基于区块链的动态权限管理与隐私保护方案

打开文本图片集

关键词：区块链；属性基加密；代理重加密；零知识证明；动态权限控制中图分类号：TP309 文献标志码：A 文章编号：1001-3695（2026）04-004-0995-10doi：10.19734/j.issn.1001-3695.2025.09.0307

Blockchain-based scheme for dynamic permission management and privacy protection

Li Xianqiua，Peng Changgena，b†，Tan Weijiea，b （a.ColegeofomputerSienendTolg.StateKebatorfublicgDatazouUniersityuang5On）

Abstract： This paper proposed a blockchain-based scheme to addressissues such as delayed permision revocation，policy leakage，andhigh proxyre-encryptionoverhead insuplychaincollaborationenvironments.Theschemeconstructedathreelayersecurityarchitecture integrating symmetricencryption，atribute-based encryption，anda trusted executionenvironment （TEE）.It incorporated multi-hop proxyre-encryption to enabledynamic policyupdates and forward securityforhistorical data.ItdesignedanITevent-drivensmartconractcordinationmechanism totriggerpoliciesautomaticallyandsynchronizeonchainandof-chainstates.ItintegratedtheGrothl6zero-knowledgeproofsystemwiththeTEEtoformaclosed-loopverificationsystemcomprisingof-chain privacyprofs，on-chainpolicyauditing，and hardware-controleddecryption.Experimental results demonstrate that the proposedschemeoutperforms existing approaches inkey metricssuch as policy-updatelatencyand decryptionresponse time，efectivelysupportingfine-grained，verifiable，andlightweightdatasharing inscenariosincluding smart warehousing and cross-border logistics.

Key words：blockchain；atribute-based encryption；proxyre-encryption；zero-knowledge prof；dynamic accescontrol

0 引言

随着全球供应链数字化转型加速，物联网感知设备与区块链的深度融合正促使供应链数据体系由单向采集走向多维度、动态交互的新范式[1]。（剩余28232字）