KR102342021B1 - Attribute-based access control system in a blockchain network and method thereof - Google Patents

Abstract

The present invention relates to an access right control system in a blockchain network including a plurality of nodes. The access authority control system, a central node for generating a public key and a private key; an attribute node that verifies the user attribute and issues a one-time token to the user who has succeeded in the verification; A smart contract distributed by an information subject, comprising: a first smart contract that encrypts personal information with an access policy managed by an attribute node and a public key distributed by a central node to generate a ciphertext and record it in a block chain; As a smart contract distributed by information users, it requests access to the ciphertext of the block chain, receives a one-time token from the attribute node according to the access request, receives a secret key from the central node using the one-time token, and the secret A second smart contract that decrypts the cipher text using the key; comprising, encrypting personal information based on the attribute, storing it in the distributed ledger, and decrypting the encrypted information.

Description

Attribute-based access control system in a blockchain network and method thereof

The present invention relates to an access authority control system and access authority control method in a block chain network, and more specifically, in a block chain network, data is encrypted based on the user's qualification property and the property of the data retention period And it relates to an access authority control system and access authority control method in a block chain network that allows to control access authority to data by decrypting it.

Blockchain was first introduced in 2008 as the underlying technology to implement the cryptocurrency, Bitcoin. Blockchain is evaluated as an innovative technology that can send and receive transactions using pseudonymous accounts in a peer-to-peer structure where there is no separate central authority. Transactions can be performed normally even without a central authority because all data records use a distributed ledger identically replicated to each node. Distributed ledger is a core technology of blockchain, which lists blocks, which are sets of transactions collected for a certain period of time, in chronological order, and each block is connected to each other in the form of referencing the hash value of the preceding and following blocks. Blocks are approved by one node selected according to a consensus algorithm such as Proof of Work (POW) and added to the blockchain.

Blockchain has the characteristics of immutability, which is difficult to forge and falsification of data, decentralization without the need for a central authority, and transparency in which all participants verify the validity of transaction records. Due to these characteristics, blockchain is being used in various application fields. According to the scope of participation, the blockchain is divided into an open type without participation restrictions and a permission type with participation restrictions. The open type is the closest form to complete decentralization, the goal of which blockchain has been pursued since its inception, but in reality, it has a problem that it is difficult to apply to various places. On the other hand, the permission type restricts participation in the block chain and the qualification to read information, so it can be a more realistic alternative in terms of personal information protection than the open type.

On the other hand, the access control system is a system that determines the permission or denial of who, where, and what kind of operation is performed on which resource in order to protect the resources possessed by the organization. That is, access control checks the granted access right after approving the user identity based on the access policy, and goes through the procedure of allowing or denying access to the allocated resource based on the access right. The access control system used in the organization requires continuous and flawless monitoring because it is based on a variety of information including the user's personal information, sensitive information, and position.

In general, three principles must be satisfied for the aforementioned access control. The first is the 'principle of necessity', which means that access rights should be granted only to the relevant task and related tasks for each user. The second is the 'principle of least authority', meaning the principle of minimizing damage caused by abuse of authority by granting only the minimum authority to perform the permitted work. The third is the 'principle of separation of duties', which means a security policy that prevents approval, modification, confirmation, and completion of tasks from being processed by one person from start to finish.

Among the various types of information and data accessed and managed in the access control process, confidential information, business information, personal information, and sensitive information may be variously handled. Accordingly, in the case of a blockchain that utilizes various types of information and data, various requirements can be derived in terms of access control. Among them, personal information is the representative category of the most strictly handled information.

