TY - JOUR
T1 - A Privacy-Preserving Data Feed Scheme for Smart Contracts
AU - Wang, Hao
AU - Liu, Zhe
AU - Ge, Chunpeng
AU - Sakurai, Kouichi
AU - Su, Chunhua
N1 - Funding Information:
Manuscript received March 10, 2021. Manuscript revised June 26, 2021. Manuscript publicized December 6, 2021. †The authors are with Nanjing University of Aeronautics and Astronautics, China. ††The author is with Kyushu University, Fukuoka-shi, 819– 0395 Japan. †††The author is with The University of Aizu, Aizuwakamatsu-shi, 965–0107 Japan. ∗This work was supported by the National Key R&D Program of China (Grant No. 2020YFB1005900, No. 2021YFB2700500), the Natural Science Foundation of Jiangsu Province (Grant No. BK20200418, BE2020106), the Guangdong Basic and Applied Basic Research Foundation (2021A1515012650), the Shenzhen Science and Technology Program (JCYJ20210324134810028). a) E-mail: wangh24@nuaa.edu.cn b) E-mail: zhe.liu@nuaa.edu.cn c) E-mail: gecp@nuaa.edu.cn d) E-mail: sakurai@inf.kyushu-u.ac.jp e) E-mail: chsu@u-aizu.ac.jp DOI: 10.1587/transinf.2021BCI0001
Publisher Copyright:
© 2022 The Institute of Electronics, Information and Communication Engineers
PY - 2022
Y1 - 2022
N2 - SUMMARY Smart contracts are becoming more and more popular in financial scenarios like medical insurance. Rather than traditional schemes, using smart contracts as a medium is a better choice for both participants, as it is fairer, more reliable, more efficient, and enables real-time payment. However, medical insurance contracts need to input the patient’s condition information as the judgment logic to trigger subsequent execution. Since the blockchain is a closed network, it lacks a secure network environment for data interaction with the outside world. The Data feed aims to provide the service of the on-chain and off-chain data interaction. Existing researches on the data feed has solved the security problems on it effectively, such as Town Crier, TLS-N and they have also taken into account the privacy-preserving problems. However, these schemes cannot actually protect privacy because when the ciphertext data is executed by the contract, privacy information can still be inferred by analyzing the transaction results, since states of the contract are publicly visible. In this paper, based on zero-knowledge proof and Hawk technology, a on-and-off-chain complete smart contract data feed privacy-preserving scheme is proposed. In order to present our scheme more intuitively, we combined the medical insurance compensation case to implement it, which is called MIPDF. In our MIPDF, the patient and the insurance company are parties involved in the contract, and the hospital is the data provider of data feed. The patient’s medical data is sent to the smart contract under the umbrella of the zero-knowledge proof signature scheme. The smart contract verifies the proof and calculates the insurance premium based on the judgment logic. Meanwhile, we use Hawk technology to ensure the privacy of on-chain contract execution, so that no information will be disclosed due to the result of contract execution. We give a general description of our scheme within the Universal Composability (UC) framework. We experiment and evaluate MIPDF on Ethereum for in-depth analysis. The results show that our scheme can securely and efficiently support the functions of medical insurance and achieve complete privacy-preserving.
AB - SUMMARY Smart contracts are becoming more and more popular in financial scenarios like medical insurance. Rather than traditional schemes, using smart contracts as a medium is a better choice for both participants, as it is fairer, more reliable, more efficient, and enables real-time payment. However, medical insurance contracts need to input the patient’s condition information as the judgment logic to trigger subsequent execution. Since the blockchain is a closed network, it lacks a secure network environment for data interaction with the outside world. The Data feed aims to provide the service of the on-chain and off-chain data interaction. Existing researches on the data feed has solved the security problems on it effectively, such as Town Crier, TLS-N and they have also taken into account the privacy-preserving problems. However, these schemes cannot actually protect privacy because when the ciphertext data is executed by the contract, privacy information can still be inferred by analyzing the transaction results, since states of the contract are publicly visible. In this paper, based on zero-knowledge proof and Hawk technology, a on-and-off-chain complete smart contract data feed privacy-preserving scheme is proposed. In order to present our scheme more intuitively, we combined the medical insurance compensation case to implement it, which is called MIPDF. In our MIPDF, the patient and the insurance company are parties involved in the contract, and the hospital is the data provider of data feed. The patient’s medical data is sent to the smart contract under the umbrella of the zero-knowledge proof signature scheme. The smart contract verifies the proof and calculates the insurance premium based on the judgment logic. Meanwhile, we use Hawk technology to ensure the privacy of on-chain contract execution, so that no information will be disclosed due to the result of contract execution. We give a general description of our scheme within the Universal Composability (UC) framework. We experiment and evaluate MIPDF on Ethereum for in-depth analysis. The results show that our scheme can securely and efficiently support the functions of medical insurance and achieve complete privacy-preserving.
UR - http://www.scopus.com/inward/record.url?scp=85124666484&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85124666484&partnerID=8YFLogxK
U2 - 10.1587/transinf.2021BCI0001
DO - 10.1587/transinf.2021BCI0001
M3 - Article
AN - SCOPUS:85124666484
VL - E105D
SP - 195
EP - 204
JO - IEICE Transactions on Information and Systems
JF - IEICE Transactions on Information and Systems
SN - 0916-8532
IS - 2
ER -