Blockchain-based two-party fair contract signing scheme
Introduction
Nowadays, the Internet is developing rapidly, signing an electronic contract online has become a common commercial activity. One crucial security requirement of signing contract online is that the contract signing participants can exchange their digital signatures fairly [17]. The fairness means that both participants could get a valid signature of the other party or neither of them can get it. However, the process of contract signing is asynchronous, which inevitably brings a certain degree of unfairness [31]. That is, after one participant received the signature of the other participant, he/she may not submit their signatures to the other party intentionally or refuse to admit that he/she has received the signature. The unfairness will hurt the rights of participants and impede the healthy development of the online commercial activities, such as payment services for secure outsourcing mechanism [24], [35], [34]. Hence, a fair contract signing scheme is very essential to guarantee fairness in the electronic contract signing process.
The VES [4] is a cryptographic algorithm that can be used to achieve fair exchange of digital signatures. The VES enables the verifier to check the validity of an encrypted signature for a particular message. However, the VES often requires a centralized TTP as an adjudicator to ensure the fairness of signatures exchange, which causes some security problems [26]. First, most third parties are highly centralized. They can obtain some sensitive information on the contract, including the details of the contract, the digital signatures of the contract, etc. More worse, they might disclose these confidential data for financial incentives. Second, the third party might be dishonest and collude with one participant, which would cause financial losses for the other participant. Third, the third party service can be terminated due to software and hardware fails, which would cause serious losses for both contract signing participants. These problems will become bottlenecks of fair signatures exchange. How to fairly exchange signatures without a third party is a critical and unsolved problem.
In recent years, the development of blockchain technology provides the possibility to solve the above problem. Intuitively, blockchain can be seen as a decentralized TTP, which can eliminate the security problems of a centralized TTP. The smart contract technology based on Ethereum [8] has aroused widespread attention from researchers. Ethereum is a global decentralized TTP, the dynamic joining of nodes can ensure that single-node failure has little effect on the whole network. Meanwhile, Ethereum-based smart contract technology has the characteristics of public verifiability, autonomy, high efficiency, and tampering resistant, which can be used to achieve decentralized fairness. Therefore, designing a fair mechanism based on the Ethereum smart contract technology can effectively ensure the fairness of signatures exchange in the process of signing an electronic contract.
In this paper, we propose a modified VES scheme in which no centralized TTP is required. Based on this VES scheme, we propose a two-party fair contract signing scheme which satisfies the following properties:
(1) Fairness: Our scheme can guarantee that either both contract signing participants will get the ordinary signature of the other party or both of them will not get the ordinary signature of the other party. The fairness is mainly based on the over-time penalty mechanism and the credit mechanism which are implemented based on the Ethereum smart contract.
(2) Privacy: In our proposed scheme, sensitive information in the contract will be kept so secret that it does not expose to blockchain nodes. Thus important contract content is only known to both contract signing participants. Besides, our scheme will ensure that only contract signing participants can extract the ordinary digital signature of the other party.
(3) Security: Our scheme is secure against existential forgery and extraction. Moreover, Ethereum blockchain can resist single-node failures. That will not terminate the signature service due to partial node failures. Therefore, our scheme has high security and reliability.
The remainder of this paper are organized as follows. Section 2 briefly introduces some preliminary knowledge; Section 3 describes the system model of our scheme and illustrates our proposed scheme in detail; We analyze the correctness and security of our scheme in Section 4; Then, we introduce the system implementation and performance evaluation in Section 5 and Section 6 respectively; We review related work in Section 7; Finally, Section 8 concludes this paper.
Section snippets
Preliminaries
In this section, we briefly introduce the background knowledge, including the blockchain technology, the Ethereum smart contract, and the related cryptography knowledge.
Proposed scheme
In this section, we first give system model of our proposed scheme. Then we describe framework and introduce our design rationale about our scheme. Finally we describe our scheme in detail.
Correctness and security analysis
In this section, we analyze the correctness and security of our scheme. Then, we also discuss the security of the proposed scheme from the perspective of blockchain technology security.
System implementation
In this section, we first describe our simulated development environment of smart contracts. We then introduce some key functions in the smart contracts.
