CN113886488A - Data uplink and verification system, method, electronic equipment and storage medium - Google Patents

Data uplink and verification system, method, electronic equipment and storage medium Download PDF

Info

Publication number
CN113886488A
CN113886488A CN202111034317.3A CN202111034317A CN113886488A CN 113886488 A CN113886488 A CN 113886488A CN 202111034317 A CN202111034317 A CN 202111034317A CN 113886488 A CN113886488 A CN 113886488A
Authority
CN
China
Prior art keywords
terminal
authentication code
serial number
verification
message authentication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111034317.3A
Other languages
Chinese (zh)
Inventor
许刚
郑涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Molian Information Technology Co ltd
Original Assignee
Shanghai Molian Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Molian Information Technology Co ltd filed Critical Shanghai Molian Information Technology Co ltd
Priority to CN202111034317.3A priority Critical patent/CN113886488A/en
Publication of CN113886488A publication Critical patent/CN113886488A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/10File systems; File servers
    • G06F16/18File system types
    • G06F16/182Distributed file systems
    • G06F16/1824Distributed file systems implemented using Network-attached Storage [NAS] architecture
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/23Updating
    • G06F16/2365Ensuring data consistency and integrity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Mining & Analysis (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)

Abstract

The embodiment of the invention discloses a data uplink and verification system, a data uplink and verification method, electronic equipment and a storage medium. A data uplink and verification system, comprising: the system comprises a first terminal, a cloud server and a key management device, wherein the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal is used for acquiring original data, calculating a first abstract of the original data, calculating a first message authentication code of the first abstract according to a symmetric key, and sending the first message authentication code, a terminal unique serial number and the original data to the cloud server; and the cloud server is used for calculating a second abstract of the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment for verification, and if the verification is passed, packaging the uplink message, digitally signing the uplink message and uploading the uplink message to the block chain node.

