Paper 2019/753

Design of Anonymous Endorsement System in Hyperledger Fabric

Subhra Mazumdar and Sushmita Ruj

Abstract

Permissioned Blockchain has become quite popular with enterprises forming consortium since it prioritizes trust over privacy. One of the popular platforms for distributed ledger solution, Hyperledger Fabric, requires a transaction to be endorsed or approved by a group of special members known as endorsers before undergoing validation. To endorse a transaction, an endorser mentions its identity along with the signature so that it can be verified later. However, for certain transactions, difference in opinion may exist among endorsers. Disclosing the identity of an endorser may lead to conflict within the consortium. In such cases, an endorsement policy which not only allows an endorser to support a transaction discreetly, but at the same time takes into account the decision of the majority is preferred. Thus we propose an Anonymous Endorsement System which uses a threshold endorsement policy in order to address the issue. To realize a t-out-of-n endorsement policy, using any of the existing threshold ring signature for our endorsement system would have violated the privacy of endorsers as either the identity or the secret key of the endorsers get revealed to the party who recombines the signature after collecting each signature share. All these factors motivated us to design a new ring signature scheme, called Fabric's Constant-Sized Linkable Ring Signature (FCsLRS) with Transaction-Oriented linkability for hiding identity of the endorsers. We have implemented the signature scheme in Golang and analyzed its security and performance by varying the RSA (Rivest-Shamir-Adleman) modulus size. Feasibility of implementation is supported by experimental analysis. Signature and tag generation time is quite fast and remains constant irrespective of change in message length or endorsement set size for a given RSA modulus value, assuming all the endorsers generates their signature in parallel. Each verifier is required to count and check individual valid ring signature. If the aggregate is above the threshold value, stated by the endorsement policy, then it confirms that the transaction is valid. This increases the verification time depending on the threshold value, but has very little effect on the scalability since generally $t<<n$. Lastly, we also discuss the integration of the scheme on v1.2 Hyperledger Fabric.

Note: Same version is available on arXiv.org (https://arxiv.org/abs/1811.01410)

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Published elsewhere. Minor revision. IEEE TRANSACTIONS ON EMERGING TOPICS IN COMPUTING
DOI
10.1109/TETC.2019.2920719
Keywords
Permissioned BlockchainHyperledger FabricAnonymous Endorsement SystemTransaction-Oriented linkabilitySignature of Knowledge
Contact author(s)
subhra mazumdar1993 @ gmail com
sush @ isical ac in
History
2019-06-26: received
Short URL
https://ia.cr/2019/753
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/753,
      author = {Subhra Mazumdar and Sushmita Ruj},
      title = {Design of Anonymous Endorsement System in Hyperledger Fabric},
      howpublished = {Cryptology {ePrint} Archive, Paper 2019/753},
      year = {2019},
      doi = {10.1109/TETC.2019.2920719},
      url = {https://eprint.iacr.org/2019/753}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.