Background
Any intellectual work product expressed in electronic data form may be referred to as a digital asset, such as a patent, trademark, and copyright expressed in electronic data form. Digital assets need to be attributed with rights at the time of transaction, ensuring that the digital assets can be handled by the provider. The right attribution of patents and trademarks is determined by the national administration, and the right of copyright is already generated at the date of the author creating the work, and if the work is not registered in the national relevant administration for copyright, the issue of dispute of the right attribution of the work occurs.
In order to avoid the above problems, the digital asset processing system may be used to authenticate the digital asset, i.e. to timestamp the digital asset and to clarify the ownership of the copyright. As shown in fig. 1, the digital asset processing system includes several terminals 1 and a digital asset authentication platform 2, and the terminals 1 are connected with the digital asset authentication platform 2 through the internet. In general, a data link may be established between the client 11 and the digital asset authentication platform 2 by installing the client 11 on the terminal 1. Specifically, the digital asset is uploaded to the digital asset authentication platform 2 through the client 11, and the digital asset authentication platform 2 performs an authentication operation on the digital asset.
The digital asset 3 provided by the client 11 typically comprises two parts, a bibliographic item 31 and a digital asset entity 32, as shown in fig. 2. The bibliographic item 31 usually includes the name, address, priority file information, etc. of the authorized person; the digital asset entity 32 is typically a collection of various legal, technical documents that document the core content of the digital asset. Due to the large difference in the capacity of the digital assets to be authenticated, for example, the file capacity of the movie and television works expressed in the form of electronic data is large, reaching several hundred M or even exceeding 1G, so that the digital assets uploaded by the client 11 inevitably occupy more transmission resources and storage resources. In addition, the authentication process of the digital assets is based on the online operation of the internet, and obviously, a large number of digital assets are randomly uploaded from different clients and cannot be matched with the use condition of network transmission resources of a digital asset authentication platform, so that the uploaded digital assets are delayed or failed in transmission, and the authentication operation is not timely.
Disclosure of Invention
The application provides a digital asset processing system to be authenticated, which aims to solve the problem that a plurality of uploaded digital asset data packets cannot be matched with the use condition of network transmission resources of a digital asset authentication platform.
In a first aspect, the present application provides a digital asset processing system to be authenticated, comprising: the system comprises a client, a digital asset authentication platform and a block chain network which are connected through the Internet; wherein the client is configured to perform the steps of:
performing a digital signature operation on a digital asset data packet by using the determined digital signature algorithm to generate a signature character string, wherein the digital asset data packet comprises a digital asset entity;
encrypting the signature character string and the link address of the digital asset entity by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet; because the capacity of the digital asset entity may be particularly huge, the link address of the digital asset entity with smaller capacity is adopted as a part of the encrypted asset data packet, and the capacity of the encrypted asset data packet is further reduced.
And generating an asset package abstract to be authenticated according to the encrypted asset data package and the public key, and uploading the abstract to the block chain network and the digital asset authentication platform.
The method and the device have the advantages that the abstract of the asset package to be authenticated is uploaded to the digital asset authentication platform from the client, and the abstract of the asset package to be authenticated is composed of the encrypted asset package and the public key, and the encrypted asset package is obtained by encrypting the link address and the signature character string of the digital asset entity with smaller capacity.
The block chain network has the characteristics of decentralization, tamper resistance and repudiation resistance, and the digest of the asset package to be authenticated, which is composed of the encrypted asset data package and the public key, is uploaded to the block chain network, so that the digital asset entity corresponding to the link address of the digital asset entity in the encrypted asset data package can be prevented from being tampered, and the record can be timely obtained.
Further, the digital asset authentication platform is configured to perform the steps of:
checking a digital asset data packet corresponding to the abstract of the asset packet to be authenticated;
after the verification is passed, generating a time stamp and an authentication code of the digital asset data packet, and generating an authentication asset packet with the time stamp and the authentication code;
and uploading the authentication asset pack to a blockchain network and a platform database.
And the digital asset authentication platform is used for providing a timestamp and an authentication code for the digital asset data packet to obtain an authentication asset packet with the timestamp and the authentication code. The timestamp may be used to determine an upload time of the digital asset entity and the authentication code used to validate the authentication asset pack.
