Leveraging Intel SGX to enable trusted and privacy preserving membership service in distributed ledgers

被引：0

作者：

Liang X. ^{[1
,2
,3
]}

Shetty S.

Tosh D.K. ^{[4
]}

Foytik P. ^{[3
]}

Zhang L. ^{[1
]}

机构：

[1] Institute of Information Engineering, Chinese Academy of Sciences, Beijing

[2] School of Cyber Security, University of Chinese Academy of Sciences, Beijing

[3] Virginia Modeling, Analysis and Simulation Center, Old Dominion University, Norfolk, VA

[4] Department of Computer Science, University of Texas at EL Paso, El Paso, TX

来源：

Int. J. Inf. Comput. Secur. | 2021年 / 1-2卷 / 63-83期

关键词：

Blockchain; Channel; Distributed ledger; Intel SGX; Membership service; Privacy; Security;

D O I：

10.1504/ijics.2021.10040713

中图分类号：

学科分类号：

摘要：

Distributed ledger technology (DLT) provides decentralised services by removing the need of trust among distributed nodes in the distributed system. Transactions across the network are visible to all participants. However, some transactions may contain sensitive information such as business contracts or even personal health records. To protect user privacy, the architecture of distributed multi-channel ledger with membership service as a critical component can be adopted. The proposed multi-channel membership service architecture combines two promising technologies, distributed ledger and Intel Software Guard Extensions (SGX). With SGX remote attestation and isolated execution, each node is enrolled as a trusted entity to the channels, which separate different applications and provide better flexibility. We propose security properties for membership service in distributed ledger and illustrate how SGX help to achieve these properties in each phase. Security analysis and evaluation show that the proposed architecture could enhance the privacy preservation and capabilities against attacks. Copyright © 2021 Inderscience Enterprises Ltd.

引用

页码：63 / 83

页数：20

共 20 条

[1] Anati I., Gueron S., Johnson S., Scarlata V., Innovative technology for CPU based attestation and sealing, Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy, 13, (2013)
[2] Andress J., Chapter 1 – What is information security?, The Basics of Information Security, pp. 1-16, (2011)
[3] Androulaki E., Cachin C., Vukolic M., Hyperledger, (2017)
[4] Aumasson L., SGX secure enclaves in practice: security and crypto review, (2016)
[5] Camenisch J., Lysyanskaya A., A Signature Scheme with Efficient Protocols, pp. 268-289, (2003)
[6] Greenspan G., Multichain, (2015)
[7] Intel Software Guard Extensions Enclave Writer’s Guide, (2013)
[8] Intel Architecture Instruction Set Extensions Programming Reference, (2016)
[9] Sawtooth Lake, (2016)
[10] Jain P., Desai S., Kim S., Shih M-W., Lee J., Choi C., Shin Y., Kim T., Kang B.B., Han D., OpenSGX: an open platform for SGX research, Proceedings of the Network and Distributed System Security Symposium, (2016)

← 1 2 →