Combinatorial Spectrum E-Auction for 5G Heterogeneous Networks: A Zether-Based Approach

Zhao, Zijun; Ying, Zuobin; Cai, Zhiming; Ma, Jianfeng

doi:https://doi.org/10.1155/2021/1360560

Security and Communication Networks

On this page

Abstract Introduction Related Work Preliminaries Conclusions Data Availability Conflicts of Interest Acknowledgments References Copyright Related Articles

Special Issue

Data Security and Privacy for Fog/Edge Computing-Based IoT

View this Special Issue

Research Article | Open Access

Volume 2021 | Article ID 1360560 | https://doi.org/10.1155/2021/1360560

Combinatorial Spectrum E-Auction for 5G Heterogeneous Networks: A Zether-Based Approach

Zijun Zhao,¹Zuobin Ying,^2,3Zhiming Cai ,³and Jianfeng Ma¹

Academic Editor: Ke Gu

Received10 Sept 2021

Revised14 Oct 2021

Accepted23 Oct 2021

Published16 Nov 2021

Abstract

5G heterogeneous network (HetNet) is a novel network topology that integrates various kinds of wireless access technologies such as 4G Long-Term Evolution (LTE), Wi-Fi, and so on. Despite greatly improving spectrum efficiency, it poses enormous challenges to spectrum e-auction. Firstly, due to high mobility, bidders may be interested in different spectrums in terms of time or geolocation. Secondly, one’s bidding value should be protected against rival bidders or adversaries to avoid vicious competition as well as privacy leakage. Thirdly, the ubiquitous HetNet requires a trustworthy distributed auction framework rather than a centralized auctioneer-based pattern. Aiming at overcoming these obstacles above, we proposed a blockchain-based combinatorial spectrum e-auction framework. Different from other blockchain-based solutions of using SGX to realize trust processing in the auction phase, we adopt Zether, a privacy-preserving smart contract, as the main building block. Besides, the bidding value is preserved from the beginning to the end, even though the time-consuming Paillier homomorphic encryption and garbled circuits are absent. We provide the auction security by leveraging -Bullets, a zero-knowledge proof mechanism. Theoretical analysis and extensive evaluation also indicate that our approach is better than the state-of-the-art works in terms of efficiency and effectiveness.

1. Introduction

The fifth-generation (5G) mobile network is expected to promote the connection of everything that demands a low-latency Internet connection, from IoT devices and appliances to self-driving cars, paving the way for an environment where every device is smart and connected. According to the forecast released from Cisco, the overall mobile data traffic is expected to grow to 77 exabytes per month by 2022, a seven-fold increase over 2017 [1]. As a result, the existing wireless network capacity has been unable to support the explosive growth of data traffic and the ubiquitous demand for high-quality communication. New wireless and network technologies are demanded to solve the contradiction between the limited wireless bandwidth resources of the existing network and a large number of high-speed transmission requirements. Heterogeneous network (HetNet), emerging as a novel network topology which integrates various kinds of wireless access technologies (e.g., 5G, 4G Long-Term Evolution (LTE), Wi-Fi, Universal Mobile Telecommunications System (UMTS), and so on), is deemed to be the most promising solution against the above challenges. However, the scarce spectrum resource has become an obstacle in HetNet deployment. Considering the wide coverage of 5G services, 3rd Generation Partnership Project (3GPP) introduces the idea of unlicensed 5G in Release 16, which is expected to solve the problem of 5G spectrum scarcity [2]. Nevertheless, a field test released by Aviat Networks points out that the use of unlicensed equipment in the 6 GHz frequency band will affect the microwave point-to-point links operating on this frequency band and cause interference to existing users [3]. Obviously, the lack of coordination between these unlicensed frequency band applications will directly lead to interference between different services and lead to a series of other unfavorable consequences due to no spectrum coordination. Therefore, the effective allocation of the 5G spectrum has become a key factor that affects the availability of HetNet.