Further, in order to reduce the workload of the digital asset authentication platform and increase the operation speed of the digital asset authentication platform, the system further comprises: the system comprises a preprocessing platform configured on the Internet; wherein the digital asset authentication platform is configured to perform the steps of: according to the abstract of the asset package to be authenticated, executing and sending an auditing operation instruction to a preprocessing platform, wherein the instruction comprises the abstract of the asset package to be authenticated;
the preprocessing platform is configured to execute the following steps according to the auditing operation instruction sent by the digital asset authentication platform:
checking a digital asset package corresponding to the abstract of the asset package to be authenticated, generating a time stamp of the digital asset data package after the checking is passed, generating a quasi-authentication asset package with the time stamp, and uploading the quasi-authentication asset package to a block chain network, a platform database and a digital asset authentication platform;
the digital asset authentication platform is further configured to perform the steps of:
receiving a quasi-authentication asset pack and generating an authentication code;
and generating an authentication asset pack according to the authentication code and the quasi-authentication asset pack, and uploading the authentication asset pack to the block chain network and the platform database.
In a second aspect, the present application provides a digital asset processing system to be authenticated, comprising: the system comprises a client, a digital asset authentication platform, a block chain network and a preprocessing platform which are connected through the Internet; wherein the client is configured to perform the steps of:
sending the digital asset data packet to a preprocessing platform;
the pre-processing platform is configured to perform the steps of: receiving a digital asset data packet;
performing a digital signature operation on a digital asset data packet by using the determined digital signature algorithm to generate a signature character string, wherein the digital asset data packet comprises a digital asset entity;
encrypting the signature character string and the link address of the digital asset entity by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet;
and generating an asset package abstract to be authenticated according to the encrypted asset data package and the public key, and uploading the abstract to the block chain network and the digital asset authentication platform.
The preprocessing platform receives the digital asset data packet sent by the client and processes the digital asset data packet to obtain the abstract of the asset packet to be authenticated, so that the problem that the normal operation of the client is influenced due to the fact that a large number of digital asset data packets are processed at the client is solved, and the operation speed of the client is improved.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the technical solutions of the present application will be described in detail and completely with reference to the following specific embodiments of the present application and the accompanying drawings. It should be apparent that the described embodiments are only some of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application. The technical solutions provided by the embodiments of the present application are described in detail below with reference to the accompanying drawings.
Referring to fig. 1, in the prior art, due to the large physical capacity of part of the digital assets, which may reach several hundred M or even exceed 1G, the digital assets uploaded to the digital asset authentication platform 2 by the client 11 occupy more transmission resources and storage resources. In addition, the authentication process of the digital assets is based on the online operation of the internet, a large number of digital assets are randomly uploaded from different clients 11 and cannot be matched with the use condition of network transmission resources of the digital asset authentication platform 2, and the uploading of the digital assets is delayed or the transmission fails. In order to solve the problems in the prior art, embodiments of the present application provide a digital asset processing system to be authenticated.
Example 1
An embodiment of the present application provides a digital asset processing system to be authenticated, as shown in fig. 3, the processing system includes: a client 11, and a digital asset authentication platform 2 and a blockchain network 4 connected via the internet;
wherein, as shown in fig. 4, the client 11 is configured to perform the following steps:
performing a digital signature operation on a digital asset data packet by using the determined digital signature algorithm to generate a signature character string, wherein the digital asset data packet comprises a digital asset entity;
specifically, the digital signature algorithm may be determined by a client through pre-negotiation with the digital asset authentication platform. The digital signature algorithm can also be one of a set of algorithm programs provided in advance, when the client and the digital asset authentication platform transmit a digital asset data packet, the client selects one of the algorithm programs from the set of algorithm programs and sends the digital asset authentication platform to inform the digital asset authentication platform to use the same digital signature algorithm. It should be noted that the algorithm program set includes a plurality of digital signature algorithms.
The client is installed on a terminal, and the terminal can be a computer, a mobile phone, a tablet computer, a laptop, a personal digital assistant, a mobile internet device or a wearable device. It should be noted that the digital assets are of any type, including: patents, trademarks, copyrights, etc., all exist in the form of digital asset packages in embodiments of the present application.
The digital signature algorithm may be SHA256, SHA384, SHA512, or the like. The digital signature operation may be a Hash operation.
According to the embodiment of the application, the Hash operation is performed on the digital asset data packet by using the digital signature algorithm, and due to the property of the Hash operation, a generated signature character string is a unique value after the Hash operation is performed on the digital asset data packet. For example, the digital signature algorithm uses the SHA256, and the digital asset package performs a Hash operation using the SHA256 to obtain a 256-bit string, which is a unique value.
