近幾年來,分散式阻斷服務攻擊(DDoS)攻擊在是一個非常嚴重的威脅,也是最流行的攻擊之一。各種IoMT平台、網站或伺服器可能會因遭受DDoS攻擊而癱瘓。目前,黑名單存取控制仍然是抵制這些攻擊的有效方法。不幸的是,大多數能夠收集大量威脅情資的資訊安全監控中心(SOC)都拒絕交換他們收集到的寶貴知識。因此,如何有效與公平地共享威脅情資是一個具有前景的研究課題。 在本文中,我們提出了一個基於區塊鏈的威脅情資共享平台,並且搭配誘因式代幣鼓勵資訊分享。為了保護資料隱私,提議的系統實作了代理重新加密方案,使資料透過加密形式做資訊交換。此外,為了有效地搜尋有用的資料,我們提出的方案設計了一種新穎的布隆過濾器,可以有效地排除無效的數據集。最後的模擬結果表明,本文採用的代理重新加密執行時間優於其他現有方案65%到70%。 ;In recent decades, Distributed Denial of Service (DDoS) attacks is a very serious threat in today′s, which is one of the most popular attacks. As a consequence, various IoMT platforms, websites and servers could be paralyzed by DDoS attacks. Currently, blacklist access control is still the effective way to resist those attack. Unfortunately, most of security operation centers (SOC) who can gather a lot of threat intelligence refuse to exchange their valuable knowledge due to lack of benefits. Therefore, how to effective and fair sharing threat intelligence is a promising research topic. In this article, we proposed a blockchain-based threat intelligence sharing platform to offer incentive benefit and keep exchange records on smart contracts for transparency. For data privacy, the proposed system implements a proxy re-encryption scheme keeping data in encrypted form. Furthermore, to effectively search useful data, our scheme proposed a novel bloom filter for data requester, which can effectively rule out inefficacious data set. Our simulation results show that the execution time of proxy re-encryption is about 65\%-70\% better than other existing schemes.