Description

Data uplink and verification system, method, electronic equipment and storage medium
Technical Field
Embodiments of the present invention relate to the field of block chaining, and in particular, to a system, a method, an electronic device, and a storage medium for data chaining and verification.
Background
With the development of the technology of the internet of things, people pay more and more attention to the credibility of the terminal data of the internet of things. The reliability of the terminal data on the chain can be guaranteed by adopting a terminal data chaining mode, in order to guarantee that the data on the chain is generated by real Internet of things terminal equipment, a module with the capacity of connecting the block chain can be embedded into the Internet of things terminal equipment, and a data packaging chaining message in the Internet of things terminal equipment is subjected to digital signature and then is chained to the block chain link point, so that the function of directly chaining the terminal equipment data is realized. However, in an actual scenario, some low-end terminal devices cannot support the terminal devices to complete the data uplink procedure due to various reasons such as their own resources, communication capabilities, power consumption, and the like, and thus cannot implement data uplink.
How to enable low-end internet of things equipment to realize data chaining and verify the authenticity of data is an urgent problem to be solved.
Disclosure of Invention
Embodiments of the present invention provide a data uplink and verification system, method, electronic device, and storage medium, which can reduce the cost of an internet of things terminal device and verify the authenticity of data.
To solve the above technical problem, an embodiment of the present invention provides a data chaining and verification system, including: the system comprises a first terminal, a cloud server and a key management device, wherein the first terminal and the key management device are respectively in communication connection with the cloud server, and a symmetric key and a terminal unique serial number are stored in the first terminal; the first terminal is used for acquiring original data, calculating a first abstract of the original data, calculating a first message authentication code of the first abstract according to a symmetric key, and sending the first message authentication code, a terminal unique serial number and the original data to the cloud server; the cloud server is used for calculating a second abstract of the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment for verification, and if the verification is passed, packaging the uplink message, digitally signing the uplink message and uploading the uplink message to the block chain node; and the key management device is used for verifying the second abstract and the first message authentication code according to the terminal unique serial number after receiving the second abstract, the first message authentication code and the terminal unique serial number, and returning a verification result to the cloud server.
The embodiment of the invention also provides a data chaining and verification method, which is applied to a first terminal of a data chaining and verification system, wherein the data chaining and verification system comprises the first terminal, a cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a unique serial number of the terminal, and the method comprises the following steps: collecting original data; calculating a first abstract of the original data; calculating a first message authentication code of the first abstract according to the symmetric key; and sending the first message authentication code, the terminal unique serial number and the original data to a cloud server, enabling the cloud server to calculate a second abstract for the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to a key management device for verification, and if the verification is passed, packaging the original data, the first message authentication code and the terminal unique serial number, packaging the uplink message, digitally signing the uplink message and uploading the uplink message to the block chain node.
The embodiment of the invention also provides a data chaining and verification method, which is applied to a cloud server of a data chaining and verification system, wherein the data chaining and verification system comprises a first terminal, the cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a unique serial number of the terminal, and the method comprises the following steps: receiving original data, a first message authentication code and a terminal unique serial number of a first terminal, wherein the original data, the first message authentication code and the terminal unique serial number are sent by the first terminal; the first message authentication code is obtained by the first terminal through calculation of a first abstract according to a stored symmetric key, and the first abstract is obtained by the first terminal through calculation of original data; calculating a second summary of the original data; sending the second abstract, the first message authentication code and the terminal unique serial number to a key management device for verification; and if the verification is passed, packaging the uplink message, packaging the original data, the first message authentication code and the unique serial number of the terminal, and uploading the uplink message to the block chain node after the digital signature.
The embodiment of the invention also provides a data chaining and verification method, which is applied to key management equipment of a data chaining and verification system, wherein the data chaining and verification system comprises a first terminal, a cloud server and key management equipment, the first terminal and the key management equipment are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a unique serial number of the terminal, and the method comprises the following steps: after receiving a second abstract, a first message authentication code and a terminal unique serial number of a first terminal sent by a cloud server, verifying the second abstract and the first message authentication code according to the terminal unique serial number; the second abstract is obtained by the cloud server through calculation according to original data uploaded by the first terminal, and the first message authentication code is obtained by the first terminal through calculation according to the first abstract of the original data and the symmetric key; and returning the verification result to the cloud server, so that the cloud server can package the uplink message and upload the uplink message to the block chain node after the uplink message is digitally signed, wherein the original data, the first message authentication code and the terminal unique serial number are provided for the cloud server.