After different digital asset data packets are subjected to Hash operation by using the same digital signature algorithm, the obtained signature character strings are different. Thus, the signature string may be used to verify the authenticity of the digital asset package, such as:
when a buyer A wants to buy a picture, the picture is converted into digital assets expressed in an electronic data form by technical means to obtain a digital asset data packet, and digital signature operation is carried out by using an SHA256 digital signature algorithm to obtain a real signature character string, wherein the signature character string is unique. Seller B claims to own the picture, and after the picture shown by seller B is converted into a digital asset data packet, the digital signature operation is carried out by using the SHA256 digital signature algorithm to obtain a group of new signature character strings. At the moment, whether the real signature character string is the same as the new signature character string is judged, and if yes, the seller B is a true owner of the picture; if the pictures are not the same, the picture shown by the seller B is a counterfeit, the seller B is the owner pretending the picture, the seller B is not the true owner of the picture, and therefore the buyer A cannot trade with the seller B. Due to the uniqueness of the signature string, the signature string can verify the authenticity of the digital asset pack.
In one possible implementation, the digital asset data package includes a digital asset entity and a bibliographic item. The digital asset data package that generated the signature string may also include bibliographic items.
Encrypting the signature character string and the link address of the digital asset entity by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet;
because the capacity of the digital asset entity may be particularly huge, the link address of the digital asset entity with smaller capacity is adopted as a part of the encrypted asset data packet, and the capacity of the encrypted asset data packet is further reduced.
It should be noted that, according to the link address of the digital asset entity, the storage location of the digital asset entity can be determined. In one possible embodiment, the digital asset data package is stored in the client, and in another possible embodiment, the processing system further comprises a third party server 5, and the digital asset data package is stored in the third party server 5.
The digital asset data packet is stored in the third-party server 5, so that the storage resource of the client occupied by the digital asset data packet can be reduced, and the condition that the client runs at a low speed is avoided.
In the embodiment of the application, the asymmetric encryption algorithm is complex in strength, so that the security is extremely high. The asymmetric encryption algorithm comprises two keys, namely a public key and a private key, wherein the public key and the private key are different keys, and the encrypted asset data packet is obtained by encrypting the signature character string and the link address of the digital asset entity through the private key; in the process of decrypting the encrypted asset data packet, the public key is used, and the public key is used for decrypting the encrypted asset data packet, so that the signature character string in the encrypted asset data packet and the link address of the digital asset entity can be obtained.
And generating an asset package abstract to be authenticated according to the encrypted asset data package and the public key, and uploading the abstract to the block chain network 4 and the digital asset authentication platform 2.
Specifically, the blockchain network has the characteristics of decentralization, tamper resistance and repudiation resistance, so that the summary of the asset package to be authenticated, which is composed of the encrypted asset data package and the public key, is uploaded to the blockchain network, and the digital asset entity corresponding to the link address of the digital asset entity in the encrypted asset data package can be prevented from being tampered and timely recorded.
The method and the device have the advantages that the abstract of the asset package to be authenticated is uploaded to the digital asset authentication platform from the client, and the abstract of the asset package to be authenticated is composed of the encrypted asset package and the public key, and the encrypted asset package is obtained by encrypting the link address and the signature character string of the digital asset entity with smaller capacity.
In one possible embodiment, the system further comprises: a platform database 6 configured on the internet;
referring to fig. 5, the digital asset authentication platform 2 is configured to perform the following steps:
checking a digital asset data packet corresponding to the abstract of the asset packet to be authenticated;
after the verification is passed, generating a time stamp and an authentication code of the digital asset data packet, and generating an authentication asset packet with the time stamp and the authentication code;
uploading the authentication asset pack to the blockchain network 4 and the platform database 6.
The platform database 6 is configured to perform the steps of: and receiving the authentication asset pack.
The specific process of auditing the digital asset data packet corresponding to the abstract of the asset package to be authenticated comprises the following steps: decrypting the abstract of the asset package to be authenticated through a public key to obtain a signature character string and a link address of a digital asset entity, determining the digital asset entity according to the link address of the digital asset entity, performing digital signature operation on a digital asset data package consisting of the newly obtained digital asset entity to obtain a new signature character string, comparing whether the signature character string obtained after decryption is consistent with the new signature character string, and if so, checking and passing. And after the verification is passed, generating a time stamp and an authentication code of the digital asset data packet, and generating an authentication asset packet with the time stamp and the authentication code.
By way of example: and when the user finishes one picture, processing the picture through the client to obtain the abstract of the asset package to be authenticated. Uploading the abstract of the asset package to be authenticated to a digital asset authentication platform, decrypting and encrypting the asset data package by the digital asset authentication platform by using a public key to obtain a signature character string and a link address of a digital asset entity, determining the digital asset entity corresponding to the drawing through the link address of the digital asset entity, and performing digital signature operation on the digital asset data package consisting of the digital asset entities corresponding to the link address of the digital asset entity to obtain a new signature character string. And comparing whether the signature character string obtained by decrypting the encrypted asset data packet is consistent with the new signature character string, if so, verifying to pass, generating a time stamp and an authentication code of the digital asset entity, and generating an authentication asset packet with the time stamp and the authentication code. In the embodiment of the application, the uploading time of the picture can be proved through the timestamp, the creation time of the picture finished by a user is indirectly illustrated, and evidence for proving the copyright ownership of the picture is provided. The authentication code may serve to validate the authentication asset pack.
