CN109495478B - Block chain-based distributed secure communication method and system - Google Patents

Abstract

The invention provides a distributed safety communication method based on a block chain, which comprises the following steps: generating a system public parameter, and writing the system public parameter into a block chain; each user generates a respective public key and a private key according to the system public parameters, and writes the respective public key into the block chain, wherein the users comprise a communication initiator and a communication receiver; a communication initiator executes an encryption process according to a group of public keys of the communication receiver and generates parameters related to a session key and ciphertext data, and the parameters related to the session key and the ciphertext data are written into a block chain; and each communication receiver reads the relevant session key relevant parameters and the ciphertext data from the block chain, recovers the session key and further decrypts the session key to obtain plaintext data. The invention provides a method for processing, distributing and recovering the session key and encrypting and decrypting the data under a distributed environment, which can ensure the privacy of the session key and the user data in the transmission process.

Description

Block chain-based distributed secure communication method and system

Technical Field

The invention relates to the field of information security passwords, in particular to a distributed security communication method and system based on a block chain.

Background

With the rapid development and popularization of information technology, various intelligent devices have been gradually applied to various aspects of people's work and life. When people hold intelligent devices to work under the field condition, the intelligent devices are often required to be capable of self-organizing networking and cooperate with each other to complete target tasks. In this process, each smart device, as a distributed communication node, needs to be able to maintain effective communication with other nodes and to be able to effectively verify the source of the received information. In addition, in some special application scenarios, all previous communication information often needs to be audited retrospectively, for example, malicious information sources are tracked. Therefore, it is important to ensure the security, confidentiality and verifiability of the communication content in the distributed communication environment.

With existing broadcast encryption techniques, a user can send the same data content to multiple recipients at the same time. However, when the amount of data to be transmitted is large, the method of directly encrypting the message by using the broadcast encryption technology is inefficient. The mixed encryption technology consisting of broadcast encryption and symmetric encryption can be used, namely, a user selects a random session key, the session key is protected by using the broadcast encryption technology, plaintext information is processed by using the symmetric encryption technology, and finally the key in the form of ciphertext and the information are sent out simultaneously. Although the hybrid encryption method improves certain computational efficiency compared with the single use of the broadcast encryption technology, the problems of verification and audit of communication sources are still not solved.

Disclosure of Invention

In view of the above shortcomings in the prior art, the present invention aims to provide a block chain based distributed secure communication method and system, which aim to solve the problems of privacy protection, source verification and audit of communication data in a distributed environment.

To achieve the above and other related objects, the present invention provides a block chain-based distributed secure communication method, including:

generating a system public parameter, and writing the system public parameter into a block chain;

each user generates a respective public key and a private key according to the system public parameters, and writes the respective public key into the block chain, wherein the users comprise a communication initiator and a communication receiver;

a communication initiator executes an encryption process according to a group of public keys of the communication receiver and generates parameters related to a session key and ciphertext data, and the parameters related to the session key and the ciphertext data are written into a block chain;

and each communication receiver reads the relevant session key relevant parameters and the ciphertext data from the block chain, recovers the session key and further decrypts the session key to obtain plaintext data.

Optionally, the system disclosure parameter para is specifically: para ═ G, (G, q, H (·), S), where G is a group with order prime q, G denotes a generator of G, H (·) denotes an anti-collision hash function, and S is a symmetric encryption scheme.

Optionally, the generating, by each user, a respective public key and a respective private key according to the public parameter specifically includes:

user P_iRandom selection of Z_qOne non-0 element in a Domain

Representation field Z_qAnd (2) and (q-1) and computing a non-zero subset of elements {1,2

X_iRepresenting an exponentiation on group G;

user P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i。

Optionally, the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, which specifically includes:

communication initiator P₀Random selection of Z_qTwo non-0 elements alpha in the domain,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key and k is the session key,

represents Z_qA subset of non-zero elements of the domain {1, 2., q-1}, g^αRepresenting an exponentiation in group G;

communication initiator P₀Is constructed as follows Z_qPolynomial over domain:

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k;

communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m;

communication initiator P₀The parameter b of the session key k is measured_n,b_n-1,…,b₁,b₀And writing the data m and the ciphertext C of the data m into a block chain.

Optionally, the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, which specifically includes:

communication receiver P_iUsing its private key x_iComputing

Communication receiver P_iResume session key k ← phi (h)_i)mod q；

Communication receiver P_iDecryption yields the message m ← s.dec (k, C).

To achieve the above and other related objects, the present invention also provides a block chain based distributed secure communication system, comprising:

the initialization module is used for generating a system public parameter and writing the system public parameter into a block chain;

the user key generation module is used for generating a respective public key and a private key by each user according to the system public parameters and writing the respective public key into the block chain, and the users comprise a communication initiator and a communication receiver;

the data encryption module is used for executing an encryption process by a communication initiator according to a group of public keys of the communication receivers and generating parameters related to a session key and ciphertext data, wherein the parameters related to the session key and the ciphertext data are written into a block chain;

and the data decryption module is used for reading the related session key related parameters and the ciphertext data from the block chain by each communication receiver, recovering the session key and further decrypting to obtain plaintext data.

Optionally, the system disclosure parameter para is specifically: para ═ G, (G, q, H (·), S), where G is a group with order prime q, G denotes a generator of G, H (·) denotes an anti-collision hash function, and S is a symmetric encryption scheme.

Optionally, the generating, by each user, a respective public key and a respective private key according to the public parameter specifically includes:

user P_iRandom selection of Z_qOne non-0 element in a Domain

Representation field Z_qAnd (2) and (q-1) and computing a non-zero subset of elements {1,2

X_iRepresenting an exponentiation on group G;

user P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i。

Optionally, the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, which specifically includes:

communication initiator P₀Random selection of Z_qTwo non-0 elements alpha in the domain,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key and k is the session key,

represents Z_qA subset of non-zero elements of the domain {1, 2., q-1 };

communication initiator P₀Is constructed as follows Z_qPolynomial over domain:

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k;

communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m;

communication initiator P₀The parameter b of the session key k is measured_n,b_n-1,…,b₁,b₀And writing the data m and the ciphertext C of the data m into a block chain.

Optionally, the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, which specifically includes:

communication receiver P_iUsing its private key x_iComputing

Communication receiver P_iResume session key k ← phi (h)_i)mod q；

Communication receiver P_iDecryption yields the message m ← s.dec (k, C).

As described above, the distributed secure communication method and system based on the block chain of the present invention have the following beneficial effects:

the invention provides a distributed secure communication method and a distributed secure communication system based on a block chain. All data generated by the system, including system public parameters, session key parameters and ciphertext data, are written into the block chain, and any user can verify the data, so that non-repudiation of data communication is realized. Since all data is stored on the blockchain, the method provided by the invention also supports verification of the data source and auditing of communication information written into all blockchains.

Drawings

To further illustrate the description of the present invention, the following detailed description of the embodiments of the present invention is provided with reference to the accompanying drawings. It is appreciated that these drawings are merely exemplary and are not to be considered limiting of the scope of the invention.

Fig. 1 is a flowchart of a block chain-based distributed secure communication method according to the present invention;

fig. 2 is a block diagram of a distributed secure communication system based on a blockchain according to the present invention.

Fig. 3 is a system architecture diagram of a distributed secure communication system based on a blockchain according to the present invention.

Detailed Description

The embodiments of the present invention are described below with reference to specific embodiments, and other advantages and effects of the present invention will be easily understood by those skilled in the art from the disclosure of the present specification. The invention is capable of other and different embodiments and of being practiced or of being carried out in various ways, and its several details are capable of modification in various respects, all without departing from the spirit and scope of the present invention. It is to be noted that the features in the following embodiments and examples may be combined with each other without conflict.

It should be noted that the drawings provided in the following embodiments are only for illustrating the basic idea of the present invention, and the components related to the present invention are only shown in the drawings rather than drawn according to the number, shape and size of the components in actual implementation, and the type, quantity and proportion of the components in actual implementation may be changed freely, and the layout of the components may be more complicated.

In order to make the technical solution of the present invention more clearly understood, some technical terms used in the present invention will be described.

(1) System Manager (SM): and trusted by each user, the system is responsible for initializing the system, generating system public parameters and writing the system public parameters into the block chain.

(2) Communication initiator (Sender, SE): also called data sender, using P₀The method comprises the steps that a pair of public and private keys of a user is calculated according to system public parameters, and the public keys are written into a block chain; when the data encryption algorithm is executed, a random session key can be selected, the session key is processed by using a key distribution mechanism, and the message is encrypted by using the session key and the selected symmetric encryption algorithm, so that only the selected receiver can recover the session key and decrypt the data by using the session key, and finally all information generated in the encryption process is written into the block chain.

(3) Communication Recipient (RE): also called data receiver, n in total, using P_i(i is more than or equal to 1 and less than or equal to n) represents that a pair of public and private keys of the user is calculated according to the public parameters of the system, and the public keys are written into the block chain; the corresponding session key parameters and ciphertext data can be read from the blockchain, the session key is recovered, and then a decryption process is performed.

The hash function used in the present invention has two basic characteristics: unidirectionality and impact resistance; unidirectionality means that it is efficient to derive an output from the input of the hash function, but it is infeasible to calculate its input from the output of the hash function; crashworthiness means that two different inputs cannot be found to have the same hash function value.

As shown in fig. 1, the present invention provides a block chain-based distributed secure communication method, which includes the following steps:

step 1, a system administrator SM selects a safety parameter, an anti-collision Hash function and a symmetric encryption scheme to generate an open parameter and a block chain initial block.

Specifically, the step 1 specifically includes the following substeps:

step 11: the system administrator SM inputs a system safety parameter lambda and runs an initialization algorithm Π (1)^λ) Outputting a group G with a prime number q;

wherein, the initialization algorithm II (1)^λ) The operation method comprises the following steps: the system administrator SM inputs a system security parameter lambda, and the system forms a group G with prime number q order according to the size of lambda.

Step 12: a system administrator SM runs a random number generation algorithm and randomly selects a generation element G in a group G;

step 13: the system administrator SM selects an anti-collision hash function H (-) that satisfies all the characteristics of the anti-collision hash function. The input of the anti-collision hash function H (-) is two elements in the group G, and the output is

The elements of (1);

step 14: the system administrator SM selects a secure symmetric encryption scheme S ═ K, Enc, Dec >;

wherein, K represents the key space of the symmetric encryption scheme S, Enc represents the encryption algorithm of the symmetric encryption scheme S, the input of the encryption algorithm is a key K belonging to K and a message m, the output of the encryption algorithm is a ciphertext C, Dec represents the decryption algorithm of the symmetric encryption scheme S, the input of the encryption algorithm is a key K belonging to K and a ciphertext C, and the output of the decryption algorithm is a message m; here, the binary length of the key k is required to be equal to or less than the length of the prime number q.

Finally, the system disclosure parameter is denoted as para ═ (G, q, H (·), S).

Step 15: the system administrator SM generates a block chain initial block with the public parameter para and writes it into the block chain.

And 2, each user generates a respective public key and a private key according to the public parameters and writes the public key into the block chain, wherein the users comprise a communication initiator and a communication receiver.

Specifically, the step 2 specifically includes the following sub-steps:

step 21: user P_iRandom selection of Z_qOne non-0 element in a Domain

And calculate

User P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i；X_iRepresenting an exponentiation on the group G.

Wherein,

representation field Z_qIs given as a non-zero subset of elements {1, 2., q-1 }.

Step 22: user P_iIts public key pk_iThe block chain is written.

And 3, the communication initiator executes an encryption process according to the public keys of the n communication receivers and generates parameters related to the session key and ciphertext data, and the parameters related to the session key and the ciphertext data are written into the block chain.

Specifically, the step 3 specifically includes the following sub-steps:

step 31: communication initiator P₀Random selection of Z_qTwo non-0 elements alpha in the domain,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key and k is the session key,

represents Z_qA subset of non-zero elements of the domain {1, 2., q-1}, G α representing a power operation in group G;

step 32: communication initiator P₀The following domain Z is constructed_qPolynomial of (c):

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

step 33: communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k.

Step 34: communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m.

Step 35: communication initiator P₀Parameter b of session key k_n,b_n-1,…,b₁,b₀And is written into the block chain together with the ciphertext C of the data m.

And 4, each communication receiver reads the relevant session key parameters and the ciphertext data from the block chain, recovers the session key and further decrypts the session key to obtain plaintext data.

Specifically, the step 4 specifically includes the following sub-steps:

step 41: communication receiver P_iUsing its private key x_iComputing

Step 42: communication receiver P_iResume session key k ← phi (h)_i)mod q；

Step 43: communication receiver P_iDecryption yields the message m ← s.dec (k, C).

In summary, the present invention provides a method for distributed secure communication based on a block chain. Firstly, a system administrator writes system parameters into a block chain, and any user can access and verify the system parameters; secondly, in a distributed environment, a communication initiator can process a randomly selected session key according to a public key of a group of receivers and write the obtained parameters into a block chain, and any communication receiver involved can access and verify the session key and recover the correct session key; thirdly, the communication initiator can generate ciphertext data by using a symmetric encryption scheme and write the ciphertext data and the session key parameters into the block chain together, so that a legal communication receiver can access, verify and decrypt the ciphertext data; finally, because the system parameters, all the session key parameters and the ciphertext data are stored on the block chain, the method supports the verification of the source of the ciphertext data and the audit of the communication content at the later stage.

As shown in fig. 2, the present invention further provides a distributed secure communication system based on a blockchain, which includes an initialization module, a user key generation module, a data encryption module, and a data decryption module.

The initialization module is used for generating a system public parameter and writing the system public parameter into a block chain;

the system administrator SM inputs a system safety parameter lambda and runs an initialization algorithm Π (1)^λ) Outputting a group G with a prime number q;

wherein, the initialization algorithm II (1)^λ) The operation method comprises the following steps: the system administrator SM inputs a system security parameter lambda, and the system forms a group G with prime number q order according to the size of lambda.

A system administrator SM runs a random number generation algorithm and randomly selects a generation element G in a group G;

the system administrator SM selects an anti-collision hash function H (-) that satisfies all the characteristics of the anti-collision hash function. The input of the anti-collision hash function H (-) is two elements in the group G, and the output is

The elements of (1);

the system administrator SM selects a secure symmetric encryption scheme S ═ K, Enc, Dec >;

wherein, K represents the key space of the symmetric encryption scheme S, Enc represents the encryption algorithm of the symmetric encryption scheme S, the input of the encryption algorithm is a key K belonging to K and a message m, the output of the encryption algorithm is a ciphertext C, Dec represents the decryption algorithm of the symmetric encryption scheme S, the input of the encryption algorithm is a key K belonging to K and a ciphertext C, and the output of the decryption algorithm is a message m; here, the binary length of the key k is required to be equal to or less than the length of the prime number q.

Finally, the system disclosure parameter is denoted as para ═ (G, q, H (·), S).

The system administrator SM generates a block chain initial block with the public parameter para and writes it into the block chain.

The user key generation module is used for generating a respective public key and a private key by each user according to the system public parameters and writing the respective public key into the block chain, and the users comprise a communication initiator and a communication receiver;

user P_iRandom selection of Z_qOne non-0 element in a Domain

And calculate

User P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i；X_iRepresenting an exponentiation over the group G, wherein,

representation field Z_qIs given as a non-zero subset of elements {1, 2., q-1 }.

User P_iIts public key pk_iThe block chain is written.

The data encryption module is used for the communication initiator to execute an encryption process according to a group of public keys of the communication receiver and generate parameters related to a session key and ciphertext data, and the parameters related to the session key and the ciphertext data are written into a block chain;

communication initiator P₀Randomly selecting field Z_qIs not a 0 element a in the group,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key.

Communication initiator P₀The following domain Z is constructed_qPolynomial of (c):

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k.

Communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m.

Communication initiator P₀Parameter b of session key k_n,b_n-1,…,b₁,b₀And is written into the block chain together with the ciphertext C of the data m.

And the data decryption module is used for reading the related parameters of the related session key and the ciphertext data from the block chain by each communication receiver, recovering the session key and further decrypting to obtain plaintext data.

Communication receiver P_iUsing its private key x_iComputing

Communication receiver P_iResume session key k ← phi (h)_i)mod q；

Communication receiver P_iDecryption yields the message m ← s.dec (k, C).

The method proposed by the invention allows a user to construct a key distribution polynomial from the public key of the recipient, so that the coefficients of the polynomial, called session key parameters, are public, and accessible to any user, but only the relevant recipient can compute and recover the session key from the public session key parameters using its private key. Compared with the distribution of the session key by using the broadcast encryption technology, the polynomial distribution mode requires that the communication initiator only bears 1 more exponentiation than the number of receivers, and each receiver only needs to perform one exponentiation. Only computationally intensive exponentiation operations are considered here, since other modulo additions and multiplications are comparatively efficient.

The invention uses the block chain to store the public parameters of the communication system, and the session key parameters and the ciphertext data involved in all communication processes. The block chain realizes a distributed operation architecture by using a digital signature and consensus mechanism, and can realize the characteristics of data such as non-falsification, openness, transparency, traceability and the like without depending on a credible central node. Based on these excellent properties of the blockchain, all parameters related to the distributed communication system, session key parameters and ciphertext data can be publicly verified by any user, but only relevant receivers are allowed to recover the session key and decrypt the data, so that the blockchain technology does not affect the security and privacy of the session key and communication content, but also enhances the verifiability of the system.

The foregoing embodiments are merely illustrative of the principles and utilities of the present invention and are not intended to limit the invention. Any person skilled in the art can modify or change the above-mentioned embodiments without departing from the spirit and scope of the present invention. Accordingly, it is intended that all equivalent modifications or changes which can be made by those skilled in the art without departing from the spirit and technical spirit of the present invention be covered by the claims of the present invention.

Claims (8)

1. A distributed secure communication method based on a block chain is characterized by comprising the following steps:

generating a system public parameter, and writing the system public parameter into a block chain;

each user generates a respective public key and a private key according to the system public parameters, and writes the respective public key into the block chain, wherein the users comprise a communication initiator and a communication receiver;

a communication initiator executes an encryption process according to a group of public keys of the communication receiver and generates parameters related to a session key and ciphertext data, and the parameters related to the session key and the ciphertext data are written into a block chain;

each communication receiver reads the relevant parameters of the relevant session key and the ciphertext data from the block chain, recovers the session key and further decrypts the session key to obtain plaintext data;

the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, and the method specifically includes:

communication initiator P₀Random selection of Z_qTwo non-0 elements alpha in the domain,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key and k is the session key,

represents Z_qA subset of non-zero elements of the domain {1, 2., q-1}, g^αRepresenting an exponentiation in group G;

communication initiator P₀Is constructed as follows Z_qPolynomial over domain:

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k;

communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m;

communication initiator P₀The parameter b of the session key k is measured_n,b_n-1,…,b₁,b₀And writing the data m and the ciphertext C of the data m into a block chain.

2. The distributed secure communication method based on the blockchain according to claim 1, wherein the system disclosure parameter para is specifically: para ═ G, (G, q, H (·), S), where G is a group with order prime q, G denotes a generator of G, H (·) denotes an anti-collision hash function, and S is a symmetric encryption scheme.

3. The block chain-based distributed secure communication method according to claim 1, wherein each user generates a public key and a private key according to the public parameters, specifically comprising:

user P_iRandom selection of Z_qOne non-0 element in a Domain

Representation field Z_qAnd (2) and (q-1) and computing a non-zero subset of elements {1,2

X_iRepresenting an exponentiation on group G;

user P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i。

4. The block chain-based distributed secure communication method according to claim 3, wherein the communication initiator performs an encryption process according to a public key of a group of communication receivers and generates parameters and ciphertext data related to a session key, specifically comprising:

communication receiver P_iUsing its private key x_iComputing

Communication receiver P_iResume session key k ← phi (h)_i)mod q；

Communication receiver P_iDecryption yields the message m ← s.dec (k, C).

5. A block chain based distributed secure communications system, the system comprising:

the initialization module is used for generating a system public parameter and writing the system public parameter into a block chain;

the user key generation module is used for generating a respective public key and a private key by each user according to the system public parameters and writing the respective public key into the block chain, and the users comprise a communication initiator and a communication receiver;

the data encryption module is used for executing an encryption process by a communication initiator according to a group of public keys of the communication receivers and generating parameters related to a session key and ciphertext data, wherein the parameters related to the session key and the ciphertext data are written into a block chain;

the data decryption module is used for reading related session key related parameters and ciphertext data from the block chain by each communication receiver, recovering the session key and further decrypting to obtain plaintext data;

the communication initiator performs an encryption process according to a group of public keys of the communication receiver and generates parameters and ciphertext data related to a session key, and the method specifically includes:

communication initiator P₀Random selection of Z_qTwo non-0 elements alpha in the domain,

and calculate c₀＝g^α，c₁＝(pk₁)^α，c₂＝(pk₂)^α，……，c_n＝(pk_n)^α(ii) a Where k is the session key and k is the session key,

represents Z_qA subset of non-zero elements of the domain {1, 2., q-1 };

communication initiator P₀Is constructed as follows Z_qPolynomial over domain:

φ(x)＝(x-H(c₀,c₁))(x-H(c₀,c₂))…(x-H(c₀,c_n))+k

communication initiator P₀The above polynomial phi (x) is arranged into the following form:

wherein the coefficient b of the polynomial phi (x)_n,b_n-1,…,b₁,b₀And c₀A parameter called session key k;

communication initiator P₀C ← s.enc (k, m) is executed to obtain ciphertext C of data m;

communication initiator P₀The parameter b of the session key k is measured_n,b_n-1,…,b₁,b₀And writing the data m and the ciphertext C of the data m into a block chain.

6. The system according to claim 5, wherein the system disclosure parameter para is specifically: para ═ G, (G, q, H (·), S), where G is a group with order prime q, G denotes a generator of G, H (·) denotes an anti-collision hash function, and S is a symmetric encryption scheme.

7. The distributed secure communication system based on the blockchain according to claim 5, wherein each user generates a public key and a private key according to the public parameters, specifically comprising:

user P_iRandom selection of Z_qOne non-0 element in a Domain

Representation field Z_qAnd (2) and (q-1) and computing a non-zero subset of elements {1,2

X_iRepresenting an exponentiation on group G;

user P_iGet the public key pk_i＝X_iAnd the private key sk_i＝x_i。

8. The system according to claim 5, wherein the communication initiator performs an encryption process according to a public key of a group of communication receivers and generates parameters and ciphertext data related to a session key, and specifically comprises:

communication receiver P_iUsing its private key x_iComputing

Communication receiver P_iResume session key k ← phi (h)_i)mod q；

Communication receiver P_iDecryption yields the message m ← s.dec (k, C).

Images