Conference：Journal of Computer Science and Technology (JCST)

CCF level：CCF B

Categories：交叉/综合/新兴

Year：2025（截止4.19）

JCST 2024年 区块链论文 录用汇总

1

Title: 

An Understandable Cross-Chain Authentication Mechanism for JointCloud Computing

一种易于理解的联合云计算跨链认证机制

Authors: 

Key words:

Blockchain, JointCloud Computing, Smart contract, Cross-chain data authentication, Accountability

区块链、联合云计算、智能合约、跨链数据认证、问责制

Abstract: 

JointCloud Computing is a new computing paradigm that supports cloud services to achieve mutually beneficial outcomes. A key component of this model is jointcloud computing distributed ledger, which ensures trust among cloud entities with diverse interests by providing digital space evidence. Blockchain forms the foundation of this framework, and its adoption is growing in various fields to optimize workflows. However, challenges related to blockchain interoperability and cross-chain data authentication remain unresolved, hindering the broader establishment of trust among cloud entities. This paper focuses on the specific scenario of cross-chain data authentication and provides a secure and easy-to-deploy solution. Drawing on the concepts of relay chain and notary mechanism in cross-chain methods, our solution leverages smart contracts and on-chain proofs to ensure security, thereby reducing the reliance on relay nodes. In cases of data falsification, our approach offers mechanisms for accountability and data revocation, further enhancing security. Additionally, participating blockchains do not need to alter their data structures or network compositions for authentication, which makes the solution easy to deploy. Experimental results demonstrate that our design can be easily deployed on both homogeneous and heterogeneous blockchains. While maintaining performance comparable to existing solutions, it significantly enhances system security. In the event of data falsification, the solution can quickly hold individuals accountable and eliminate the impact of falsified data, reducing the time to mitigate the impact by half compared to other solutions.

联合云计算是一种新的计算范式，旨在支持云服务实现互利共赢。该模型的关键组成部分是联合云计算分布式账本，它通过提供数字空间证据来确保不同利益云实体之间的信任。区块链构成了该框架的基础，其在各个领域的应用日益广泛，以优化工作流程。然而，与区块链互操作性和跨链数据认证相关的挑战仍未得到解决，阻碍了云实体之间更广泛地建立信任。本文重点关注跨链数据认证的具体场景，并提供了一种安全且易于部署的解决方案。我们的解决方案借鉴了跨链方法中的中继链和公证人机制的概念，利用智能合约和链上证明来确保安全性，从而减少对中继节点的依赖。在数据造假的情况下，我们的方法提供了问责和数据撤销机制，进一步增强了安全性。此外，参与的区块链无需更改其数据结构或网络组成即可进行身份验证，这使得该解决方案易于部署。实验结果表明，我们的设计可以轻松部署在同构和异构区块链上。在保持与现有解决方案相当的性能的同时，显著提升了系统安全性。一旦发生数据造假，该解决方案可以迅速追究相关责任，消除造假数据的影响，与其他解决方案相比，缓解影响所需的时间缩短了一半。

链接:

https://jcst.ict.ac.cn/article/doi/10.1007/s11390-025-4733-4

2

Title: 

Performance Modeling and Testing of DAG-based Distributed Ledger Systems

基于DAG的分布式账本系统性能建模与测试

Authors: 

Key words:

Distributed Ledger System, Blockchain, DAG, Performance Testing, Performance Modeling

分布式账本系统、区块链、DAG、性能测试、性能建模

Abstract: 

Performance is a major concern of the large-scale application of DLS (distributed ledger system). Compared with chain-based DLSs, DAG (directed acyclic graph) based DLSs are promising to enhance transaction parallel processing capabilities greatly and have gained increasing interest. However, due to the complex technology stack, current metrics, such as TPS (transactions per second) and latency, are insufficient for a deep understanding of DAG-based DLS performance. To address this problem, based on a comprehensive analysis of the transaction lifecycle process, we propose a state model and a set of performance indicators by identifying the key operations in the workflow. Then we develop an automated testing tool and conduct experiments on two representative open-source systems, IOTA and Conflux, considering their open-source nature, extensive documentation, and representativeness. The experiments profile the DAG-based DLS performance with respect to the system architecture, DAG topology, runtime behavior, and DAG processing mechanisms. The state model, indicators, and key experiment findings are valuable for future DLS design, deployment, and performance optimization. 

性能是分布式账本系统 (DLS) 大规模应用的一大难题。与基于链式结构的 DLS 相比，基于有向无环图 (DAG) 的 DLS 有望大幅提升交易并行处理能力，并日益受到关注。然而，由于技术栈复杂，目前 TPS（每秒交易数）和延迟等指标不足以深入理解基于 DAG 的 DLS 的性能。为了解决这一问题，我们在全面分析交易生命周期流程的基础上，通过识别工作流中的关键操作，提出了一个状态模型和一组性能指标。然后，我们开发了一个自动化测试工具，并在两个具有代表性的开源系统 IOTA 和 Conflux 上进行了实验，考虑到它们的开源特性、丰富的文档和代表性。实验从系统架构、DAG 拓扑结构、运行时行为和 DAG 处理机制等方面分析了基于 DAG 的 DLS 的性能。状态模型、指标和关键实验结果对于未来 DLS 的设计、部署和性能优化具有重要意义。

链接:

https://jcst.ict.ac.cn/article/doi/10.1007/s11390-025-4616-8

3

Title: 

Key-Policy Attribute-Based Encryption Based on SM9

基于SM9的密钥策略属性加密

Authors: 

Key words:

key-policy attribute-based encryption, large universe, SM9, selective-set model

密钥策略属性加密、大宇宙、SM9、选择集模型

Abstract: 

Attribute-based encryption (ABE) is a type of encryption derived from identity-based encryption, implementing access control over encrypted data based on attributes rather than on specific identities. SM9 is the Chinese national standard for identity-based cryptography. This paper presents two novel key-policy attribute-based encryption (KP-ABE) designs based on SM9. The first scheme operates in a small attribute universe, while the second scheme caters to a large universe where the size of public parameters is only proportional to the maximum number of attributes used for encryption. Both schemes have a similar private-key/ciphertext structure to the original SM9 identity-based encryption algorithm, enabling effective integration into information systems built on SM9. Further, both schemes are selectively secure under the -GDDHE assumption. Extensive experiments show that both schemes are comparable to other classical KP-ABE schemes, in terms of the communication and computational costs. We believe the proposed schemes will expedite the implementation of SM9 in distributed computing systems such as cloud computing and blockchain.

基于属性的加密 (ABE) 是一种源自基于身份的加密算法，基于属性而非特定身份对加密数据进行访问控制的加密算法。SM9 是中国基于身份的密码体制的国家标准。本文基于 SM9 提出了两种新的密钥策略属性加密 (KP-ABE) 设计方案。第一种方案适用于较小的属性域，而第二种方案适用于较大的属性域，其中公共参数的大小仅与用于加密的最大属性数量成正比。这两种方案都具有与原始 SM9 基于身份的加密算法类似的私钥/密文结构，从而能够有效地集成到基于 SM9 构建的信息系统中。此外，这两种方案在 (f,g)-GDDHE 假设下均具有选择性安全性。大量实验表明，这两种方案在通信和计算成本方面与其他经典的 KP-ABE 方案相当。我们相信，提出的方案将加速 SM9 在云计算和区块链等分布式计算系统中的实施。

链接:

https://jcst.ict.ac.cn/article/doi/10.1007/s11390-024-3726-z

4

Title: 

HI-SM3: High-Performance Implementation of SM3 Hash Function on Heterogeneous GPUs

HI-SM3：异构GPU上SM3哈希函数的高性能实现

Authors: 

Key words:

SM3, Heterogeneous GPU, CUDA, Cryptographic Engineering

SM3、异构GPU、CUDA、密码工程

Abstract: 

Hash functions are essential in cryptographic primitives such as digital signatures, key exchanges, and blockchain technology. SM3, built upon the Merkle-Damgard structure, is a crucial element in Chinese commercial cryptographic schemes. With the growing presence of IoT devices and the rapid evolution of blockchain technology, optimizing hash function performance is critical. In this paper, we introduce an High-performance Implementation framework for accelerating the SM3 cryptography hash function, short for HI-SM3, using heterogeneous GPU parallel computing devices. HI-SM3 enhances hash algorithm implementation across four dimensions: parallelism, register utilization, memory access, and instruction efficiency, resulting in significant performance gains across various GPU platforms. Leveraging the NVIDIA RTX 4090 GPU, HI-SM3 achieves a remarkable peak performance of 454.74 GB/s, surpassing OpenSSL on a high-end server CPU (E5-2699V3) with 16 cores by over 150 times. On the Hygon DCU accelerator, a Chinese domestic graphics card, it achieves 113.77 GB/s. Furthermore, compared to the fastest known GPU-based SM3 implementation, HI-SM3 on the same GPU platform exhibits a 3.12x performance improvement. Even on embedded GPUs consuming less than 40W, HI-SM3 attains a throughput of 11.95 GB/s, four times faster than a server-level CPU. In summary, HI-SM3 provides a significant performance advantage, positioning it as a compelling solution for accelerating hash cryptography operations. 

哈希函数在数字签名、密钥交换和区块链技术等密码学原语中至关重要。基于Merkle-Damgard结构的SM3是我国商用密码方案中的关键元素。随着物联网设备的日益普及和区块链技术的快速发展，优化哈希函数性能至关重要。本文提出了一种基于异构GPU并行计算设备加速SM3密码哈希函数的高性能实现框架（HI-SM3）。HI-SM3从并行性、寄存器利用率、内存访问和指令效率四个维度提升了哈希算法的实现，从而显著提升了跨GPU平台的性能。基于NVIDIA RTX 4090 GPU，HI-SM3实现了454.74 GB/s的惊人峰值性能，在16核高端服务器CPU（E5-2699V3）上的性能超越OpenSSL 150多倍。在国产显卡海光 DCU 加速器上，其吞吐量达到 113.77 GB/s。此外，与目前已知的最快的基于 GPU 的 SM3 实现相比，在同一 GPU 平台上的 HI-SM3 性能提升了 3.12 倍。即使在功耗低于 40W 的嵌入式 GPU 上，HI-SM3 也能达到 11.95 GB/s 的吞吐量，比服务器级 CPU 快四倍。总而言之，HI-SM3 提供了显著的性能优势，使其成为加速哈希加密操作的理想解决方案。

链接:

https://jcst.ict.ac.cn/article/doi/10.1007/s11390-025-4285-7