CN110189184A - A kind of electronic invoice storage method and device - Google Patents

A kind of electronic invoice storage method and device Download PDF

Info

Publication number
CN110189184A
CN110189184A CN201910341695.2A CN201910341695A CN110189184A CN 110189184 A CN110189184 A CN 110189184A CN 201910341695 A CN201910341695 A CN 201910341695A CN 110189184 A CN110189184 A CN 110189184A
Authority
CN
China
Prior art keywords
invoice
user
group members
group
identity
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910341695.2A
Other languages
Chinese (zh)
Other versions
CN110189184B (en
Inventor
李茂材
王宗友
周开班
蓝虎
杨常青
孔利
张劲松
时一防
刘区城
朱耿良
陈秋平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Intellectual Tax Chain Technology Co Ltd
Original Assignee
Shenzhen Intellectual Tax Chain Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Intellectual Tax Chain Technology Co Ltd filed Critical Shenzhen Intellectual Tax Chain Technology Co Ltd
Priority to CN201910341695.2A priority Critical patent/CN110189184B/en
Publication of CN110189184A publication Critical patent/CN110189184A/en
Application granted granted Critical
Publication of CN110189184B publication Critical patent/CN110189184B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/04Billing or invoicing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • H04L9/3255Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures using group based signatures, e.g. ring or threshold signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Development Economics (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Economics (AREA)
  • Theoretical Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention discloses a kind of electronic invoice storage method and devices, belong to field of computer technology, for promoting the safety of electronic invoice storage.This method comprises: the electronic invoice that storage is treated at end of making out an invoice is encrypted;The end of making out an invoice is made out an invoice described in holds the group members certificate of the user that makes out an invoice of upper login to carry out group ranking to the encrypted electronic invoice, the group members certificate is presented to the user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice after passing through for the identity for the user that makes out an invoice described in trust authority verifying;The end of making out an invoice sends electronic invoice storage request to block chain node, the electronic invoice storage request carries the encrypted electronic invoice and the group ranking, so that the encrypted electronic invoice is added to block chain and is stored after the block chain node is passed through based on the group members identity for the user that makes out an invoice described in group ranking verifying.