Spectrum e-auction, which is considered to be one of the most effective ways of solving the spectrum allocation problem, has been widely researched in the past few years [4–7]. Recently, on account of the rise of the smart contract, some blockchain-based frameworks have also been constructed [8–11]. There are three main entities participant in the spectrum e-auction process, namely, seller(s), auctioneers, and buyer(s). The most common workflow of a spectrum e-auction is as follows. (1) Seller (maybe more than one seller, e.g., double auction) releases the spectrum resources to the auctioneers. (2) Buyers (maybe only one buyer, e.g., reverse auction) submit their bid values as well as other information (e.g., location and account address) to the auctioneer. (3) Auctioneer judges the winner according to the bid value and then returns the result to both the seller and the bidders. (4) Auctioneer refunds the bids to those buyers who have not won in the auction. Seller and winner buyers finish the deal. This workflow could be implemented to most of the spectrum auction schemes. However, the actual application scenarios of HetNet put forward some specific requirements for spectrum auctions. We summarize the most challenging issues as follows:(i)In HetNet, the buyer may be interested in more than one spectrum. Besides, buyer (e.g., the autonomous vehicle) may not be fixed in one location but occupies the spectrum resources in a certain location within a certain period of time. That is to say, the buyer might be interested in a bundle of the spectrum related to both geolocation and time. Thus, the corresponding combinatorial auction mode has to be considered.(ii)The buyer’s bidding value should be protected against the other rival bidders or adversaries. Existing spectrum auction schemes rely either on some expensive cryptographic tools (e.g., garbled circuits (GC) and homomorphic encryption) or on the implementation of trusted processors (e.g., Intel SGX). These approaches would not only increase time consumption but also have to make more hypothesis.(iii)Most of the existing sealed-bid e-auction schemes require a trusted third-party auctioneer to ensure the fairness of bidding. Alternatively, assuming that the auctioneer is semihonest, then an additional semihonest auction agent is also needed under the restriction that it would not collude with the auctioneer. A fully decentralized spectrum auction scheme without trusted third party has not been effectively constructed.

Motivated by solving the aforementioned issues simultaneously, we proposed a combinatorial spectrum e-auction for 5G HetNet by leveraging the latest privacy-preserving smart contract theory named Zether [12]. Our ultimate goal is to design a combinatorial e-auction scheme which considers both bidding value privacy and practicality. Hereby, we summarize our contributions:(i)As far as we know, we are the unique to construct a combinatorial e-auction scheme based on Zether. We not only give the concrete construction but also design the auction procedure on the Zether smart contract. It is worth noting that our scheme could be easily extended to other account-based blockchain platforms (e.g., Hyperledger Fabric, EOS, and so on).(ii)The bidding value of the buyer is protected without introducing the expensive cryptographic tools or trusted processors. We take advantage of the additive homomorphic feature of ElGamal encryption, thereby reducing the complexity of the entire scheme. Technically speaking, this is the first blockchain-based e-auction without a trusted third party.(iii)To ensure the correctness of the encrypted transactions, the zero-knowledge proof (ZK proof) has to be included in the smart contract, which is also the expensive part in most of the blockchain-based auction schemes. The experimental results indicate that our proposed scheme is superior than state-of-the-art works in terms of time and gas consumption.

