WO2021012548A1 - Procédé et système de traitement de données basé sur une chaîne de blocs, et appareil électronique et support de stockage - Google Patents

Procédé et système de traitement de données basé sur une chaîne de blocs, et appareil électronique et support de stockage Download PDF

Info

Publication number
WO2021012548A1
WO2021012548A1 PCT/CN2019/120890 CN2019120890W WO2021012548A1 WO 2021012548 A1 WO2021012548 A1 WO 2021012548A1 CN 2019120890 W CN2019120890 W CN 2019120890W WO 2021012548 A1 WO2021012548 A1 WO 2021012548A1
Authority
WO
WIPO (PCT)
Prior art keywords
field
independent
key
data
blockchain
Prior art date
Application number
PCT/CN2019/120890
Other languages
English (en)
Chinese (zh)
Inventor
何万涛
杨扬
谢丹力
Original Assignee
深圳壹账通智能科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳壹账通智能科技有限公司 filed Critical 深圳壹账通智能科技有限公司
Publication of WO2021012548A1 publication Critical patent/WO2021012548A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Definitions

  • This application relates to the field of blockchain technology, and in particular to a data processing method, system, electronic device, and storage medium based on blockchain.
  • the enterprise data is stored in ciphertext after the entire data is encrypted with a unified key when it is uploaded to the chain.
  • some data contains multiple contents.
  • a document is used as a piece of content on the chain, a document usually contains many items.
  • an enterprise authorizes a document to a business related party, sometimes it does not want the business related party to see all the contents of the document.
  • the inventor realizes that when data is authorized to business related parties in the prior art, the business related parties can see all the content of the data, and it is impossible for the business related parties to see only part of the field information in the data authorized by the enterprise to view. .
  • the purpose of this application is to provide a blockchain-based data processing method, system, electronic device, and storage medium, aiming to achieve authorized access to some fields of data in the blockchain.
  • the present invention provides an electronic device, the electronic device includes a memory and a processor, the memory stores a blockchain-based data processing system that can run on the processor, and the When the data processing system of the blockchain is executed by the processor, the following steps are implemented:
  • the blockchain-based data processing method includes:
  • this application also provides a blockchain-based data processing system, and the blockchain-based data processing system includes:
  • the conversion module is used to obtain the original data to be uploaded to the blockchain, identify each independent field in the original data, and convert each independent field into key-value pair format data; wherein, the key-value pair format data
  • the preset field corresponding to each independent field is marked as a key and the field value is a value;
  • the first calculation module is configured to perform a hash calculation on the preset field label corresponding to each independent field, and use the obtained hash calculation result as the confusion label corresponding to each independent field;
  • the second calculation module is configured to calculate the field encryption key corresponding to each independent field according to the preset calculation rule and using the confusion mark corresponding to each independent field;
  • the encryption module is used to encrypt the field value of each independent field based on the field encryption key corresponding to each independent field and use a preset encryption algorithm to obtain the encrypted field;
  • the upload module is used to upload the obfuscation mark and encrypted field corresponding to each independent field in the original data to the blockchain, so that the business related parties can find out from the blockchain according to the obfuscation mark of the authorized field
  • the corresponding encrypted field is decrypted to obtain the field value of the authorized field.
  • the present application also provides a computer-readable storage medium having computer instructions stored in the computer-readable storage medium.
  • the computer instructions run on the computer, the computer executes the above-mentioned area-based Block chain data processing method.
  • the blockchain-based data processing method, system, electronic device, and storage medium proposed in this application convert each independent field in the original data into key-value pair format data marked with a preset field as a key and field value. Perform hash calculation on the preset field label corresponding to each independent field to obtain the corresponding confusion label, and use the confusion label to calculate the field encryption key corresponding to each independent field; pair each independent field based on the field encryption key corresponding to each independent field The field value of is encrypted to obtain an encrypted field; the confusion mark and the encrypted field corresponding to each independent field in the original data are uploaded to the blockchain.
  • each independent field in the data can be distinguished, and each independent field is encrypted before uploading to the blockchain, business parties can find out the encrypted fields corresponding to some authorized fields from the blockchain and perform Decrypt to obtain the field values of some authorized fields.
  • the business-related parties cannot decrypt some of the fields that are not authorized to them, nor can they obtain the field values of the unauthorized fields, so as to control the part of the data in the blockchain by the business-related parties.
  • Field authorization access since the field encryption key corresponding to each independent field is calculated by using the confusion indicator corresponding to each independent field, the field encryption key for encrypting the field value of each independent field is different, and the security is higher.
  • Figure 1 is a schematic diagram of the operating environment of a preferred embodiment of a blockchain-based data processing system according to this application;
  • FIG. 2 is a program module diagram of a preferred embodiment of a blockchain-based data processing system of this application;
  • FIG. 3 is a schematic flowchart of a preferred embodiment of a data processing method based on blockchain in this application.
  • FIG. 1 is a schematic diagram of the operating environment of the preferred embodiment of the blockchain-based data processing system 10 of the present application.
  • the blockchain-based data processing system 10 is installed and operated in the electronic device 1.
  • the electronic device 1 is a device capable of automatically performing numerical calculation and/or information processing in accordance with pre-set or stored instructions.
  • the electronic device 1 may be a computer, a single web server, a server group composed of multiple web servers, or a cloud composed of a large number of hosts or web servers based on cloud computing, where cloud computing is a type of distributed computing, A super virtual computer composed of a group of loosely coupled computer sets.
  • the electronic device 1 may include, but is not limited to, a memory 11, a processor 12, and a network interface 13 that can be communicatively connected to each other through a system bus.
  • the memory 11 stores block-based blocks that can run on the processor 12. Chain of data processing system 10. It should be pointed out that FIG. 1 only shows the electronic device 1 with the components 11-13, but it should be understood that it is not required to implement all the illustrated components, and more or fewer components may be implemented instead.
  • the memory 11 includes a memory and at least one type of readable storage medium.
  • the memory provides a cache for the operation of the electronic device 1;
  • the readable storage medium can be, for example, flash memory, hard disk, multimedia card, card type memory (for example, SD or DX memory, etc.), random access memory (RAM), static random access memory (SRAM) ), read only memory (ROM), electrically erasable programmable read only memory (EEPROM), programmable read only memory (PROM), magnetic memory, magnetic disks, optical disks and other non-volatile storage media.
  • the readable storage medium may be an internal storage unit of the electronic device 1, such as the hard disk of the electronic device 1.
  • the non-volatile storage medium may also be an external storage unit of the electronic device 1.
  • Storage devices such as plug-in hard disks, Smart Media Card (SMC), Secure Digital (SD) cards, Flash Cards, etc., equipped on the electronic device 1.
  • the readable storage medium of the memory 11 is generally used to store the operating system and various application software installed in the electronic device 1, for example, to store the blockchain-based data processing system 10 in an embodiment of the present application.
  • the memory 11 can also be used to temporarily store various types of data that have been output or will be output.
  • the processor 12 may be a central processing unit (Central Processing Unit, CPU), controller, microcontroller, microprocessor, or other data processing chip in some embodiments.
  • the processor 12 is generally used to control the overall operation of the electronic device 1, such as performing data interaction or communication-related control and processing with the other equipment.
  • the processor 12 is used to run program codes or process data stored in the memory 11, for example, a data processing system 10 based on a blockchain.
  • the network interface 13 may include a wireless network interface or a wired network interface.
  • the network interface 13 is generally used to establish a communication connection between the electronic device 1 and other electronic devices.
  • the blockchain-based data processing system 10 includes at least one computer-readable instruction stored in the memory 11, and the at least one computer-readable instruction can be executed by the processor 12 to implement various embodiments of the present application.
  • the aforementioned blockchain-based data processing system 10 implements the following steps when executed by the processor 12:
  • Step S1 Obtain the original data to be uploaded to the blockchain, identify each independent field in the original data, and convert each independent field into key-value pair format data; wherein the key-value pair format data is The preset field corresponding to each independent field is marked as a key, and the field value is a value;
  • Step S2 Perform a hash calculation on the preset field label corresponding to each independent field, and use the obtained hash calculation result as the confusion label corresponding to each independent field;
  • Step S3 calculating the field encryption key corresponding to each independent field according to the preset calculation rule and using the confusion mark corresponding to each independent field;
  • Step S4 encrypting the field value of each independent field based on the field encryption key corresponding to each independent field and using a preset encryption algorithm to obtain an encrypted field;
  • Step S5 Upload the obfuscation flag and encrypted field corresponding to each independent field in the original data to the blockchain, so that the business related parties can find the corresponding obfuscation flag from the blockchain according to the obfuscation flag of the authorized field Encrypt the field and decrypt the found encrypted field to obtain the field value of the authorized field.
  • first obtain the original data to be uploaded to the blockchain identify and distinguish each independent field in the original data, and convert each independent field into key-value pair format data, where the key-value pair format
  • the field corresponding to each independent field is marked as the key and the field value is the value.
  • the field value in the format data is encrypted using the preset encryption algorithm using the preset field encryption key corresponding to each independent field to obtain the encrypted field; at the same time, the confusion mark of each independent field is calculated.
  • the business related party obtains the encrypted field and its confusion mark corresponding to each independent field in the original data through the blockchain, and retrieves the field encryption key and its confusion mark corresponding to the authorized field pre-authorized to the business related party Use the confusion mark corresponding to the authorized field to find out the independent field in the original data obtained from the blockchain, namely the authorized field, and obtain the encrypted field corresponding to the authorized field, and use the field encryption key corresponding to the authorized field Decrypt the obtained encrypted field to obtain the data content of the authorized field, that is, the field value. Since the business-related party does not have the field encryption keys of fields other than the authorized field in the original data, the business-related party cannot decrypt the data content of the fields other than the authorized field in the original data. In this way, data can be encrypted by field and can be authorized by field. While data sharing is realized on the blockchain, field information that is not expected to be seen by business related parties can be hidden.
  • independent fields can be individually encrypted, so that when authorizing, only partial fields can be authorized to read permissions. Therefore, it is necessary to first identify each independent field in the original data to be uploaded to the blockchain.
  • the original data is converted into json data, and the key-value pair in the converted json data is identified as the original data
  • the json format can be used to pass parameters, so that each independent field in the original data can be distinguished in the interface parameters, and each independent field in the original data can be converted into key-value pair format data using the json format.
  • the blockchain is a ⁇
  • the json format is also a key-value pair format.
  • the independent fields distinguished by the json format can be more conveniently transferred on the blockchain.
  • other similar data structures such as ⁇ key, value ⁇ key-value pair format can also be used to distinguish independent fields in the original data.
  • a HashMap format can be used to pass in a HashMap ⁇ key, object> array.
  • the blockchain is a shared database in ⁇ key, value ⁇ format.
  • the json format is used to convert individual fields (such as field 1, field 2, field 3...) into key-value pair format data
  • the encryption algorithm used during encryption includes but is not limited to the AES128 encryption algorithm.
  • a data encryption key x for the entire piece of data is preset, where x is a cryptographically secure random number; secondly, use
  • the key derivation algorithm generates a key for each independent field.
  • the key derivation algorithm in this embodiment includes but is not limited to: the key derivation function KDF3 (Key Derivation Function 3) algorithm.
  • the user when the user wants to authorize the relevant business party to view the value of field 2, the user can only authorize the encryption key of field 2 to the business party, but the business party still cannot view anything other than field 2.
  • Fields that is, the business party can only see the contents of the fields that are authorized to be viewed in the original data, but cannot see the contents of the entire original data, so that the data can be encrypted by field and can be authorized by field.
  • the storage result on the blockchain is: ⁇ key, [Confusion mark of field 1: Encrypted field 1, Confusion mark of field 2: Encrypted field 2, Confusion mark of field 3: Encrypted field 3...]> ,
  • the user wants to authorize field 2 the user needs to send the key, the encryption key corresponding to field 2, and the confusion mark of field 2 to the authorized party; the authorized party, through the confusion mark of key and field 2, find Encrypt field 2; and use the encryption key corresponding to field 2 to decrypt encrypted field 2 to get the data.
  • each independent field in the original data into key-value pair format data with a preset field marked as a key and field value
  • a hash calculation is performed on the preset field marking corresponding to each independent field to obtain the corresponding
  • the confusion mark and the encrypted field corresponding to each independent field are uploaded to the blockchain. Since each independent field in the data can be distinguished, and each independent field is encrypted before uploading to the blockchain, business parties can find out the encrypted fields corresponding to some authorized fields from the blockchain and perform Decrypt to obtain the field values of some authorized fields.
  • the business-related parties cannot decrypt some of the fields that are not authorized to them, nor can they obtain the field values of the unauthorized fields, so as to control the part of the data in the blockchain by the business-related parties.
  • Field authorization access since the field encryption key corresponding to each independent field is calculated by using the confusion indicator corresponding to each independent field, the field encryption key for encrypting the field value of each independent field is different, and the security is higher.
  • the entire piece of data information can be decrypted by aggregating multiple keys.
  • the encryption key x of the entire data can be used to derive the keys of all fields, and then use the keys of all fields to solve each field, and then merge each field to return to the upper layer. Specific steps are as follows:
  • Field 1 key KDF (x, confusion mark of field 1, iteration number);
  • Field 3 key KDF (x, confusion mark of field 3, iteration number);
  • FIG. 2 it is a functional module diagram of a preferred embodiment of the blockchain-based data processing system 10 in FIG. 1.
  • the blockchain-based data processing system 10 is divided into one or more functional modules, and the one or more functional modules are stored in the memory 11 and executed by the processor 12 to complete the application.
  • the "module” referred to in this application refers to a series of computer program instruction sets capable of completing specific functions.
  • the blockchain-based data processing system 10 is divided into: a conversion module 100, a first calculation module 110, a second calculation module 120, an encryption module 130, and an upload module 140.
  • the blockchain-based data processing system 10 is divided into a conversion module 100, a first calculation module 110, a second calculation module 120, an encryption module 130, and an upload module 140. It is to express more clearly the functions that the blockchain-based data processing system 10 can achieve, and is not used to limit that the blockchain-based data processing system 10 can only or must be divided into conversion modules 100 and A calculation module 110, a second calculation module 120, an encryption module 130, and an upload module 140.
  • the blockchain-based data processing system 10 can be easily divided into and The different functional modules in this embodiment will not be repeated here.
  • the conversion module 100 is configured to: obtain the original data to be uploaded to the blockchain, identify each independent field in the original data, and convert each independent field into key-value pair format data; wherein, the key In the value pair format data, the preset field corresponding to each independent field is marked as a key, and the field value is a value;
  • the first calculation module 110 is configured to: perform a hash calculation on the preset field indicator corresponding to each independent field, and use the obtained hash calculation result as the confusion indicator corresponding to each independent field;
  • the second calculation module 120 is configured to: calculate a field encryption key corresponding to each independent field according to a preset calculation rule and using the confusion mark corresponding to each independent field;
  • the encryption module 130 is configured to: encrypt the field value of each independent field based on the field encryption key corresponding to each independent field and use a preset encryption algorithm to obtain an encrypted field;
  • the upload module 140 is configured to: upload the obfuscation indicator and the encrypted field corresponding to each independent field in the original data to the block chain, so that the relevant business party can read from the block according to the obfuscation indicator of the authorized field Find the corresponding encrypted field in the chain and decrypt the found encrypted field to obtain the field value of the authorized field.
  • the above-mentioned second calculation module 120 is specifically configured to: obtain a data encryption key corresponding to the original data set in advance, and use a preset key derivation algorithm to perform the confusion mark and data encryption key corresponding to each independent field. Calculate to obtain the field encryption key corresponding to each independent field.
  • the above-mentioned conversion module 100 is specifically used to: obtain the original data to be uploaded to the blockchain, convert the original data into json data, and identify key-value pairs in the converted json data as individual fields in the original data The corresponding key-value pair format data.
  • FIG. 3 is a schematic flowchart of a preferred embodiment of a blockchain-based data processing method according to this application.
  • the blockchain-based data processing method includes the following steps:
  • Step S10 Obtain the original data to be uploaded to the blockchain, identify each independent field in the original data, and convert each independent field into key-value pair format data; wherein the key-value pair format data is The preset field corresponding to each independent field is marked as a key, and the field value is a value;
  • Step S20 Perform a hash calculation on the preset field label corresponding to each independent field, and use the obtained hash calculation result as the confusion label corresponding to each independent field;
  • Step S30 calculating the field encryption key corresponding to each independent field according to the preset calculation rule and using the confusion indicator corresponding to each independent field;
  • Step S40 encrypting the field value of each independent field based on the field encryption key corresponding to each independent field and using a preset encryption algorithm to obtain an encrypted field;
  • Step S50 Upload the obfuscation flag and encrypted field corresponding to each independent field in the original data to the blockchain, so that the business related parties can find the corresponding obfuscation flag and encrypted field from the blockchain according to the obfuscation flag of the authorized field. Encrypt the field and decrypt the found encrypted field to obtain the field value of the authorized field.
  • first obtain the original data to be uploaded to the blockchain identify and distinguish each independent field in the original data, and convert each independent field into key-value pair format data, where the key-value pair format
  • the field corresponding to each independent field is marked as the key and the field value is the value.
  • the field value in the format data is encrypted using the preset encryption algorithm using the preset field encryption key corresponding to each independent field to obtain the encrypted field; at the same time, the confusion mark of each independent field is calculated.
  • the business related party obtains the encrypted field and its confusion mark corresponding to each independent field in the original data through the blockchain, and retrieves the field encryption key and its confusion mark corresponding to the authorized field pre-authorized to the business related party Use the confusion mark corresponding to the authorized field to find out the independent field in the original data obtained from the blockchain, namely the authorized field, and obtain the encrypted field corresponding to the authorized field, and use the field encryption key corresponding to the authorized field Decrypt the obtained encrypted field to obtain the data content of the authorized field, that is, the field value. Since the business-related party does not have the field encryption keys of fields other than the authorized field in the original data, the business-related party cannot decrypt the data content of the fields other than the authorized field in the original data. In this way, data can be encrypted by field and authorized by field. While data sharing is realized on the blockchain, field information that is not expected to be seen by business related parties can be hidden.
  • independent fields can be individually encrypted, so that when authorizing, only partial fields can be authorized to read permissions. Therefore, it is necessary to first identify each independent field in the original data to be uploaded to the blockchain.
  • the original data is converted into json data, and the key-value pair in the converted json data is identified as the original data
  • the json format can be used to pass parameters, so that each independent field in the original data can be distinguished in the interface parameters, and each independent field in the original data can be converted into key-value pair format data using the json format.
  • the blockchain is a ⁇
  • the json format is also a key-value pair format.
  • the independent fields distinguished by the json format can be more conveniently transferred on the blockchain.
  • other similar data structures such as ⁇ key, value ⁇ key-value pair format can also be used to distinguish independent fields in the original data.
  • a HashMap format can be used to pass in a HashMap ⁇ key, object> array.
  • the blockchain is a shared database in ⁇ key, value ⁇ format.
  • the json format is used to convert individual fields (such as field 1, field 2, field 3...) into key-value pair format data
  • the encryption algorithm used during encryption includes but is not limited to the AES128 encryption algorithm.
  • a data encryption key x for the entire piece of data is preset, where x is a cryptographically secure random number; secondly, use
  • the key derivation algorithm generates a key for each independent field.
  • the key derivation algorithm in this embodiment includes but is not limited to: the key derivation function KDF3 (Key Derivation Function 3) algorithm.
  • the user when the user wants to authorize the relevant business party to view the value of field 2, the user can only authorize the encryption key of field 2 to the business party, but the business party still cannot view anything other than field 2.
  • Fields that is, the business party can only see the contents of the fields that are authorized to be viewed in the original data, but cannot see the contents of the entire original data, so that the data can be encrypted by field and can be authorized by field.
  • the storage result on the blockchain is: ⁇ key, [Confusion mark of field 1: Encrypted field 1, Confusion mark of field 2: Encrypted field 2, Confusion mark of field 3: Encrypted field 3...]> ,
  • the user wants to authorize field 2 the user needs to send the key, the encryption key corresponding to field 2, and the confusion mark of field 2 to the authorized party; the authorized party, through the confusion mark of key and field 2, find Encrypt field 2; and use the encryption key corresponding to field 2 to decrypt encrypted field 2 to get the data.
  • each independent field in the original data into key-value pair format data with a preset field marked as a key and field value
  • a hash calculation is performed on the preset field marking corresponding to each independent field to obtain the corresponding
  • the confusion mark and the encrypted field corresponding to each independent field are uploaded to the blockchain. Since each independent field in the data can be distinguished, and each independent field is encrypted before uploading to the blockchain, business parties can find out the encrypted fields corresponding to some authorized fields from the blockchain and perform Decrypt to obtain the field values of some authorized fields.
  • the business-related parties cannot decrypt some of the fields that are not authorized to them, nor can they obtain the field values of the unauthorized fields, so as to control the part of the data in the blockchain by the business-related parties.
  • Field authorization access since the field encryption key corresponding to each independent field is calculated by using the confusion indicator corresponding to each independent field, the field encryption key for encrypting the field value of each independent field is different, and the security is higher.
  • the entire piece of data information can be decrypted by aggregating multiple keys.
  • the encryption key x of the entire data can be used to derive the keys of all fields, and then use the keys of all fields to solve each field, and then merge each field to return to the upper layer. Specific steps are as follows:
  • Field 1 key KDF (x, confusion mark of field 1, iteration number);
  • Field 3 key KDF (x, confusion mark of field 3, iteration number);
  • the present application also provides a computer-readable storage medium, which may be a non-volatile computer-readable storage medium or a volatile computer-readable storage medium.
  • the computer-readable storage medium stores computer instructions, and when the computer instructions are executed on the computer, the computer executes the following steps:
  • the method of the above embodiments can be realized by means of software plus the necessary general hardware platform, and of course it can also be realized by hardware, but in many cases the former is Better implementation.
  • the technical solution of this application essentially or the part that contributes to the existing technology can be embodied in the form of a software product, and the computer software product is stored in a storage medium (such as ROM/RAM, magnetic disk, The optical disc) includes several instructions to enable a terminal device (which can be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to execute the method described in each embodiment of the present application.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

La présente invention concerne la technologie des chaînes de blocs. L'invention porte sur un procédé et un système de traitement de données basé sur une chaîne de blocs, sur un dispositif électronique et sur un support de stockage. Le procédé consiste à : acquérir des données d'origine à téléverser, identifier chaque champ indépendant dans les données d'origine, et convertir chaque champ indépendant en données au format paire clé-valeur, une marque de champ prédéfinie qui correspond à chaque champ indépendant dans les données au format paire clé-valeur étant une clé, et une valeur de champ qui lui correspond étant une valeur ; effectuer un calcul de hachage sur la marque de champ prédéfinie correspondant à chaque champ indépendant pour obtenir une marque de confusion correspondante ; effectuer un calcul selon une règle de calcul prédéfinie et au moyen de la marque de confusion correspondant à chaque champ indépendant de façon à obtenir une clé de chiffrement de champ correspondante ; chiffrer la valeur de champ de chaque champ indépendant au moyen d'un algorithme de chiffrement prédéfini et sur la base de la clé de chiffrement de champ correspondant à chaque champ indépendant de façon à obtenir un champ chiffré ; et téléverser, vers une chaîne de blocs, la marque de confusion et le champ chiffré correspondant à chaque champ indépendant dans les données d'origine. La présente invention réalise un accès autorisé à une partie des champs de données dans une chaîne de blocs.
PCT/CN2019/120890 2019-07-25 2019-11-26 Procédé et système de traitement de données basé sur une chaîne de blocs, et appareil électronique et support de stockage WO2021012548A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201910674033.7A CN110391906B (zh) 2019-07-25 2019-07-25 基于区块链的数据处理方法、电子装置及可读存储介质
CN201910674033.7 2019-07-25

Publications (1)

Publication Number Publication Date
WO2021012548A1 true WO2021012548A1 (fr) 2021-01-28

Family

ID=68287171

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/120890 WO2021012548A1 (fr) 2019-07-25 2019-11-26 Procédé et système de traitement de données basé sur une chaîne de blocs, et appareil électronique et support de stockage

Country Status (2)

Country Link
CN (1) CN110391906B (fr)
WO (1) WO2021012548A1 (fr)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110391906B (zh) * 2019-07-25 2022-10-25 深圳壹账通智能科技有限公司 基于区块链的数据处理方法、电子装置及可读存储介质
CN110943982B (zh) * 2019-11-21 2021-07-30 深圳壹账通智能科技有限公司 单据数据加密的方法、装置、电子设备和存储介质
CN111079162B (zh) * 2019-12-13 2022-10-28 山东众阳健康科技集团有限公司 一种基于区块链的数据加密方法、解密方法及***
CN111046407A (zh) * 2019-12-13 2020-04-21 山东众阳健康科技集团有限公司 一种基于区块链的数据存储***
CN111294203B (zh) * 2020-01-22 2022-02-11 腾讯科技(深圳)有限公司 信息传输方法
CN111464500B (zh) * 2020-03-06 2023-03-17 深圳壹账通智能科技有限公司 协议数据共享的方法、装置、设备及存储介质
CN113762955B (zh) * 2020-06-01 2024-04-02 菜鸟智能物流控股有限公司 一种交易的处理方法、装置、设备和机器可读介质
CN111884795B (zh) * 2020-07-21 2022-09-13 湖南创星科技股份有限公司 一种医疗信息数据脱敏保密、还原的方法及***
CN112487446A (zh) * 2020-11-26 2021-03-12 南京纯白矩阵科技有限公司 一种区块链加密算法热插拔的方法
CN115529131B (zh) * 2022-11-28 2023-03-14 广州万协通信息技术有限公司 基于动态密钥的数据加密解密方法及装置

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103942470A (zh) * 2014-05-07 2014-07-23 华中师范大学 一种具有溯源功能的电子音像制品版权管理方法
US20170330179A1 (en) * 2016-05-16 2017-11-16 Coinplug, Inc. Method for issuing authentication information and blockchain-based server using the same
CN109977697A (zh) * 2019-04-03 2019-07-05 陕西医链区块链集团有限公司 一种区块链的数据授权方法
CN110391906A (zh) * 2019-07-25 2019-10-29 深圳壹账通智能科技有限公司 基于区块链的数据处理方法、电子装置及可读存储介质

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105897402A (zh) * 2016-04-05 2016-08-24 乐视控股(北京)有限公司 参数加密方法、装置
US11249970B2 (en) * 2016-05-05 2022-02-15 Mastercard International Incorporated Method and system for distributed data storage with eternal integrity guarantees
CN111614464B (zh) * 2019-01-31 2023-09-29 创新先进技术有限公司 区块链中安全更新密钥的方法及节点、存储介质

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103942470A (zh) * 2014-05-07 2014-07-23 华中师范大学 一种具有溯源功能的电子音像制品版权管理方法
US20170330179A1 (en) * 2016-05-16 2017-11-16 Coinplug, Inc. Method for issuing authentication information and blockchain-based server using the same
CN109977697A (zh) * 2019-04-03 2019-07-05 陕西医链区块链集团有限公司 一种区块链的数据授权方法
CN110391906A (zh) * 2019-07-25 2019-10-29 深圳壹账通智能科技有限公司 基于区块链的数据处理方法、电子装置及可读存储介质

Also Published As

Publication number Publication date
CN110391906B (zh) 2022-10-25
CN110391906A (zh) 2019-10-29

Similar Documents

Publication Publication Date Title
WO2021012548A1 (fr) Procédé et système de traitement de données basé sur une chaîne de blocs, et appareil électronique et support de stockage
CN109862041B (zh) 一种数字身份认证方法、设备、装置、***及存储介质
CN107925660B (zh) 数据访问和所有权管理
EP3175575B1 (fr) Conditionnement de contenu sécurisé utilisant des environnements multiples de confiance d'exécution
US8850593B2 (en) Data management using a virtual machine-data image
US11379606B2 (en) Provision of risk information associated with compromised accounts
US9984238B1 (en) Intelligent storage devices with cryptographic functionality
US10320757B1 (en) Bounded access to critical data
US20150026462A1 (en) Method and system for access-controlled decryption in big data stores
US9882720B1 (en) Data loss prevention with key usage limit enforcement
CN106022155A (zh) 用于数据库安全管理的方法及服务器
US10127389B1 (en) Performing operations on intelligent storage with hardened interfaces
US20150143107A1 (en) Data security tools for shared data
CN107948152A (zh) 信息存储方法、获取方法、装置及设备
AU2018391625B2 (en) Re-encrypting data on a hash chain
CN109034796A (zh) 基于联盟链的交易监管方法、电子装置及可读存储介质
US9853811B1 (en) Optimistic key usage with correction
CN104657670A (zh) 一种基于数据加密的配置文件安全使用方法
CN109379360B (zh) 审计方法、电子装置及计算机可读存储介质
CN113420049B (zh) 数据流通方法、装置、电子设备及存储介质
US20160330022A1 (en) Cryptographic system, key generation apparatus, re-encryption apparatus and user terminal
CN113743955A (zh) 基于智能合约的食材溯源数据安全访问控制方法
CN110889121A (zh) 防止数据泄露的方法、服务器及存储介质
CN113127915A (zh) 数据加密脱敏方法、装置、电子设备及存储介质
CN111563268B (zh) 基于矩阵运算的数据加密方法、装置及存储介质

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19938638

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19938638

Country of ref document: EP

Kind code of ref document: A1

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 05/08/2022)

122 Ep: pct application non-entry in european phase

Ref document number: 19938638

Country of ref document: EP

Kind code of ref document: A1