Description

A kind of electronic invoice storage method and device
Technical field
The present invention relates to field of computer technology, in particular to a kind of electronic invoice storage method and device.
Background technique
Block chain (Block Chain) or distributed data collection account book, be it is a kind of according to certain sequence by data field A kind of linked data structure that block (block) is combined into such a way that sequence is connected, and what is guaranteed in a manner of cryptography can not usurp The distributed account book that changes and can not forge.
Due to the decentralization of block chain technology, can not distort and can not forge the advantages that, block chain technology is gradually answered Storage for electronic invoice data.But in current block chain storage scheme, electronic invoice data is by block chain network Each block chain node stored, and for each block chain node, each block chain node can check block Whole electronic invoice datas on chain so that the privacy of electronic invoice data cannot be guaranteed, and participate in block chain and deposit The different participant of storage is often desirable to carry out the data of oneself storage certain secrecy, however existing block chain storage scheme It is unable to satisfy the demand of this respect.
Summary of the invention
The embodiment of the present invention provides a kind of electronic invoice storage method and device, for promoting the safety of electronic invoice storage Property.
On the one hand, a kind of electronic invoice storage method is provided, which comprises
It makes out an invoice and the electronic invoice for treating storage is held to be encrypted;
It makes out an invoice described in utilizing and holds the group members certificate of the user that makes out an invoice of login to the encrypted electricity in the end of making out an invoice Sub- invoice carries out group ranking, and the group members certificate is presented to institute after passing through for the identity for the user that makes out an invoice described in trust authority verifying State the user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice;
The end of making out an invoice sends electronic invoice to block chain node and stores request, and the electronic invoice storage request, which carries, to be added The electronic invoice and the group ranking after close, so that the block chain node is based on opening described in group ranking verifying After the group members identity of ticket user passes through, the encrypted electronic invoice is added to block chain and is stored.
On the one hand, a kind of electronic invoice storage method is provided, which comprises
Block chain node receives the electronic invoice that end is sent of making out an invoice and stores request, and the electronic invoice storage request, which carries, to be added Electronic invoice after close, and make out an invoice described in utilization and hold the group members certificate of the user that makes out an invoice of login to the encrypted electricity The group ranking that sub- invoice is signed, the group members certificate pass through for the identity for the user that makes out an invoice described in trust authority verifying It is presented to the user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice afterwards;
The group members identity that the block chain node passes through the user that makes out an invoice described in group ranking verifying;
The block chain node make out an invoice described in the verifying user group members identity pass through after, by the encrypted electronics Invoice is stored in the block chain node.
On the one hand, a kind of electronic invoice storage method is provided, which comprises
Trust authority obtains the registration request for the user that makes out an invoice, the identity letter for the user that makes out an invoice described in the registration request carrying Breath;
Make out an invoice described in the trust authority verifying user identity information pass through after, group's management based on the trust authority Member's private key encrypts the identity of the user that makes out an invoice to obtain the group members private key of the user that makes out an invoice;
The group members private key is carried and is sent to the user that makes out an invoice in group members certificate by the trust authority, so that The storage of electronic invoice can be carried out based on the group members certificate by obtaining the user that makes out an invoice, and the group members certificate is for characterizing The group members identity of the user that makes out an invoice.
On the one hand, a kind of electronic invoice storage device is provided, described device includes:
DEU data encryption unit, the electronic invoice for treating storage are encrypted;
Signature unit, for the group members certificate using the listed user that makes out an invoice to the encrypted electronic invoice into Row group ranking, the group members certificate are presented to the use of making out an invoice after passing through for the identity for the user that makes out an invoice described in trust authority verifying Family, and the group members identity for characterizing the user that makes out an invoice;
Request unit is stored, for sending electronic invoice storage request to block chain node, the electronic invoice storage is asked It asks and carries the encrypted electronic invoice and the group ranking, tested so that the block chain node is based on the group ranking Make out an invoice described in card user group members identity pass through after, the encrypted electronic invoice is added to block chain and is stored.
The DEU data encryption unit, is specifically used for:
Described make out an invoice holds the user that makes out an invoice described in carry out with the first key arranged by ticket user to the electronic invoice Encryption, so that can be made out an invoice by ticket user with described based on described after the encrypted electronic invoice by ticket user acquisition Electronic invoice described in second key pair of user's agreement is decrypted;
Wherein, the first key is identical as second key;Alternatively, the first key makes out an invoice user's to be described Private key for user and the client public key by ticket user, second key be the user that makes out an invoice client public key and it is described by The private key for user of ticket user.
The signature unit, is specifically used for:
The end of making out an invoice is using the group members private key carried in the group members certificate, to the encrypted electronic invoice Group ranking is carried out, the group members private key is that the trust authority is opened using the group administrator private key of the trust authority described What the user identifier of ticket user was encrypted.
On the one hand, a kind of electronic invoice storage device is provided, described device includes:
Receiving unit, the electronic invoice storage request sent for receiving end of making out an invoice, the electronic invoice storage request are taken With encrypted electronic invoice, and makes out an invoice described in utilization and hold the group members certificate of the user that makes out an invoice of login to encrypted institute State the group ranking that electronic invoice is signed, the group members certificate is the identity of user of making out an invoice described in trust authority verifying The user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice are presented to after;
Identity authenticating unit, for the group members identity by the user that makes out an invoice described in group ranking verifying;
Execution unit, after the group members identity for the user that makes out an invoice described in the verifying passes through, by the encrypted electronics Invoice is stored in the block chain node.
The identity authenticating unit, is specifically used for:
The group ranking is decrypted in the group administrator public key that the block chain node is provided using the trust authority;
The electronic invoice content that decryption obtains is compared with the encrypted electronic invoice content;
When the electronic invoice content that decryption obtains is consistent with the encrypted electronic invoice content, make out an invoice described in verifying The group members identity of user passes through, and the group members identity for the user that otherwise makes out an invoice described in verifying does not pass through.
On the one hand, a kind of electronic invoice storage device is provided, described device includes:
Acquiring unit, for obtaining the registration request for the user that makes out an invoice, the body for the user that makes out an invoice described in the registration request carrying Part information;
Private key generation unit is based on group administrator private key pair after the identity information for verifying the user that makes out an invoice passes through The identity of the user that makes out an invoice is encrypted to obtain the group members private key of the user that makes out an invoice;
Certificate authority unit is sent to the use of making out an invoice for carrying the group members private key in group members certificate Family, so that the user that makes out an invoice can carry out the storage of electronic invoice, the group members certificate based on the group members certificate For characterizing the group members identity of the user that makes out an invoice.
Described device further includes decryption unit, is used for:
The trust authority is decrypted the group ranking using the group administrator private key, to obtain the use of making out an invoice The identity at family.
On the one hand, a kind of computer equipment is provided, including memory, processor and storage on a memory and can handled The computer program run on device, the processor realize method described in above-mentioned aspect when executing described program.
On the one hand, a kind of computer readable storage medium is provided, is stored with processor-executable instruction, the processor can It executes instruction for executing method described in above-mentioned aspect.
In the embodiment of the present invention, when needing to store electronic invoice, electronic invoice can be encrypted, recycle use of making out an invoice The group members certificate at family carries out group ranking to the electronic invoice of encryption, then sends electronic invoice storage request to block chain node, In this way, block chain node can verify the group members identity of the user that makes out an invoice by verifying group ranking, but block chain node without Method gets the real user identity for the user that makes out an invoice, and since electronic invoice is already encrypted, so that block chain node can not yet The content of electronic invoice is got, so that electronic invoice stores enough privacies, promotes the safety of electronic invoice storage.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Inventive embodiments for those of ordinary skill in the art without creative efforts, can also be according to mentioning The attached drawing of confession obtains other attached drawings.
Fig. 1 is the display schematic diagram of the Transaction Information of block chain node in the prior art storage;
Fig. 2 is the schematic diagram of application scenarios provided in an embodiment of the present invention;
Fig. 3 issues flow diagram for group members certificate provided in an embodiment of the present invention;
Fig. 4 is the flow diagram of electronic invoice storage method provided in an embodiment of the present invention;
Fig. 5 is a kind of a kind of structural schematic diagram of electronic invoice storage device provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of another electronic invoice storage device provided in an embodiment of the present invention;
