中圖分類號：TP309
文獻標識碼：A
DOI:10.19358/j.issn.2097-1788.2023.10.007
引用格式：楊志謀，文強，張帥，等.基于策略和屬性隱藏的區塊鏈訪問控制方法研究［J］.網絡安全與數據治理，2023，42（10）：40-48.

Research on blockchain access control methods based on policy and attribute hiding

Abstract： Aiming at the lack of privacy protection in the process of access control, an access control scheme based on blockchain policy and attribute hiding is proposed. Firstly, access request, attribute management and policy management chain codes are written based on Hyperledger Fabric platform, and basic attribute based access control model is built to achieve finegrained access control. Secondly, the AES symmetric encryption algorithm and attributebased encryption algorithm are used to encrypt resources for storage, and then the storage address and resource hash are uploaded to the blockchain to ensure the security and integrity of the data. Finally, the Paillier homomorphic encryption algorithm is used to encrypt and upload user attributes and access policies to the blockchain, ensuring the privacy of users during access. Through comparison of schemes and simulation experimental results, it is proved that this scheme can effectively protect user privacy.

Key words : blockchain; access control; privacy protection; encryption algorithm