CN113098684A - Intelligent power grid-oriented untraceable blind signature method and system - Google Patents

Abstract

The application discloses a method and a system for traceable blind signature facing to a smart grid, wherein the method comprises the following steps: initializing system parameters of the smart power grid; generating a private key and a public key of a signer according to the system parameters, and calculating a blinded signature for the related data of the smart grid of the user; based on a private key and a public key of a signer, a user and the signer perform information interaction to obtain a blinded signature, and finally obtain a message signature pair through blind removing operation, wherein the message refers to related data of the smart grid; and (4) verifying the message signature pair, if the verification is passed, considering that the related data of the user smart grid has authenticity, namely the related data is indeed authorized by a signer, and otherwise, considering that the data is unauthorized. According to the blind signature calculation method and device, the blind factors are added in the blind signature calculation process, so that a malicious signer cannot associate blind signatures from the public signature list, the blind signatures cannot be traced, the privacy protection capability of smart grid application can be enhanced, and the wide application of the blind signature technology in the smart grid is promoted.

Description

Intelligent power grid-oriented untraceable blind signature method and system

Technical Field

The invention belongs to the technical field of information security, and relates to an untraceable blind signature method and system for an intelligent power grid.

Background

Smart grids are modern power delivery systems that rely primarily on two-way communications, information, and software to optimize control and implement advanced grid functions. Although the smart grid can provide fine-grained consumption monitoring and promote a plurality of residential power generation sites to participate in distributed energy transactions, privacy leakage problems such as identity information and grid data exist, and the development of the smart grid is restricted by the privacy leakage problems.

The blind signature is a special digital signature, and can ensure that a signer can generate a correct digital signature without knowing a message, so that data privacy protection of a smart grid and other similar application scenes is supported. Although the existing blind signature schemes have completeness, unforgeability and blindness and can provide certain privacy protection capability, most blind signature schemes are difficult to support the untraceability, that is, a malicious signer can successfully trace an original message corresponding to the blind signature through an open message signature, so that the blind signature still faces the risk of privacy disclosure in the application process.

Disclosure of Invention

In order to overcome the defects in the prior art, the method and the system for the traceable blind signature facing the smart grid are provided, and can be used for protecting data privacy in the identity authentication process of the smart grid, providing identity authentication and effectively protecting privacy of signature messages.

In order to achieve the above purpose, the invention adopts the following technical scheme:

an untraceable blind signature method facing a smart grid, the method comprising the steps of:

step 1: initializing system parameters of the smart power grid;

step 2: generating a private key and a public key of a signer according to the system parameters, and calculating a blinded signature for the related data of the smart grid of the user;

and step 3: based on a private key and a public key of a signer, a user and the signer perform information interaction to obtain a blinded signature, and finally obtain a message signature pair through blind removing operation, wherein the message refers to related data of the smart grid;

and 4, step 4: and (4) verifying the message signature pair obtained in the step (3), if the verification is passed, considering that the related data of the user smart grid is authentic, namely obtaining the authorization of a signer, and otherwise, considering that the data is unauthorized.

The invention further comprises the following preferred embodiments:

preferably, in step 1, a security parameter λ is input, and a large prime number of λ bit length is randomly selected to generate p, q and

determining an elliptic curve E: y²＝x³+ ax + b, selecting a q-order addition cycle group from E at all rational points (including the infinity point O)

And from

Randomly selecting a generator P and a secure hash function

Finally outputting system parameters

Wherein the content of the first and second substances,

to represent

All of the upper elliptic curves E haveA set of reason points;

o represents an infinite point on the elliptic curve E;

representing a finite field containing p elements;

p represents a large prime number of λ bit length;

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

a and b represent

The element (E) defines an elliptic curve E: y²＝x³+ax+b；

Representing a secure cryptographic hash function.

Preferably, in step 2, system parameters PP are input and randomly selected

Calculating Q as xP, and outputting a private key x and a public key Q of the signer;

represents a set of integers consisting of the integers 1,2, …, q-1;

p represents a cyclic group

A generator of (2);

representing a group of addition cycles of order prime q.

Preferably, in step 3, the user interacts with the signer as follows:

step 301: a signer randomly selects k from the [2, q-1], calculates R '═ kP, and then sends R' to a user;

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

step 302: the user randomly selects alpha, beta E [2, q-1]Calculating

And m' ═ h beta^-1+ α (mod q), then send m' to the signer;

wherein mod n represents a modulo n operation; x is the number of_R，y_RRespectively as the abscissa and ordinate of R; alpha and beta are blinding factors;

representing a secure cryptographic hash function;

q is the public key of the signer;

step 303: the signer calculates s ' ═ k-m ' x (mod q) and sends s ' to the user;

wherein x is the private key of the signer;

step 304: the user calculates s ═ s' β + α (mod q) and obtains a message signature pair (m, σ ═ h, s));

wherein m is the message to be signed.