An embodiment of the present invention also provides an electronic device, including: at least one processor; a memory communicatively coupled to the at least one processor; the memory stores instructions executable by the at least one processor, the instructions being executable by the at least one processor to enable the at least one processor to perform the above-mentioned data chaining and verification method applied to the first terminal, or the data chaining and verification method applied to the cloud server, or the data chaining and verification method applied to the key management device.
An embodiment of the present invention further provides a computer-readable storage medium storing a computer program, where the computer program, when executed by a processor, implements the data chaining and verification method applied to the first terminal, or the data chaining and verification method applied to a cloud server, or the data chaining and verification method applied to a key management device.
According to the embodiment of the invention, the cloud server completes digital signature chaining, the terminal of the Internet of things (namely the first terminal) does not need to carry out digital signature, and the terminal of the Internet of things (namely the first terminal) does not need to have the computing capability of carrying out digital signature, so that the cost of the terminal equipment of the Internet of things is reduced, the low-end terminal equipment of the Internet of things can carry out data chaining, meanwhile, the terminal of the Internet of things adopts a symmetric algorithm to realize terminal data chaining, and the cloud server can send the second abstract and the first message authentication code to the key management equipment for verification, so that whether the original data are falsified or not is verified, and the fact that the chaining data are complete and are not falsified in the transmission process from the terminal of the Internet of things to the cloud server is ensured.
Drawings
One or more embodiments are illustrated by way of example in the accompanying drawings, which correspond to the figures in which like reference numerals refer to similar elements and which are not to scale unless otherwise specified.
FIG. 1 is a schematic diagram of a system for data uplink and verification according to an embodiment of the present invention;
fig. 2 is a flowchart illustrating a method for data uplink and verification according to an embodiment of the present invention applied to a first terminal;
fig. 3 is a flowchart illustrating a data chaining and verification method applied to a cloud server according to an embodiment of the present invention;
fig. 4 is a flowchart illustrating a method for data uplink and authentication applied to a key management apparatus according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention more apparent, embodiments of the present invention will be described in detail below with reference to the accompanying drawings. However, it will be appreciated by those of ordinary skill in the art that numerous technical details are set forth in order to provide a better understanding of the present application in various embodiments of the present invention. However, the technical solution claimed in the present application can be implemented without these technical details and various changes and modifications based on the following embodiments. The following embodiments are divided for convenience of description, and should not constitute any limitation to the specific implementation manner of the present invention, and the embodiments may be mutually incorporated and referred to without contradiction.
An embodiment of the present invention relates to a data uplink and verification system, as shown in fig. 1, the system specifically includes: the system comprises a first terminal 101, a cloud server 102 and a key management device 103, wherein the first terminal 101 and the key management device 103 are respectively in communication connection with the cloud server 102, and a symmetric key and a terminal unique serial number are stored in the first terminal 101;
the first terminal 101 is configured to collect original data, calculate a first digest of the original data, calculate a first message authentication code of the first digest according to a symmetric key, and send the first message authentication code, a terminal unique serial number, and the original data to the cloud server 102;
the cloud server 102 is used for calculating a second abstract of the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment 103 for verification, and if the verification is passed, packaging the uplink message, digitally signing the uplink message and uploading the uplink message to the block chain node;
and the key management device 103 is configured to, after receiving the second digest, the first message authentication code, and the terminal unique serial number, verify the second digest and the first message authentication code according to the terminal unique serial number, and return a verification result to the cloud server 102.
The data chaining and verification system of the embodiment is used for enabling the internet of things terminal to perform data chaining to the block chain node points, and provides the lightweight internet of things terminal (namely the first terminal 101) and the cloud server 102, wherein the calculation performance and the storage space requirements of the internet of things terminal are low, the cost requirements of most internet of things equipment can be met, and the pushing speed of the data chaining of the internet of things terminal can be accelerated to a great extent. In this embodiment, digital signature cochain is accomplished by the cloud end server, the thing networking terminal (being first terminal) need not carry out digital signature, just also need not to possess the computing power who carries out digital signature, thereby reduce thing networking terminal equipment's cost, make low-end thing networking terminal equipment also can carry out data cochain, and simultaneously, thing networking terminal adopts symmetric algorithm to realize terminal data cochain, the cloud end server can send the second abstract, first message authentication code for the key management equipment verifies, thereby verify whether original data is falsified, in order to guarantee in the transmission process of thing networking terminal to cloud end server, cochain data is complete not falsified.
