The rapid growth of decentralized systems in theWeb3 ecosystem has introduced numerous challenges, particularly in ensuring data security, privacy, and scalability [3, 8]. These systems rely heavily on distributed architectures, requiring robust mechanisms to manage data and interactions among participants securely. One critical aspect of decentralized systems is key management, which is essential for encrypting files, securing database segments, and enabling private transactions. However, securely managing cryptographic keys in a distributed environment poses significant risks, especially when nodes in the network can be compromised [9]. This research proposes a decentralized database scheme specifically designed for secure and private key management. Our approach ensures that cryptographic keys are not stored explicitly at any location, preventing their discovery even if an attacker gains control of multiple nodes. Instead of traditional storage, keys are encoded and distributed using the BFLUT (Bloom Filter for Private Look-Up Tables) algorithm [7], which enables secure retrieval without direct exposure. The system leverages OrbitDB [4], IPFS [1], and IPNS [10] for decentralized data management, providing robust support for consistency, scalability, and simultaneous updates. By combining these technologies, our scheme enhances both security and privacy while maintaining high performance and reliability. Our findings demonstrate the system's capability to securely manage keys, prevent unauthorized access, and ensure privacy, making it a foundational solution for Web3 applications requiring decentralized security.

翻译：Web3生态系统中去中心化系统的快速增长带来了诸多挑战，尤其在确保数据安全性、隐私性和可扩展性方面[3,8]。这些系统高度依赖分布式架构，需要稳健的机制来安全地管理数据和参与者之间的交互。去中心化系统的关键环节之一是密钥管理，这对文件加密、数据库分段保护和实现私有交易至关重要。然而，在分布式环境中安全管理加密密钥存在显著风险，特别是当网络节点可能被攻破时[9]。本研究提出一种专门为安全私有密钥管理设计的去中心化数据库方案。我们的方法确保加密密钥不会在任何位置明文存储，即使攻击者控制多个节点也无法发现密钥。通过采用BFLUT（基于布隆过滤器的私有查找表）算法[7]对密钥进行编码和分布式存储，取代传统存储方式，实现无需直接暴露的安全检索。该系统利用OrbitDB[4]、IPFS[1]和IPNS[10]进行去中心化数据管理，为一致性、可扩展性和同步更新提供强大支持。通过整合这些技术，我们的方案在保持高性能和可靠性的同时，显著提升了安全性和隐私性。实验结果表明，该系统能够安全管理密钥、防止未授权访问并确保隐私，为需要去中心化安全机制的Web3应用提供了基础性解决方案。