According to the Personal Information Protection Act, personal information is information that can identify a living individual and information that can be easily combined with other information to identify an individual. Major countries around the world, including Korea, are enforcing personal information protection laws, and in particular, the EU (European Union) has implemented the General Data Protection Regulation (General Data Protection Regulation) for businesses handling personal information of European citizens from May 25, 2018. , GDPR). However, the decentralization and distributed ledger characteristics of blockchain conflict with the current GDPR norms based on a central authority that complies with privacy obligations and bears responsibilities. In other words, the blockchain technology has a design structure that makes it difficult to satisfy the characteristics related to the three principles of access control, such as the principle of collection or minimum collection in accordance with the purpose of personal information, and the information control right of the information subject (right to be forgotten, etc.) In particular, there is a lot of debate about whether the public blockchain will be compatible with the current GDPR system because it is difficult to do so, and the nature of decentralization also makes it unclear whether the public blockchain will be compatible with the current GDPR system.

On the other hand, various technologies have been proposed for data protection on the block chain. First, the attribute-based encryption technology is an encryption scheme that grants a certain access policy to data stored in the system, encrypts it, and allows decryption when the data user has attributes that satisfy the access policy. Attribute-based encryption is operated by a third-party trusted organization. The trusted authority manages the access policy and public key so that the information subject can define and encrypt the information access policy. In addition, it verifies the qualification attributes of information users and plays a role in issuing a secret key. In attribute-based encryption, the trusted authority plays the most important role. In order to use attribute-based encryption in a decentralized blockchain, a new mechanism for managing keys and attributes is required.

By hiding personal information with encryption technology, it is possible to process a given task without exposing the information. This can be implemented with zero-knowledge proof technology. Zero-knowledge proof refers to proving that you have or know the information without providing any information to the counterparty. A representative example of personal information protection using zero-knowledge proof is a cryptocurrency called ZCash. ZCash proves to the counterparty that the balance held by it is equal to or greater than the transaction amount using zero-knowledge proof, so that transactions can be made without exposing the balance to the counterparty. This zero-knowledge proof method is classified as an advanced encryption technology to provide privacy protection in multi-party non-face-to-face communication protocols such as block chains.

Meanwhile, Hyperledger Fabric, one of the private blockchain technologies, uses channels to control access. Hyperledger Fabric is divided into organizations with interests to form a channel, and by sharing the ledger only between the channels, the ledger maintained in other channels cannot be viewed and access is blocked. However, when many channels are created, each node has to manage multiple ledgers, which is very inefficient, so an access control method targeting individual users is required. Hyperledger Fabric also provides functions such as 'visibility setting' to restrict access to information within a channel, and can implement access control logic according to roles using chaincode. However, in this case, the user must be able to implement the issuance and distribution method of the decryption key.

As described above, the technologies proposed for data protection on the block chain are inefficient and contain various problems.

Korean Patent Publication No. 10-2018-0101870 Korean Patent Publication No. 10-0989605 Korean Patent Publication No. 10-2025409

An object of the present invention for solving the above problems is to provide an access right control system in a block chain network that can efficiently and safely protect data such as personal information and sensitive information on the block chain network.

Another object of the present invention is to provide a method for controlling access rights in a blockchain network that can efficiently and safely protect data such as personal information and sensitive information on the blockchain network.

An access authority control system in a blockchain network including a plurality of nodes according to the first aspect of the present invention for achieving the above-described technical problem is a single central node and K (participating in the blockchain) among the nodes. MSP for selecting attribute nodes of the number of organizations); a central node generating public and private keys; an attribute node that verifies user attributes and issues a one-time token to a user who succeeds in verification; a first smart contract distributed by an information subject that records personal information in a block chain by encrypting the personal information with the access policy managed by the attribute node and the public key distributed by the central node; When access to the ciphertext is requested, after the attribute is verified by the attribute node, a one-time token is provided upon successful verification, the one-time token is presented to the central node to receive a secret key from the central node, and the corresponding private key is used and a second smart contract distributed by the information user to decrypt the ciphertext, and encrypts and decrypts the data of the distributed ledger based on the attribute.

In the access right control system in the block chain network according to the first feature described above, the access policy is expressed as an access tree, wherein the access tree is a partial tree indicating the user's qualification attributes and a partial tree indicating the retention period of personal information It is preferably expressed as an AND gate of

In the access authority control system in the block chain network according to the first aspect described above, the attribute node uses the information user attribute including the entitlement attribute and the time stamp according to the ciphertext access request from the information user node to a one-time token It is preferable to generate and transmit the generated one-time token to the information user node.