Fig. 7 is a kind of structural schematic diagram of another electronic invoice storage device provided in an embodiment of the present invention;
Fig. 8 is a kind of structural schematic diagram of computer equipment provided in an embodiment of the present invention.
Specific embodiment
To make the objectives, technical solutions, and advantages of the present invention clearer, below in conjunction in the embodiment of the present invention Attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is only It is a part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, ordinary skill people Member's every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.? In the case where not conflicting, the feature in embodiment and embodiment in the present invention can mutual any combination.Although also, flowing Logical order is shown in journey figure, but in some cases, it can be to be different from shown or described by sequence execution herein The step of.
Technical solution provided in an embodiment of the present invention for ease of understanding, some passes that first embodiment of the present invention is used here Key name word explains:
Block chain: being a kind of be combined into data block (block) in such a way that sequence is connected according to certain sequence one Kind linked data structure, and the distributed account book that can not be distorted He can not forge guaranteed in a manner of cryptography.Wherein, block is used It in recording the Transaction Set marked off according to certain condition and state outcome, is formed after each node is reached common understanding.
Block chain node: referring to the calculating equipment for processing of participating in business in block chain network, such as computer, mobile phone, desk-top The equipment that machine or server etc. possess computing capability can be used as the node in block chain network.For example, by having connected After the program for running particular block chain network on to the computer of internet, which can become one in the block chain network Node.In embodiments of the present invention, trading processing then specifically refers to the storage of electronic invoice.
Electronic invoice: electronic invoice is used using the form of tax bureau's unified payment to businessman, hair as paper invoice Ticket number distributes to the user that makes out an invoice using unified anti-counterfeiting technology using national Unified coding, make out an invoice in this way user can with for by Ticket user issues invoice.Unlike paper invoice, electronic invoice does not need paper carrier, do not print, print, storing and Costs, the enterprises such as mailing can save correlative charges.
Symmetric encipherment algorithm: originator together after the processing of special Encryption Algorithm, makes initial data and encryption key Its encrypted cipher text for becoming complicated is sent out, and after destination receives ciphertext, if wanting to interpret original text, is needed used using encrypting Ciphertext is decrypted in key and the algorithm for inversion of identical algorithms, just it can be made to revert to readable plaintext.I.e. in symmetric encipherment algorithm In, the key that uses only one, hair collection of letters both sides are encrypted and decrypted using this data key, and this requires solutions Close side must be known by encryption key in advance.
Rivest, shamir, adelman: two keys: public-key cryptography (public key) and private cipher key (private are needed key).Public-key cryptography and private cipher key are a pair, if encrypted with public-key cryptography to data, only with corresponding privately owned close Key could be decrypted;If encrypted with private cipher key pair data, could only be decrypted with corresponding public-key cryptography.Because Encryption and decryption use two different keys, so this algorithm is called rivest, shamir, adelman.Asymmetric encryption is calculated Method realize confidential information exchange basic process be: Party A generate a pair of secret keys and will it is therein one be used as Public key to its Its side is open;Obtain the Public key Party B encrypted using the key pair confidential information after be then forwarded to Party A;Party A Encrypted information is decrypted in private key with oneself the another of preservation again.
Group ranking (group signature): any one group members in a group signature scheme, in a group Entire group can be represented in a manner of anonymous, and group ranking is carried out to message.As other digital signature, group ranking is can be with Open verifying, and can only be verified with single group's public key.Such as the user that makes out an invoice can treat the electronic invoice of storage into It is split that group public key then can be used after block chain node receives the electronic invoice storage request for the user that makes out an invoice in row group ranking The group ranking of ticket user is verified, the group members identity of user so that verifying is made out an invoice.
Group: including group administrator and group members, group administrator there is usually one, group members can have it is multiple, In the embodiment of the present invention, a regional tax bureau then can be used as crowd administrator, and the enterprise of tax bureau administration then can be with For group members.It when enterprise sets up, needs to apply for the registration of to the tax bureau, after succeeding in registration, the tax bureau issues group members card to it Book shows that the enterprise joined the group.
In addition, the terms "and/or", only a kind of incidence relation for describing affiliated partner, indicates may exist Three kinds of relationships, for example, A and/or B, can indicate: individualism A exists simultaneously A and B, these three situations of individualism B.Separately Outside, character "/" herein typicallys represent the relationship that forward-backward correlation object is a kind of "or" in the case where not illustrating.
Conventionally, as the decentralization of block chain technology, various advantages, the area such as can not distort and can not forge Block chain technology is gradually applied to the storage of electronic invoice data.But in current block chain storage scheme, electronic invoice number It is stored according to by each block chain node in block chain network, and for each block chain node, each block chain link Point can check whole electronic invoice datas on block chain, be as shown in Figure 1 the Transaction Information of natural gas transaction, transaction letter All information of breath all store in clear text manner, then block chain node can then check all information, it is such as natural The price of gas and transaction amount etc. so that the privacy of electronic invoice data cannot be guaranteed, and participate in block chain and deposit The different participant of storage is often desirable to carry out the data of oneself storage certain secrecy, however existing block chain storage scheme It is unable to satisfy the demand of this respect.
In view of above-mentioned problem, when due to the storage of existing electronic invoice, be store in clear text manner, then It is not viewed easily to electronic invoice content, then certainly will need to store after encrypting electronic invoice, but It is that general memory node is still able to know that electronic invoice is sent storage by who in storage, then being stored for request The identity of the user that makes out an invoice of electronic invoice is still clearly, in consideration of it, the embodiment of the invention provides a kind of electronic invoices to deposit Method for storing, this method also introduce the scheme of group ranking, due to group ranking on the basis of carrying out encryption storage to electronic invoice Can only prove to make out an invoice the group members identity of user, and memory node can not be directly obtained the true identity for the user that makes out an invoice, thus The effect for hiding the true identity for the user that makes out an invoice can be played, and since electronic invoice is already encrypted, thus block chain node Also the content of electronic invoice can not be got, so that electronic invoice stores enough privacies, promotes the peace of electronic invoice storage Quan Xing.
After having introduced the design philosophy of the embodiment of the present invention, the technical solution of the embodiment of the present invention can be fitted below Application scenarios do some simple introductions, it should be noted that application scenarios introduced below are merely to illustrate of the invention real Apply example and non-limiting.In the specific implementation process, skill provided in an embodiment of the present invention can be neatly applied according to actual needs Art scheme.
It is shown in Figure 2, it is a kind of schematic diagram of a scenario that inventive embodiments can be applicable in, includes credible machine in the scene Structure 101, it is N number of make out an invoice end 102 and M block chain node 103, M, N be positive integer, the value embodiment of the present invention of M, N are not It is limited.
Trust authority 101 may include one or more processors 1011, memory 1012, end 102 interacts with making out an invoice I/O interface 1013 and the I/O interface 1014 etc. interacted with block chain node 103.Wherein, trust authority 101 for example can be With authoritative government organs, such as the tax bureau etc..For trust authority 101, refer to trust authority in the embodiment of the present invention Equipment, such as working equipment operated by staff etc. in the server or trust authority of trust authority.
End 102 of making out an invoice may include one or more processors 1021, memory 1022, interact with trust authority 101 I/O interface 1023, the I/O interface 1024 interacted with block chain node 103 and display panel 1025 etc..Wherein, it makes out an invoice end 102 Memory 1022 in can store the program instruction of application of making out an invoice, when these program instructions are run by processor 1021, energy Enough that interface of making out an invoice is presented in display panel 1025, the user that makes out an invoice can then log in the account of itself in application of making out an invoice, with into Capable operation of making out an invoice.
Block chain node 103 may include that one or more processors 1031, memory 1032 and trust authority 101 are handed over Mutual I/O interface 1033 and the I/O interface 1034 etc. interacted with end 102 of making out an invoice.
It is stored with program instruction in the memory of above-mentioned each equipment, to reality when program instruction is executed by processor The function of existing above-mentioned each equipment.For example, in embodiments of the present invention, trust authority 101 is as having authoritative mechanism, then It can be used as the group administrator of group, can be opened to issue group members certificate in the user that makes out an invoice that trust authority 101 succeeds in registration Ticket user then can carry out group ranking, block chain node by the group members certificate of itself when end 102 of making out an invoice is made out an invoice 103, in the electronic invoice storage request for receiving the user that makes out an invoice, can verify group ranking, to verify the group for the user that makes out an invoice Member identities, and when the group members identity for verifying the user that makes out an invoice passes through, just the electronic invoice of decryption is stored.