We develop the smart contracts with the Remix IDE running in Google Chrome. Remix [2] is an integrated development environment for solidity that integrates a debugger and test environment. It can deploy and test smart contracts in a web browser and no server component is required. Remix provides five test accounts with 100 Ether, we use account
Performance evaluation
In this section, we first show off-blockchain experiments of our VES scheme and subsequently evaluate the performance of our scheme by analysing the cost of gas when our scheme is executed by smart contract on the Ethereum blockchain.
We first present off-blockchain experiments as performance evaluation of the VES algorithm in our scheme. We built the testbed for the VES shceme on Ubuntu 16.04 system; The machine is with an CPU at 2.60 GHz, 4 GB in memory. The programming
Related work
In this section, we introduce some related work about this paper from the two aspects: the VES schemes and fair blockchain-based protocols.
Conclusion
This paper proposes a two-party fair contract signing scheme based on Ethereum smart contract technology. The scheme uses automated smart contracts instead of the original TTP in the process of contract signing. In our scheme, the contract signing parties can exchange the signature fairly. Also, sensitive information in the contract will be kept so secret that it would not be exposed over the blockchain. Theoretical analysis and performance evaluation also show that our scheme is valid, secure
Declaration of Competing Interest
The authors declare that they have no known competing financial interests or personal relationships that could have appeared to influence the work reported in this paper.
Acknowledgments
This research is supported by National Natural Science Foundation of China (61572267), National Development Foundation of Cryptography (MMJJ20170118), Key Research and Development Project of Shandong Province (2019GGX101051), the Open Project of the State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences (2019-MS-03).
References (35)
- et al.
Efficient multi party fair contract signing protocol based on blockchains
J. Cryptol. Res.
(2018) - Pbc library. https://crypto.stanford.edu/pbc/,...
- Remix, ethereum-ide. https://remix.readthedocs.io/en/latest/,...
- Solidity-solidity 0.5.7 documentation. https://solidity.readthedocs.io/en/v0.5.7/,...
- et al.
Optimistic protocols for fair exchange
Citeseer
(1996) - Iddo Bentov, Ranjit Kumaresan, How to use bitcoin to design fair protocols, in: Proceedings of Annual Cryptology...
- Dan Boneh, Xavier Boyen, Short signatures without random oracles, in: Proceedings of International Conference on the...
- Dan Boneh, Craig Gentry, Ben Lynn, Hovav Shacham, Aggregate and verifiably encrypted signatures from bilinear maps, in:...
A next-generation smart contract and decentralized application platform
White Paper
(2014)- Christopher D. Clack, Vikram A. Bakshi, Lee Braine, Smart contract templates: foundations, design landscape and...
Survey of smart contract technology and application based on blockchain
J. Comput. Res. Dev.
Sequential aggregate signatures, multisignatures, and verifiably encrypted signatures without random oracles
J. Cryptol.
Cited by (30)
A blockchain-based signature exchange protocol for metaverse
2023, Future Generation Computer SystemsApplying blockchain-based method to smart contract classification for CPS applications
2022, Digital Communications and NetworksCitation Excerpt :Additionally, various operations and applications on blockchain can be performed by smart contracts [12–15]. This leads to a widely utilization of blockchain technologies in diverse fields, such as Vehicular Fog Computing (VFC) [3], Unmanned Aerial Vehicle (UAV) [16], Virtual Wireless Networks (VWNs) [17], Verifiable Encrypted Signature (VES) [18] and Vehicular Ad Hoc Networks (VANETs) [19]. Ethereum, which is a well-known public blockchain platform, is one representative of Blockchain 2.0.
A user-centric privacy-preserving authentication protocol for IoT-AmI environments
2022, Computer CommunicationsPrivacy-preserving blockchain-based contract signing with multi-party supervision
2024, Transactions on Emerging Telecommunications TechnologiesResearch trends in industry 5.0 and its application in the construction industry
2024, Technological SustainabilityAbuse-freeness in contract signing: a blockchain-based proposal
2024, International Journal of Information Security
- 1
Liang Zhang and Hanlin Zhang contributed equally to this work.