The following describes the implementation details of the data chaining and verification system of the present embodiment in detail, and the following is only provided for the convenience of understanding and is not necessary for implementing the present embodiment.
The first terminal 101 in this embodiment is an internet of things terminal or an internet of things device, and is configured to collect raw data and be in communication connection with the cloud server 102. The original data is data that needs to be stored and backed up by a user, such as water meter data, electricity meter data, or terminal transaction data, and the original data may be generated by other devices, transmitted to the first terminal 101, or collected by the first terminal 101 itself after production. After acquiring the original data, the first terminal 101 calculates a first digest of the original data, and calculates a first Message Authentication Code (MAC) of the first digest according to the symmetric key. Wherein the first digest may be a hash value of the original data, and the symmetric key is preset in the first terminal 101. The first terminal 101 sends the original data, the first message authentication code, and a terminal unique serial number (i.e., an ID number equivalent to the terminal) to the cloud server 102. Wherein, the terminal unique serial number is also preset in the first terminal 101.
The cloud server 102 in this embodiment may be a cloud server with high computing power, and is connected to the first terminal 101 and the key management device 103 in a communication manner, and is connected to the block link nodes in a communication manner. The cloud server 102 may compute a second digest for the raw data, where the second digest may be a hash value of the raw data. And sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment 103 for verification, and if the verification is passed, packaging the uplink message, digitally signing the uplink message and uploading the uplink message to the block chain node. If the verification fails, an error is reported.
The key management device 103 in this embodiment is in communication connection with the cloud server 102, is a device dedicated to performing symmetric key verification calculation, and can verify the second digest and the first message authentication code according to the terminal unique serial number after receiving the second digest, the first message authentication code, and the terminal unique serial number, and return a verification result to the cloud server 102.
Specifically, the key management device 103 may store a one-to-one correspondence relationship between the unique terminal serial number and the symmetric key used by the first terminal 101, and after receiving the unique terminal serial number, obtain the corresponding symmetric key to verify the second digest and the first message authentication code. In one example, the key management device 103 may store a root key, and calculate a symmetric key used by the first terminal 101 according to a preset algorithm with the obtained terminal unique serial number.
In an example, the key management device 103 obtains the symmetric key corresponding to the first terminal 101 according to the terminal unique serial number, and may also be implemented as follows: and dispersing according to a preset root key and the unique terminal serial number and a preset dispersion rule to obtain a symmetric key corresponding to the first terminal 101.
In this embodiment, since the symmetric keys are obtained by dispersing the root key, the key management device 102 does not need to store all the symmetric keys any more, but only needs to store the root key and the dispersion rule, and when a certain symmetric key needs to be used, disperses the root key according to the dispersion rule to obtain the symmetric key corresponding to the unique serial number of the terminal.
In one example, the data uplink and verification system further comprises a second terminal; the second terminal is in communication connection with the cloud server 102 and the key management device 103; the second terminal is used for acquiring the original data, the first message authentication code and the unique terminal serial number from the block link point, calculating a third abstract of the original data, sending the third abstract, the first message authentication code and the unique terminal serial number to the key management equipment 103 for verification, and judging that the original data is credible if the verification is passed; and if the verification fails, judging that the original data is not credible.
And the key management device 103 is further configured to, after receiving the third digest, the first message authentication code, and the terminal unique serial number, verify the third digest and the first message authentication code according to the terminal unique serial number, and return a verification result to the cloud server 102.
Specifically, the verification of the digest and the first message authentication code by the key management apparatus 103 includes the steps of: acquiring a symmetric key corresponding to the first terminal 101 according to the unique serial number of the terminal; calculating a second message authentication code according to the symmetric key corresponding to the first terminal 101; judging whether the second message authentication code is the same as the first message authentication code; if the two are the same, judging that the verification is passed; if not, the verification is judged not to pass. Wherein, the abstract comprises a second abstract or a third abstract.
The embodiment of the invention relates to a data chaining and verification method, which is applied to a first terminal of a data chaining and verification system, wherein the data chaining and verification system comprises the first terminal, a cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, and a symmetric key and a terminal unique serial number are stored in the first terminal, as shown in fig. 2, the method comprises the following steps:
step 201, collecting original data;
step 202, calculating a first abstract of original data;
step 203, calculating a first message authentication code of the first abstract according to the symmetric key;
and 204, sending the first message authentication code, the terminal unique serial number and the original data to a cloud server, enabling the cloud server to calculate a second abstract for the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to a key management device for verification, and if the verification is passed, packaging the original data, the first message authentication code and the terminal unique serial number, packaging a cochain message, digitally signing the cochain message and uploading the cochain message to a block chain node.