The rapid development of 5G communication as well as the new architecture of HetNet facilitates the speed and diversity of accessing the Internet. Nonetheless, the high density of network infrastructure and the mobile nodes aggravate the scarceness of the spectrum. Spectrum e-auction looks prophetic against this dilemma. Since the auction procedure can be regarded as a multi-player game among different bidders, the bid value needs to be protected to avoid malicious competitions or collude attacks. Miao Pan et al. proposed a secure spectrum auction scheme to prevent the frauds of the insincere auctioneers between the auctioneer and the bidders by utilizing the Paillier cryptosystem, namely, THEMIS [4]. Wang et al. extended the security concerns to geolocation and time dynamics other than bid value only by introducing PROST [5]. However, to achieve the design goals, PROST uses a series of expensive cryptographic tools such as Paillier homomorphic encryption, oblivious transfer, and garbled circuits to construct the atomic blocks for the secure auction protocol. Afterwards, ARMOR [6] and PS-TAHES [7] are proposed to tackle the security issues in the heterogeneous spectrum, respectively. Both of these works leverage Paillier homomorphic encryption and garbled circuits along with some other cryptographic tools, and the difference is that ARMOR concentrates on combinatorial auction, while PS-TAHES focuses on double auction. Cheng et al. put forward another lightweight auction framework without using Paillier algorithm, namely, SLISA [13]. A set of subprotocols is designed by integrating additive secret sharing and garbled circuits. SLISA provides strong security guarantees related to the bidders in the double auction.

In the past few years, blockchain technology has attracted tremendous attention. As a distributed ledger with the inherent temper-resistant feature, the new paradigm of “blockchain + x (i.e., everything)” reaches a consensus that it could revolutionize every aspect of our lives. The subsequent deployment of smart contract in blockchain 2.0 (i.e., Ethereum) makes it more practical for financial applications. Weiss et al. proposed an idea of spectrum management via adopting blockchain. They widely examined the blockchain application in spectrum sharing and, in the meantime, specified that a number of areas would benefit from further research [15]. Thereafter, considering the spectrum shortage dilemma, Zhou et al. put forward a blockchain-based secure spectrum sharing scheme for 5G HetNet, in which the underutilized spectrum allocated to the human-to-human (H2H) users could be shared with the machine-to-machine (M2M) communications. However, security claimed in this work is just the security guaranteed by the blockchain itself. Auction between the primary user and secondary user via the smart contract is totally transparent to everyone [10]. Wu et al. first considered the collusion coalitions among selfish auction participants and constructed a decentralized collusion-resistant e-auction system on Ethereum, named CREAM [8]. However, since the transactions on Ethereum are public, to protect bid privacy, CREAM designs a two-phase bidding process, commitBid and revealBid. After bid commitment, all bidders still have to trigger the revealBid to launch the auction algorithm. That is to say, rival bidders could still observe the true bid of a bidder. To eliminate the hypothetical trusted auctioneer (in some studies, if the auctioneer is semitrusted, then a semitrusted auction agent would be introduced in the premises that they would not collude with each other), some Software Guard Extension (SGX) approaches were proposed [9]. Recently, Chen et al. proposed SAFE, a general secure e-auction framework with privacy preservation [11]. It should be noted that this framework considered all the single-round (single-round auction stands for the bidders that can only submit their bids once) auction formats. Despite the fact that SAFE also leverages a bundle of cryptographic tools as well as the SGX, it is certainly one of the best spectrum e-auction approaches in state-of-the-art works. Moving one step forward, in this paper, we build a combinatorial spectrum e-auction scheme with privacy preserving based on Zether. We abandon the use of Paillier homomorphic encryption, garbled circuits, and SGX. Besides, we also reduce the gas consumption in the market cleanup phase. Finally, for ease of reading, we put the feature comparison in Table 1.

3. Preliminaries

3.1. Auction Terminologies

Here we present some auction terminologies used in our schemes.(i)Sealed-Bid Auction. A sealed-bid auction is an auction process in which all bidders submit sealed bids to the auctioneer at the same time so that no bidder knows the bids of other auction participants. The sealed bid will not be opened before the specified date. The person with the highest bid is usually declared the winner of the bidding process.(ii)Vickrey Auction. Vickrey auction is also known as the second-price sealed-bid auction. All bids are sealed and sent to an auctioneer who can open all the bids. The highest bidder wins but only needs to pay the second-highest bid. It is highly centralized and does not protect the privacy of the bids [16]. If the bidder is interested in multiple items, Vickrey auction can be generalized to Vickrey–Clarke–Groves (VCG) auction.(iii)Combinatorial Auction. A combinatorial auction is a type of smart market in which participants can place bids on combinations of discrete heterogeneous items, rather than individual items or continuous quantities [17].

3.2. Zether and Zether Smart Contract (ZSC) [12]

Zether is a completely decentralized and confidential payment mechanism, compatible with Ethereum and other smart contract (SC) platforms. The fundamental of Zether is to realize transaction privacy via the smart contract, that is, hide the transaction amount and the balance of the account. For this purpose, mechanisms such as ElGamal encryption, pending transfer, and rolling over are designed. The payment mechanism is similar to Ethereum, which contains setup, user algorithms, and a smart contract. User algorithms, which contain seven subroutines, specify how users interact with Zether Smart Contract (ZSC). CreateAddress and CreateBurnTx check the input public keys to make sure that each pending transfer is rolled over. CreateBurnTx utilizes ReadBalance to recover the ZTH (ZTH is the confidential token of the Zether; the value of ZTH is related to the corresponding platform; for example, if the platform is Ethereum, then 1 ZTH = 1 ETH) from the account. CreateFundTx is utilized to deposit amounts to an account and CreateTransferTX is utilized to transfer money between one account and another. If the user wants to lock her account to an Ethereum address, she can use CreateLockTx. Otherwise, she can choose CreateUnlockTx to unlock an account.

ZSC has five methods: Fund, Burn, Transfer, Lock, and Unlock. Before executing the user algorithms, these functions would initiate the checkup process, such as checking the nonce or verifying a proof. If any of the checks does not succeed, the method outputs 0. Besides, ZSC also introduces a time horizon named epoch. The epoch length is denoted as E, and E 1. A block’s epoch number at height h is described as . In order to ensure the correctness, ZSC stipulates that a transaction should be processed in the same epoch as it is generated.

3.3. ElGamal Encryption

ElGamal encryption is a type of public key encryption which is proved to be secure under decisional Diffie–Hellman (DDH) assumption [18]. It has been acknowledged that ElGamal is homomorphic to multiplication, whereas Zether leverages the additive homomorphic feature of ElGamal, so it can be used to hide the balance in exponent.

Let and be two amounts that need to be protected and be the public key. The ciphertexts can be computed as

Then, the encryption of under can be calculated as

3.4. -Bullet Zero-Knowledge Proof [12]

To ensure the encrypted transactions are correct, Zether provides with a novel ZK proof, namely, -Bullets. -Bullets combine Bulletproofs and -protocols to make algebraically encoded form as .

A ZK proof for the statement means that the prover shows knowledge of s.t. is true, where are public variables.

4. Zether-Based E-Auction Scheme

4.1. System Overview

Figure 1 illustrates a combinatorial spectrum auction via Zether in 5G HetNet scenario. We briefly introduce the workflow of our proposed scheme. In 5G HetNet, a buyer may be interested in more than one spectrum resource. Moreover, different buyers may be interested in a same spectrum resource simultaneously. This is because same spectrum frequency band can be reused in accordance with different geolocations. Therefore, a conflict graph over combinatorial spectrum sets should be constructed firstly. Afterwards, buyers could seal the bids according to their interests in the spectrum combinations. The bids would be locked into the ZSC. ZSC initiates spectrum auction and announces the winner. It should be noted that there may be multiple winners when they have no conflict of interest. At last, winners will be assigned the corresponding spectrum resources and the rest of the bids will be returned to the accounts, respectively. In addition, we also give some important notations in this paper, as shown in Table 2.

4.2. Detailed Construction

In this paper, we propose a combinatorial spectrum auction in 5G HetNet scenario based on Zether. As shown in Figure 2, it is mainly composed of five parts. The first is the global setting algorithm, which can create the global parameters when it runs once and deploy the ZSC. The next part is the registration of users participating in the auction. The users register a Zether account and deposit a certain amount. The third part is to execute a specific auction, lock the account to the “Secure Auction Execution (called AUC)” smart contract provided in SAFE [11], and then execute the specific auction process in the fourth part, that is, to transfer the control of the Zether account to AUC. The last part is the settlement of the funds and auction items after the auction ends. AUC is complementary to the price difference between the auction winners based on the final auction price. Through transfer, AUC simply burns the entire amount and keeps a part of it (the winner’s payment) and refunds the balance of the remaining bidders.

4.3. Setup

The setup algorithm refers to and subalgorithms. These two subalgorithms are the setting algorithms of the proof mechanism and the signature scheme, respectively. The setting of the proof mechanism may depend on the relationship of the construction of the proof, which means that its correctness would be publicly verified. During the specific implementation, Bulletproofs [19] and Schnorr signatures [20] are utilized, both of which have untrusted settings.

The formal description of the setup algorithm is shown in Figure 3. In addition to deploy the proof and signature mechanism, it also initializes the account table f(acc) as well as the pending transfer list p(Transfers). The last transfer period table lastRollOver is to record recent account updates, the lock table is to record the address when the account is locked, the counter table ctr is to prevent replay attacks, and the variable btotal is to record the total funds of ZTH contracts controlled by the account. Besides, the setup designs an epoch length E and a maximum funds MAX.

4.4. Registration

Anyone can fund the account by straightforward specifying the public key as well as depositing certain ETH. The transfer algorithm is introduced in Figure 4. Transfer transfers ZTH from one account to another, and ensures that the ciphertext is in the correct form and the transferor has enough money. In addition, there is a signature to avoid replay attacks. As shown in Figure 5, Fund converts ETH to ZTH. ETH is stored in SC, and ZTH is also added to the (pending) balance of . If the account does not already exist, a new account will be created.

4.5. Locking

Every transaction made to an account is linked with . The Lock algorithm is introduced in Figure 6. If the account is unlocked, you can do it from any address. However, if you lock to an address, you can only operate from . CheckLock is an internal method to check both states. Before operating the account, all methods will invoke CheckLock. When it has , , and , Lock will check whether the account is operated by calling CheckLock.

4.6. Auction Execution

In Figure 7, in the auction execution stage of , the auction execution agreement first checks the deposit amount of each bidder, and the bids of bidders who do not have sufficient deposits will be ignored. Then, the auction execution agreement selects winners and payment amounts for different auction formats. Failed buyers and failed sellers do not have to pay any fees.

In combined auctions, the auction execution protocol sorts in descending order and greedily distributes the items in order hereafter. Buyer can win her package, if the package does not include any items that have been distributed in the previous winning package. When there are no bidders or available items, the allocation stops. The key bidder is selected as , and its previous bidder is the winner with the smallest bid value, namely, .

4.7. Market Cleaning

During the market cleaning, bidders and sellers run market clearing agreements to exchange their cryptocurrencies and auction items. After that, the smart contract updates the deposit record of the bidder. Since no bidder has suspended the auction, the SC refunds all funds based on records.

The way to return the deposit is Burn. As shown in Figure 8, Burn transforms ZTH to ETH, and it verifies the proof and to guarantee that the sender holds correct private key and asks for correct amount. Besides, it checks the signature on the transaction data and the counter value to avoid replay attacks. The most important point is that every transfer and destruction transaction in the auction includes ZK proof to ensure that the transferred or redeemed amount is valid without revealing its true value.

5. Theoretical Analysis

5.1. Transfer ZK Proof

In addition to hiding the transfer amount, anonymous transfers also hide the information of sender as well as receiver in the transfer. When someone transfers money from Ethereum address to , and he or she wants to hide the both address in a bigger range of public keys, where , let be the encrypted amounts linked to key , for , then the user creates ciphertexts as well as proves that (i) one (th) encrypts , and another one (th) encrypts , and the remaining users encrypt 0; (ii) is positive; (iii) the remaining funds in ( ) are positive too.

We can let and use randomness in order to effectively process statement without disclosing , and . Besides, we introduce split-new variables and . Value 1 for an indicates that funds are being transferred from and value 1 for a indicates that funds are being transferred to . The user will let these variables be confidential and use them to prove different claims. One of and one of should be 1. This can prove that any of these variables is 1 or 0, and . Besides, the user proves

is 1, and the remaining are 0. Equation (3) indicates that the ciphertext for is an effective encryption for . As equation (3) is subtracted from equation (4), , which indicates that the ciphertexts of is an effective encryption for . Thereby, both equations (3) and (4) indicate that the ciphertext-encoded quantities are effective.

In equation (5), is non-zero in the case when both and are 0. As the equation shows, and are an encryption of 0. Equation (6) denotes amounts of the account for which is . Finally, equation (7) denotes that is the surefire random number during the current epoch.

In addition, users need to prove , and the equation associates the secret key with the public key (latter is not revealed), while the latter two equations denote that the transferred amount and the remaining amount are in the correct range. To summarize, users prove the following statement:

Finally, is expressed as equations (8) to (15). The statement is very complicated, but the structure is actually very deep. It turns out that the size can be logarithmic in the range and anonymity set. This is completed by integrating multiple proofs with Bulletproof to encrypt 0.

5.2. Correctness

The algorithms CreateTransferTx and CreateBurnTx scroll all public keys according to the status of the SC. Therefore, any unfinished transfers linked with these keys will be returned to the corresponding account, and these unfinished lock requests will become effective. Then, generate the transactions of transfer and burn for the new status of the account, which matches the status of ZSC used to handle them.

Trusted users only place accounts locked to the same address in their anonymous set. When the account holders change the lock of their accounts through calling both methods of lock or unlock, both methods will set the new lock address as a suspended lock. Therefore, transactions generated during this period will not have an impact.

The remaining of the correctness is the ElGamal encryption in homomorphic properties and the proof system. Although the encrypted value is in and ideally deals with positive integers, it has no effect because ZSC only accepts deposits with the maximum amount of MAX, and the constant is smaller than . Therefore, homomorphic operations will not lead to overflow.

5.3. Experiment Performance

In order to correctly evaluate the proposed smart contracts and show their feasibility, we run contracts in the form of SC. This implementation indicates that our scheme is practical and it is able to run on the Ethereum Virtual Machine (EVM). In order to show the superiority of our scheme, we also compared it with existing research work.

Our proposed implementation of the Ethereum-based smart contract is written in the Solidity language, and some observations have been analyzed and utilized. Ethereum recently introduced a precompiled contract for elliptic curve operations on the BN-128 curve. Compared with direct implementation, these precompiled contracts lower the cost of performing these operations. The reason is that miners can utilize special software to execute these functions more efficiently. These operations are initially introduced to support pair-based ZK-SNARK. -Bullets do not need to be paired. Curve BN-128 is not the best choice for the efficiency or safety of Bulletproofs -Bullets. Despite this, we still choose to use this curve to implement experiment because it is natively supported and the implementation cost is relatively lower.

5.4. Gas Consumption and Overheads

We first measured the gas consumption used to implement basic contract operations. We measure gas consumption including registration, allocation, and clearing. As shown in Table 3, in a combined auction with 20 bidders, combined with SAFE [11] and CREAM [8], our scheme consumed the least gas.

As shown in Figures 9 and 10, we evaluated the system overhead of quantity of buyers and sellers, As buyers’ quantity increases but is less than the quantity of items in the combined auction, time and storage consumption will soar because of the high growth rate of the winners. When the quantity of buyers’ items exceeds the quantity of buyers, the quantity of winners will remain unchanged, resulting in an increase in overhead during the market clearing phase. The increase in the quantity of sellers or projects will increase the quantity of winners, and the main expense is in the market clearing phase. Overall, our solution has better performance than SAFE.

(a)

(b)

(a)

(b)

6. Conclusions

In this paper, we present a Zether-based approach in dealing with the combinatorial spectrum e-auction challenges in 5G HetNet. The e-auction is executed in the ZSC without adopting SGX. Besides, our approach also achieves bidding value preservation without introducing time-consuming cryptographic tools such as Paillier homomorphic encryption, garbled circuits, and so on. We deploy our approach on Ethereum and testify the effectiveness as well as scalability. Given that gas consumptions in some auction phases are higher than that in state-of-the-art research, we leave these in our future work.

Data Availability

The experimental data required for this article cannot be shared at this time because these data are also part of ongoing research.

Conflicts of Interest

The authors declare that there are no conflicts of interest regarding the publication of this article.

Acknowledgments

This research was supported by MF2009 Project (Trusted Joint Computing on Cross-Border Data) and MOST-FDCT Projects (0058/2019/AMJ) (Research and Application of Cooperative Multi-Agent Platform for Zhuhai-Macao Manufacturing Service).

References

G. Forecast, “Cisco visual networking index: global mobile data traffic forecast update, 2017–2022,” Update, vol. 2017, p. 2022, 2019.
View at: Google Scholar
P. Wang, B. Di, H. Zhang, K. Bian, and L. Song, “Cellular V2X communications in unlicensed spectrum: harmonious coexistence with VANET in 5g systems,” IEEE Transactions on Wireless Communications, vol. 17, no. 8, pp. 5212–5224, 2018.
View at: Publisher Site | Google Scholar
A. Networks, “Field test report: Aviat participates in field testing on 6 ghz unlicensed devices with ameren and epri,” 2021, https://blog.aviatnetworks.com/field-test-report-aviat-participates-in-field-testing-on-6-ghz-unlicensed-devices-with-ameren-and-epri/.
View at: Google Scholar
M. Miao Pan, J. Jinyuan Sun, and Y. Yuguang Fang, “Purging the back-room dealing: secure spectrum auction leveraging paillier cryptosystem,” IEEE Journal on Selected Areas in Communications, vol. 29, no. 4, pp. 866–876, 2011.
View at: Publisher Site | Google Scholar
Q. Wang, J. Huang, Y. Chen, C. Wang, F. Xiao, and X. Luo, “$PROST$: privacy-preserving and truthful online double auction for spectrum allocation,” IEEE Transactions on Information Forensics and Security, vol. 14, no. 2, pp. 374–386, 2019.
View at: Publisher Site | Google Scholar
Y. Chen, X. Tian, Q. Wang, M. Li, M. Du, and Q. Li, “ARMOR: a secure combinatorial auction for heterogeneous spectrum,” IEEE Transactions on Mobile Computing, vol. 18, no. 10, pp. 2270–2284, 2019.
View at: Publisher Site | Google Scholar
Q. Wang, J. Huang, Y. Chen, X. Tian, and Q. Zhang, “Privacy-preserving and truthful double auction for heterogeneous spectrum,” IEEE/ACM Transactions on Networking, vol. 27, no. 2, pp. 848–861, 2019.
View at: Publisher Site | Google Scholar
S. Wu, Y. Chen, Q. Wang, M. Li, C. Wang, and X. Luo, “Cream: a smart contract enabled collusion-resistant e-auction,” IEEE Transactions on Information Forensics and Security, vol. 14, no. 7, pp. 1687–1701, 2019.
View at: Publisher Site | Google Scholar
J. Wang, N. Lu, Q. Cheng, L. Zhou, and W. Shi, “A secure spectrum auction scheme without the trusted party based on the smart contract,” Digital Communications and Networks, vol. 7, no. 2, pp. 223–234, 2020.
View at: Publisher Site | Google Scholar
Z. Zhou, X. Chen, Y. Zhang, and S. Mumtaz, “Blockchain-empowered secure spectrum sharing for 5g heterogeneous networks,” IEEE Network, vol. 34, no. 1, pp. 24–31, 2020.
View at: Publisher Site | Google Scholar
Y. Chen, X. Tian, Q. Wang, J. Jiang, M. Li, and Q. Zhang, “Safe: a general secure and fair auction framework for wireless markets with privacy preservation,” IEEE Transactions on Dependable and Secure Computing, vol. 2020, Article ID 3045449, 2020.
View at: Publisher Site | Google Scholar
B. Bünz, S. Agrawal, M. Zamani, and D. Boneh, “Zether: towards privacy in a smart contract world,” in Proceedings of the International Conference on Financial Cryptography and Data Security, pp. 423–443, Springer, Berlin, Germany, February 2020.
View at: Publisher Site | Google Scholar
K. Cheng, L. Wang, Y. Shen, Y. Liu, Y. Wang, and L. Zheng, “A lightweight auction framework for spectrum allocation with strong security guarantees,” in Proceedings of the IEEE INFOCOM 2020-IEEE Conference on Computer Communications, pp. 1708–1717, IEEE, Toronto, Canada, July 2020.
View at: Publisher Site | Google Scholar
M. Campanelli, R. Gennaro, S. Goldfeder, and L. Nizzardo, “Zero-knowledge contingent payments revisited: attacks and payments for services,” in Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, pp. 229–243, New York, NY, USA, October 2017.
View at: Google Scholar
M. B. H. Weiss, K. Werbach, D. C. Sicker, and C. E. C. Bastidas, “On the application of blockchains to spectrum management,” IEEE Transactions on Cognitive Communications and Networking, vol. 5, no. 2, pp. 193–205, 2019.
View at: Publisher Site | Google Scholar
D. Tygar, “Auction types,” 2021, https://www.usenix.org/legacy/publications/library/proceedings/ec98/full˙papers/harkavy/harkavy˙html/node2.html.
View at: Google Scholar
Wikipedia, “Combinatorial auction,” 2021, https://en.wikipedia.org/wiki/Combinatorial˙auction.
View at: Google Scholar
Y. Tsiounis and M. Yung, “On the security of elgamal based encryption,” in Proceedings of the International Workshop on Public Key Cryptography, pp. 117–134, Springer, Berlin, Germany, May 1998.
View at: Publisher Site | Google Scholar
B. Bünz, J. Bootle, D. Boneh, A. Poelstra, P. Wuille, and G. Maxwell, “Bulletproofs: short proofs for confidential transactions and more,” in Proceedings of the 2018 IEEE Symposium on Security and Privacy (SP), pp. 315–334, IEEE, San Francisco, CA, USA, May 2018.
View at: Publisher Site | Google Scholar
C.-P. Schnorr, “Efficient identification and signatures for smart cards,” in Proceedings of the Conference on the Theory and Application of Cryptology, pp. 239–252, Springer, Houthalen, Belgium, April 1989.
View at: Google Scholar

Copyright

Copyright © 2021 Zijun Zhao et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

PDF Download Citation

Download other formats

Order printed copies

Views

419

Downloads

573

Citations

Security and Communication Networks

Data Security and Privacy for Fog/Edge Computing-Based IoT

Combinatorial Spectrum E-Auction for 5G Heterogeneous Networks: A Zether-Based Approach

Abstract

1. Introduction

2. Related Work

3. Preliminaries

3.1. Auction Terminologies

3.2. Zether and Zether Smart Contract (ZSC) [12]

3.3. ElGamal Encryption

3.4. -Bullet Zero-Knowledge Proof [12]

4. Zether-Based E-Auction Scheme

4.1. System Overview

4.2. Detailed Construction

4.3. Setup

4.4. Registration

4.5. Locking

4.6. Auction Execution

4.7. Market Cleaning

5. Theoretical Analysis

5.1. Transfer ZK Proof

5.2. Correctness

5.3. Experiment Performance

5.4. Gas Consumption and Overheads

6. Conclusions

Data Availability

Conflicts of Interest

Acknowledgments

References

Copyright