基于许可链的SWIFT系统分布式架构
|
摘要
跨境金融通信对于现代金融业务的开展极为重要.环球银行金融电信协会(SWIFT)是跨境金融通信服务的主要提供者.现阶段,报文传输是SWIFT系统的主要业务,确保报文传输安全、准确、高效,是SWIFT系统的重要目标.但现阶段基于中心架构思想的SWIFT系统安全风险突出,传输效率低,成本较高.基于许可链分布式共识机制,提出BCSWIFT系统,对现有的SWIFT系统进行优化.首先,将SWIFT系统的传输网络划分为主网络层和附加网络层;其次,提出了基于双层网络结构的共识算法;第三,介绍了BCSWIFT系统的报文交互和传输机制;第四,出于金融业务数据商业保密考虑,提出了一种面向BCSWIFT系统的隐私保护机制;第五,对BCSWIFT系统的安全性进行了分析.以优化SWIFT系统的报文传输业务为例,阐释了基于许可链的跨境金融通信的基本机理,为确保跨境支付、清算、结算的安全、高效、准确和低成本化运作提供了新的思路,也为区块链技术大规模商业应用提供了重要参照.
Cross-border financial communication is extremely important for the development of modern financial services. The society for worldwide interbank financial telecommunications(SWIFT) is the main provider of cross-border financial communications services.Now, telecommunications message transmission is the main business of SWIFT systems to ensure the transmission of messages. Security,accuracy, and efficiency are important goals of SWIFT system. However, the current SWIFT system based on the concept of central architecture has outstanding security risks, low transmission efficiency, and high cost. This study proposes a BCSWIFT system based on the permissioned blockchain distributed consensus mechanism, which can make SWIFT system be optimized. First, the transmission network of the SWIFT system is divided into the main network layer and the additional network layer. Second, a consensus algorithm based on the double-layer network structure is proposed. Third, the telecommunications message exchange and transmission of the BCSWIFT system are introduced. Fourth, for the sake of business confidentiality of financial business data, the mechanism of message data privacy protection for financial institutions. Fifth, the security of BCSWIFT system. This article takes the optimization of the SWIFT system's message transmission service as an example, explaining the basic mechanism of cross-border financial communications based on the permissioned blockchain, to provide new ideas for ensuring the safety, efficiency, accuracy and low-cost operation of cross-border paymen, and also provide an important reference for large-scale commercial application of blockchain technology.
Cross-border financial communication is extremely important for the development of modern financial services. The society for worldwide interbank financial telecommunications(SWIFT) is the main provider of cross-border financial communications services.Now, telecommunications message transmission is the main business of SWIFT systems to ensure the transmission of messages. Security,accuracy, and efficiency are important goals of SWIFT system. However, the current SWIFT system based on the concept of central architecture has outstanding security risks, low transmission efficiency, and high cost. This study proposes a BCSWIFT system based on the permissioned blockchain distributed consensus mechanism, which can make SWIFT system be optimized. First, the transmission network of the SWIFT system is divided into the main network layer and the additional network layer. Second, a consensus algorithm based on the double-layer network structure is proposed. Third, the telecommunications message exchange and transmission of the BCSWIFT system are introduced. Fourth, for the sake of business confidentiality of financial business data, the mechanism of message data privacy protection for financial institutions. Fifth, the security of BCSWIFT system. This article takes the optimization of the SWIFT system's message transmission service as an example, explaining the basic mechanism of cross-border financial communications based on the permissioned blockchain, to provide new ideas for ensuring the safety, efficiency, accuracy and low-cost operation of cross-border paymen, and also provide an important reference for large-scale commercial application of blockchain technology.
引文
[1]SWIFT.Wikipedia.https://en.wikipedia.org/wiki/Society_for_Worldwide_Interbank_Financial_Telecommunication
[2]Jesse YH,Deokyoon K,Sujin C,Sooyong P,Kari S,Houbing S.Where is current research on blockchain technology?-Asystematic review.Plos One,2016,11(10):1-27.
[3]Yuan Y,Wang FY.Blockchain:The state of the art and future trends.Acta Automatica Sinica,2016,42(4):481-494(in Chinese with English abstract).
[4]Liu AD,Du XH,Wang N,Li SZ.Research progress of blockchain technology and its application in information security.Ruan Jian Xue Bao/Journal of Software,2018,29(7):2092-2115(in Chinese with English abstract).http://www.jos.org.cn/1000-9825/5589.htm[doi:10.13328/j.cnki.jos.005589]
[5]Ding QY,ZHU JM.The product information traceability and security model of B2C E-platform from the perspective of blockchain.China Business and Marke,2017,12:41-49(in Chinese with English abstract).[doi:10.14089/j.cnki.cn11-3664/f.2017.12.005]
[6]Tsai WT,Blower R,Zhu Y,Yu L.A system view of financial blockchains.In:Proc.of the 2016 IEEE Symp.on Service-Oriented System Engineering(SOSE).IEEE,2016.
[7]Armknecht F,Karame GO,Mandal A,Youssef F,Zenner E.Ripple:Overview and outlook.In:Proc.of the Int’l Conf.on Trust and Trustworthy Computing.Cham:Springer-Verlag,2015.163-180.
[8]Mainelli M,Milne A.The Impact and Potential of Blockchain on Securities Transaction Lifecycle.Social Science Electronic Publishing,2016.1-81.
[9]SWIFT customer security programme Ver.1.0.https://www.swift.com/myswift/customer-security-programme-csp/security-controls
[10]SWIFT on distributed ledger technologies.http://www.ameda.org.eg/files/SWIFT_DLTsposition_paper_FI NA L1804.pdf
[11]People’s Bank of China Digital Money Research Project Team.Seeing financial network security from SWIFT hacking events.China Finance,2016,17:43-44(in Chinese with English abstract).
[12]Rosner MT,Kang A.Understanding and regulating 21st century payment systems:The Ripple case study.Michigan Law Review,2016,114(4):649-682.
[13]Luzio AD,Mei A,Stefa J.Consensus robustness and transaction de-anonymization in the Ripple currency exchange system.In:Proc.of the IEEE Int’l Conf.on Distributed Computing Systems.IEEE,2017.140-150.
[14]Wang CY,Zheng BG.RIPPLE in Internet finance:Principles,models and challenges.Shanghai Finance,2015,3:46-52(in Chinese with English abstract).
[15]Shan KJ.Comparative analysis of Ripple and SWIFT.Financial Theory and Practice,2016,447(10):105-107(in Chinese with English abstract).
[16]Yan M,Xiao L.Virtual currency:Operational mechanism,trading system and governance strategy.China Industrial Economy,2014,4:110-121(in Chinese with English abstract).
[17]Circle corporation.CENTRE.2017.https://www.centre.io/
[18]Zhu JM,Gao S,Duan MJ.Blockchain Technology and Application.Beijing:Mechanical Industry Press,2017.211-213(in Chinese).
[19]Lamport L,Shostak R,Pease M.The Byzantine generals problem.ACM Trans.on Programming Languages and Systems(TOPLAS),1982,4(3):382-401.[doi:10.1145/357172.357176]
[20]Woos D,Wilcox JR,Anton S,Tatlock Z,Ernst MD,Anderson T.Planning for change in a formal verification of the raft consensus protocol.In:Proc.of the ACM SIGPLAN Conf.on Certified Programs&Proofs.ACM Press,2016.154-165.
[21]Nakamoto S.Bitcoin:A Peer-to-Peer Electronic Cash System.Consulted,2008.
[22]Merkle RC.A certified digital signature.In:Proc.of the Conf.on the Theory and Application of Cryptology.New York:SpringerVerlag,1989.218-238.
[23]Bellare M.Keying Hash function for message authentication.Crypt Proc.,1996,1109:1-15.
[24]Bishop M.Computer Security:Art and Science.Boston:MA Press,2002.62-68.
[25]Ding QY,Wang XL,Zhu JM,Song B.Information security protection framework of information physics fusion system based on blockchain.Computer Science,2018,45(2):32-39(in Chinese with English abstract).
[26]Vukoli?M.The quest for scalable blockchain fabric:Proof-of-work vs.BFT replication.In:Proc.of the Int’l Workshop on Open Problems in Network Security.Springer-Verlag,2015.112-125.