Trust authority 101, make out an invoice end 102 and block chain node 103 between can be by one or more network 104 It is communicatively coupled.The network 104 can be cable network, be also possible to wireless network, such as wireless network can be movement Cellular network, or can be Wireless Fidelity (WIreless-Fidelity, WIFI) network, it can also be that other may certainly Network, the embodiment of the present invention is without limitation.
Certainly, it method provided in an embodiment of the present invention and is not exclusively in application scenarios shown in Fig. 2, can be also used for it It can also increase in his possible application scenarios, such as scene shown in Fig. 2 by ticket user by ticket end, the embodiment of the present invention is simultaneously It is not limited.Function achieved by each equipment for application scenarios shown in Fig. 2 will be in subsequent embodiment of the method In be described together, herein first be not described in detail excessively.
In the embodiment of the present invention, before the user that makes out an invoice makes out an invoice, it is necessary first to obtain the ability made out an invoice, be made out an invoice Ability and the storage made out an invoice require to be registered in trust authority, such as tax bureau, that is to say, that the user that makes out an invoice needs first The group members that become the group of trust authority management, therefore, before introducing electronic invoice storage method, it is necessary first to can Letter mechanism issues group members certificate and is introduced to the process for the user that makes out an invoice, and refers to Fig. 3, issues group members card for trust authority Book gives the flow diagram for the user that makes out an invoice.
Step 301: trust authority creates group.
In the embodiment of the present invention, group is created by trust authority, such as to the tax bureau in Mr. Yu city, for managing this The enterprise of city or the tax related work of trade company, then the tax bureau can then create a group so that the intragroup enterprise or The electronic invoice that person trade company issues can be stored on corresponding block chain.Wherein, actually can be credible for group is created When mechanism is set up or when trust authority is linked into the block chain network for storing electronic invoice, due to block chain network In generally will not provide storage service for all users that make out an invoice, that is, need the identity to the user that makes out an invoice to have certain limitation, such as Block chain network only provides storage service for the group members in the group of trust authority creation.
Specifically, the process of trust authority creation group, is substantially to generate group administrator public key and group's administrator's private The process of key, wherein group administrator public key can disclose with all group members and block chain node, group administrator private key is then Trust authority is held, group administrator public key and group administrator the private key needs when the user that makes out an invoice makes out an invoice request storage electronic invoice It uses, will be related to one by one in subsequent description, therefore be not described in detail excessively first herein.The generation of group administrator's private key and public key It can be obtained by Encryption Algorithm, Encryption Algorithm for example can be RSA cryptographic algorithms or probabilistic polynomial time (Polynomial time) algorithm etc., it is, of course, also possible to be other possible Encryption Algorithm, the embodiment of the present invention does not do this Limitation.
Step 302: the user that makes out an invoice submits registration request to trust authority.
In the embodiment of the present invention, the user that makes out an invoice is generally enterprise or trade company, at the beginning of its establishment, requires in credible machine Structure is registered, such as needs to be registered in the tax bureau, then the user that makes out an invoice can submit registration request, registration to trust authority Request can carry the identity information of the user that makes out an invoice, such as the information such as enterprise's number for the user that makes out an invoice, correspondingly, trust authority is then The available registration request to user's submission of making out an invoice.
In practical applications, the registration request that the user that makes out an invoice submits can be to be submitted by line under type, such as enterprise The hall of handling of staff to trust authority register, enterprise staff submit register needed for after data, By the modes such as scanning or trust authority staff input, the equipment of trust authority can get the identity letter of the enterprise Breath.Alternatively, the user that makes out an invoice can also submit registration request by line upper type, such as can be submitted by the website of trust authority Registration request also can upload together the data needed for registration, when submitting registration request in this way, the equipment of trust authority connects After receiving the registration request on line, then the identity information of the available user that obtains making out an invoice.
Step 303: whether the identity information that trust authority verifies the user that makes out an invoice passes through.
After the identity information that trust authority gets the user that makes out an invoice, the identity information for verifying the user that makes out an invoice is generally required Whether satisfaction registration requirement, specific requirement then can be depending on the policy of trust authority.
Be in the verification result of step 303 it is no, i.e., the user that makes out an invoice identity information verifying not by when, trust authority can To return to registration failure message to the user that makes out an invoice, and registration failure reason, such as identity information are carried in registration failure message The uneven congruent reason of wrong or identity information.
Step 304: when the verification result of step 303 is to be, group's administrator's private key based on trust authority is to use of making out an invoice The identity at family is encrypted to obtain the group members private key for the user that makes out an invoice.
In the embodiment of the present invention, group administrator of the trust authority as group, in that case it can be decided that request the user that makes out an invoice of registration The group can be added, to become the group members of the group, the factor of decision then can be above-mentioned to subscriber identity information of making out an invoice Verifying.Therefore, when the identity information for the user that makes out an invoice is verified, trust authority can then determine that the user that makes out an invoice can be added Group becomes group members, and then trust authority can be the make out an invoice corresponding group members private key of user's generation and group members certificate.
Specifically, trust authority can be managed by the group that itself holds when generating the group members private key for the user that makes out an invoice Member's private key encrypts the identity for the user that makes out an invoice, with the group members private key for the user that obtains making out an invoice.Wherein, trust authority is raw It can be encrypted using symmetric encipherment algorithm at group members private key, in this way, the group administrator only held by trust authority Private key could decrypt group members private key to obtain the identity for the user that makes out an invoice, thus learn the specific identity for the user that makes out an invoice, this Sample can then be decrypted to obtain the identity for the user that makes out an invoice by dependable structure when dispute occurs for the storage of electronic invoice, from And determine the true identity that the user that makes out an invoice of dispute occurs.
Wherein, the identity of user of making out an invoice for example can be the accession designation number etc. of enterprise or trade company.
It, then can be based on the group members private key of generation after trust authority generates group members private key in the embodiment of the present invention Generate the group members certificate for the user that makes out an invoice.Wherein, may include in group members certificate group administrator's public key, the user that makes out an invoice group at The signature of member's private key and trust authority, it is, of course, also possible to include other possible information, such as issuing organization, the card of certificate The information such as book validity period and certificate holder, it is without limitation in the embodiment of the present invention.
The signature of trust authority is that the trust authority is signed and issued, and can pass through credible machine for characterizing the group members certificate Whether the signature verification group members certificate content of structure is tampered.Specifically, the signature of trust authority is generally by credible machine What the group administrator private key of structure encrypted the cryptographic Hash of certificate content, make out an invoice user obtain group members certificate it Afterwards, signature can be decrypted by group's administrator's public key, obtains the cryptographic Hash of certificate content, then voluntarily certificate is carried Content carries out Hash calculation, obtains again with cryptographic Hash, then two cryptographic Hash are compared, if two cryptographic Hash are consistent, Show that group members certificate content is not tampered with, certificate is legal;Otherwise, if two cryptographic Hash are inconsistent, show group members Certificate content has been tampered, and certificate is illegal.
In specific application, trust authority, which generates group members private key and the process of group members certificate, can be packaged into interaction Formula agreement executes the agreement then and can produce the group members private key and group members certificate of group members, and crowd administrator is made to obtain group The private cipher key of member.
Step 305: group members certificate is sent to the user that makes out an invoice by trust authority.
In the embodiment of the present invention, after trust authority obtains group members certificate, then it can will characterize and make out an invoice user's The group members certificate of group members identity is sent to the user that makes out an invoice, wherein the group members that the user that makes out an invoice is carried in group members certificate are private Key, in this way, can then carry out the storage of electronic invoice based on group members certificate after the user that makes out an invoice makes out an invoice.
Specifically, group members certificate can be uploaded to the background server of itself by trust authority, the user that makes out an invoice passes through certainly Oneself account logs in the website of trust authority, then can download itself corresponding group members certificate;Alternatively, trust authority can incite somebody to action Group members certificate is sent to the user that makes out an invoice by mail.
In the following, electronic invoice storing process will be introduced.Fig. 4 is referred to, is electronics provided in an embodiment of the present invention The process of the flow diagram of invoice storage method, this method is described as follows.
Step 401: the electronic invoice that storage is treated at end of making out an invoice is encrypted.