And uploading the certification asset package with the timestamp and the certification code to the block chain network, and recording the certification asset package. In addition, the certification asset package may also be uploaded to the platform database 6 for storage of the certification asset package.
In one possible implementation, the processing system further includes: a preprocessing platform 7 and a platform database 6 configured on the internet, as shown in fig. 6.
As shown in fig. 7, the digital asset authentication platform 2 is configured to perform the following steps: according to the abstract of the asset package to be authenticated, executing and sending an auditing operation instruction to a preprocessing platform, wherein the instruction comprises the abstract of the asset package to be authenticated;
the pre-processing platform 7 is configured to perform the following steps: executing the following steps according to the auditing operation instruction sent by the digital asset authentication platform:
auditing a digital asset data packet corresponding to the abstract of the asset package to be authenticated, generating a time stamp of the digital asset data packet after the auditing is passed, generating a quasi-authentication asset package with the time stamp, and uploading the quasi-authentication asset package to a block chain network 4, a platform database 6 and a digital asset authentication platform 2;
it should be noted that, because a large number of summaries of the asset packages to be authenticated are uploaded to the digital asset authentication platform, if all the summaries pass through the authentication of the digital asset authentication platform, the data size of the authentication of the digital asset authentication platform is large, and the digital asset authentication platform is loaded. In the embodiment of the application, the operation of generating the timestamp is completed by adopting the preprocessing platform to replace the digital asset authentication platform, so that the digital asset authentication platform only receives the quasi-authentication asset package with the timestamp, the workload of the digital asset authentication platform can be reduced, and the operation speed of the digital asset authentication platform is accelerated.
The digital asset authentication platform 2 is further configured to perform the steps of:
receiving a quasi-authentication asset pack and generating an authentication code;
and generating an authentication asset pack according to the authentication code and the quasi-authentication asset pack, and uploading the authentication asset pack to the block chain network 4 and the platform database 6.
The platform database 6 is configured to perform the steps of: receiving a quasi-certified asset pack, and receiving a certified asset pack.
According to the embodiment of the application, the preprocessing platform is adopted to replace a digital asset authentication platform, and the operation of generating the quasi-authentication asset package with the timestamp is completed.
In one possible implementation, as shown in fig. 8, the client 11 includes a first generating unit 110, a first encrypting unit 120, and a first uploading unit 130;
the first generating unit 110 is configured to perform the steps of: performing a digital signature operation on a digital asset data packet by using the determined digital signature algorithm to generate a signature character string, wherein the digital asset data packet comprises a digital asset entity;
the first encryption unit 120 is configured to perform the steps of: encrypting the signature character string and the link address of the digital asset entity by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet;
the first upload unit 130 is configured to perform the steps of: and generating an asset package abstract to be authenticated according to the encrypted asset data package and the public key, and uploading the abstract to the block chain network 4 and the digital asset authentication platform 2.
According to the technical scheme, the digital asset processing system to be authenticated is provided, and the signature character string and the link address of the digital asset entity are encrypted by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet; and encrypting the asset data packet and the public key, generating an asset packet abstract to be authenticated, and uploading the asset packet abstract to the block chain network and the digital asset authentication platform. The method and the device have the advantages that the abstract of the asset package to be authenticated is uploaded to the digital asset authentication platform from the client, and the abstract of the asset package to be authenticated is composed of the encrypted asset package and the public key, and the encrypted asset package is obtained by encrypting the link address and the signature character string of the digital asset entity with smaller capacity.
Example 2
An embodiment of the present application provides a digital asset processing system to be authenticated, including: a client 11, and a digital asset authentication platform 2, a blockchain network 4 and a preprocessing platform 7 connected through the internet;
wherein the client 11 is configured to perform the following steps: sending the digital asset data package to the preprocessing platform 7;
as shown in fig. 9, the preprocessing platform 7 is configured to perform the following steps: receiving a digital asset data packet;
performing a digital signature operation on a digital asset data packet by using the determined digital signature algorithm to generate a signature character string, wherein the digital asset data packet comprises a digital asset entity;
encrypting the signature character string and the link address of the digital asset entity by adopting an asymmetric encryption algorithm to generate an encrypted asset data packet;
and generating an asset package abstract to be authenticated according to the encrypted asset data package and the public key, and uploading the abstract to the block chain network 4 and the digital asset authentication platform 2.