The embodiment of the invention relates to a data chaining and verification method, which is applied to a cloud server of a data chaining and verification system, wherein the data chaining and verification system comprises a first terminal, the cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a terminal unique serial number, and as shown in fig. 3, the method comprises the following steps:
step 301, receiving original data, a first message authentication code and a terminal unique serial number of a first terminal, wherein the original data, the first message authentication code and the terminal unique serial number are sent by the first terminal; the first message authentication code is obtained by the first terminal through calculation of a first abstract according to a stored symmetric key, and the first abstract is obtained by the first terminal through calculation of original data;
step 302, calculating a second abstract for the original data;
step 303, sending the second abstract, the first message authentication code and the terminal unique serial number to a key management device for verification, and judging whether the verification passes;
step 304-1, if the verification is passed, packaging the uplink message and uploading the uplink message to a block chain node after the digital signature by using the original data, the first message authentication code and the terminal unique serial number;
in step 304-2, if the verification fails, an error is reported.
The embodiment of the invention relates to a data chaining and verification method, which is applied to a key management device of a data chaining and verification system, wherein the data chaining and verification system comprises a first terminal, a cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a terminal unique serial number, and as shown in fig. 4, the method comprises the following steps:
step 401, after receiving a second abstract, a first message authentication code and a terminal unique serial number of a first terminal sent by a cloud server, verifying the second abstract and the first message authentication code according to the terminal unique serial number; the second abstract is obtained by the cloud server through calculation according to original data uploaded by the first terminal, and the first message authentication code is obtained by the first terminal through calculation according to the first abstract of the original data and the symmetric key;
and step 402, returning the verification result to the cloud server, so that the cloud server can package the uplink message and upload the uplink message to the block chain node after the uplink message is digitally signed, wherein the original data, the first message authentication code and the unique terminal serial number are provided for the cloud server.
In one example, the verification of the digest and the first message authentication code by the key management device includes the steps of: acquiring a symmetric key corresponding to the first terminal according to the unique serial number of the terminal; calculating a second message authentication code according to the symmetric key corresponding to the first terminal; judging whether the second message authentication code is the same as the first message authentication code; if the two are the same, judging that the verification is passed; if not, judging that the verification is not passed; wherein, the abstract comprises a second abstract or a third abstract.
In one example, obtaining a symmetric key corresponding to a first terminal according to a terminal unique serial number includes: and dispersing according to a preset root key and the unique serial number of the terminal and a preset dispersion rule to obtain a symmetric key corresponding to the first terminal.
The steps of the above methods are divided for clarity, and the implementation may be combined into one step or split some steps, and the steps are divided into multiple steps, so long as the same logical relationship is included, which are all within the protection scope of the present patent; it is within the scope of the patent to add insignificant modifications to the algorithms or processes or to introduce insignificant design changes to the core design without changing the algorithms or processes.
Embodiments of the present invention also relate to an electronic device, as shown in fig. 5, including: at least one processor 501; a memory 502 communicatively coupled to the at least one processor; the memory 502 stores instructions executable by the at least one processor 501, and the instructions are executed by the at least one processor 501 to perform the data chaining and validation method described above.
The memory 502 and the processor 501 are coupled by a bus, which may include any number of interconnected buses and bridges that couple one or more of the various circuits of the processor 501 and the memory 502 together. The bus may also connect various other circuits such as peripherals, voltage regulators, power management circuits, and the like, which are well known in the art, and therefore, will not be described any further herein. A bus interface provides an interface between the bus and the transceiver. The transceiver may be one element or a plurality of elements, such as a plurality of receivers and transmitters, providing a means for communicating with various other apparatus over a transmission medium. Information processed by processor 501 is transmitted over a wireless medium through an antenna, which further receives the information and passes the information to processor 501.
The processor 501 is responsible for managing the bus and general processing and may also provide various functions including timing, peripheral interfaces, voltage regulation, power management, and other control functions. And memory 502 may be used to store information used by the processor in performing operations.
Embodiments of the present invention relate to a computer-readable storage medium storing a computer program. The computer program realizes the above-described method embodiments when executed by a processor.
That is, as can be understood by those skilled in the art, all or part of the steps in the method according to the above embodiments may be implemented by a program instructing related hardware, where the program is stored in a storage medium and includes several instructions to enable a device (which may be a single chip, a chip, or the like) or a processor (processor) to execute all or part of the steps in the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
It will be understood by those of ordinary skill in the art that the foregoing embodiments are specific examples for carrying out the invention, and that various changes in form and details may be made therein without departing from the spirit and scope of the invention in practice.