In the embodiment of the present invention, the user that makes out an invoice generally refers to enterprise or the businessman of vending articles or service, is selling After commodity or service, purchaser can require seller to issue invoice, and seller here is the user that makes out an invoice, accordingly , purchaser is then by ticket user.In general, trading in purchaser and seller, and purchaser provides and issues invoice After relevant information, such as after the information such as invoice new line and duty paragraph, the information that end can then be provided based on purchaser of making out an invoice is raw The electronic invoice of generation can be stored by block chain at electronic invoice for the reliability for guaranteeing electronic invoice storage.
Wherein, in order to promoted the storage of each block chain node electronic invoice privacy, in request block chain node storage Before electronic invoice, the electronic invoice that can treat storage is encrypted.Because electronic invoice is generally required to be supplied to and be used by ticket Family, thus by ticket user be required to that encrypted electronic invoice is decrypted, to obtain the clear content of electronic invoice, because Key used in the encryption of this electronic invoice can be make out an invoice user and the first key by ticket user agreement, in this way, making out an invoice It holds after being encrypted using first key to electronic invoice, second arranged by the user that then can use and make out an invoice by ticket end of ticket user Electronic invoice after key pair encryption is decrypted.
Electronic invoice is encrypted specifically, end of making out an invoice can use symmetric encipherment algorithm, i.e., above-mentioned first key It is identical with the second key.
Electronic invoice is encrypted specifically, end of making out an invoice can use rivest, shamir, adelman, i.e., above-mentioned first is close Key and the second key can not be identical, such as first key can be the private key of user of making out an invoice, then the second key can be to make out an invoice The public key of user;Alternatively, for promoted encryption reliability, first key can be make out an invoice user private key for user with by ticket user Client public key, then the second key can be make out an invoice user client public key and private key for user by ticket user.It needs to state It is that private key and public key here can be the key by ticket user or the user itself that makes out an invoice, is provided with above-mentioned trust authority Group members private key and group's administrator's public key have no direct connection.
Step 402: end of making out an invoice carries out group ranking to encrypted electronic invoice using the group members certificate for the user that makes out an invoice.
In the embodiment of the present invention, group members certificate be trust authority verifying make out an invoice user identity pass through after, confirmation is made out an invoice User is presented to the user that makes out an invoice after group can be added, and can characterize the group members identity for the user that makes out an invoice, and therefore, end of making out an invoice can be with Group ranking is carried out using group members certificate, to show that the electronic invoice is that group members request storage in the group.
Specifically, end of making out an invoice can use the group members private key carried in group members certificate, to encrypted electronic invoice Carry out group ranking.Specifically, end of making out an invoice utilizes group members private key, using rivest, shamir, adelman to encrypted electronic invoice Cryptographic Hash encrypted, to obtain group ranking.
Wherein, may be in addition to electronic invoice to be stored when being stored, it can also extra storage and electronic invoice phase The information of pass, then can will need the information that stores be for an entirety, after being encrypted to this entirety, recycle group at Member's certificate carries out group ranking.
Step 403: end of making out an invoice sends electronic invoice storage request to block chain node.
Wherein, electronic invoice storage request is for requesting block chain node to store encrypted electronic invoice, electronic invoice Encrypted electronic invoice and group ranking are carried in storage request.
It may include multiple nodes in block chain network, wherein the function of different nodes can phase in the embodiment of the present invention Together, it can also be different.In general, the required function of executing of node in block chain network may include authentication function and deposit Function is stored up, it is, of course, also possible to include other possible functions, the embodiment of the present invention is without limitation.So, block chain network In each node can be identical function node, i.e., each node be required to realize verifying and storage function, then opening Ticket end, which is generally required, is sent to all block chain nodes for electronic invoice storage request;Alternatively, can be used for part of nodes Realize authentication function, these nodes can be described as verifying node, and part of nodes is used to execute store function, these nodes can be described as Memory node, then electronic invoice can be stored request by end of making out an invoice is sent to all verifying node progress group members identity Verifying, it is of course also possible to be sent to part of verifying node, such as a verifying node, the verifying node verification group members After identity passes through, encrypted electronic invoice is just sent to all memory nodes and is stored.
Step 404: block chain node determines whether the group members identity for verifying the user that makes out an invoice passes through.
In the embodiment of the present invention, by taking each block chain node is the node of identical function as an example, and due to each block chain Process performed by node is identical, therefore is only described by taking one of block chain node as an example below.
Block chain node receive electronic invoice storage request after, then need to verify send the request the user that makes out an invoice be No is group members, that is, verifies the group members identity for the user that makes out an invoice, when the group members authentication for the user that only makes out an invoice passes through, It just will do it the storage of electronic invoice.
Wherein, block chain node can verify the group members identity for the user that makes out an invoice by group ranking.Specifically, group signs Name is to be obtained by group members private key encryption, and group members private key is obtained by group's administrator's private key encryption, thus group Signature is substantially also relevant to group's administrator's private key, thus is also available with group administrator's public key and tests group ranking Card.Because group administrator public key can be disclosed, thus the available group's management for obtaining trust authority offer of block chain node Member's public key, and then group ranking is verified by group's administrator's public key.
Specifically, block chain node can be decrypted group ranking by group's administrator's public key, to obtain electronics hair Ticket content, and the electronic invoice content that decryption obtains is compared with encrypted electronic invoice content;It is obtained when decryption When electronic invoice content is consistent with encrypted electronic invoice content, then show that group ranking is correctly, that is, to verify the user that makes out an invoice Group members identity pass through, that is, allow the user that makes out an invoice to store electronic invoice on block chain, while being tested by group ranking Card, additionally it is possible to prevent unauthorized person from distorting to the content of electronic invoice storage request;And if decrypting the electronics hair obtained Ticket content is consistent with encrypted electronic invoice content, then shows that the group members identity for verifying the user that makes out an invoice does not pass through, occur this One kind of kind situation is the possible reason is the content of electronic invoice storage request is tampered, then then cannot be by the electronic invoice It is stored on block chain, and block chain node can also request trust authority to carry out dispute processing, so that it is determined that concrete reason.
In practical application, to avoid electronic invoice content from occupying multibyte being obtained by Hash operation The cryptographic Hash of encrypted electronic invoice content, then cryptographic Hash is encrypted by group members private key, thus block chain node What is obtained after group ranking is decrypted by group's administrator's public key then can be the cryptographic Hash of encrypted electronic invoice content, Block chain node carries out Hash operation by the encrypted electronic invoice carried in electronic invoice storage request again, obtains again With cryptographic Hash, then two cryptographic Hash are compared, when two cryptographic Hash are consistent, verifying make out an invoice user group members identity it is logical It crosses, otherwise, if two cryptographic Hash are inconsistent, then it represents that the group members identity for verifying the user that makes out an invoice does not pass through.
In the embodiment of the present invention, although block chain node can be decrypted group ranking by group's administrator's public key, with The correctness of group ranking is verified, but not can determine that signing the user that makes out an invoice of the group ranking is specifically whom, it is further to increase The privacy of electronic invoice storage.
Step 405: encrypted electronic invoice is stored in block chain node by block chain node.
In the embodiment of the present invention, when block chain node verification make out an invoice the identity of user pass through after, then can will be encrypted Electronic invoice is stored in block chain node.
Specifically, when the function of block chain node each in block chain network is all the same, each block chain node verification Make out an invoice user identity pass through after, then encrypted electronic invoice is stored in memory;Alternatively, working as block chain network When middle verifying node and memory node are different nodes, after then verifying node verification is made out an invoice, the identity of user passes through, then may be used Encrypted electronic invoice to be stored in memory node.
During the present invention is implemented, in addition to storing encrypted electronic invoice, electronic invoice can also be stored in request and be taken The other information of band is stored together, such as group ranking etc..
In the embodiment of the present invention, after electronic invoice is stored into block chain, it can be requested to block chain node by ticket user It obtains encrypted electronic invoice, and after the electronic invoice after the key pair encryption by arranging is decrypted, then can obtain The cleartext information of electronic invoice.
In conclusion, when needing to store electronic invoice, electronic invoice can be encrypted in the embodiment of the present invention, then Group ranking is carried out to the electronic invoice of encryption using the group members certificate for the user that makes out an invoice, then sends electronic invoice to block chain node Storage request, in this way, block chain node can verify the group members identity of the user that makes out an invoice by verifying group ranking, but block Chain node can not get the real user identity for the user that makes out an invoice, and since electronic invoice is already encrypted, thus block chain link Point can not also get the content of electronic invoice, so that electronic invoice stores enough privacies, promote electronic invoice storage Safety achievees the effect that protect trade secret.