[27]Androulaki E,Barger A,Bortnikov V,Cachin C,Christidis K,De Caro A,Enyeart D,Ferris C,Laventman G,Manevich Y,Muralidharan S,Murthy C,Sethi M,Singh G,Smith K,Sorniotti A,Stathakopoulou C,Vukoli?M,Cocco SW,Yellick J.Hyperledger abric:A distributed operating system for permissioned blockchains.In:Proc.of the 13th EuroSys Conf.(EuroSys2018).2018.1-15.
[3]袁勇,王飞跃.区块链技术发展现状与展望.自动化学报,2016,42(4):481-494.
[4]刘敖迪,杜学绘,王娜,李少卓.区块链技术及其在信息安全领域的研究进展.软件学报,2018,29(7):2092-2115.http://www.jos.org.cn/1000-9825/5589.htm[doi:10.13328/j.cnki.jos.005589]
[5]丁庆洋,朱建明.区块链视角下的B2C电商平台产品信息追溯和防伪模型.中国流通经济,2017,12:41-49.[doi:10.14089/j.cnki.cn11-3664/f.2017.12.005]
[11]中国人民银行数字货币研究项目组.从SWIFT黑客事件看金融网络安全.中国金融,2016,17:43-44.
[14]王朝阳,郑步高.互联网金融中的RIPPLE:原理、模式与挑战.上海金融,2015,3:46-52.
[15]单科举.Ripple与SWIFT比较分析研究.金融理论与实践,2016,447(10):105-107.
[16]祁明,肖林.虚拟货币:运行机制、交易体系与治理策略.中国工业经济,2014,4:110-121.
[18]朱建明,高胜,段美姣.区块链技术与应用.北京:机械工业出版社,2017.211-213.
[25]丁庆洋,王秀利,朱建明,宋彪.基于区块链的信息物理融合系统的信息安全保护框架.计算机科学,2018,45(2);32-39.
[2]Jesse YH,Deokyoon K,Sujin C,Sooyong P,Kari S,Houbing S.Where is current research on blockchain technology?-Asystematic review.Plos One,2016,11(10):1-27.
[3]Yuan Y,Wang FY.Blockchain:The state of the art and future trends.Acta Automatica Sinica,2016,42(4):481-494(in Chinese with English abstract).
[4]Liu AD,Du XH,Wang N,Li SZ.Research progress of blockchain technology and its application in information security.Ruan Jian Xue Bao/Journal of Software,2018,29(7):2092-2115(in Chinese with English abstract).http://www.jos.org.cn/1000-9825/5589.htm[doi:10.13328/j.cnki.jos.005589]
[5]Ding QY,ZHU JM.The product information traceability and security model of B2C E-platform from the perspective of blockchain.China Business and Marke,2017,12:41-49(in Chinese with English abstract).[doi:10.14089/j.cnki.cn11-3664/f.2017.12.005]
[6]Tsai WT,Blower R,Zhu Y,Yu L.A system view of financial blockchains.In:Proc.of the 2016 IEEE Symp.on Service-Oriented System Engineering(SOSE).IEEE,2016.
[7]Armknecht F,Karame GO,Mandal A,Youssef F,Zenner E.Ripple:Overview and outlook.In:Proc.of the Int’l Conf.on Trust and Trustworthy Computing.Cham:Springer-Verlag,2015.163-180.
[8]Mainelli M,Milne A.The Impact and Potential of Blockchain on Securities Transaction Lifecycle.Social Science Electronic Publishing,2016.1-81.
[9]SWIFT customer security programme Ver.1.0.https://www.swift.com/myswift/customer-security-programme-csp/security-controls
[10]SWIFT on distributed ledger technologies.http://www.ameda.org.eg/files/SWIFT_DLTsposition_paper_FI NA L1804.pdf
[11]People’s Bank of China Digital Money Research Project Team.Seeing financial network security from SWIFT hacking events.China Finance,2016,17:43-44(in Chinese with English abstract).
[12]Rosner MT,Kang A.Understanding and regulating 21st century payment systems:The Ripple case study.Michigan Law Review,2016,114(4):649-682.
[13]Luzio AD,Mei A,Stefa J.Consensus robustness and transaction de-anonymization in the Ripple currency exchange system.In:Proc.of the IEEE Int’l Conf.on Distributed Computing Systems.IEEE,2017.140-150.
[14]Wang CY,Zheng BG.RIPPLE in Internet finance:Principles,models and challenges.Shanghai Finance,2015,3:46-52(in Chinese with English abstract).
[15]Shan KJ.Comparative analysis of Ripple and SWIFT.Financial Theory and Practice,2016,447(10):105-107(in Chinese with English abstract).
[16]Yan M,Xiao L.Virtual currency:Operational mechanism,trading system and governance strategy.China Industrial Economy,2014,4:110-121(in Chinese with English abstract).
[17]Circle corporation.CENTRE.2017.https://www.centre.io/
[18]Zhu JM,Gao S,Duan MJ.Blockchain Technology and Application.Beijing:Mechanical Industry Press,2017.211-213(in Chinese).
[19]Lamport L,Shostak R,Pease M.The Byzantine generals problem.ACM Trans.on Programming Languages and Systems(TOPLAS),1982,4(3):382-401.[doi:10.1145/357172.357176]
[20]Woos D,Wilcox JR,Anton S,Tatlock Z,Ernst MD,Anderson T.Planning for change in a formal verification of the raft consensus protocol.In:Proc.of the ACM SIGPLAN Conf.on Certified Programs&Proofs.ACM Press,2016.154-165.
[21]Nakamoto S.Bitcoin:A Peer-to-Peer Electronic Cash System.Consulted,2008.
[22]Merkle RC.A certified digital signature.In:Proc.of the Conf.on the Theory and Application of Cryptology.New York:SpringerVerlag,1989.218-238.
[23]Bellare M.Keying Hash function for message authentication.Crypt Proc.,1996,1109:1-15.
[24]Bishop M.Computer Security:Art and Science.Boston:MA Press,2002.62-68.
[25]Ding QY,Wang XL,Zhu JM,Song B.Information security protection framework of information physics fusion system based on blockchain.Computer Science,2018,45(2):32-39(in Chinese with English abstract).
[26]Vukoli?M.The quest for scalable blockchain fabric:Proof-of-work vs.BFT replication.In:Proc.of the Int’l Workshop on Open Problems in Network Security.Springer-Verlag,2015.112-125.
[27]Androulaki E,Barger A,Bortnikov V,Cachin C,Christidis K,De Caro A,Enyeart D,Ferris C,Laventman G,Manevich Y,Muralidharan S,Murthy C,Sethi M,Singh G,Smith K,Sorniotti A,Stathakopoulou C,Vukoli?M,Cocco SW,Yellick J.Hyperledger abric:A distributed operating system for permissioned blockchains.In:Proc.of the 13th EuroSys Conf.(EuroSys2018).2018.1-15.
[3]袁勇,王飞跃.区块链技术发展现状与展望.自动化学报,2016,42(4):481-494.
[4]刘敖迪,杜学绘,王娜,李少卓.区块链技术及其在信息安全领域的研究进展.软件学报,2018,29(7):2092-2115.http://www.jos.org.cn/1000-9825/5589.htm[doi:10.13328/j.cnki.jos.005589]
[5]丁庆洋,朱建明.区块链视角下的B2C电商平台产品信息追溯和防伪模型.中国流通经济,2017,12:41-49.[doi:10.14089/j.cnki.cn11-3664/f.2017.12.005]
[11]中国人民银行数字货币研究项目组.从SWIFT黑客事件看金融网络安全.中国金融,2016,17:43-44.
[14]王朝阳,郑步高.互联网金融中的RIPPLE:原理、模式与挑战.上海金融,2015,3:46-52.
[15]单科举.Ripple与SWIFT比较分析研究.金融理论与实践,2016,447(10):105-107.
[16]祁明,肖林.虚拟货币:运行机制、交易体系与治理策略.中国工业经济,2014,4:110-121.
[18]朱建明,高胜,段美姣.区块链技术与应用.北京:机械工业出版社,2017.211-213.
[25]丁庆洋,王秀利,朱建明,宋彪.基于区块链的信息物理融合系统的信息安全保护框架.计算机科学,2018,45(2);32-39.