Claims (9)

1. A data chaining and validation system, comprising: the system comprises a first terminal, a cloud server and a key management device, wherein the first terminal and the key management device are respectively in communication connection with the cloud server, and a symmetric key and a terminal unique serial number are stored in the first terminal;
the first terminal is used for acquiring original data, calculating a first abstract of the original data, calculating a first message authentication code of the first abstract according to the symmetric key, and sending the first message authentication code, the terminal unique serial number and the original data to the cloud server;
the cloud server is used for calculating a second abstract of the original data, sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment for verification, and if the verification is passed, packaging the original data, the first message authentication code and the terminal unique serial number, packaging a chain message, digitally signing the chain message and uploading the chain message to a block chain node;
and the key management equipment is used for verifying the second abstract and the first message authentication code according to the terminal unique serial number after receiving the second abstract, the first message authentication code and the terminal unique serial number, and returning a verification result to the cloud server.
2. The data chaining and validation system of claim 1, further comprising: the second terminal; the second terminal is in communication connection with the cloud server and the key management device;
the second terminal is configured to obtain the original data, the first message authentication code, and the terminal unique serial number from the block link point, calculate a third digest of the original data, send the third digest, the first message authentication code, and the terminal unique serial number to the key management device for verification, and if the verification passes, determine that the original data is authentic;
and the key management device is further configured to verify the third abstract and the first message authentication code according to the terminal unique serial number after receiving the third abstract, the first message authentication code and the terminal unique serial number, and return a verification result to the cloud server.
3. The data uplink and verification system according to claim 1 or 2, wherein the verification of the digest and the first message authentication code by the key management apparatus comprises the steps of:
obtaining a symmetric key corresponding to the first terminal according to the unique serial number of the terminal;
calculating a second message authentication code according to the symmetric key corresponding to the first terminal;
judging whether the second message authentication code is the same as the first message authentication code;
if the two are the same, judging that the verification is passed;
wherein the digest comprises either a second digest or a third digest.
4. The system according to claim 3, wherein the obtaining the symmetric key corresponding to the first terminal according to the unique serial number of the terminal comprises:
and dispersing according to a preset root key and the unique serial number of the terminal and a preset dispersion rule to obtain a symmetric key corresponding to the first terminal.
5. A data uplink and verification method is applied to a first terminal of a data uplink and verification system, the data uplink and verification system comprises the first terminal, a cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a terminal unique serial number, and the method comprises the following steps:
collecting original data;
calculating a first summary of the original data;
calculating a first message authentication code of the first abstract according to the symmetric key;
and sending the first message authentication code, the unique terminal serial number and the original data to a cloud server, so that the cloud server can calculate a second abstract for the original data, send the second abstract, the first message authentication code and the unique terminal serial number to the key management equipment for verification, and if the verification is passed, package a chain message and upload the chain message to a block chain node after digital signature.
6. A data chaining and verification method is applied to a cloud server of a data chaining and verification system, the data chaining and verification system comprises a first terminal, the cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a terminal unique serial number, and the method comprises the following steps:
receiving original data, a first message authentication code and a terminal unique serial number of the first terminal, wherein the original data, the first message authentication code and the terminal unique serial number are sent by the first terminal; the first message authentication code is obtained by the first terminal through calculation according to a stored symmetric key pair first abstract, and the first abstract is obtained by the first terminal through calculation on the original data;
calculating a second summary of the raw data;
sending the second abstract, the first message authentication code and the terminal unique serial number to the key management equipment for verification;
and if the verification is passed, packaging the uplink message, packaging the original data, the first message authentication code and the terminal unique serial number, and uploading the uplink message to the block chain node after the digital signature.
7. A data uplink and verification method is characterized in that the method is applied to a key management device of a data uplink and verification system, the data uplink and verification system comprises a first terminal, a cloud server and a key management device, the first terminal and the key management device are respectively in communication connection with the cloud server, the first terminal stores a symmetric key and a terminal unique serial number, and the method comprises the following steps:
after receiving a second abstract, a first message authentication code and a terminal unique serial number of the first terminal sent by the cloud server, verifying the second abstract and the first message authentication code according to the terminal unique serial number; the second abstract is obtained by the cloud server through calculation according to original data uploaded by a first terminal, and the first message authentication code is obtained by the first terminal through calculation according to the first abstract of the original data and the symmetric key;
and returning a verification result to the cloud server, so that the cloud server can package the original data, the first message authentication code and the terminal unique serial number, package a chaining message and upload the chaining message to a block chaining node after digital signature.
8. An electronic device, comprising:
at least one processor;
and a memory communicatively coupled to the at least one processor;
wherein the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the data uplink and verification method of claim 5, or the data uplink and verification method of claim 6, or the data uplink and verification method of claim 7.
9. A computer readable storage medium storing a computer program, wherein the computer program when executed by a processor implements the data uplink and verification method according to claim 5, or the data uplink and verification method according to claim 6, or the data uplink and verification method according to claim 7.
CN202111034317.3A 2021-09-03 2021-09-03 Data uplink and verification system, method, electronic equipment and storage medium Pending CN113886488A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111034317.3A CN113886488A (en) 2021-09-03 2021-09-03 Data uplink and verification system, method, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111034317.3A CN113886488A (en) 2021-09-03 2021-09-03 Data uplink and verification system, method, electronic equipment and storage medium