Fig. 5 is referred to, based on the same inventive concept, the embodiment of the invention also provides a kind of electronic invoice storage devices 50, which for example can be end shown in Fig. 2 of making out an invoice, which includes:
DEU data encryption unit 501, the electronic invoice for treating storage are encrypted;
Signature unit 502, for the group members certificate using the listed user that makes out an invoice to encrypted electronic invoice into Row group ranking, group members certificate is presented to the user that makes out an invoice after passing through for the identity that trust authority verifies the user that makes out an invoice, and is used for Characterize the group members identity for the user that makes out an invoice;
Request unit 503 is stored, for sending electronic invoice storage request, electronic invoice storage request to block chain node Encrypted electronic invoice and group ranking are carried, so that block chain node verifies the group members for the user that makes out an invoice based on group ranking After identity passes through, encrypted electronic invoice is added to block chain and is stored.
DEU data encryption unit 501, is specifically used for:
It makes out an invoice to hold and electronic invoice is encrypted with the first key arranged by ticket user using user is made out an invoice, so that by It, can be based on the second key pair electronics hair arranged by ticket user with the user that makes out an invoice after ticket user obtains encrypted electronic invoice Ticket is decrypted;
Wherein, first key is identical as the second key;Alternatively, first key is that the make out an invoice private key for user of user is used with by ticket The client public key at family, the second key be make out an invoice user client public key and private key for user by ticket user.
Signature unit 502, is specifically used for:
End make out an invoice using the group members private key carried in group members certificate, group ranking is carried out to encrypted electronic invoice, Group members private key is that trust authority encrypt to the user identifier for the user that makes out an invoice using the group administrator private key of trust authority It arrives.
The device can be used for executing method shown in Fig. 3 or embodiment shown in Fig. 4, therefore, for the device The function etc. that each functional module can be realized can refer to the description of Fig. 3 or embodiment shown in Fig. 4, few to be described in detail.
Fig. 6 is referred to, based on the same inventive concept, the embodiment of the invention also provides a kind of electronic invoice storage devices 60, which for example can be block chain node shown in Fig. 2, which includes:
Receiving unit 601, the electronic invoice storage request sent for receiving end of making out an invoice, electronic invoice storage request carry Encrypted electronic invoice, and hold the group members certificate of the user that makes out an invoice of login to encrypted electronic invoice using making out an invoice The group ranking signed, group members certificate are presented to use of making out an invoice after passing through for the identity that trust authority verifies the user that makes out an invoice Family, and the group members identity for characterizing the user that makes out an invoice;
Identity authenticating unit 602, for verifying the group members identity for the user that makes out an invoice by group ranking;
Execution unit 603 deposits encrypted electronic invoice after passing through in the group members identity for verifying the user that makes out an invoice Storage is in block chain node.
Identity authenticating unit 602, is specifically used for:
Group ranking is decrypted in group's administrator's public key that block chain node is provided using trust authority;
The electronic invoice content that decryption obtains is compared with encrypted electronic invoice content;
When the electronic invoice content that decryption obtains is consistent with encrypted electronic invoice content, the group for the user that makes out an invoice is verified Member identities pass through, and the group members identity for otherwise verifying the user that makes out an invoice does not pass through.
The device can be used for executing method shown in Fig. 3 or embodiment shown in Fig. 4, therefore, for the device The function etc. that each functional module can be realized can refer to the description of Fig. 3 or embodiment shown in Fig. 4, few to be described in detail.
Fig. 7 is referred to, based on the same inventive concept, the embodiment of the invention also provides a kind of electronic invoice storage devices 70, which for example can be trust authority shown in Fig. 2, which includes:
Acquiring unit 701, for obtaining the registration request for the user that makes out an invoice, registration request carries the identity letter for the user that makes out an invoice Breath;
Private key generation unit 702, it is split based on group administrator private key after the identity information for verifying the user that makes out an invoice passes through The identity of ticket user is encrypted to obtain the group members private key for the user that makes out an invoice;
Certificate authority unit 703 is sent to the user that makes out an invoice in group members certificate for carrying group members private key, so that The user that must make out an invoice can carry out the storage of electronic invoice based on group members certificate, and group members certificate is used to characterize the group for the user that makes out an invoice Member identities.
Device further includes decryption unit 704, is used for:
Trust authority is decrypted group ranking using group's administrator's private key, with the identity for the user that obtains making out an invoice.
The device can be used for executing method shown in Fig. 3 or embodiment shown in Fig. 4, therefore, for the device The function etc. that each functional module can be realized can refer to the description of Fig. 3 or embodiment shown in Fig. 4, few to be described in detail.Wherein, it solves Although close unit 704 is shown together in Fig. 7, it is understood that, decryption unit 704 is not essential functional unit, Therefore shown in dotted line in Fig. 7.
Fig. 8 is referred to, same technical concept is based on, it, can be with the embodiment of the invention also provides a kind of computer equipment 80 Including memory 801 and processor 802.
The memory 801, the computer program executed for storage processor 802.Memory 801 can mainly include depositing Store up program area and storage data area, wherein storing program area can application program needed for storage program area, at least one function Deng;Storage data area, which can be stored, uses created data etc. according to computer equipment.Processor 802 can be in one Central Processing Unit (central processing unit, CPU), or be digital processing element etc..In the embodiment of the present invention The specific connection medium between above-mentioned memory 801 and processor 802 is not limited.The embodiment of the present invention is in fig. 8 with memory It is connected between 801 and processor 802 by bus 803, bus 803 is indicated in fig. 8 with thick line, the connection between other components Mode is only to be schematically illustrated, does not regard it as and be limited.The bus 803 can be divided into address bus, data/address bus, control Bus processed etc..Only to be indicated with a thick line in Fig. 8, it is not intended that an only bus or a type of convenient for indicating Bus.
Memory 801 can be volatile memory (volatile memory), such as random access memory (random-access memory, RAM);Memory 801 is also possible to nonvolatile memory (non-volatile Memory), such as read-only memory, flash memory (flash memory), hard disk (hard disk drive, HDD) or solid State hard disk (solid-state drive, SSD) or memory 801 can be used for carrying or storing have instruction or data The desired program code of structure type and can by any other medium of computer access, but not limited to this.Memory 801 It can be the combination of above-mentioned memory.
Processor 802 executes when for calling the computer program stored in the memory 801 such as institute in Fig. 3~Fig. 4 Method performed by each equipment in the embodiment shown.
In some possible embodiments, the various aspects of method provided by the invention are also implemented as a kind of program The form of product comprising program code, when described program product is run on a computing device, said program code is used for Execute the computer equipment in the method for illustrative embodiments various according to the present invention of this specification foregoing description Step, for example, the computer equipment can execute method performed by each equipment in the embodiment as shown in Fig. 3~Fig. 4.
The embodiment of the invention also provides a kind of computer storage medium, it is stored as execution needed for executing above-mentioned processor Computer executable instructions, it includes the programs for execution needed for executing above-mentioned processor.
In some possible embodiments, the various aspects of method provided by the invention are also implemented as a kind of program The form of product comprising program code, when described program product is run on a computing device, said program code is used for Execute the computer equipment in the method for illustrative embodiments various according to the present invention of this specification foregoing description Step, for example, the computer equipment can execute method performed by each equipment in the embodiment as shown in Fig. 3~Fig. 4.
Described program product can be using any combination of one or more readable mediums.Readable medium can be readable letter Number medium or readable storage medium storing program for executing.Readable storage medium storing program for executing for example may be-but not limited to-electricity, magnetic, optical, electromagnetic, red The system of outside line or semiconductor, device or device, or any above combination.The more specific example of readable storage medium storing program for executing (non exhaustive list) includes: the electrical connection with one or more conducting wires, portable disc, hard disk, random access memory (RAM), read-only memory (ROM), erasable programmable read only memory (EPROM or flash memory), optical fiber, portable compact disc Read memory (CD-ROM), light storage device, magnetic memory device or above-mentioned any appropriate combination.
The program product for the above method of embodiments of the present invention can use the read-only storage of portable compact disc Device (CD-ROM) and including program code, and can run on the computing device.However, program product of the invention is not limited to This, in this document, readable storage medium storing program for executing can be any tangible medium for including or store program, which can be commanded Execution system, device or device use or in connection.
Although preferred embodiments of the present invention have been described, it is created once a person skilled in the art knows basic Property concept, then additional changes and modifications can be made to these embodiments.So it includes excellent that the following claims are intended to be interpreted as It selects embodiment and falls into all change and modification of the scope of the invention.
Obviously, various changes and modifications can be made to the invention without departing from essence of the invention by those skilled in the art Mind and range.In this way, if these modifications and changes of the present invention belongs to the range of the claims in the present invention and its equivalent technologies Within, then the present invention is also intended to include these modifications and variations.