The access authority control system in the block chain network according to the second aspect of the present invention includes: an attribute node that generates a disposable cotton and transmits it to an information subject when the verification is successful by verifying the user's attribute; a first smart contract of the information subject that encrypts data with an access policy based on the user's attributes to generate a ciphertext and records it in the block chain; When access to the cipher text is requested, the information user receives a one-time token from the attribute node, receives a secret key from the central node using the one-time token, and decrypts the cipher text using the secret key. A contract; is provided to encrypt and decrypt data on the distributed ledger based on attributes.

In the access right control system in the block chain network according to the second feature described above, the access policy is expressed as an access tree, and preferably includes an entitlement attribute tree and a retention period attribute tree.

In the access right control system in the block chain network according to the second feature described above, the attribute node uses the information user attribute including the qualification attribute and the time stamp according to the ciphertext access request from the information user node to a one-time token It is preferable to generate and transmit the generated one-time token to the information user node.

In the access right control system in the blockchain network according to the second feature described above, a single central node and K attribute nodes are set among the nodes of the blockchain network, and the K distributed attribute nodes represent each organization. As a node, attribute verification is performed on the information request of the user who is a member of the organization, and a one-time token is issued to the user who has succeeded in verification. A user who is provided with a one-time token presents it to the central node to prove that he or she has legal qualifications, and is issued a secret key from it.

The access authority control system based on the block chain network according to the present invention can control access according to the authority for each user unit for various information including personal information in the block chain. In addition, FIG. 4 is a chart comparing the degree of satisfying the legal compliance requirements of the GDPR for personal information with respect to the present invention and conventional similar studies. 4, in the case of personal information, it can be seen that it meets the legal compliance requirements required by the GDPR, and has many advantages compared to similar studies.

In addition, the access authority control system based on the block chain network according to the present invention does not have a separate trust authority, and by selecting multiple nodes like K attribute nodes, the continuity of information use of the entire network and the confidentiality of data can guarantee In addition, the system according to the present invention can solve the bottleneck of the block chain network due to the feature of being composed of a single node and a plurality of attribute nodes. In other words, in the existing attribute-based encryption scheme, it is possible to separate the user attribute verification and key issuance functions, which are the roles played by a single trusted authority, and distribute the load of the block chain network by assigning them to K attribute nodes and a single central node, respectively. Because of this, the whole system can be stabilized.

In addition, the access authority control system based on the block chain network according to the present invention generates a decryption key using a one-time token rather than providing a permanent decryption key. It has efficiency and security for management. Therefore, the information user who has failed to verify the attribute from the attribute node cannot obtain a one-time token, which is the right to receive the key. In this case, the user cannot decrypt the information. The case where verification from the attribute node fails is when the user's attribute is changed for some reason and the attribute does not match with the existing access policy, or when the attribute of the retention period of personal information is older than the current timestamp. When the attribute verification and key issuance functions are separated in this way, it is possible to respond flexibly to the attribute change of information users, and there is no need to update or discard the key issued for the changed attribute. In addition, there is an advantage of automatically blocking access to information when the retention period of personal information expires. 5 is a table comparing the present invention and conventional similar studies by evaluating and comparing the security of personal information. 5, it can be seen that the method according to the present invention has improved security in all fields.

1 is a block diagram schematically showing the configuration of each node in the access authority control system according to a preferred embodiment of the present invention.
2 is a view showing the access policy of personal information as an access tree in the access authority control system according to a preferred embodiment of the present invention, wherein the access tree includes a partial tree (a) indicating user attributes and the retention period of personal information. It is composed of the partial tree (b) shown.
3 is a flowchart showing the overall operation of each node of the access right control system in the block chain network according to a preferred embodiment of the present invention.
4 is a chart comparing the degree of satisfying the legal compliance requirements of the GDPR for personal information with respect to the present invention and conventional similar studies.
5 is a table comparing the present invention and conventional similar studies by evaluating and comparing the security of personal information.
6 is a schematic diagram for explaining the operations of the central node and K attribute nodes in the access authority control system according to the preferred embodiment of the present invention.
7 is a schematic diagram for explaining the operations of an information subject node and an information user node in the access authority control system according to a preferred embodiment of the present invention.

The present invention is a block chain-based access that applies differential access control according to the user's authority, access policy and retention period, etc. to various data including confidential information, personal information, sensitive information, etc. included in the block of the block chain. It is a privilege control system. The access right control system according to the present invention uses attribute-based encryption according to the information included in the block chain transaction to encrypt it with an access policy according to the attribute of data, and only information users who satisfy the corresponding access policy decrypt and query the information make it possible Accordingly, whenever the distributed ledger, which is a blockchain, is updated or inquired, property-based encryption and decryption are executed through a smart contract. In the access authority control system according to the present invention, the attribute is verified by the attribute node based on the access policy, and a one-time token is issued to the verified user. The central node generates a secret key through the user's one-time token, and this secret key corresponds to a key for decrypting the cipher text. The access tree consists of a partial tree representing the user's attributes and a partial tree representing the retention period of personal information. The two partial trees are connected by an AND gate. Part tree a is composed of leaf nodes expressing user attributes and AND and OR gates indicating logical relationships between them. In order to verify the attribute of the information user, the tree node value becomes true if the leaf node of the tree and the attribute value match and match. By repeating this operation from the leaf node to the root node, if the entire tree node becomes true, the attribute verification is successful.

The access authority control system according to the present invention encrypts an access policy based on an access structure that allows an information subject to access information when generating transaction information, and records it in the block chain. On the other hand, when an information user requests access to encrypted data, the attribute node generates a one-time token (tu) using the qualification attribute and time stamp for the information user. Information users can access data by receiving the secret key from the central node using the one-time token provided by the attribute node. The information is encrypted with the access policy and retention period, and the attribute node generates and issues a one-time token for the information user by using the attribute information and access request time information of the information user. In this case, the one-time token can be provided only when the attribute of the information user and the access policy for the information match.

Attribute-based encryption works based on access policies. An access policy is a policy that describes information about objects that each data subject can access. In the case of a data subject, various information expressing the subject, including position and job, is given as an attribute, and the object is given a retention period. do. Access policies can be added, modified, or deleted at any time according to the organization's policy.

In attribute-based encryption, the access policy is expressed in the form of an access tree. The access tree composes the properties of all subjects as leaf nodes, and the relationship between each property as internal nodes. Then, it can be determined whether the attribute of an arbitrary information user matches the access policy through the tree search algorithm.

Encryption and decryption operate with a single central node and K attribute nodes. The access tree consists of a partial tree representing the user's qualification attributes and a partial tree representing the retention period of personal information. The two partial trees are connected by an AND gate. The partial tree representing the qualification attribute is composed of a leaf node expressing the user attribute and AND and OR gates indicating the logical relationship between them. The partial tree representing the retention period attribute is expressed as a tree by counting the legal maximum retention period (10 years, etc.) of the personal information from the date when the personal information is recorded in the block chain. In other words, since the retention period attribute tree must compare numbers, not letters, the retention period attribute tree is composed of a separate bit string (n-bit integer), and then is equal to or equal to the timestamp requested by the information user. Compare the larger ones.

Hereinafter, the structure of each node of the access authority control system according to a preferred embodiment of the present invention will be described in detail with reference to FIG. 1 . 1 is a block diagram schematically showing the configuration of each node in the access authority control system according to a preferred embodiment of the present invention.

Referring to FIG. 1 , each node of the block chain-based access right control system according to the present invention includes a block chain module 100 , a monitoring module 110 , an access control module 120 , and an encryption module 130 . , and an access policy module 140 .

The blockchain module (Blockchain Module; 100) creates a transaction, verifies the validity, and adds it to the block for inquiry. The monitoring module (Auditing Module; 110) monitors and records who encrypted what personal information when, stored in a block, and decrypted and inquired. The access control module (Access control module; 120) defines a rule for who can inquire what information in the block chain personal information by when, and if necessary, the access policy can be modified, deleted, and added.

The cryptographic module (Cryptography Module; 130) encrypts the information on the block chain with reference to the access policy, and decrypts it according to the properties of the information user. The access policy module (Access Control Policy Module; 140) defines an access policy that is a rule for who can inquire what information for personal information of the block chain by when, and if necessary, the access policy can be modified, deleted, can be added. All access policies are implemented in a tree structure that combines logical operations (AND, OR) with the properties of subjects and objects.

2 exemplarily shows an access tree (b) composed of a partial tree of qualification attributes (a) and a partial tree of retention period attributes in the access right control system according to a preferred embodiment of the present invention. As shown in FIG. 2, the access tree is divided into K partial trees and processed, and a one-time token can be issued when all the values of each partial tree are satisfied by shamir's secret distribution method.

Hereinafter, the operation of the access authority control system in the block chain network according to a preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings.

3 is a flowchart showing the overall operation of each node of the access right control system in the block chain network according to a preferred embodiment of the present invention.

Referring to FIG. 3, the access authority control system in the blockchain network according to the present invention includes a membership service provider (10: Membership Service Provider; MSP), a central node 20, K attribute nodes 30, The first smart contract 40 distributed by the information information subject and the second smart contract 50 distributed by the information user are included.

The MSP sets one central node and K distributed attribute nodes among the nodes constituting the blockchain network. The K distributed attribute nodes are nodes representing each organization. When a request for information from a user who is a member of the organization occurs through the second smart contract, attribute verification is performed, and a one-time token is issued to the user who succeeded in verification. . A user who is provided with a one-time token presents it to the central node, proves that he or she has legal qualifications, and issues a secret key from it. Accordingly, the user can decrypt the ciphertext using the secret key issued from the central node.

6 is a schematic diagram for explaining the operations of the central node and K attribute nodes in the access authority control system according to the preferred embodiment of the present invention. Referring to FIG. 6 , the central node is selected by the MSP and generates a system public key to be used for encryption, a private key, and a master key used to generate the private key. It defines a set of all attribute values that can be distributed to message encryption and users, and creates a public key PK used for encryption and a master key MK used for issuing a private key.

7 is a schematic diagram for explaining the operations of an information subject node and an information user node in the access authority control system according to a preferred embodiment of the present invention. Referring to FIG. 7 , the information user node verifies the attribute of the information user based on the access policy standard and generates a one-time token for the information user when the verification is successful. The information user node requests a secret key from the central node using the one-time token provided from the attribute node, and the central node issues the private key when the one-time token value is appropriate. The information user decrypts the cipher text using the secret key to obtain the original text.

In the above, the present invention has been mainly described with respect to its preferred embodiment, but this is only an example and does not limit the present invention. It will be appreciated that various modifications and applications not exemplified above in the scope are possible. And, the differences related to such modifications and applications should be construed as being included in the scope of the present invention defined in the appended claims.

10: Membership Service Provider (MSP)
20: central node
30: K attribute nodes
40: The first smart contract distributed by the data subject node
50: The second smart contract distributed by the information user node
100: blockchain module
110: monitoring module
120: access control module
130: cryptographic module
140: access policy module

Claims (12)

In the access authority control system in a block chain network including a plurality of nodes,
an MSP for selecting a single central node and an attribute node from among the nodes;
a central node generating public and private keys;
an attribute node that verifies the user attribute and issues a one-time token to the user who has succeeded in the verification;
A smart contract distributed by an information subject, comprising: a first smart contract that encrypts personal information with an access policy managed by an attribute node and a public key distributed by a central node to generate a ciphertext and record it in a block chain;
As a smart contract distributed by information users, it requests access to the ciphertext of the block chain, receives the property verification from the property node according to the access request, receives a one-time token from the property node when verification is successful, and uses the one-time token a second smart contract that receives a secret key from the central node and decrypts the ciphertext using the secret key;
characterized in that it encrypts personal information based on the attribute, stores it in a distributed ledger, and decrypts the encrypted information,
The access policy is expressed as an access tree,
The access tree is an access right control system in a blockchain network, characterized in that it is expressed as an AND gate of a partial tree indicating the qualification attribute of the information user and the partial tree indicating the retention period for the personal information. delete According to claim 1, wherein the attribute node generates a one-time token for the information user by using the attribute of the information user, including the entitlement attribute and the time stamp, according to the ciphertext access request from the information user, and receives the generated one-time token. An access authority control system in a blockchain network, characterized in that it is transmitted to information user nodes. In the access authority control system in a block chain network including a plurality of nodes,
an attribute node that verifies the user's attributes and, if successful, issues a one-time token and transmits it to the information subject;
A smart contract distributed by an information subject, comprising: a first smart contract that encrypts data with an access policy based on user properties to generate a ciphertext and record it in a block chain;
As a smart contract distributed by information users, it requests access to the ciphertext of the block chain, receives a one-time token from the attribute node according to the access request, and receives a secret key from the central node using the one-time token, and the secret a second smart contract that decrypts the ciphertext using the key;
characterized in that it encrypts personal information based on the attribute, stores it in the distributed ledger, and decrypts the encrypted text of the distributed ledger,
The access policy is expressed as an access tree,
The access tree is an access right control system in a blockchain network, characterized in that it is expressed as an AND gate of a partial tree indicating the qualification attribute of the information user and the partial tree indicating the retention period for the personal information. delete According to claim 4, wherein the attribute node,
In response to a request for access to ciphertext from the information user node, generating a one-time token for the information user by using the information user’s attributes including the qualification attribute and time stamp, and transmitting the generated one-time token to the information user node An access right control system in a blockchain network that According to claim 4, The access authority control system,
Among the nodes constituting the blockchain network, a single central node and K attribute nodes are set,
An access authority control system in a blockchain network, characterized in that the K attribute nodes perform attribute verification according to the user's request for information included in the attribute nodes, and issue a one-time token to the user who has succeeded in verification. The method of claim 7, wherein the central node is
One system public key and K master keys are generated, and K attribute node secret keys are generated using them, and K attribute node access trees are generated using the system public key,
The central node transmits the master key, the attribute node access tree, and the attribute node secret key to the attribute node. A method for controlling access rights in a blockchain network including a central node, an attribute node, a first smart contract distributed by an information subject, and a second smart contract distributed by an information user, the method comprising:
(a) generating, by the central node, a public key and a private key;
(b) the attribute node generates an attribute node public key, generates an attribute cipher text for a user attribute using the attribute node access tree, and transmits it to the first smart contract;
(c) the information subject encrypting personal information through the first smart contract with the access policy managed by the attribute node and the public key distributed by the central node and recording it in the block chain;
A method for controlling access rights in a block chain network, characterized in that by having, encrypting personal information based on an attribute and storing it in a distributed ledger. The method of claim 9, wherein the access policy is expressed as an access tree,
The access tree is an access right control method in a blockchain network, characterized in that it is expressed as an AND gate of a partial tree indicating the qualification attribute of the information user and the partial tree indicating the retention period for the personal information. The method of claim 9, wherein the access right control method comprises:
(d) The information user requests access to the cryptographic text of the block chain from the attribute node through the second smart contract, receives a one-time token from the attribute node according to the access request, and uses the one-time token to secretly from the central node receiving a key and decrypting the encrypted text using the secret key;
Access authority control method in a block chain network, characterized in that it further comprises. The method of claim 11, wherein the attribute node,
According to the request for access to the cryptogram through the second smart contract distributed by the information user, a one-time token is generated for the information user by using the information user’s attributes including the qualification attribute and the time stamp, and the generated one-time token is used as a second A method of controlling access rights in a blockchain network, characterized in that it is transmitted to a smart contract.

Images