Preferably, in step 4, a message signature pair to be verified (m, σ ═ h, s)) is input, and calculation is performed

Wherein m is a message to be signed, sigma is a signature, and h and s are respectively a hash value and a partial signature; x is the number of_R″，y_R"the abscissa and ordinate, respectively, of R";

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

q is the public key of the signer;

representing a secure cryptographic hash function;

if h is h', then it indicates that σ is a valid signature of m; otherwise, the signature σ is invalid.

Preferably, the smart grid related data is divided into meter data and equipment information.

The invention also discloses an untraceable blind signature system facing the smart grid, which comprises:

the initialization module is used for initializing system parameters;

the key generation module is used for generating a private key and a public key of the signer according to the system parameters;

the signature module is used for carrying out information interaction between the user and the signer based on the private key and the public key of the signer to obtain a message signature pair;

and the verification module is used for verifying the message signature pair obtained by the signature module.

The beneficial effect that this application reached:

1. according to the blind signature calculation method and device, blind factors alpha and beta are added in the blind signature calculation process, so that a malicious signer cannot associate a blind signature from an open signature list, the blind signature calculation method and device have the non-traceability, the privacy protection capability of smart grid application can be enhanced, and the wide application of the blind signature technology in the smart grid is promoted;

2. the method can be used for proving the safety of the random oracle model, and has the characteristics of high safety, high calculation efficiency and simplicity in implementation.

Drawings

FIG. 1 is a flow chart of an untraceable blind signature method for a smart grid according to the present invention;

fig. 2 is a schematic diagram of information interaction between a user and a signer according to the present invention.

Detailed Description

The present application is further described below with reference to the accompanying drawings. The following examples are only for illustrating the technical solutions of the present invention more clearly, and the protection scope of the present application is not limited thereby.

As shown in fig. 1, the traceable blind signature method for the smart grid according to the present invention includes the following steps:

step 1: initializing system parameters of the smart power grid;

inputting a security parameter lambda, randomly selecting a large prime number with lambda bit length to generate p, q and

determining an elliptic curve E: y²＝x³+ ax + b, selecting a q-order addition cycle group from E at all rational points (including the infinity point O)

And from

Randomly selecting a generator P and a secure hash function

Finally outputting system parameters

Wherein the content of the first and second substances,

to represent

A set of all rational points of the upper elliptic curve E;

o represents an infinite point on the elliptic curve E;

representing a finite field containing p elements;

p represents a large prime number of λ bit length;

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

a and b represent

The element (E) defines an elliptic curve E: y²＝x³+ax+b；

Representing a secure cryptographic hash function.

Step 2: generating a private key and a public key of a signer according to the system parameters, and calculating blind signatures for the electricity meter data, the equipment information and other related smart grid data of the user;

inputting system parameters PP, and randomly selecting

Calculating Q as xP, and outputting a private key x and a public key Q of the signer;

represents a set of integers consisting of the integers 1,2, …, q-1;

and step 3: based on a private key and a public key of a signer, a user and the signer perform information interaction, and after a blind signature is obtained, a message signature pair can be finally obtained through blind removing operation, wherein the message can be ammeter data, equipment information and the like of an intelligent power grid system;

as shown in fig. 2, the user interacts with the signer as follows:

step 301: a signer randomly selects k from the [2, q-1], calculates R '═ kP, and then sends R' to a user;

step 302: the user randomly selects alpha, beta E [2, q-1]Calculating

And m' ═ h beta^-1+ α (mod q), then send m' to the signer;

wherein x is_R,y_RRespectively as the abscissa and ordinate of R; alpha and beta are blinding factors;

step 303: the signer calculates s ' ═ k-m ' x (mod q) and sends s ' to the user;

step 304: the user calculates s ═ s' β + α (mod q) and obtains a message signature pair (m, σ ═ h, s));

and m is a message to be signed, namely the related data of the smart grid to be signed.

And 4, step 4: and (4) verifying the message signature pair obtained in the step (3), if the verification is passed, determining that the related data of the user smart grid is authentic, namely the related data is indeed authorized by the signer, otherwise, determining that the data is unauthorized.

Input message signature pair to be verified (m, σ ═ h, s)), and calculation

Wherein m is related data of the smart grid to be signed, sigma is a signature, and h and s are respectively a hash value and a partial signature; x is the number of_R″,y_R"the abscissa and ordinate, respectively, of R";

if h is h', then it indicates that σ is a valid signature of m; otherwise, the signature σ is invalid.

The blind signature system of the intelligent power grid-oriented untraceable blind signature method comprises:

the initialization module is used for initializing system parameters;

the key generation module is used for generating a private key and a public key of the signer according to the system parameters;

the signature module is used for carrying out information interaction between the user and the signer based on the private key and the public key of the signer to obtain a message signature pair;

and the verification module is used for verifying the message signature pair obtained by the signature module.

The present applicant has described and illustrated embodiments of the present invention in detail with reference to the accompanying drawings, but it should be understood by those skilled in the art that the above embodiments are merely preferred embodiments of the present invention, and the detailed description is only for the purpose of helping the reader to better understand the spirit of the present invention, and not for limiting the scope of the present invention, and on the contrary, any improvement or modification made based on the spirit of the present invention should fall within the scope of the present invention.

Claims (7)

1. An untraceable blind signature method facing a smart grid is characterized in that:

the method comprises the following steps:

step 1: initializing system parameters of the smart power grid;

step 2: generating a private key and a public key of a signer according to the system parameters, and calculating a blinded signature for the related data of the smart grid of the user;

and step 3: based on a private key and a public key of a signer, a user and the signer perform information interaction to obtain a blinded signature, and finally obtain a message signature pair through blind removing operation, wherein the message refers to related data of the smart grid;

and 4, step 4: and (4) verifying the message signature pair obtained in the step (3), if the verification is passed, considering that the related data of the user smart grid is authentic, namely obtaining the authorization of a signer, and otherwise, considering that the data is unauthorized.

2. The smart grid-oriented untraceable blind signature method according to claim 1, wherein:

in step 1, a safety parameter lambda is input, and a large prime number with the bit length of lambda is randomly selected to generate p, q and

determining an elliptic curve E: y²＝x³+ ax + b, q-order addition cycle group selected at all rational points from E including the point O at infinity

And from

Randomly selecting a generator P and a secure hash function

Finally outputting system parameters

Wherein the content of the first and second substances,

to represent

A set of all rational points of the upper elliptic curve E;

o represents an infinite point on the elliptic curve E;

representing a finite field containing p elements;

p represents a large prime number of λ bit length;

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

a and b represent

The element (E) defines an elliptic curve E: y²＝x³+ax+b；

Representing a secure cryptographic hash function.

3. The smart grid-oriented untraceable blind signature method according to claim 1, wherein:

in step 2, system parameters are inputPP, random selection

Calculating Q as xP, and outputting a private key x and a public key Q of the signer;

represents a set of integers consisting of the integers 1,2, …, q-1;

p represents a cyclic group

A generator of (2);

representing a group of addition cycles of order prime q.

4. The smart grid-oriented untraceable blind signature method according to claim 1, wherein:

in step 3, the user and the signer perform the following interactions:

step 301: a signer randomly selects k from the [2, q-1], calculates R '═ kP, and then sends R' to a user;

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

step 302: the user randomly selects alpha, beta E [2, q-1]Calculating

And m' ═ h beta^-1+ α (modq), then sends m' to the signer;

wherein mod n represents a modulo n operation; x is the number of_R,y_RRespectively as the abscissa and ordinate of R; alpha and beta are blinding factors;

representing a secure cryptographic hash function;

q is the public key of the signer;

step 303: the signer calculates s ' ═ k-m ' x (mod q) and sends s ' to the user;

wherein x is the private key of the signer;

step 304: the user calculates s ═ s' β + α (mod q) and obtains a message signature pair (m, σ ═ h, s));

wherein m is the message to be signed.

5. The smart grid-oriented untraceable blind signature method according to claim 1, wherein:

in step 4, a message signature pair to be verified (m, σ ═ h, s)) is input, and calculation is performed

Wherein m is a message to be signed, sigma is a signature, and h and s are respectively a hash value and a partial signature; x is the number of_R″,y_R″Respectively the abscissa and ordinate of R';

p represents a cyclic group

A generator of (2);

a group of addition cycles of order q;

q is the public key of the signer;

representing a secure cryptographic hash function;

if h is h', then it indicates that σ is a valid signature of m; otherwise, the signature σ is invalid.

6. The smart grid-oriented untraceable blind signature method according to any one of claims 1 to 5, wherein:

the related data of the smart grid are divided into electric meter data and equipment information.

7. The blind signature system of the intelligent power grid-oriented untraceable blind signature method according to any one of claims 1 to 6, wherein:

the system comprises:

the initialization module is used for initializing system parameters;

the key generation module is used for generating a private key and a public key of the signer according to the system parameters;

the signature module is used for carrying out information interaction between the user and the signer based on the private key and the public key of the signer to obtain a message signature pair;

and the verification module is used for verifying the message signature pair obtained by the signature module.

Images