Claims (10)

1. a kind of electronic invoice storage method, which is characterized in that the described method includes:
It makes out an invoice and the electronic invoice for treating storage is held to be encrypted;
It makes out an invoice the group members certificate of the user that makes out an invoice of login is held to send out the encrypted electronics described in utilizing in the end of making out an invoice Ticket carries out group ranking, and the group members certificate is presented to described open after passing through for the identity for the user that makes out an invoice described in trust authority verifying Ticket user's, and the group members identity for characterizing the user that makes out an invoice;
The end of making out an invoice sends electronic invoice storage request to block chain node, after the electronic invoice storage request carries encryption The electronic invoice and the group ranking so that the block chain node is based on making out an invoice use described in group ranking verifying After the group members identity at family passes through, the encrypted electronic invoice is added to block chain and is stored.
2. the method as described in claim 1, which is characterized in that the electronic invoice that storage is treated at the end of making out an invoice is encrypted, Include:
Described make out an invoice holds the user that makes out an invoice described in encrypt with the first key arranged by ticket user to the electronic invoice, So that after the encrypted electronic invoice by ticket user acquisition user can be made out an invoice about with described by ticket user based on described Electronic invoice described in the second fixed key pair is decrypted;
Wherein, the first key is identical as second key;Alternatively, the first key is the user of the user that makes out an invoice Private key and the client public key by ticket user, second key are that the client public key of the user that makes out an invoice is used with described by ticket The private key for user at family.
3. the method as described in claim 1, which is characterized in that the end of making out an invoice utilize described in make out an invoice and hold the use of making out an invoice of login The group members certificate at family carries out group ranking to the encrypted electronic invoice, comprising:
The end of making out an invoice carries out the encrypted electronic invoice using the group members private key carried in the group members certificate Group ranking, the group members private key is for the trust authority using the group administrator private key of the trust authority to the use of making out an invoice What the user identifier at family was encrypted.
4. a kind of electronic invoice storage method, which is characterized in that the described method includes:
Block chain node receives the electronic invoice storage request that end of making out an invoice is sent, after the electronic invoice storage request carries encryption Electronic invoice, and make out an invoice described in utilizing and the group members certificate of the user that makes out an invoice of login held to send out the encrypted electronics The group ranking that ticket is signed, the group members certificate are issued after passing through for the identity for the user that makes out an invoice described in trust authority verifying Issue the user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice;
The group members identity that the block chain node passes through the user that makes out an invoice described in group ranking verifying;
The block chain node make out an invoice described in the verifying user group members identity pass through after, by the encrypted electronic invoice It is stored in the block chain node.
5. method as claimed in claim 4, which is characterized in that the block chain node described in group ranking verifying by opening The group members identity of ticket user, comprising:
The group ranking is decrypted in the group administrator public key that the block chain node is provided using the trust authority;
The electronic invoice content that decryption obtains is compared with the encrypted electronic invoice content;
When the electronic invoice content that decryption obtains is consistent with the encrypted electronic invoice content, make out an invoice user described in verifying Group members identity pass through, the group members identity of user of otherwise making out an invoice described in verifying does not pass through.
6. a kind of electronic invoice storage method, which is characterized in that the described method includes:
Trust authority obtains the registration request for the user that makes out an invoice, the identity information for the user that makes out an invoice described in the registration request carrying;
Make out an invoice described in the trust authority verifying user identity information pass through after, the group administrator based on the trust authority is private Key encrypts the identity of the user that makes out an invoice to obtain the group members private key of the user that makes out an invoice;
The group members private key is carried and is sent to the user that makes out an invoice in group members certificate by the trust authority, so that institute The storage of electronic invoice can be carried out based on the group members certificate by stating the user that makes out an invoice, and the group members certificate is described for characterizing It makes out an invoice the group members identity of user.
7. method as claimed in claim 6, which is characterized in that the method also includes:
The trust authority is decrypted the group ranking using the group administrator private key, to obtain described making out an invoice user's Identity.
8. a kind of electronic invoice storage device, which is characterized in that described device includes:
DEU data encryption unit, the electronic invoice for treating storage are encrypted;
Signature unit carries out group to the encrypted electronic invoice for the group members certificate using the listed user that makes out an invoice Signature, the group members certificate are presented to the user that makes out an invoice after passing through for the identity for the user that makes out an invoice described in trust authority verifying , and the group members identity for characterizing the user that makes out an invoice;
Request unit is stored, for sending electronic invoice storage request to block chain node, the electronic invoice storage request is taken With the encrypted electronic invoice and the group ranking, so that the block chain node, which is based on the group ranking, verifies institute State the user that makes out an invoice group members identity pass through after, the encrypted electronic invoice is added to block chain and is stored.
9. a kind of electronic invoice storage device, which is characterized in that described device includes:
Receiving unit stores request for receiving the electronic invoice that end is sent of making out an invoice, and the electronic invoice storage request, which carries, to be added Electronic invoice after close, and make out an invoice described in utilization and hold the group members certificate of the user that makes out an invoice of login to the encrypted electricity The group ranking that sub- invoice is signed, the group members certificate pass through for the identity for the user that makes out an invoice described in trust authority verifying It is presented to the user that makes out an invoice, and the group members identity for characterizing the user that makes out an invoice afterwards;
Identity authenticating unit, for the group members identity by the user that makes out an invoice described in group ranking verifying;
Execution unit, after the group members identity for the user that makes out an invoice described in the verifying passes through, by the encrypted electronic invoice It is stored in the block chain node.
10. a kind of electronic invoice storage device, which is characterized in that described device includes:
Acquiring unit, for obtaining the registration request for the user that makes out an invoice, the identity letter for the user that makes out an invoice described in the registration request carrying Breath;
Private key generation unit, after the identity information for verifying the user that makes out an invoice passes through, based on group administrator private key to described The identity of user of making out an invoice is encrypted to obtain the group members private key of the user that makes out an invoice;
Certificate authority unit is sent to the user that makes out an invoice for carrying the group members private key in group members certificate, with The user that makes out an invoice is enabled to carry out the storage of electronic invoice based on the group members certificate, the group members certificate is used for table It makes out an invoice described in sign the group members identity of user.
CN201910341695.2A 2019-04-26 2019-04-26 Electronic invoice storage method and device Active CN110189184B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910341695.2A CN110189184B (en) 2019-04-26 2019-04-26 Electronic invoice storage method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910341695.2A CN110189184B (en) 2019-04-26 2019-04-26 Electronic invoice storage method and device

