CN110717162B - Block chain multi-factor identity authentication method, system and storage medium - Google Patents
Block chain multi-factor identity authentication method, system and storage medium Download PDFInfo
- Publication number
- CN110717162B CN110717162B CN201910936641.0A CN201910936641A CN110717162B CN 110717162 B CN110717162 B CN 110717162B CN 201910936641 A CN201910936641 A CN 201910936641A CN 110717162 B CN110717162 B CN 110717162B
- Authority
- CN
- China
- Prior art keywords
- identity authentication
- signature
- transaction
- cloud platform
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 43
- 239000000463 material Substances 0.000 claims description 16
- 230000006870 function Effects 0.000 description 8
- 230000008520 organization Effects 0.000 description 5
- 230000008569 process Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 230000002159 abnormal effect Effects 0.000 description 3
- 238000012544 monitoring process Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention discloses a block chain multi-factor identity authentication method, a system and a storage medium, wherein an identity authentication cloud platform is established through a line-down consensus mode; then according to the user public key, user registration is carried out through any node in the identity authentication cloud platform; then when a transaction request is initiated, a first signature of a user private key on the transaction and a second signature of the identity authentication cloud platform on the transaction are obtained; finally, according to the first signature and the second signature, checking the validity of a private key of the user and the validity of the signature of the identity authentication cloud platform, determining an identity authentication result, and executing the transaction according to the identity authentication result; the invention requires that the transaction is regarded as effective transaction when the transaction has the signature of the user and the signature of the cloud platform at the same time, greatly improves the security of identity authentication, and can be widely applied to the technical field of block chains.
Description
Technical Field
The invention relates to the technical field of block chains, in particular to a block chain multi-factor identity authentication method, a block chain multi-factor identity authentication system and a storage medium.
Background
In the current block chain application, the identity authentication is performed by using an asymmetric encryption algorithm and a digital signature, and in this way, if and only if the user is the owner of the private key, the identity authentication can be passed, so that the security of the identity authentication is completely based on the security and confidentiality of the private key, and the method belongs to a single-factor identity authentication method.
In the traditional internet application, the identity authentication mode includes a user name and a password, face recognition, living body authentication and the like. The security of this approach is based on the security and trustworthiness of the third party authority that holds the key. In this way, the user does not deal with the problem of key saving, but the problem of abnormal service may be caused by data leakage or malicious attack on a third-party organization.
For the two identity authentication methods, the following disadvantages are respectively possessed:
1. in the asymmetric encryption scheme applied by the existing block chain, a private key generally needs to be stored by a user, so that the risk of leakage or loss is increased;
2. in the traditional identity authentication mode applied to the internet, the password of the user is completely stored in a third-party organization, the security of the password of the user depends on the security of the third-party organization, once the organization is maliciously broken or the organization subjectively wants to imitate the user, the situations of user information leakage, user identity misuse and the like are easily caused, and the security is not high.
Disclosure of Invention
In view of this, embodiments of the present invention provide a block chain multi-factor identity authentication method, system and storage medium with high security.
In a first aspect, an embodiment of the present invention provides a block chain multi-factor identity authentication method, including the following steps:
establishing an identity authentication cloud platform in a line-down consensus mode, wherein each node in the identity authentication cloud platform is responsible for participating in identity authentication;
according to the user public key, user registration is carried out through any node in the identity authentication cloud platform;
when a transaction request is initiated, a first signature of a user private key on a transaction and a second signature of an identity authentication cloud platform on the transaction are obtained;
according to the first signature and the second signature, checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform, and determining an identity authentication result;
and executing the transaction according to the identity authentication result.
Further, the step of establishing the identity authentication cloud platform by means of offline consensus comprises the following steps:
determining an identity authentication cloud platform alliance in an offline consensus manner;
writing the identity certificate of each node in the alliance into a created block of the block chain;
the nodes in the alliance comprise a supervisor node and a user node.
