电子投票系统中基于区块链的无证书环签密方案

doi:10.3778/j.issn.1002-8331.2303-0247

摘要/Abstract

摘要： 将区块链技术应用在各种应用场景下已成为研究热点，区块链技术与电子投票系统的结合在保证投票人匿名性的同时还可以保障投票数据不被篡改，使投票结果更加公正可信。一方面可以解决传统投票方式带来的中心服务器可能丢失选票数据的问题。另一方面还可以保护投票者的数据隐私，提高投票的公平性与安全性。然而也存在着用户数量增多时验证选票效率较低的问题，以及存在恶意用户进行多次投票影响最终投票结果的问题。针对上述问题，提出了一种基于无证书密码体制的条件隐私保护环签密方案。该方案能够在保证降低计算开销的情况下提供安全的电子投票通信。通过将跟踪标记添加到签密消息中，设计了一种针对恶意用户的跟踪算法，使受信任方能够从环成员列表中识别出恶意投票用户。采用批量验证算法提高了验证效率，利用智能合约计票减少了对第三方机构的依赖。通过安全性分析，证明了该方案在椭圆曲线离散对数和椭圆曲线计算Diffie-Hellman困难性假设下基于随机谕言机模型是安全的。最后从计算开销、批量验证效率、追踪恶意用户效率和智能合约gas消耗等方面进行了性能评估，分析结果表明该方案可以为电子投票系统的安全相关应用提供高效、高可靠的通信协议。

关键词: 条件隐私保护, 无证书环签密, 批量验证, 智能合约

Abstract: Applying blockchain technology to various application scenarios has become a hot research topic nowadays. The combination of blockchain technology and electronic voting systems can ensure the anonymity of voters and prevent tampering with voting data, making the voting results more fair and trustworthy. On the one hand, it can solve the problem of the central server potentially losing voting data in traditional voting methods. On the other hand, it can protect the privacy of voters’ data and improve the fairness and security of voting. However, there are still issues such as the low efficiency of verifying votes when the number of users increases, and the malicious users casting multiple votes to influence the final voting results. To address these issues, a conditional privacy preservation ring signcryption scheme based on certificateless cryptography is proposed, which can provide secure electronic voting communication while reducing computational costs. By adding tracking tags to signcryption messages, a tracking algorithm is designed to identify malicious voting users from the member list of the ring, enabling the trusted parties to detect and reject malicious votes. Furthermore, batch verification algorithms are adopted to improve the verification efficiency, and smart contracts for vote counting are used to reduce the reliance on third-party institutions. Security analysis shows that the proposed scheme is secure under the random oracle model based on the elliptic curve discrete logarithm and elliptic curve computational Diffie-Hellman hardness assumptions. Finally, performance evaluation is conducted from aspects such as computational costs, batch verification efficiency, tracking malicious users efficiency, and smart contract gas consumption. The results show that the proposed scheme can provide an efficient and reliable communication protocol for secure electronic voting systems.

Key words: conditional privacy preservation, certificateless ring signcryption, batch verification, smart contract

兰祥, 郭瑞, 王俊茗. 电子投票系统中基于区块链的无证书环签密方案[J]. 计算机工程与应用, 2024, 60(16): 288-301.

LAN Xiang, GUO Rui, WANG Junming. Certificateless Ring Signcryption Scheme Based on Blockchain for Electronic Voting Systems[J]. Computer Engineering and Applications, 2024, 60(16): 288-301.

参考文献

[1] CHAUM D L. Untraceable electronic mail, return addresses, and digital pseudonyms[J]. Communications of the ACM, 1981, 24(2): 84-90.
[2] CULNANE C, ESSEX A, LEWIS S J, et al. Knights and Knaves run elections: Internet voting and undetectable elec-toral fraud[J]. IEEE Security & Privacy, 2019, 17(4): 62-70.
[3] WOLCHOK S, WUSTROW E, HALDERMAN J A, et al. Security analysis of India’s electronic voting machines[C]//Proceedings of the 17th ACM Conference on Computer and Communications Security, 2010: 1-14.
[4] 张超, 李强, 陈子豪, 等. Medical Chain: 联盟式医疗区块链系统[J]. 自动化学报，2019, 45(8): 1495-1510.
ZHANG C, LI Q, CHEN Z H, et al. Medical Chain: alliance medical blockchain system[J]. Acta Automatica Sinica, 2019, 45(8): 1495-1510.
[5] 牛淑芬, 刘文科, 陈俐霞, 等. 基于联盟链的可搜索加密电子病历数据共享方案[J]. 通信学报，2020, 41(8): 204-214.
NIU S F, LIU W K, CHEN L X, et al. Electronic medical record data sharing scheme based on searchable encryption via consortium blockchain[J]. Journal on Communications, 2020, 41(8): 204-214.
[6] SHARMA G, BALA S, VERMA K A. Pairing-free certificate-less ring signcryption (PF-CLRSC) scheme for wireless sensor networks[J]. Wireless Personal Communications, 2015, 84(2): 1469-1485.
[7] FUJISAKI E, SUZUKI K. Traceable ring signature[C]//International Workshop on Public Key Cryptography. Berlin, Heidelberg: Springer, 2007: 181-200.
[8] DENG L Z, JIANG Y H, NING B Q. Identity-based linkable ring signature scheme[J]. IEEE Access, 2019, 7: 153969-153976.
[9] HE D, CHEN J, ZHANG R. An efficient and provably-secure certificateless signature scheme without bilinear pairings[J]. International Journal of Communication Systems, 2012, 25(11): 1432-1442.
[10] KARATI A, ISLAM S K H, BISWAS G P. A pairing-free and provably secure certificateless signature scheme[J]. Information Sciences, 2018, 450: 378-391.
[11] PAKNIAT N, VANDA B A. Cryptanalysis and improve-ment of a pairing-free certificateless signature scheme[C]//2018 15th International ISC (Iranian Society of Cryptology) Conference on Information Security and Cryptology, 2018: 1-5.
[12] NEFF C A. A verifiable secret shuffle and its application to e-voting[C]//Proceedings of the 8th ACM Conference on Computer and Communications Security, 2001: 116-125.
[13] RYAN P Y A, R?NNE P B, IOVINO V. Selene: voting with transparent verifiability and coer-cion-mitigation[C]//Proceedings of the 2016 International Conference on Financial Cryptography and Data Security, 2016: 176-192.
[14] LIU F, WANG Q. IBRS: an efficient identity-based batch verification scheme for VANETs based on ring signature[C]//Proceedings of the 2019 IEEE Vehicular Networking Conference, 2019: 1-8.
[15] DAN B, GENNARO R, GOLDFEDER S, et al. Threshold cryptosystems from threshold fully homomorphic encryp-tion[C]//Proceedings of the 38th Annual International Cryp-tology Conference, Santa Barbara, 2018: 565-596.
[16] CRIMMINS B L, RHEA M, HALDERMAN J A. RemoteVote and SAFE vote: towards usable end-to-end verification for vote-by-mail[J]. arXiv:2111.08662, 2021.
[17] ZHAO Z C, CHAN T H H. How to vote privately using bitcoin[C]//Proceedings of the 2016 International Conference on Information and Communications Security. Cham: Springer, 2016: 82-96.
[18] HJáLMARSSON F T, HREIDARSSON G K, HAMDAQA M, et al. Blockchain-based e-voting system[C]//Proceedings of the 2018 IEEE 11th International Conference on Cloud Computing, 2018: 983-986.
[19] PEREZ A J, CEESAY E N. Improving end-to-end verifiable voting systems with blockchain technologies[C]//Proceedings of the 2018 IEEE International Conference on Internet of Things and IEEE Green Computing and Communications and IEEE Cyber, Physical and Social Computing and IEEE Smart Data, 2019: 1108-1115.
[20] BISTARELLI S, MANTILACCI M, SANTANCINI P, et al. An end-to-end voting-system based on bitcoin[C]//Proceedings of the 2017 Symposium on Applied Computing, 2017: 1836-1841.
[21] RIVEST R L. How to leak a secret[C]//Proceedings of the 2021 International Conference on the Theory and Application of Cryptology and Information Security, 2001: 553-565.
[22] LI J, YUN L, ZHANG Z, et al. Efficient ID-based message authentication with enhanced privacy in wireless ad-hoc networks[C]//Proceedings of the 2018 International Confer-ence on Computing, Networking and Communications, 2018: 322-326.
[23] HUANG X, SUSILO W, MU Y, et al. Identity-based ring signcryption schemes: cryptographic primitives for pre-serving privacy and authenticity in the ubiquitous world[C]//Proceedings of the 19th International Conference on Advanced Information Networking and Applications, 2005: 649-654.
[24] NOETHER S, MACKENZIE A. Ring confidential transac-tions[J]. Ledger, 2016, 1: 1-18.
[25] CAI Y, ZHANG H, FANG Y G. A conditional privacy pro-tection scheme based on ring signcryption for vehicular ad hoc networks[J]. IEEE Internet of Things Journal, 2021, 8(1): 647-656.