It should be noted that, in the embodiment of the present application, the preprocessing platform receives the digital asset data packet sent by the client, processes the digital asset data packet by using the preprocessing platform, and finally obtains the summary of the asset packet to be authenticated, and uploads the summary to the block chain network and the digital asset authentication platform. The method comprises the steps of converting the process of processing the digital asset data packet by the client to obtain the abstract of the asset packet to be authenticated in the embodiment 1 into a preprocessing platform, processing the digital asset data packet by using the preprocessing platform, and only sending the digital asset data packet to the preprocessing platform by the client, so that the influence of the processing process of a large number of digital asset data packets on the client can be avoided, and the operation of the client is not influenced.
The method and the device have the advantages that the abstract of the asset package to be authenticated is uploaded to the digital asset authentication platform through the preprocessing platform, the abstract of the asset package to be authenticated is composed of the encrypted asset package and the public key, and the encrypted asset package is obtained by encrypting the link address and the signature character string of the digital asset entity with smaller capacity, so that compared with the method that a client directly uploads the digital asset entity to the digital asset authentication platform, the method and the device upload the abstract of the asset package to be authenticated to the digital asset authentication platform greatly reduces occupied transmission resources and storage resources.
In one possible embodiment, the digital asset authentication platform is configured to perform the steps of:
checking a digital asset data packet corresponding to the abstract of the asset packet to be authenticated;
after the verification is passed, generating a time stamp and an authentication code of the digital asset data packet, and generating an authentication asset packet with the time stamp and the authentication code;
and uploading the authentication asset pack to a blockchain network and a platform database.
In one possible embodiment, the digital asset authentication platform is configured to perform the steps of:
according to the abstract of the asset package to be authenticated, executing and sending an auditing operation instruction to a preprocessing platform, wherein the instruction comprises the abstract of the asset package to be authenticated;
the preprocessing platform is configured to execute the following steps according to the auditing operation instruction sent by the digital asset authentication platform:
auditing a digital asset data packet corresponding to the abstract of the asset package to be authenticated, generating a time stamp of the digital asset data packet after the auditing is passed, generating a quasi-authentication asset package with the time stamp, and uploading the quasi-authentication asset package to a block chain network, a platform database and a digital asset authentication platform;
the digital asset authentication platform is further configured to perform the following steps;
receiving a quasi-authentication asset pack and generating an authentication code;
and generating an authentication asset pack according to the authentication code and the quasi-authentication asset pack, and uploading the authentication asset pack to the block chain network and the platform database.
In a possible embodiment, as shown in fig. 10, the preprocessing platform 7 includes a receiving unit 710, a second generating unit 720, a second encrypting unit 730, and a second uploading unit 740;
the receiving unit 710 is configured to perform the steps of: receiving a digital asset data packet;
the second generating unit 720 is configured to perform the steps of performing a digital signature operation on a digital asset package using the determined digital signature algorithm, generating a signature string, wherein the digital asset package includes a digital asset entity;
the second encryption unit 730 is configured to perform the steps of encrypting the signature string and the link address of the digital asset entity by using an asymmetric encryption algorithm to generate an encrypted asset data packet;
the second uploading unit 740 is configured to perform the steps of generating a digest of the asset package to be authenticated according to the encrypted asset data package and the public key, and uploading the digest to the blockchain network 4 and the digital asset authentication platform 2.
According to the technical scheme, the preprocessing platform receives the digital asset data packet sent by the client, processes the digital asset data packet to obtain the asset packet abstract to be authenticated, the problem that the normal operation of the client is affected due to the fact that a large number of digital asset data packets are processed at the client is solved, and the operation speed of the client is improved.
In a specific implementation, the present invention further provides a computer storage medium, where the computer storage medium may store a program, and the program may include some or all of the steps in the embodiments of the order rebuilding method provided by the present invention when executed. The storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM) or a Random Access Memory (RAM).
Those skilled in the art will readily appreciate that the techniques of the embodiments of the present invention may be implemented as software plus a required general purpose hardware platform. Based on such understanding, the technical solutions in the embodiments of the present invention may be essentially or partially implemented in the form of a software product, which may be stored in a storage medium, such as ROM/RAM, magnetic disk, optical disk, etc., and includes several instructions for enabling a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the method according to the embodiments or some parts of the embodiments.
The same and similar parts in the various embodiments in this specification may be referred to each other.
The above-described embodiments of the present invention should not be construed as limiting the scope of the present invention.