Publications (1)

Publication Number Publication Date
CN113886488A true CN113886488A (en) 2022-01-04

Family

ID=79012320

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111034317.3A Pending CN113886488A (en) 2021-09-03 2021-09-03 Data uplink and verification system, method, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN113886488A (en)

Similar Documents

Publication Publication Date Title
CN108965484B (en) Internet of things data transmission method, system and terminal
CN107835040B (en) Data communication method, equipment and storage medium based on Bluetooth
CN113055188B (en) Data processing method, device, equipment and storage medium
CN101651719B (en) Communication system, equalization server and data verification method
CN112738253B (en) Block chain-based data processing method, device, equipment and storage medium
CN103679000A (en) Apparatus and method for remotely deleting critical information
CN109861828A (en) A kind of node access and node authentication method based on edge calculations
TW202008822A (en) Information transmission method, terminal and base station
CN111182527B (en) OTA (over the air) firmware upgrading method and device, terminal equipment and storage medium thereof
CN115730935A (en) Data processing method, device and equipment based on block chain and readable storage medium
CN114615642A (en) Vehicle identity authentication method and device in vehicle-to-vehicle communication, vehicle and storage medium
CN109348434A (en) A kind of sending method of scene information, sending device and terminal device
CN117251889B (en) Block chain consensus method, related device and medium
CN111385096A (en) Block chain network, signature processing method, terminal and storage medium
CN113255011A (en) Block chain state mapping method, system, computer device and storage medium
CN113886488A (en) Data uplink and verification system, method, electronic equipment and storage medium
CN112804284A (en) Data chaining device, data verification device and data verification method
CN112994251B (en) Electric quantity early warning method and device, electronic equipment and computer readable medium
CN113259108A (en) Certificate updating method, Internet of things platform and Internet of things equipment
CN112866897B (en) Positioning measurement method, terminal and network node
CN112422432B (en) Link path calculation method, device, terminal and computer readable storage medium
CN110597466B (en) Control method and device of block chain node, storage medium and computer equipment
CN110460446A (en) The acquisition methods and device of message authentication code
CN110585717A (en) Information processing method and device
CN111181966B (en) Differential reference station and mobile differential reference station

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination