the scheme verifies the correctness of the sensitive data protection and access control scheme proposed in this paper.The security of the data access control scheme is verified by analyzing through two security indicators: simple security and simple availability.The test for supervision function of the supervisory authority shows that the sensitive data protection and access control scheme proposed in this paper can meet the regulatory requirements of regulatory authorities with different jurisdictions,under the premise of fully protecting sensitive data.