Further, the step of performing user registration through any node in the identity authentication cloud platform according to the user public key specifically includes:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
Further, the step of acquiring a first signature of a private key of a user on the transaction and a second signature of the identity authentication cloud platform on the transaction when the transaction request is initiated comprises the following steps:
performing a first signature on a transaction through a user private key;
and carrying out second signature on the transaction by calling an interface of the identity authentication platform.
In a second aspect, an embodiment of the present invention further provides a block chain multi-factor identity authentication system, including:
the platform establishing module is used for establishing an identity authentication cloud platform in a line-down consensus mode, and each node in the identity authentication cloud platform is responsible for participating in identity authentication;
the user registration module is used for registering the user through any node in the identity authentication cloud platform according to the user public key;
the transaction signature module is used for acquiring a first signature of a user private key on a transaction and a second signature of the identity authentication cloud platform on the transaction when a transaction request is initiated;
the identity authentication module is used for checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform according to the first signature and the second signature and determining an identity authentication result;
and the transaction execution module is used for executing the transaction according to the identity authentication result.
Further, the platform establishment module comprises:
the alliance determining unit is used for determining the identity authentication cloud platform alliance in an offline consensus mode;
the node creating unit is used for writing the identity certificate of each node in the alliance into an appearance creating block of the block chain;
the nodes in the alliance comprise a supervisor node and a user node.
Further, the user registration module specifically executes:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
Further, the transaction signature module includes:
the first signature unit is used for carrying out first signature on the transaction through a user private key;
and the second signature unit is used for carrying out second signature on the transaction by calling an interface of the identity authentication platform.
In a third aspect, an embodiment of the present invention further provides a block chain multi-factor identity authentication system, including:
at least one processor;
at least one memory for storing at least one program;
when the at least one program is executed by the at least one processor, the at least one processor is caused to implement the blockchain multi-factor identity authentication method.
In a fourth aspect, the present invention further provides a storage medium having stored therein processor-executable instructions, which when executed by a processor, are configured to perform any one of the block chain multi-factor identity authentication methods.
One or more of the above-described embodiments of the present invention have the following advantages: firstly, establishing an identity authentication cloud platform in a offline consensus manner; then according to the user public key, user registration is carried out through any node in the identity authentication cloud platform; then when a transaction request is initiated, a first signature of a user private key on the transaction and a second signature of the identity authentication cloud platform on the transaction are obtained; finally, according to the first signature and the second signature, checking the validity of a private key of the user and the validity of the signature of the identity authentication cloud platform, determining an identity authentication result, and executing the transaction according to the identity authentication result; the invention requires that the transaction is regarded as effective transaction when the transaction has the signature of the user and the signature of the cloud platform at the same time, thus ensuring that the identity can be falsely used only by login authentication of a trusted third party structure on the premise of losing the private key, ensuring that the user can ensure that the identity is not falsely used through the confidentiality of the private key when the trusted third party is not trusted, and greatly improving the security of the identity authentication.
Drawings
FIG. 1 is a schematic diagram of a process for authenticating a user sending a transaction ID in an embodiment of the present invention;
FIG. 2 is a diagram illustrating a user requesting transaction signatures in parallel according to an embodiment of the present invention;
FIG. 3 is a diagram illustrating a process for a monitoring party to participate in a transaction identity authentication process according to an embodiment of the present invention;
FIG. 4 is a flowchart illustrating the overall steps of an embodiment of the present invention.
Detailed Description
The invention will be further explained and explained with reference to the drawings and the embodiments in the description. The step numbers in the embodiments of the present invention are set for convenience of illustration only, the order between the steps is not limited at all, and the execution order of each step in the embodiments can be adaptively adjusted according to the understanding of those skilled in the art.
Referring to fig. 4, an embodiment of the present invention provides a block chain multi-factor identity authentication method, including the following steps:
establishing an identity authentication cloud platform in a line-down consensus mode, wherein each node in the identity authentication cloud platform is responsible for participating in identity authentication;
according to the user public key, user registration is carried out through any node in the identity authentication cloud platform;
when a transaction request is initiated, a first signature of a user private key on a transaction and a second signature of an identity authentication cloud platform on the transaction are obtained;
according to the first signature and the second signature, checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform, and determining an identity authentication result;
and executing the transaction according to the identity authentication result.
Specifically, in this embodiment, an identity authentication cloud platform federation is determined by a offline consensus mode, and a node in the federation is responsible for participating in identity authentication;
a user registers in any node or a plurality of nodes of the identity authentication cloud platform to provide a self public key, a login password of the cloud platform and optional identity authentication materials in other real worlds;
when a user initiates a transaction by using a blockchain wallet terminal, firstly signing the transaction by using a private key of the user, then acquiring a signature of a cloud platform by calling an interface provided by an identity authentication platform, and finally sending the transaction and the signature to a blockchain network for waiting processing;
when the block chain node processes the user transaction, the validity of the user private key signature and the cloud platform signature needs to be checked at the same time, and the two types of signatures can pass the verification on the premise that the two types of signatures are legal at the same time.
Further as a preferred embodiment, the step of establishing the identity authentication cloud platform by means of offline consensus comprises the following steps:
determining an identity authentication cloud platform alliance in an offline consensus manner;
writing the identity certificate of each node in the alliance into a created block of the block chain;
the nodes in the alliance comprise a supervisor node and a user node.
Further, as a preferred embodiment, the step of performing user registration through any node in the identity authentication cloud platform according to the user public key specifically includes:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
Further as a preferred embodiment, the step of obtaining a first signature of a private key of a user on the transaction and a second signature of the identity authentication cloud platform on the transaction when the transaction request is initiated includes the following steps:
performing a first signature on a transaction through a user private key;
and carrying out second signature on the transaction by calling an interface of the identity authentication platform.
The specific implementation steps of the block chain multi-factor identity authentication method of the present invention are described in detail below with reference to the accompanying drawings of the specification:
s 1: determining an identity authentication cloud platform alliance in a line-down consensus mode, wherein nodes in the alliance are responsible for participating in identity authentication, identity certificates of the nodes are written into the creation blocks of the block chain, and any node can acquire and identify authenticity;
s 2: the monitoring party is used as an identity authentication node to participate in identity authentication;
s 3: a user registers in any node or a plurality of nodes of the identity authentication cloud platform to provide a public key of the user, a login password of the cloud platform and optional identity authentication materials (such as identity card information, face information, fingerprint information and the like) in other real worlds;
s 4: when a user initiates a transaction by using a block chain wallet terminal, firstly signing the transaction by using a private key of the user, and then acquiring a signature of a cloud platform by calling an interface provided by an identity authentication platform;
s 5: when a blockchain node processes a user transaction, the validity of a user private key signature and a cloud platform signature needs to be checked at the same time, including the validity of a signature of a monitoring party, and the blockchain node can pass the verification of the user transaction only on the premise that the two types of signatures are valid at the same time.
In this embodiment: and if and only when one transaction has the signature of the user and the signature of the cloud platform, the transaction is regarded as an effective transaction, so that the identity can be falsely used only by login authentication of a trusted third party structure on the premise of losing the private key, and meanwhile, the condition that the identity is not completely authenticated by the trusted third party is ensured, namely, when the trusted third party is not trusted, the user can ensure that the identity is not falsely used through the confidentiality of the private key.
In this embodiment: as shown in fig. 1, before sending a transaction, a user must pass identity authentication of the cloud platform, and must request a signature of the cloud platform when sending the transaction, which can simultaneously utilize confidentiality of a private key and security of a trusted third party cloud platform;
in this embodiment: as shown in fig. 3, the supervisor participates in the identity authentication as a special cloud platform, and meanwhile, the supervisor can detect the block chain network transaction situation in real time, and when an abnormal user account is found, the management right can be executed in a manner of not signing the transaction of the abnormal user, so that a friendly manner is provided for the supervision of the supervisor.
