This paper introduces the zk-IoT framework, a novel approach to enhancing the security of Internet of Things (IoT) ecosystems through the use of Zero-Knowledge Proofs (ZKPs) on blockchain platforms. Our framework ensures the integrity of firmware execution and data processing in potentially compromised IoT devices. By leveraging the concept of ZKP, we establish a trust layer that facilitates secure, autonomous communication between IoT devices in environments where devices may not inherently trust each other. The framework includes zk-Devices, which utilize functional commitment to generate proofs for executed programs, and service contracts for encoding interaction logic among devices. It also utilizes a blockchain layer and a relayer as a ZKP storage and data communication protocol, respectively. Our experiments demonstrate that proof generation, reading, and verification take approximately 694, 5078, and 19 milliseconds in our system setup, respectively. These timings meet the practical requirements for IoT device communication, demonstrating the feasibility and efficiency of our solution. The zk-IoT framework represents a significant advancement in the realm of IoT security, paving the way for reliable and scalable IoT networks across various applications, such as smart city infrastructures, healthcare systems, and industrial automation.

翻译：本文提出zk-IoT框架，这是一种通过区块链平台上的零知识证明（ZKP）增强物联网（IoT）生态系统安全性的创新方法。该框架可确保在潜在受损的物联网设备中固件执行与数据处理过程的完整性。通过利用零知识证明的概念，我们构建了一个信任层，使得在设备间缺乏天然信任的环境中，物联网设备能够实现安全、自主的通信。框架包含三类核心组件：利用功能承诺生成程序执行证明的zk设备、用于编码设备间交互逻辑的服务合约，以及分别作为ZKP存储与数据通信协议的区块链层与中继器。实验表明，在我们的系统配置下，证明生成、读取与验证分别耗时约694毫秒、5078毫秒与19毫秒。这些时序指标满足物联网设备通信的实际需求，验证了本方案的可行性与高效性。zk-IoT框架标志着物联网安全领域的重大突破，为智能城市基础设施、医疗系统和工业自动化等各类应用场景下可靠、可扩展的物联网网络建设铺平了道路。