Abstract: E-Government services are persistent targets of the organized crime by hackers, which hinders the delivery of services. Computational trust is an important technique for the security work of service providers (SPs). However, it relies on data collection about users' past behaviors conventionally from other SPs, which incurs the uncertainty of data and thus impacts the quality of data. Motivated by this issue, this paper proposes a novel smart contract based user-centric computational trust framework (UCCT) which collects the behavioral data of the user. It uses smart contract as a rational trustworthy agent to automatically monitor and manage the user's behaviors on the user side, so as to provide deterministic data quality assurance services for the computational trust. Furthermore, a privacy-preserving way of the data sharing is provided for the user and a personalized security mechanism for the SP. A new ledger is also introduced to provide a user-centric and efficient search. The results of experiments conducted on a Hyperledger Fabric based blockchain platform demonstrate that the time cost of user-centric ledger in UCCT can be less than 1 s. Moreover, even if a more complicated contract is provided, the improvement of transaction per second (TPS), which is made by UCCT, is not less than 8%.
Authors: Bin Hu (University of Chinese Academy of Sciences, Beijing & Institute of Computing Technology, Chinese Academy of Sciences, China); Xiaofang Zhao and Cheng Zhang (Institute of Computing Technology, Chinese Academy of Sciences, China); Yan Jin (Chinese Academy of Sciences, Institute of Computing Technology, China); Bo Wei (The First Research Institute of the Ministry of Public Security, China)
Email: hubin@ncic.ac.cn, zhaoxf@ict.ac.cn, zhangcheng@ict.ac.cn, jinyanhit@gmail.com, weibo@ict.ac.cn