In this embodiment: as shown in fig. 2, a user may register at multiple cloud platform nodes, and then request signatures of different transactions from the multiple cloud platform nodes at the same time, so as to implement parallel execution of transaction signature request actions, which may solve the problem of highly concurrent transaction signature requests.
Corresponding to the method in fig. 4, an embodiment of the present invention further provides a block chain multi-factor identity authentication system, including:
the platform establishing module is used for establishing an identity authentication cloud platform in a line-down consensus mode, and each node in the identity authentication cloud platform is responsible for participating in identity authentication;
the user registration module is used for registering the user through any node in the identity authentication cloud platform according to the user public key;
the transaction signature module is used for acquiring a first signature of a user private key on a transaction and a second signature of the identity authentication cloud platform on the transaction when a transaction request is initiated;
the identity authentication module is used for checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform according to the first signature and the second signature and determining an identity authentication result;
and the transaction execution module is used for executing the transaction according to the identity authentication result.
Further as a preferred embodiment, the platform establishing module includes:
the alliance determining unit is used for determining the identity authentication cloud platform alliance in an offline consensus mode;
the node creating unit is used for writing the identity certificate of each node in the alliance into an appearance creating block of the block chain;
the nodes in the alliance comprise a supervisor node and a user node.
Further as a preferred embodiment, the user registration module specifically executes:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
Further as a preferred embodiment, the transaction signature module includes:
the first signature unit is used for carrying out first signature on the transaction through a user private key;
and the second signature unit is used for carrying out second signature on the transaction by calling an interface of the identity authentication platform.
Corresponding to the method in fig. 4, an embodiment of the present invention further provides a block chain multi-factor identity authentication system, including:
at least one processor;
at least one memory for storing at least one program;
when the at least one program is executed by the at least one processor, the at least one processor is caused to implement the blockchain multi-factor identity authentication method.
The contents in the above method embodiments are all applicable to the present system embodiment, the functions specifically implemented by the present system embodiment are the same as those in the above method embodiment, and the beneficial effects achieved by the present system embodiment are also the same as those achieved by the above method embodiment.
In correspondence with the method of fig. 4, an embodiment of the present invention further provides a storage medium having stored therein processor-executable instructions, which when executed by a processor, are configured to perform any one of the blockchain multi-factor identity authentication methods.
In summary, compared with the prior art, the block chain multi-factor identity authentication method, system and storage medium of the present invention have the following advantages:
1. better user identity authentication security protection: a private key thief does not have login information of the cloud platform, so that the private key thief cannot counterfeit the user; the cloud platform masters the cloud platform login information of the user, but the user private key is not available, so that the user cannot be counterfeited;
2. implementation of supervision convenience in blockchain applications: and when the supervising party detects that suspicious illegal transactions exist in the blockchain network, the cloud platform refuses to sign the account transactions to realize limitation.
The invention requires that the transaction is regarded as effective transaction when the transaction has the signature of the user and the signature of the cloud platform at the same time, thus ensuring that the identity can be falsely used only by login authentication of a trusted third party structure on the premise of losing the private key, ensuring that the user can ensure that the identity is not falsely used through the confidentiality of the private key when the trusted third party is not trusted, and greatly improving the security of the identity authentication.
In alternative embodiments, the functions/acts noted in the block diagrams may occur out of the order noted in the operational illustrations. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality/acts involved. Furthermore, the embodiments presented and described in the flow charts of the present invention are provided by way of example in order to provide a more thorough understanding of the technology. The disclosed methods are not limited to the operations and logic flows presented herein. Alternative embodiments are contemplated in which the order of various operations is changed and in which sub-operations described as part of larger operations are performed independently.
Furthermore, although the present invention is described in the context of functional modules, it should be understood that, unless otherwise stated to the contrary, one or more of the described functions and/or features may be integrated in a single physical device and/or software module, or one or more functions and/or features may be implemented in a separate physical device or software module. It will also be appreciated that a detailed discussion of the actual implementation of each module is not necessary for an understanding of the present invention. Rather, the actual implementation of the various functional modules in the apparatus disclosed herein will be understood within the ordinary skill of an engineer, given the nature, function, and internal relationship of the modules. Accordingly, those skilled in the art can, using ordinary skill, practice the invention as set forth in the claims without undue experimentation. It is also to be understood that the specific concepts disclosed are merely illustrative of and not intended to limit the scope of the invention, which is defined by the appended claims and their full scope of equivalents.
The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
The logic and/or steps represented in the flowcharts or otherwise described herein, e.g., an ordered listing of executable instructions that can be considered to implement logical functions, can be embodied in any computer-readable medium for use by or in connection with an instruction execution system, apparatus, or device, such as a computer-based system, processor-containing system, or other system that can fetch the instructions from the instruction execution system, apparatus, or device and execute the instructions. For the purposes of this description, a "computer-readable medium" can be any means that can contain, store, communicate, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device.
More specific examples (a non-exhaustive list) of the computer-readable medium would include the following: an electrical connection (electronic device) having one or more wires, a portable computer diskette (magnetic device), a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber device, and a portable compact disc read-only memory (CDROM). Additionally, the computer-readable medium could even be paper or another suitable medium upon which the program is printed, as the program can be electronically captured, via for instance optical scanning of the paper or other medium, then compiled, interpreted or otherwise processed in a suitable manner if necessary, and then stored in a computer memory.
It should be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
While embodiments of the invention have been shown and described, it will be understood by those of ordinary skill in the art that: various changes, modifications, substitutions and alterations can be made to the embodiments without departing from the principles and spirit of the invention, the scope of which is defined by the claims and their equivalents.
While the preferred embodiments of the present invention have been illustrated and described, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (8)
1. The block chain multi-factor identity authentication method is characterized by comprising the following steps: the method comprises the following steps:
establishing an identity authentication cloud platform in a line-down consensus mode, wherein each node in the identity authentication cloud platform is responsible for participating in identity authentication;
according to the user public key, user registration is carried out through any node in the identity authentication cloud platform;
when a transaction request is initiated, a first signature of a user private key on a transaction and a second signature of an identity authentication cloud platform on the transaction are obtained;
according to the first signature and the second signature, checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform, and determining an identity authentication result;
executing the transaction according to the identity authentication result;
wherein, the user registration is performed through any node in the identity authentication cloud platform, and the method comprises the following steps:
the user registers at a plurality of nodes through the identity authentication cloud platform;
when the identity authentication cloud platform is used for carrying out user registration at a plurality of nodes and a plurality of transaction requests are received, when the transaction request is initiated, a first signature of a user private key on the transaction and a second signature of the identity authentication cloud platform on the transaction are obtained, and the method comprises the following steps:
the method comprises the steps that signatures of different transactions are requested from a plurality of cloud platform nodes at the same time, so that a first signature of a user private key of each transaction request on the transaction and a second signature of an identity authentication cloud platform on the transaction are obtained respectively;
the method further comprises the steps of:
determining an identity authentication cloud platform alliance in an offline consensus manner;
writing the identity certificate of each node in the alliance into a created block of the block chain;
the nodes in the alliance comprise a supervisor node and a user node.
2. The blockchain multi-factor identity authentication method of claim 1, wherein: the step of registering the user through any node in the identity authentication cloud platform according to the user public key specifically comprises:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
3. The blockchain multi-factor identity authentication method of claim 1, wherein: the step of acquiring a first signature of a private key of a user on a transaction and a second signature of an identity authentication cloud platform on the transaction when a transaction request is initiated comprises the following steps:
performing a first signature on a transaction through a user private key;
and carrying out second signature on the transaction by calling an interface of the identity authentication cloud platform.
4. The block chain multi-factor identity authentication system is characterized in that: the method comprises the following steps:
the platform establishing module is used for establishing an identity authentication cloud platform in a line-down consensus mode, and each node in the identity authentication cloud platform is responsible for participating in identity authentication; the platform establishment module comprises: the alliance determining unit is used for determining the identity authentication cloud platform alliance in an offline consensus mode; the node creating unit is used for writing the identity certificate of each node in the alliance into an appearance creating block of the block chain; the nodes in the alliance comprise a supervisor node and a user node;
the user registration module is used for performing user registration through any node in the identity authentication cloud platform according to the user public key and also used for performing user registration on a plurality of nodes through the identity authentication cloud platform;
the transaction signature module is used for acquiring a first signature of a user private key on a transaction and a second signature of an identity authentication cloud platform on the transaction when a transaction request is initiated, and is also used for simultaneously requesting signatures of different transactions from a plurality of cloud platform nodes when user registration is carried out on a plurality of nodes through the identity authentication cloud platform and the transaction requests are multiple so as to respectively acquire the first signature of the user private key on the transaction of each transaction request and the second signature of the identity authentication cloud platform on the transaction;
the identity authentication module is used for checking the validity of a private key of the user and the validity of a signature of the identity authentication cloud platform according to the first signature and the second signature and determining an identity authentication result;
and the transaction execution module is used for executing the transaction according to the identity authentication result.
5. The blockchain multi-factor identity authentication system of claim 4, wherein: the user registration module specifically executes:
according to the user public key, the login password of the cloud platform and the identity authentication material, user registration is carried out through any node in the identity authentication cloud platform;
wherein, the identity authentication material includes but is not limited to identity card information, face information and fingerprint information.
6. The blockchain multi-factor identity authentication system of claim 5, wherein: the transaction signature module includes:
the first signature unit is used for carrying out first signature on the transaction through a user private key;
and the second signature unit is used for carrying out second signature on the transaction by calling an interface of the identity authentication cloud platform.
7. The block chain multi-factor identity authentication system is characterized in that: the method comprises the following steps:
at least one processor;
at least one memory for storing at least one program;
when executed by the at least one processor, cause the at least one processor to implement the blockchain multi-factor identity authentication method of any one of claims 1-3.
8. A storage medium having stored therein instructions executable by a processor, the storage medium comprising: the processor-executable instructions, when executed by a processor, are for performing the blockchain multi-factor identity authentication method of any one of claims 1-3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910936641.0A CN110717162B (en) | 2019-09-29 | 2019-09-29 | Block chain multi-factor identity authentication method, system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910936641.0A CN110717162B (en) | 2019-09-29 | 2019-09-29 | Block chain multi-factor identity authentication method, system and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110717162A CN110717162A (en) | 2020-01-21 |
| CN110717162B true CN110717162B (en) | 2022-04-22 |
Family
ID=69211185
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910936641.0A Active CN110717162B (en) | 2019-09-29 | 2019-09-29 | Block chain multi-factor identity authentication method, system and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110717162B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111541713A (en) * | 2020-05-08 | 2020-08-14 | 国网电子商务有限公司 | Identity authentication method and device based on block chain and user signature |
| CN112150148A (en) * | 2020-09-24 | 2020-12-29 | 普华云创科技(北京)有限公司 | Enterprise asset protection method and system based on block chain technology |
| CN112184245B (en) * | 2020-09-30 | 2024-04-26 | 深圳前海微众银行股份有限公司 | Transaction identity confirmation method and device for cross-region block chain |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106850201A (en) * | 2017-02-15 | 2017-06-13 | 济南晟安信息技术有限公司 | Intelligent terminal multiple-factor authentication method, intelligent terminal, certificate server and system |
| CN108777684A (en) * | 2018-05-30 | 2018-11-09 | 招商银行股份有限公司 | Identity identifying method, system and computer readable storage medium |
| CN109067539A (en) * | 2018-06-13 | 2018-12-21 | 深圳前海微众银行股份有限公司 | Alliance's chain method of commerce, equipment and computer readable storage medium |
| CN109934585A (en) * | 2019-03-08 | 2019-06-25 | 矩阵元技术(深圳)有限公司 | A kind of endorsement method based on multi-party computations, apparatus and system |
| CN110225042A (en) * | 2019-06-14 | 2019-09-10 | 王雪菲 | The safe handling method and server of block chain wallet private key |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109088866B (en) * | 2018-08-02 | 2021-02-19 | 北京百悟科技有限公司 | Multi-cloud platform unified identity authentication method and device based on alliance chain |
-
2019
- 2019-09-29 CN CN201910936641.0A patent/CN110717162B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106850201A (en) * | 2017-02-15 | 2017-06-13 | 济南晟安信息技术有限公司 | Intelligent terminal multiple-factor authentication method, intelligent terminal, certificate server and system |
| CN108777684A (en) * | 2018-05-30 | 2018-11-09 | 招商银行股份有限公司 | Identity identifying method, system and computer readable storage medium |
| CN109067539A (en) * | 2018-06-13 | 2018-12-21 | 深圳前海微众银行股份有限公司 | Alliance's chain method of commerce, equipment and computer readable storage medium |
| CN109934585A (en) * | 2019-03-08 | 2019-06-25 | 矩阵元技术(深圳)有限公司 | A kind of endorsement method based on multi-party computations, apparatus and system |
| CN110225042A (en) * | 2019-06-14 | 2019-09-10 | 王雪菲 | The safe handling method and server of block chain wallet private key |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110717162A (en) | 2020-01-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Alexopoulos et al. | Beyond the hype: On using blockchains in trust management for authentication | |
| CN113239382B (en) | Trusted identity model based on blockchain intelligent contract | |
| CN111046352B (en) | Identity information security authorization system and method based on block chain | |
| US20210279736A1 (en) | Blockchain secure transaction method and device based on biomarker authentication | |
| CN109583184B (en) | Identity verification method and device and electronic equipment | |
| CN108777684B (en) | Identity authentication method, system and computer readable storage medium | |
| JP7189144B2 (en) | Secure Reuse of Private Keys for Dynamic Node Groups | |
| RU2747947C2 (en) | Systems and methods of personal identification and verification | |
| US10581612B2 (en) | Method and system for encryption | |
| CN110717162B (en) | Block chain multi-factor identity authentication method, system and storage medium | |
| WO2020088108A1 (en) | Blockchain-based data attestation method and apparatus, and electronic device | |
| CN105659559B (en) | The safety of authenticating remote server | |
| JP6574168B2 (en) | Terminal identification method, and method, system, and apparatus for registering machine identification code | |
| CN107770159B (en) | Vehicle accident data recording method and related device and readable storage medium | |
| CN110083604B (en) | Data right confirming method and device | |
| CN109361697B (en) | Method for realizing credible identity authentication based on SIM card loading PKI | |
| CN110661800A (en) | Multi-factor identity authentication method supporting guarantee level | |
| WO2022205963A1 (en) | Cross-chain access control method, and apparatus | |
| KR101925463B1 (en) | Method of record and validation of image hash value and apparatus using the same | |
| WO2021255017A1 (en) | Privilege insider threat prevention | |
| JP2019154055A5 (en) | ||
| CN109862006A (en) | A kind of block catenary system cut-in method, apparatus and system | |
| WO2019178763A1 (en) | Certificate importing method and terminal | |
| Alexander et al. | Cybersecurity, information assurance, and big data based on blockchain | |
| CN111311260A (en) | Method and device for resetting account private key |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20240117 Address after: 437000, Building 312, Qidi Star, Intersection of Hesheng Road Vocational Education Park, Xianning National High tech Development Zone, Xianning City, Hubei Province (self declared) Patentee after: Xianning Jinninghui Technology Co.,Ltd. Address before: Room 1567, hatching Eagle building, No. 99, Tuanjie Road, yanchuang Park, Jiangbei new district, Nanjing, Jiangsu 211800 Patentee before: Nanjing jinninghui Technology Co.,Ltd. |