Publications (2)

Publication Number Publication Date
CN110189184A true CN110189184A (en) 2019-08-30
CN110189184B CN110189184B (en) 2024-04-26

Family

ID=67715070

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910341695.2A Active CN110189184B (en) 2019-04-26 2019-04-26 Electronic invoice storage method and device

Country Status (1)

Country Link
CN (1) CN110189184B (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110784488A (en) * 2019-11-07 2020-02-11 深圳职业技术学院 Controllable anonymous block chain system
CN110909383A (en) * 2019-11-15 2020-03-24 深圳市网心科技有限公司 Electronic invoice management method and device, electronic equipment and storage medium
CN111062059A (en) * 2019-11-06 2020-04-24 支付宝(杭州)信息技术有限公司 Method and device for service processing
CN111178894A (en) * 2020-04-10 2020-05-19 支付宝(杭州)信息技术有限公司 Asset type registration and transaction record verification method and system
CN111464315A (en) * 2020-04-03 2020-07-28 腾讯科技(深圳)有限公司 Digital signature processing method, device, computer equipment and storage medium
CN117726385A (en) * 2024-02-07 2024-03-19 中科迅联智慧网络科技(北京)有限公司 Encryption algorithm-based electronic ticket issuing method, system, equipment and medium

Citations (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004318309A (en) * 2003-04-14 2004-11-11 Nec Corp Bill issuing device and method, bill receiving device and method, bill system and processing method, and recording medium and program
CN101017562A (en) * 2006-11-28 2007-08-15 南京大学 Method for generating electronic invoice and interactively using based on communication network
US20080046310A1 (en) * 2004-05-19 2008-02-21 France Telecom Method and System for Generating a List Signature
EP2905739A1 (en) * 2014-02-05 2015-08-12 "E-JA" Sp. z o.o. Electronic bills management system and electronic bills management method
CN105635049A (en) * 2014-10-29 2016-06-01 航天信息股份有限公司 Anti-counterfeit tax control method and device based on client identifier password
CN106971323A (en) * 2017-03-20 2017-07-21 东港股份有限公司 The method for improving electronic invoice system security
CN107451874A (en) * 2017-07-27 2017-12-08 武汉天喻信息产业股份有限公司 Electronic invoice integrated conduct method and system based on block chain
CN107911216A (en) * 2017-10-26 2018-04-13 矩阵元技术(深圳)有限公司 A kind of block chain transaction method for secret protection and system
CN108650077A (en) * 2018-05-17 2018-10-12 深圳前海微众银行股份有限公司 Information transferring method, terminal, equipment based on block chain and readable storage medium storing program for executing
CN108737116A (en) * 2018-06-27 2018-11-02 重庆邮电大学 It is a kind of to vote protocol method based on d three Quantum Entangled States of dimension
CN108768988A (en) * 2018-05-17 2018-11-06 深圳前海微众银行股份有限公司 Block chain access control method, equipment and computer readable storage medium
CN108830600A (en) * 2018-06-19 2018-11-16 方欣科技有限公司 A kind of electronic invoice system and implementation method based on block chain
CN109034924A (en) * 2018-08-16 2018-12-18 腾讯科技(深圳)有限公司 Electronic bill generation method, device, storage medium and computer equipment
CN109325812A (en) * 2018-08-24 2019-02-12 深圳市智税链科技有限公司 About the data processing method of electronic bill, device, storage medium and equipment
CN109345194A (en) * 2018-09-12 2019-02-15 北京东港瑞宏科技有限公司 A kind of electronic bill flow system

Patent Citations (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004318309A (en) * 2003-04-14 2004-11-11 Nec Corp Bill issuing device and method, bill receiving device and method, bill system and processing method, and recording medium and program
US20080046310A1 (en) * 2004-05-19 2008-02-21 France Telecom Method and System for Generating a List Signature
CN101017562A (en) * 2006-11-28 2007-08-15 南京大学 Method for generating electronic invoice and interactively using based on communication network
EP2905739A1 (en) * 2014-02-05 2015-08-12 "E-JA" Sp. z o.o. Electronic bills management system and electronic bills management method
CN105635049A (en) * 2014-10-29 2016-06-01 航天信息股份有限公司 Anti-counterfeit tax control method and device based on client identifier password
CN106971323A (en) * 2017-03-20 2017-07-21 东港股份有限公司 The method for improving electronic invoice system security
CN107451874A (en) * 2017-07-27 2017-12-08 武汉天喻信息产业股份有限公司 Electronic invoice integrated conduct method and system based on block chain
CN107911216A (en) * 2017-10-26 2018-04-13 矩阵元技术(深圳)有限公司 A kind of block chain transaction method for secret protection and system
CN108650077A (en) * 2018-05-17 2018-10-12 深圳前海微众银行股份有限公司 Information transferring method, terminal, equipment based on block chain and readable storage medium storing program for executing
CN108768988A (en) * 2018-05-17 2018-11-06 深圳前海微众银行股份有限公司 Block chain access control method, equipment and computer readable storage medium
CN108830600A (en) * 2018-06-19 2018-11-16 方欣科技有限公司 A kind of electronic invoice system and implementation method based on block chain
CN108737116A (en) * 2018-06-27 2018-11-02 重庆邮电大学 It is a kind of to vote protocol method based on d three Quantum Entangled States of dimension
CN109034924A (en) * 2018-08-16 2018-12-18 腾讯科技(深圳)有限公司 Electronic bill generation method, device, storage medium and computer equipment
CN109325812A (en) * 2018-08-24 2019-02-12 深圳市智税链科技有限公司 About the data processing method of electronic bill, device, storage medium and equipment
CN109345194A (en) * 2018-09-12 2019-02-15 北京东港瑞宏科技有限公司 A kind of electronic bill flow system

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
杜海婷;: "一种基于证书群签名方案", 计算机安全, no. 01 *
莫兴德等: "《网络信息安全理论与技术》", 30 June 2012, 东北师范大学出版社, pages: 72 *

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111062059A (en) * 2019-11-06 2020-04-24 支付宝(杭州)信息技术有限公司 Method and device for service processing
CN111062059B (en) * 2019-11-06 2021-05-25 支付宝(杭州)信息技术有限公司 Method and device for service processing
CN110784488A (en) * 2019-11-07 2020-02-11 深圳职业技术学院 Controllable anonymous block chain system
CN110784488B (en) * 2019-11-07 2021-10-19 深圳职业技术学院 Controllable anonymous block chain system
CN110909383A (en) * 2019-11-15 2020-03-24 深圳市网心科技有限公司 Electronic invoice management method and device, electronic equipment and storage medium
CN111464315A (en) * 2020-04-03 2020-07-28 腾讯科技(深圳)有限公司 Digital signature processing method, device, computer equipment and storage medium
CN111464315B (en) * 2020-04-03 2021-06-15 腾讯科技(深圳)有限公司 Digital signature processing method, device, computer equipment and storage medium
CN111178894A (en) * 2020-04-10 2020-05-19 支付宝(杭州)信息技术有限公司 Asset type registration and transaction record verification method and system
CN111178894B (en) * 2020-04-10 2020-09-11 支付宝(杭州)信息技术有限公司 Asset type registration and transaction record verification method and system
WO2021204273A1 (en) * 2020-04-10 2021-10-14 支付宝(杭州)信息技术有限公司 Asset type registration and transaction record verification
CN117726385A (en) * 2024-02-07 2024-03-19 中科迅联智慧网络科技(北京)有限公司 Encryption algorithm-based electronic ticket issuing method, system, equipment and medium

Also Published As

Publication number Publication date
CN110189184B (en) 2024-04-26

Similar Documents

Publication Publication Date Title
US11190358B2 (en) Hash-based data verification system
CN106961336B (en) A kind of key components trustship method and system based on SM2 algorithm
US11949791B2 (en) Hash contract generation and verification system
CN113014392B (en) Block chain-based digital certificate management method, system, equipment and storage medium
US8843415B2 (en) Secure software service systems and methods
Adams et al. Understanding PKI: concepts, standards, and deployment considerations
CN110189184A (en) A kind of electronic invoice storage method and device
JP4625234B2 (en) User certificate / private key assignment in token-enabled public key infrastructure system
CN110874464A (en) Method and equipment for managing user identity authentication data
CN109687963A (en) Anti- quantum calculation alliance chain method of commerce and system based on public key pond
US20050132201A1 (en) Server-based digital signature
CN102769623B (en) Two-factor authentication method based on digital certificate and biological identification information
CA3048425A1 (en) System and method for an electronic identity brokerage
US9705681B2 (en) System and method for encryption
KR102460299B1 (en) Anonymous credential authentication system and method thereof
CN109981287A (en) A kind of code signature method and its storage medium
CN113364597A (en) Privacy information proving method and system based on block chain
CN106533681B (en) A kind of attribute method of proof and system that support section is shown
CN113545004A (en) Authentication system with reduced attack surface
JP2023540739A (en) A method for secure, traceable, and privacy-preserving digital currency transfers with anonymity revocation on a distributed ledger
WO2021019783A1 (en) Proprietor identity confirmation system, terminal, and proprietor identity confirmation method
Buccafurri et al. Implementing advanced electronic signature by public digital identity system (SPID)
Aravind et al. Combined Digital Signature with SHA Hashing Technique-based Secure System: An Application of Blockchain using IoT
More et al. Blockchain based Tamper Proof Certificates
Gunasinghe et al. Rahasnym: Protecting against linkability in the digital identity ecosystem

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 40008585

Country of ref document: HK

SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant