zk-AuthFeed: Protecting Data Feed to Smart Contracts With Authenticated Zero Knowledge Proof

【Author】 Wan, Zhiguo; Zhou, Yan; Ren, Kui

【Source】IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING

【影响因子】6.791

【Abstract】The emerging blockchain technology, combined with the smart contract paradigm, is expected to transform traditional applications with decentralization. When the blockchain technology is applied to decentralize traditional applications, blockchain validators may need to take in sensitive off-chain data to execute a smart contract. On the one hand, decentralized applications (DApps) require authentic off-chain input data to correctly execute a given business procedure. On the other hand, users are reluctant to expose their sensitive privacy on the blockchain. For example, for a decentralized medical insurance DApp that takes as input personal health data, it is critical to guarantee authenticity and privacy of the data sent to the smart contract, such that the data can be verified by validators without leaking sensitive information. However, no satisfactory solution has been proposed to attain privacy and authenticity at the same time. In this work, we first present a highly efficient authenticated zero knowledge proof protocol called zk-DASNARK by extending the classical zk-SNARK scheme with data authentication. Based on zk-DASNARK, we design zk-AuthFeed, a zero-knowledge authenticated off-chain data feed scheme to achieve both data privacy and authenticity for blockchain-based DApps. Following the strategy of "compute off-chain and verify on-chain", zk-AuthFeed can significantly reduce computation cost of blockchain validators. We fully implement a prototype of zk-AuthFeed, and conduct comprehensive experiments on a medical insurance DApp. We consider 4 typical computation models for insurance premium/reimbursement in the experiments. It shows that zk-AuthFeed is highly efficient: key generation takes about 10 seconds only, proof generation takes less than 4 seconds, and proof verification takes less than 40 ms. [Wan, Zhiguo] Zhejiang Lab, Hangzhou 311121, Zhejiang, Peoples R China; [Zhou, Yan] Shandong Univ, Sch Comp Sci & Technol, Qingdao 266100, Shandong, Peoples R China; [Ren, Kui] Zhejiang Univ, Inst Cyberspace Res, Hangzhou 310058, Zhejiang, Peoples R China Zhejiang Laboratory; Shandong University; Zhejiang University Wan, ZG (通讯作者)，Zhejiang Lab, Hangzhou 311121, Zhejiang, Peoples R China. wanzhiguo@zhejianglab.com; yanzhousdu@mail.sdu.edu.cn; kuirentnse@163.com Key Research Project of Zhejiang Lab [2022PD0AC01]; Major Basic Research Program of the Shandong Provincial Natural Science Foundation [ZR2020ZD01]; National Natural Science Foundation of China [61972229] Key Research Project of Zhejiang Lab; Major Basic Research Program of the Shandong Provincial Natural Science Foundation; National Natural Science Foundation of China(National Natural Science Foundation of China (NSFC)) This work was supported in part by the Key Research Project of Zhejiang Lab under Grant 2022PD0AC01, in part by the Major Basic Research Program of the Shandong Provincial Natural Science Foundation under Grant ZR2020ZD01,and in part by the National Natural Science Foundation of China under Grant 61972229. 30 0 0 0 0 IEEE COMPUTER SOC LOS ALAMITOS 10662 LOS VAQUEROS CIRCLE, PO BOX 3014, LOS ALAMITOS, CA 90720-1314 USA 1545-5971 1941-0018 IEEE T DEPEND SECURE IEEE Trans. Dependable Secur. Comput. MAR-APR 2023 20 2 1335 1347 10.1109/TDSC.2022.3153084 http://dx.doi.org/10.1109/TDSC.2022.3153084 13 Computer Science, Hardware & Architecture; Computer Science, Information Systems; Computer Science, Software Engineering Science Citation Index Expanded (SCI-EXPANDED) Computer Science D2FS8 2023-05-06 WOS:000966938000001

【Keywords】Smart contracts; Blockchains; Security; Data privacy; Privacy; Zero knowledge proof; Decentralized applications; Blockchain; smart contract; privacy; authenticated data; zero knowledge proof

【发表时间】2023 MAR-APR

【收录时间】2023-05-08

【文献类型】理论模型

【主题类别】

区块链技术-核心技术-智能合约