WO2022141024A1 - Blockchain technology-based business transaction method and system, and storage medium - Google Patents

Blockchain technology-based business transaction method and system, and storage medium Download PDF

Info

Publication number
WO2022141024A1
WO2022141024A1 PCT/CN2020/140653 CN2020140653W WO2022141024A1 WO 2022141024 A1 WO2022141024 A1 WO 2022141024A1 CN 2020140653 W CN2020140653 W CN 2020140653W WO 2022141024 A1 WO2022141024 A1 WO 2022141024A1
Authority
WO
WIPO (PCT)
Prior art keywords
chain
partition
target
basic
business transaction
Prior art date
Application number
PCT/CN2020/140653
Other languages
French (fr)
Chinese (zh)
Inventor
匡立中
蔡亮
李伟
张帅
虞博名
Original Assignee
杭州趣链科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 杭州趣链科技有限公司 filed Critical 杭州趣链科技有限公司
Priority to PCT/CN2020/140653 priority Critical patent/WO2022141024A1/en
Publication of WO2022141024A1 publication Critical patent/WO2022141024A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules

Definitions

  • the present application relates to the field of blockchain technology, and in particular, to a business transaction method, system and storage medium based on blockchain technology.
  • Blockchain technology also known as distributed ledger technology
  • BT Blockchain technology
  • distributed ledger technology is an Internet database technology, which is characterized by decentralization, openness and transparency, allowing everyone to participate in database records.
  • the existing blockchain network transaction method has the problem of low transaction security.
  • This application provides a business transaction method, system and storage medium based on blockchain technology to solve the problem of low transaction security in existing blockchain network transaction methods.
  • the embodiments of the present application provide a business transaction method based on blockchain technology, which is applied to a business transaction system, and the business transaction system includes a basic chain module and communicates with any server in the basic chain module.
  • the connected partition chain module which includes at least one partition chain, includes the following steps:
  • the basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target The partition chain is used to execute the target business in the business transaction request;
  • the basic chain module responds to the business transaction request, and verifies the requester's partition chain access authority according to the requester identity information and the target chain identification information, and obtains a verification result;
  • the basic chain module When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
  • the target partition link After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
  • the embodiments of the present application also provide a business transaction system based on blockchain technology, which includes a basic chain module, and a partition chain module that is communicatively connected to any server in the basic chain module.
  • the chain module includes at least one partition chain;
  • the basic chain module is used to verify the received business transaction request, and send the verified business transaction request to the target partition chain in the partition chain module, so as to receive and store the business transaction fed back by the target partition chain result;
  • the partition chain module is configured to receive the verified business transaction request sent by the basic chain module through the target partition chain, and execute the target business in the business transaction request on the target partition chain to obtain the business transaction request. After the transaction result, the business transaction result is fed back to the basic chain module.
  • an embodiment of the present application further provides a storage medium, wherein the storage medium stores a plurality of instructions, and the instructions are adapted to be loaded by a processor to perform the following steps:
  • the basic chain module receives the business transaction request sent by the requester, the business transaction request carries the requester identity information and the target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target partition chain for executing the target service in the service transaction request;
  • the basic chain module responds to the business transaction request, and verifies the access authority of the partition chain of the requester according to the identity information of the requester and the identification information of the target chain, and obtains a verification result;
  • the basic chain module When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
  • the target partition link After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
  • the business transaction system includes a basic chain module and a partition that is communicatively connected to any server in the basic chain module.
  • chain module the partition chain module includes at least one partition chain
  • the basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester identity information and target chain identification information, the target chain
  • the chain identification information includes the partition chain identification of the target partition chain, and the target partition chain is used to execute the target business in the business transaction request;
  • the basic chain module responds to the business transaction request, according to the requester identity information and
  • the target chain identification information verifies the access authority of the partition chain of the requester, and obtains a verification result; when the basic chain module detects that the verification result is verified, it sends the business transaction request to the Target partition chain; after receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, the business
  • this application divides the blockchain network into a "basic chain + partitioned chain" structure, the basic chain acts as a decision-making organization and the partitioned chain acts as a business implementation organization, so the partitioned chain can be safely and effectively executed under the authentication guarantee of the basic chain
  • the target business greatly improves the business transaction security of the blockchain network.
  • the transaction business is only executed in the partition chain, which reduces the network resource overhead and improves the availability of the blockchain network.
  • FIG. 1 is a schematic diagram of a scenario of a business transaction method provided by an embodiment of the present application.
  • FIG. 2 is a structural block diagram of a business transaction system provided by an embodiment of the present application.
  • FIG. 3 is a schematic flowchart of a business transaction method provided by an embodiment of the present application.
  • FIG. 4 is a schematic structural diagram of a computer device provided by an embodiment of the present application.
  • the business transaction method provided by the embodiment of the present application may be applied to the business transaction scenario shown in FIG. 1 .
  • the scenario includes a terminal 100 and a business transaction system 200.
  • the business transaction system 200 is composed of multiple blockchain servers 300.
  • the terminal 100 may be a device that includes both receiving and transmitting hardware, that is, a device capable of transmitting and receiving hardware on a two-way communication link. , a device that performs two-way communication with receive and transmit hardware.
  • Such devices may include cellular or other communication devices with a single-line display or a multi-line display or a cellular or other communication device without a multi-line display.
  • the terminal 100 may specifically be a desktop terminal or a mobile terminal, and the terminal 100 may specifically be one of a mobile phone, a tablet computer, a notebook computer, and the like.
  • the blockchain server 300 can be an independent server, or a server network or server cluster composed of servers, including but not limited to a computer, a network host, a single network server, multiple network server sets, or a cloud server composed of multiple servers. .
  • the cloud server is composed of a large number of computers or network servers based on cloud computing (Cloud Computing).
  • the blockchain server 300 as a node in the business transaction system 200, can communicate with each other through a wireless connection, and the wireless connection can include Bluetooth, Wi-Fi, a dedicated network within the system, and the like.
  • the business transaction system 200 may be composed of a basic chain module 201 composed of a plurality of blockchain main servers, and a partition chain module 202 communicatively connected to each blockchain main server. The system composition is shown in FIG. 2 .
  • the basic chain module should only represent a basic chain, that is to say, the blockchain network involved in the embodiments of the present application only includes one chain consisting of multiple chains.
  • the basic chain formed by the blockchain main server, and the number of partition chains corresponding to each blockchain main server is not limited. It can be understood that the business transaction method proposed in this application can be applied to government units and judicial units.
  • the connected blockchain main server corresponds to the local server of the sub-department or sub-department directly under the corresponding department.
  • each blockchain main server in the basic chain is the local server of the highest government department of each province
  • each blockchain server in the partition chain is the local server of each provincial highest government department and regional government department.
  • FIG. 1 and FIG. 2 are just an example.
  • the business transaction system and the scenarios described in the embodiments of the present invention are for the purpose of illustrating the technical solutions of the embodiments of the present invention more clearly, not for This constitutes a limitation on the technical solutions provided by the embodiments of the present invention.
  • Those of ordinary skill in the art know that with the evolution of the business transaction system and the emergence of new business scenarios, the technical solutions provided by the embodiments of the present invention are also applicable to similar technical problems. .
  • an embodiment of the present application provides a business transaction method based on blockchain technology, which is mainly illustrated by applying the method to the business transaction system 200 in the above-mentioned FIG. 1 or FIG. 2 .
  • the method includes steps 301 to 304, as follows:
  • the basic chain module receives a business transaction request sent by a requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain.
  • the target partition chain is used to execute the target service in the service transaction request.
  • the basic chain module is the basic chain module 201 included in the business transaction system 200, which has been described above and is a blockchain network composed of multiple blockchain servers 300, and is specifically applied in actual business scenarios (such as government and judicial scenarios), it can be a basic chain composed of multiple blockchain main servers, and each blockchain main server can be a local server of a high-level government department or a high-level judicial department, or a local server. Other servers to which a communication connection is established. It is to be understood that the senior government department or the senior judicial department may be the highest government department in each province or the highest judicial department in each province. Therefore, the blockchain server 200 serving as a chain node on each partition chain in the partition chain module is a subordinate server corresponding to the main server of the blockchain.
  • the requester may refer to a user or organization requesting a business transaction through the blockchain network;
  • the requester identity information may refer to the identity information of the user or organization submitting the business transaction request, such as ID number, mobile phone ID number, account number, taxpayer identification number and other globally unique identification numbers (Identity document, ID).
  • the target chain identifier information may refer to the partition chain identifier of the target partition chain
  • the target partition chain may refer to the partition chain for which the requester requests to execute the service set to be executed.
  • the partition chain module in the business transaction system 200 may include one partition chain, or may include at least two multiple partition chains, and each partition chain has at least two blockchain servers 300 as node servers, and Among the at least two blockchain servers 300, there should be one blockchain master server, which is a node server that constitutes the basic chain. Therefore, in order to ensure the accuracy and efficiency of task execution, the embodiment of the present application presets a partition chain identifier for each partition chain, and the requester can add at least one partition chain identifier to the business transaction request submitted by him to Instruct the base chain module that receives the business transaction request to forward the request to its designated partition chain, that is, the target partition chain.
  • the basic chain module 201 receives a business transaction request sent by the requester, the requester's identity information carried in the request is the government department number "abc", the target chain identification information is the partition chain identifier "001" of the target partition chain, and At this time, there are 3 partition chains in the blockchain network, and the corresponding partition chain identifiers are "001", “002" and "003" respectively, then the target partition chain used to execute the target business in the business transaction request is "001" "The corresponding partition chain.
  • the requester can send the service transaction request generated on the terminal 100 to the service transaction system 200 through the terminal 100.
  • the service transaction system 200 can forward the request to the basic chain.
  • the basic chain module 200 authenticates and addresses the service (querying the target partition chain), and then forwards the request to the target partition chain finally queried, so that the target partition chain executes based on the relevant data in the business transaction request The target business that the requester requests to perform.
  • the basic chain module verifies the access authority of the partition chain of the requester according to the identity information of the requester and the identification information of the target chain, and obtains a verification result.
  • the access authority usually means that according to the security rules or security policies set by the system, the user can access and can only access the resources authorized by him, and the access authority of the partition chain may refer to the requester's access instruction to the target partition chain Permission, that is, whether the requester has permission to instruct the target partition chain to execute the target business.
  • the business transaction system 200 can send the business transaction request to the basic chain module 201, or the business transaction request is directly received by the basic chain module 201, and the request is processed while receiving the request.
  • the verification result can be that the verification passes or the verification fails.
  • the basic chain module 201 can send the business transaction request to the addressed target partition chain, so that the target partition chain executes. target business.
  • the steps of verifying the access authority of the partition chain involved in this embodiment will be described in detail in the question.
  • this step includes: 401.
  • the basic chain module responds to the business transaction request, and respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table , to obtain an information matching result; wherein, at least a pair of user identity identifiers and partition chain identifiers are recorded in the partition chain access permission table; 402, the basic chain module, according to the information matching result, Verify the access rights of the partition chain and get the verification result.
  • the user identity identifier and the partition chain identifier are pre-recorded in the partition chain access permission table, that is to say, the user identity identifier and the partition chain identifier may be in a one-to-one pairing form. It can also be in the form of one-to-many or many-to-one pairing.
  • the verification result obtained is that the verification is passed.
  • the basic chain module 201 receives and responds to the business transaction request sent by the requester, and can match the requester's identity information with the preset partition chain access permission table, obtain the first information matching result, and then match the target chain identification information Match with the preset partition chain access authority table to obtain the second information matching result, and finally verify the partition chain access authority of the requester according to the first information matching result and/or the second information matching result to obtain the verification result .
  • the basic chain module 201 matches the requester's identity information with the preset partition chain access permission table, and the obtained first information matching result may be the user ID in the partition chain access permission table, or the preset prompt "Not valid user".
  • the meaning of "invalid user” is that the identity information of the requester carried in the request does not exist in the partition chain access permission table, and is an invalid user, while the user existing in the partition chain access permission table is a valid user.
  • the basic chain module 201 can continue to match the target chain identification information with the preset partition chain access authority table, that is, query the partition chain.
  • the basic chain module 201 verifies the access authority of the partition chain of the requester, and obtains the verification result as "verification passed".
  • the requester identity information is first matched with the partition chain access permission table, and then the target chain identification information is matched with the partition chain access permission table
  • the target chain identification information is matched with the partition chain access permission table
  • the requester identity information is matched with the partition chain access permission table.
  • the step of obtaining the information matching result involved in this embodiment will be described in detail below.
  • the basic chain module in response to the business transaction request, matches the requester's identity information and the target chain's identification information with a preset partition chain access permission table, respectively, to obtain an information matching result.
  • the steps include: 501.
  • the basic chain module responds to the business transaction request, and determines the target user identity in the partition chain access permission table, where the target user identity matches the requester identity information.
  • the basic chain module obtains at least one partition chain identification corresponding to the target user identification; 503.
  • the basic chain module analyzes the at least one partition chain identification and the target chain identification information, and obtains Information matching results.
  • the target user identity may refer to the user identity that matches the requester's identity information, that is, the user's identity that is recorded in the partition chain access permission table and that is consistent with the requester's identity information.
  • the information matching result acquisition step described in this embodiment is the first example step briefly described in the previous embodiment, that is, the requester identity information is first matched with the partition chain access permission table, and the partition chain is determined. Access the target user ID in the permission table, obtain at least one partition chain ID corresponding to the target user ID, and then compare the target chain ID information with at least one partition chain ID corresponding to the target user ID in the partition chain access permission table. A partition chain identifier is matched, and if the at least one partition chain identifier includes the partition chain identifier of the target partition chain corresponding to the target chain identifier information, the information matching result is "matching successful".
  • the identification matching steps involved in this embodiment will be described in detail below.
  • the basic chain module analyzes the at least one partition chain identifier and the target chain identifier information, and the step of obtaining an information matching result includes: 601.
  • the basic chain module analyzes the at least one partition chain The identifier and the target chain identifier information; 602. If the at least one partition chain identifier includes a target partition chain identifier, determine that the information matching result is a successful match, and the target partition chain identifier is the target chain identifier information 603. If the at least one partition chain identifier does not include the target partition chain identifier, determine that the information matching result is a matching failure.
  • the identification matching step involved in this embodiment has been described in the above-mentioned embodiments, that is, when at least one partition chain identification corresponding to the target user identification information includes the target partition chain corresponding to the target chain identification information If the partition chain identifier is , it can be determined that the information matching result is "matching successful", otherwise, it can be determined that the information matching result is "matching failure".
  • the function of obtaining the information matching result is to determine the verification result, and the function of obtaining the verification result is to judge whether to send the business transaction request to the target partition chain, and this process is the authentication process of the basic chain.
  • the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain.
  • the target partition chain may be a partition chain designated by the requester for executing the business transaction requesting the target business.
  • the basic chain module 201 detects that the current access authority of the partition chain is verified, and the obtained verification result is "verification passed", the business transaction request can be sent to the target partition chain. It has been explained in detail that in the blockchain network involved in this application, each partition chain has a corresponding partition chain identifier, so the addressing process of the basic chain module 201 is to use the target chain identifier information in the business transaction request to query and determine The process of the target partition chain. Further, after the basic chain module 201 determines the target partition chain, it can send the business transaction request to the target partition chain. It can be seen that other partition chains cannot receive the current business transaction request. Network transactions are only executed in the partition chain, reducing overhead. On the other hand, the relevant business data carried in the business transaction request is only visible at the node server on the target partition chain, which fully protects data privacy.
  • the target partition link After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the Basic chain module.
  • the business transaction result may refer to the result generated during the execution of the target business by the target partition chain, or after the execution of the target business. Success”; another example, the business transaction result is the informative information generated by abnormal conditions during the execution of the target business - “business transaction failed”; another example, the business transaction result is that after the target business is successfully executed, the obtained transaction result data cannot be processed. Informative message from storage - "Data storage failed”.
  • the target partition link in the partition chain module 202 can further obtain the relevant data for executing the target business in the business transaction request, so as to execute the request by the requester according to the data.
  • the target business to be executed such as data analysis tasks, data statistics tasks, data classification storage tasks, data query tasks, etc., and the business transaction results generated during the execution of the target business, or the business transaction result feedback after the target business is executed to the basic chain module 201, so that the basic chain module 201 can further perform subsequent operations according to the business transaction result.
  • the business transaction result processing steps involved in this embodiment will be described in detail below.
  • this step includes: 701. After receiving the service transaction request sent by the basic chain module, the target partition link executes the target service according to the service data carried in the service transaction request, and obtains transaction result data; 702, the target partition chain obtains the hash data corresponding to the transaction result data; 703, the target partition chain stores the transaction result data, and uses the hash data as the business transaction result It is fed back to the basic chain module, and the hash data is used for storage by the basic chain module.
  • digest means that a computer can calculate a feature value with the same length for any content.
  • the hash length in the blockchain is 256 bits, which means that no matter what the original content is, a 256-bit binary number will be calculated in the end. And it can be guaranteed that as long as the original content is different, the corresponding hash must be different.
  • the hash data involved in the embodiment of the present application is the hash data corresponding to the transaction result data obtained through hash calculation, and may also be referred to as digest information.
  • the target partition chain in the partition chain module 202 receives the business transaction request sent by the basic chain module 201, and executes the target business according to the business data carried in the business transaction request, and obtains the transaction result data
  • the result data is hashed, for example, a message digest algorithm (Message-Digest Algorithm, MD5) is used to obtain the summary information (hash data) corresponding to the transaction result data as the transaction result data, so as to convert the hash data corresponding to the transaction result data
  • MD5 message digest algorithm
  • the basic chain module 201 for storage, so that the basic chain module 201 can further improve the credibility of all data based on the pre-stored hash data.
  • the target partition chain stores the transaction result data and feeds back the hash data as the business transaction result to the basic chain module
  • the following steps are further included: 801.
  • the basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified; 802, the basic chain module performs hash calculation on the transaction result data to be verified , to obtain the hash data to be verified; 803 , the basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
  • the data verification request may be a request sent by a node server on any partition chain in the business transaction system 200, and the request may be used to request data to be stored or data to be sent out for validity verification inspection request.
  • the transaction result data to be verified may be the transaction result data involved in the above embodiment, or other unmentioned transaction result data. If it is the transaction result data mentioned in the above embodiment, the request The purpose of verifying it is to prevent it from being maliciously tampered with during its storage in the partition chain module 202 , thereby causing a series of subsequent security problems.
  • the transaction result data obtained by the target partition chain executing the target business does not need to be sent to the basic chain module 201 , but only needs to be stored in the partition chain module 202 , thereby reducing the data storage cost of the business transaction system 200 .
  • the target partition chain stores the transaction result data and feeds back the hash data as the business transaction result to the basic chain module 201
  • the hash data stored in the basic chain module 201 can be used for the subsequent submission of the partition chain.
  • the validity of the data is verified, that is, when the basic chain module receives the data verification request sent by any partition chain, it can perform hash calculation based on the transaction result data to be verified carried in the data verification request to obtain the data to be verified.
  • the steps of judging the authenticity of the data involved in this embodiment will be described in detail below.
  • the step of determining, by the basic chain module, the authenticity of the transaction result data to be verified according to the hash data to be verified includes: 901.
  • the basic chain module The hash data is matched with the pre-stored hash data, and a hash matching result is obtained; 902.
  • the basic chain module When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain; 903.
  • the basic chain module When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
  • the basic chain module 201 can match the hash data to be verified with the pre-stored hash data.
  • the matching method can be to query whether the hash data to be verified is included in the pre-stored hash data. data to obtain the hash matching result. If the hash matching result is "matching the same", a "data truth prompt” can be generated, and the “data truth prompt” can be fed back to the partition chain that sent the data verification request; if the hash matching result is "different matching", Then a "data false prompt” can be generated, and the "data false prompt” can be fed back to the partition chain that sends the data verification request.
  • this application proposes to divide the blockchain network into a "basic chain + partitioned chain" structure, with the basic chain as the decision-making organization and the partitioned chain as the business implementation organization, so that the partitioned chain can be under the authentication guarantee of the basic chain.
  • Execute the target business safely and effectively, and greatly improve the business transaction security of the blockchain network.
  • since the transaction business is only executed in the target partition chain, and the transaction result data is only stored in the partition chain, it not only reduces the network resource overhead, but also saves the system data storage cost.
  • various business departments can quickly join or exit business divisions according to their own business needs, maximizing the use of their own equipment resources and improving the availability of the blockchain network.
  • an embodiment of the present application provides a business transaction system 200 based on blockchain technology, which includes a basic chain module 201 and a partition chain module 202 that is communicatively connected to any server in the basic chain module.
  • the partition chain module includes at least one partition chain;
  • the basic chain module 201 is used to verify the received business transaction request, and send the verified business transaction request to the target partition chain in the partition chain module, so as to receive and store the business fed back by the target partition chain transaction results;
  • the partition chain module 202 is configured to receive the verified business transaction request sent by the basic chain module through the target partition chain, and execute the target business in the business transaction request on the target partition chain, and obtain: After the business transaction result, the business transaction result is fed back to the basic chain module.
  • the storage medium may include: a read-only memory (ROM, Read Only Memory), a random access memory (RAM, Random Access Memory), a magnetic disk or an optical disk, and the like.
  • an embodiment of the present application provides a storage medium, wherein the storage medium stores a plurality of instructions, and the instructions are adapted to be loaded by a processor to perform the following steps:
  • the basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target The partition chain is used to execute the target business in the business transaction request;
  • the basic chain module responds to the business transaction request, and verifies the requester's partition chain access authority according to the requester identity information and the target chain identification information, and obtains a verification result;
  • the basic chain module When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
  • the target partition link After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
  • the basic chain module is executed to respond to the business transaction request, and according to the requester identity information and the target chain identification information, the access authority of the partition chain of the requester is verified to obtain Steps to verify the results, including:
  • the basic chain module In response to the business transaction request, the basic chain module respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table to obtain an information matching result; wherein, the partition chain There are at least one pair of user ID and partition chain ID recorded in the access permission table;
  • the basic chain module verifies the access authority of the partition chain of the requester according to the information matching result, and obtains the verification result.
  • the basic chain module is executed to respond to the business transaction request, and the identity information of the requester and the identification information of the target chain are respectively matched with the preset partition chain access permission table to obtain the information Steps to match results, including:
  • the basic chain module in response to the business transaction request, determines the target user identity in the partition chain access permission table, and the target user identity is the user identity that matches the requester identity information;
  • the basic chain module obtains at least one partition chain identifier corresponding to the target user identifier
  • the base chain module analyzes the at least one partition chain identifier and the target chain identifier information to obtain an information matching result.
  • the steps of executing the basic chain module to analyze the at least one partition chain identifier and the target chain identifier information to obtain an information matching result include:
  • the base chain module analyzes the at least one partition chain identifier and the target chain identifier information
  • the at least one partition chain identifier includes a target partition chain identifier, it is determined that the information matching result is a successful match, and the target partition chain identifier is the partition chain identifier in the target chain identifier information;
  • the at least one partition chain identifier does not include the target partition chain identifier, it is determined that the information matching result is a matching failure.
  • the target business in the business transaction request is executed, and after obtaining the business transaction result, the The steps of feeding back business transaction results to the basic chain module include:
  • the target partition link After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business according to the business data carried in the business transaction request to obtain transaction result data;
  • the target partition chain obtains the hash data corresponding to the transaction result data
  • the target partition chain stores the transaction result data, and feeds back the hash data to the basic chain module as the business transaction result, and the hash data is used for storage by the basic chain module.
  • the method further includes:
  • the basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified;
  • the basic chain module performs hash calculation on the transaction result data to be verified to obtain hash data to be verified;
  • the basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
  • executing the step of determining the authenticity of the transaction result data to be verified according to the hash data to be verified by the basic chain module including:
  • the basic chain module matches the to-be-verified hash data with the pre-stored hash data to obtain a hash matching result
  • the basic chain module When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain;
  • the basic chain module When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
  • the business transaction system 200 may be implemented in the form of a computer program, and the computer program may be executed on the computer device as shown in FIG. 4 .
  • the memory of the computer device can store various program modules constituting the business transaction system 200 , for example, the basic chain module 201 and the partition chain module 202 shown in FIG. 2 .
  • the computer program constituted by each program module enables the processor to execute the steps in the business transaction method of each embodiment of the present application described in this specification.
  • the computer device shown in FIG. 4 may execute steps 301 , 302 and 303 through the basic chain module 201 in the business transaction system 200 shown in FIG. 2 .
  • the computer device may perform step 304 through the partition chain module 202 .
  • the computer device includes a processor, memory, and a network interface connected by a system bus. Among them, the processor of the computer device is used to provide computing and control capabilities.
  • the memory of the computer device includes non-volatile storage media and internal memory.
  • the nonvolatile storage medium stores an operating system and a computer program.
  • the internal memory provides an environment for the execution of the operating system and computer programs in the non-volatile storage medium.
  • the network interface of the computer equipment is used to communicate with external computer equipment through a network connection.
  • FIG. 4 is only a block diagram of a partial structure related to the solution of the present application, and does not constitute a limitation on the computer equipment to which the solution of the present application is applied. Include more or fewer components than shown in the figures, or combine certain components, or have a different arrangement of components.
  • this application divides the blockchain network into a "basic chain + partitioned chain" structure, with the basic chain as the decision-making organization and the partitioned chain as the business implementation organization, so that the partitioned chain can be guaranteed by the authentication of the basic chain.
  • Execute the target business safely and effectively, and greatly improve the business transaction security of the blockchain network.
  • since the transaction business is only executed in the target partition chain, and the transaction result data is only stored in the partition chain, it not only reduces the network resource overhead, but also saves the system data storage cost.
  • various business departments can quickly join or exit business divisions according to their own business needs, maximizing the use of their own equipment resources and improving the availability of the blockchain network.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Disclosed is a blockchain technology-based business transaction method and system, and a storage medium. The method is applied to a business transaction system. The business transaction system comprises a basic chain module and a partition chain module communicatively connected to any server in the basic chain module. The partition chain module comprises at least one partition chain. Transaction authentication and partition chain addressing are performed by means of the basic chain module, such that a target business can be executed in a target partition chain addressed, thereby improving business transaction security of a blockchain network.

Description

基于区块链技术的业务交易方法、***及存储介质Business transaction method, system and storage medium based on blockchain technology 技术领域technical field
本申请涉及区块链技术领域,尤其涉及一种基于区块链技术的业务交易方法、***及存储介质。The present application relates to the field of blockchain technology, and in particular, to a business transaction method, system and storage medium based on blockchain technology.
背景技术Background technique
区块链技术,简称BT(Blockchain technology),也被称为分布式账本技术,是一种互联网数据库技术,其特点是去中心化、公开透明,让每个人均可参与数据库记录。随着区块链技术的快速发展,越来越多的业务领域开始构建区块链网络,以期实现其去中心化的管理业务,例如政府、公安、财政等业务领域。Blockchain technology, referred to as BT (Blockchain technology), also known as distributed ledger technology, is an Internet database technology, which is characterized by decentralization, openness and transparency, allowing everyone to participate in database records. With the rapid development of blockchain technology, more and more business fields have begun to build blockchain networks in order to realize their decentralized management business, such as government, public security, finance and other business fields.
然而,随着区块链网络节点规模的不断增大,每一笔交易的执行时长和网络资源等开销都在增加,区块链网络的可用性开始受到影响。并且由于所有上链的数据对各个节点都可见,构建一条业务专有的区块链也将会导致一些隐私数据存在泄漏风险。针对上述缺陷,虽然已有联盟链网络可降低开销、保证业务数据安全,但正由于联盟链网络的节点数量少,造成其篡改成本低,故而仍难以保证业务数据的不可篡改性。However, as the scale of blockchain network nodes continues to increase, the execution time and network resources of each transaction increase, and the availability of the blockchain network begins to be affected. And since all the data on the chain is visible to each node, building a business-specific blockchain will also lead to the risk of leakage of some private data. In view of the above shortcomings, although the existing consortium chain network can reduce the overhead and ensure the security of business data, it is still difficult to ensure the non-tampering of business data due to the small number of nodes in the consortium chain network, resulting in low tampering costs.
因而,现有的区块链网络交易方式存在交易安全性低的问题。Therefore, the existing blockchain network transaction method has the problem of low transaction security.
技术问题technical problem
本申请提供一种基于区块链技术的业务交易方法、***及存储介质,以解决现有区块链网络交易方式存在交易安全性低的问题。This application provides a business transaction method, system and storage medium based on blockchain technology to solve the problem of low transaction security in existing blockchain network transaction methods.
技术解决方案technical solutions
第一方面,本申请实施例提供了一种基于区块链技术的业务交易方法,其应用于业务交易***,所述业务交易***包括基础链模块及与所述基础链模块中任意一个服务器通信连接的分区链模块,所述分区链模块中包括至少一个分区链,包括如下步骤:In the first aspect, the embodiments of the present application provide a business transaction method based on blockchain technology, which is applied to a business transaction system, and the business transaction system includes a basic chain module and communicates with any server in the basic chain module. The connected partition chain module, which includes at least one partition chain, includes the following steps:
所述基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;The basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target The partition chain is used to execute the target business in the business transaction request;
所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;The basic chain module responds to the business transaction request, and verifies the requester's partition chain access authority according to the requester identity information and the target chain identification information, and obtains a verification result;
所述基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
第二方面,本申请实施例还提供了一种基于区块链技术的业务交易***,其包括基础链模块,以及与所述基础链模块中任意一个服务器通信连接的分区链模块,所述分区链模块中包括至少一个分区链;In the second aspect, the embodiments of the present application also provide a business transaction system based on blockchain technology, which includes a basic chain module, and a partition chain module that is communicatively connected to any server in the basic chain module. The chain module includes at least one partition chain;
所述基础链模块,用于验证接收到的业务交易请求,并将验证通过的业务交易请求发送至所述分区链模块中的目标分区链,以便接收并存储所述目标分区链反馈的业务交易结果;The basic chain module is used to verify the received business transaction request, and send the verified business transaction request to the target partition chain in the partition chain module, so as to receive and store the business transaction fed back by the target partition chain result;
所述分区链模块,用于通过所述目标分区链,接收所述基础链模块发送的验证通过的业务交易请求,并在所述目标分区链执行所述业务交易请求中的目标业务,得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。The partition chain module is configured to receive the verified business transaction request sent by the basic chain module through the target partition chain, and execute the target business in the business transaction request on the target partition chain to obtain the business transaction request. After the transaction result, the business transaction result is fed back to the basic chain module.
第三方面,本申请实施例还提供一种存储介质,其中,所述存储介质存储有多条指令,所述指令适于处理器进行加载,以执行如下步骤:In a third aspect, an embodiment of the present application further provides a storage medium, wherein the storage medium stores a plurality of instructions, and the instructions are adapted to be loaded by a processor to perform the following steps:
基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;The basic chain module receives the business transaction request sent by the requester, the business transaction request carries the requester identity information and the target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target partition chain for executing the target service in the service transaction request;
基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;The basic chain module responds to the business transaction request, and verifies the access authority of the partition chain of the requester according to the identity information of the requester and the identification information of the target chain, and obtains a verification result;
基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
有益效果beneficial effect
相较于现有技术,本申请提供的基于区块链技术的业务交易方法及业务交易***中,所述业务交易***包括基础链模块及与所述基础链模块中任意一个服务器通信连接的分区链模块,所述分区链模块中包括至少一个分区链,所述基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;所述基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。由于本申请通过将区块链网络划分为“基础链+分区链”架构,由基础链充当决策组织、分区链充当业务实施组织,因此分区链可在基础链的鉴权保障下安全有效地执行目标业务,大幅提升区块链网络的业务交易安全,同时交易业务仅在分区链执行,降低了网络资源开销,提高了区块链网络的可用性。Compared with the prior art, in the business transaction method and business transaction system based on blockchain technology provided by the present application, the business transaction system includes a basic chain module and a partition that is communicatively connected to any server in the basic chain module. chain module, the partition chain module includes at least one partition chain, the basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester identity information and target chain identification information, the target chain The chain identification information includes the partition chain identification of the target partition chain, and the target partition chain is used to execute the target business in the business transaction request; the basic chain module responds to the business transaction request, according to the requester identity information and The target chain identification information verifies the access authority of the partition chain of the requester, and obtains a verification result; when the basic chain module detects that the verification result is verified, it sends the business transaction request to the Target partition chain; after receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, the business transaction result is fed back to The base chain module. Since this application divides the blockchain network into a "basic chain + partitioned chain" structure, the basic chain acts as a decision-making organization and the partitioned chain acts as a business implementation organization, so the partitioned chain can be safely and effectively executed under the authentication guarantee of the basic chain The target business greatly improves the business transaction security of the blockchain network. At the same time, the transaction business is only executed in the partition chain, which reduces the network resource overhead and improves the availability of the blockchain network.
附图说明Description of drawings
下面结合附图,通过对本申请的具体实施方式详细描述,将使本申请的技术方案及其它有益效果显而易见。The technical solutions and other beneficial effects of the present application will be apparent through the detailed description of the specific embodiments of the present application in conjunction with the accompanying drawings.
图1为本申请实施例提供的业务交易方法的场景示意图;1 is a schematic diagram of a scenario of a business transaction method provided by an embodiment of the present application;
图2为本申请实施例提供的业务交易***的结构框图;2 is a structural block diagram of a business transaction system provided by an embodiment of the present application;
图3为本申请实施例提供的业务交易方法的流程示意图;3 is a schematic flowchart of a business transaction method provided by an embodiment of the present application;
图4为本申请实施例提供的计算机设备的结构示意图。FIG. 4 is a schematic structural diagram of a computer device provided by an embodiment of the present application.
本发明的实施方式Embodiments of the present invention
这里所公开的具体结构和功能细节仅仅是代表性的,并且是用于描述本申请的示例性实施例的目的。但是本申请可以通过许多替换形式来具体实现,并且不应当被解释成仅仅受限于这里所阐述的实施例。Specific structural and functional details disclosed herein are merely representative and for purposes of describing example embodiments of the present application. The application may, however, be embodied in many alternative forms and should not be construed as limited only to the embodiments set forth herein.
在本申请实施例中,需要说明的是,本申请提供的基于区块链技术的业务交易方法,由于是在计算机设备中执行,各计算机设备的处理对象均以数据或信息的形式存在,例如时间,实质为时间信息,可以理解的是,后续实施例中若提及尺寸、数量、位置等,均为对应的数据存在,以便计算机设备进行处理,具体此处不作赘述。In the embodiments of this application, it should be noted that, since the business transaction method based on blockchain technology provided in this application is executed in computer equipment, the processing objects of each computer equipment exist in the form of data or information, such as Time is essentially time information. It can be understood that, if mentioned in the subsequent embodiments, size, quantity, location, etc., are all corresponding data that exist for processing by computer equipment, and details are not repeated here.
这里所使用的术语仅仅是为了描述具体实施例而不意图限制示例性实施例。除非上下文明确地另有所指,否则这里所使用的单数形式“一个”、“一项”还意图包括复数。还应当理解的是,这里所使用的术语“包括”和/或“包含”规定所陈述的特征、整数、步骤、操作、单元和/或组件的存在,而不排除存在或添加一个或更多其他特征、整数、步骤、操作、单元、组件和/或其组合。为使本申请的目的、技术方案及效果更加清楚、明确,以下参照附图并举实施例对本申请进一步详细说明。应当理解,此处所描述的具体实施例仅用以解释本申请,并不用于限定本申请。The terminology used herein is for the purpose of describing specific embodiments only and is not intended to limit the exemplary embodiments. As used herein, the singular forms "a", "an" and "an" are intended to include the plural unless the context clearly dictates otherwise. It should also be understood that the terms "comprising" and/or "comprising" as used herein specify the presence of stated features, integers, steps, operations, units and/or components, but do not preclude the presence or addition of one or more Other features, integers, steps, operations, units, components and/or combinations thereof. In order to make the objectives, technical solutions and effects of the present application clearer and clearer, the present application will be further described in detail below with reference to the accompanying drawings and examples. It should be understood that the specific embodiments described herein are only used to explain the present application, but not to limit the present application.
在本申请实施例中,还需说明的是,本申请实施例提供的业务交易方法,可以应用于如图1所示的业务交易场景。其中,该场景包括终端100和业务交易***200,业务交易***200由多个区块链服务器300构成的,终端100可以是既包括接收和发射硬件的设备,即具有能够在双向通信链路上,执行双向通信的接收和发射硬件的设备。这种设备可以包括:蜂窝或其他通信设备,其具有单线路显示器或多线路显示器或没有多线路显示器的蜂窝或其他通信设备。终端100具体可以是台式终端或移动终端,终端100具体还可以是手机、平板电脑、笔记本电脑等中的一种。区块链服务器300可以是独立的服务器,也可以是服务器组成的服务器网络或服务器集群,其包括但不限于计算机、网络主机、单个网络服务器、多个网络服务器集或多个服务器构成的云服务器。其中,云服务器由基于云计算(Cloud Computing)的大量计算机或网络服务器构成。其中,区块链服务器300作为业务交易***200中的节点,彼此之间可通过无线连接进行通信,无线连接的方式可以包括蓝牙、Wi-Fi、***内部专用网络等。业务交易***200可以是由多个区块链主服务器构成的基础链模块201,以及与各区块链主服务器通信连接的分区链模块202组成的,***构成如图2所示。In the embodiment of the present application, it should also be noted that the business transaction method provided by the embodiment of the present application may be applied to the business transaction scenario shown in FIG. 1 . The scenario includes a terminal 100 and a business transaction system 200. The business transaction system 200 is composed of multiple blockchain servers 300. The terminal 100 may be a device that includes both receiving and transmitting hardware, that is, a device capable of transmitting and receiving hardware on a two-way communication link. , a device that performs two-way communication with receive and transmit hardware. Such devices may include cellular or other communication devices with a single-line display or a multi-line display or a cellular or other communication device without a multi-line display. The terminal 100 may specifically be a desktop terminal or a mobile terminal, and the terminal 100 may specifically be one of a mobile phone, a tablet computer, a notebook computer, and the like. The blockchain server 300 can be an independent server, or a server network or server cluster composed of servers, including but not limited to a computer, a network host, a single network server, multiple network server sets, or a cloud server composed of multiple servers. . Among them, the cloud server is composed of a large number of computers or network servers based on cloud computing (Cloud Computing). Among them, the blockchain server 300, as a node in the business transaction system 200, can communicate with each other through a wireless connection, and the wireless connection can include Bluetooth, Wi-Fi, a dedicated network within the system, and the like. The business transaction system 200 may be composed of a basic chain module 201 composed of a plurality of blockchain main servers, and a partition chain module 202 communicatively connected to each blockchain main server. The system composition is shown in FIG. 2 .
还需说明的是,在本申请实施例中,若无特别强调,基础链模块应仅代表一条基础链,也即是说,本申请实施例涉及的区块链网络中仅包括一条由多个区块链主服务器构成的基础链,而各区块链主服务器对应的分区链数量则不受限制。可以理解的是,本申请提出的业务交易方法可应用在政府单位和司法单位等,区块链主服务器可以是各高级法院或高级政府对应的本地服务器,分区链中的节点服务器则应是其相连的区块链主服务器对应部门直属可管理子部门或下级部门的本地服务器。例如,基础链中的各个区块链主服务器是各省最高政府部门的本地服务器,分区链中的各个区块链服务器是各省最高政府部门地区政府部门的本地服务器。当然,虽然本申请仅说明了上述服务器可以是本地服务器,但不排除在其他实施例中采用的不是本地服务器,而是与本地服务器通过网络建立了通信连接的服务器。It should also be noted that, in the embodiments of the present application, unless otherwise emphasized, the basic chain module should only represent a basic chain, that is to say, the blockchain network involved in the embodiments of the present application only includes one chain consisting of multiple chains. The basic chain formed by the blockchain main server, and the number of partition chains corresponding to each blockchain main server is not limited. It can be understood that the business transaction method proposed in this application can be applied to government units and judicial units. The connected blockchain main server corresponds to the local server of the sub-department or sub-department directly under the corresponding department. For example, each blockchain main server in the basic chain is the local server of the highest government department of each province, and each blockchain server in the partition chain is the local server of each provincial highest government department and regional government department. Of course, although this application only describes that the above-mentioned server may be a local server, it does not exclude that in other embodiments, it is not a local server, but a server that establishes a communication connection with the local server through a network.
最后需说明的是,图1和图2所示的业务交易场景示意图仅仅是一个示例,本发明实施例描述的业务交易***以及场景是为了更加清楚的说明本发明实施例的技术方案,并不构成对于本发明实施例提供的技术方案的限定,本领域普通技术人员可知,随着业务交易***的演变和新业务场景的出现,本发明实施例提供的技术方案对于类似的技术问题,同样适用。Finally, it should be noted that the schematic diagrams of the business transaction scenarios shown in FIG. 1 and FIG. 2 are just an example. The business transaction system and the scenarios described in the embodiments of the present invention are for the purpose of illustrating the technical solutions of the embodiments of the present invention more clearly, not for This constitutes a limitation on the technical solutions provided by the embodiments of the present invention. Those of ordinary skill in the art know that with the evolution of the business transaction system and the emergence of new business scenarios, the technical solutions provided by the embodiments of the present invention are also applicable to similar technical problems. .
如图3所示,本申请实施例提供了一种基于区块链技术的业务交易方法,主要以该方法应用于上述图1或图2中的业务交易***200来举例说明,该方法包括步骤301~304,具体如下:As shown in FIG. 3 , an embodiment of the present application provides a business transaction method based on blockchain technology, which is mainly illustrated by applying the method to the business transaction system 200 in the above-mentioned FIG. 1 or FIG. 2 . The method includes steps 301 to 304, as follows:
301、所述基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务。301. The basic chain module receives a business transaction request sent by a requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain. The target partition chain is used to execute the target service in the service transaction request.
本实施例中,基础链模块为业务交易***200中包括的基础链模块201,其在上文已描述,是由多个区块链服务器300构成的区块链网络,具体应用在实际业务场景(如政府、司法场景)中时,可以是由多个区块链主服务器构成的一条基础链,而各区块链主服务器可以是高级政府部门或高级司法部门的本地服务器,或是与本地服务器建立有通信连接的其他服务器。可以理解的是,高级政府部门或高级司法部门可以是各省最高政府部门或各省最高司法部门。 由此,分区链模块中各条分区链上作为链节点的区块链服务器200,即为对应区块链主服务器的下级服务器。In this embodiment, the basic chain module is the basic chain module 201 included in the business transaction system 200, which has been described above and is a blockchain network composed of multiple blockchain servers 300, and is specifically applied in actual business scenarios (such as government and judicial scenarios), it can be a basic chain composed of multiple blockchain main servers, and each blockchain main server can be a local server of a high-level government department or a high-level judicial department, or a local server. Other servers to which a communication connection is established. It is to be understood that the senior government department or the senior judicial department may be the highest government department in each province or the highest judicial department in each province. Therefore, the blockchain server 200 serving as a chain node on each partition chain in the partition chain module is a subordinate server corresponding to the main server of the blockchain.
本实施例中,请求方可以是指请求通过区块链网络进行业务交易的用户或组织;请求方身份信息可以是指提交业务交易请求的用户或组织的身份信息,例如,身份证号、手机号、账户编号、纳税人识别号等全局唯一的身份标识号(Identity document,ID)。In this embodiment, the requester may refer to a user or organization requesting a business transaction through the blockchain network; the requester identity information may refer to the identity information of the user or organization submitting the business transaction request, such as ID number, mobile phone ID number, account number, taxpayer identification number and other globally unique identification numbers (Identity document, ID).
本实施例中,目标链标识信息可以是指目标分区链的分区链标识,目标分区链可以是指请求方请求执行其所设待执行业务的分区链。In this embodiment, the target chain identifier information may refer to the partition chain identifier of the target partition chain, and the target partition chain may refer to the partition chain for which the requester requests to execute the service set to be executed.
具体地,业务交易***200中的分区链模块,可以包括一条分区链,也可以包括至少两条的多条分区链,每条分区链上至少存在两个区块链服务器300作为节点服务器,而这至少两个的区块链服务器300中,应存在一个区块链主服务器,区块链主服务器是构成基础链的一个节点服务器。由此,为确保任务执行的准确性和效率,本申请实施例对每一条分区链均预设了分区链标识,则请求人可在其提交的业务交易请求中加入至少一个分区链标识,以指示接收到业务交易请求的基础链模块将该请求转发至其指定的分区链,即目标分区链。Specifically, the partition chain module in the business transaction system 200 may include one partition chain, or may include at least two multiple partition chains, and each partition chain has at least two blockchain servers 300 as node servers, and Among the at least two blockchain servers 300, there should be one blockchain master server, which is a node server that constitutes the basic chain. Therefore, in order to ensure the accuracy and efficiency of task execution, the embodiment of the present application presets a partition chain identifier for each partition chain, and the requester can add at least one partition chain identifier to the business transaction request submitted by him to Instruct the base chain module that receives the business transaction request to forward the request to its designated partition chain, that is, the target partition chain.
例如,基础链模块201接收到请求方发送的业务交易请求,该请求中携带的请求方身份信息为政府部门编号“abc”,目标链标识信息为目标分区链的分区链标识“001”,而此时的区块链网络中存在3条分区链,对应的分区链标识分别是“001”、“002”以及“003”,则用于执行业务交易请求中目标业务的目标分区链为“001”对应的分区链。For example, the basic chain module 201 receives a business transaction request sent by the requester, the requester's identity information carried in the request is the government department number "abc", the target chain identification information is the partition chain identifier "001" of the target partition chain, and At this time, there are 3 partition chains in the blockchain network, and the corresponding partition chain identifiers are "001", "002" and "003" respectively, then the target partition chain used to execute the target business in the business transaction request is "001" "The corresponding partition chain.
更具体地,请求人可通过终端100向业务交易***200发送其在终端100上生成的业务交易请求,业务交易***200接收到请求人发送的业务交易请求之后,可将该请求转发至基础链模块201,由基础链模块200对该业务进行鉴权、寻址(查询目标分区链),进而将请求转发至最终查询到的目标分区链,以便目标分区链基于业务交易请求中的相关数据执行请求人请求其执行的目标业务。More specifically, the requester can send the service transaction request generated on the terminal 100 to the service transaction system 200 through the terminal 100. After receiving the service transaction request sent by the requester, the service transaction system 200 can forward the request to the basic chain. Module 201, the basic chain module 200 authenticates and addresses the service (querying the target partition chain), and then forwards the request to the target partition chain finally queried, so that the target partition chain executes based on the relevant data in the business transaction request The target business that the requester requests to perform.
302、所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果。302. In response to the service transaction request, the basic chain module verifies the access authority of the partition chain of the requester according to the identity information of the requester and the identification information of the target chain, and obtains a verification result.
本实施例中,访问权限通常是指根据***设置的安全规则或者安全策略,用户可以访问而且只能访问自己被授权的资源,则分区链访问权限可以是指请求人对目标分区链的访问指示权限,即请求人是否具备权限指示目标分区链执行目标业务。In this embodiment, the access authority usually means that according to the security rules or security policies set by the system, the user can access and can only access the resources authorized by him, and the access authority of the partition chain may refer to the requester's access instruction to the target partition chain Permission, that is, whether the requester has permission to instruct the target partition chain to execute the target business.
具体地,业务交易***200接收到请求方发送的业务交易请求后,可将业务交易请求发送至基础链模块201,或者,业务交易请求直接由基础链模块201接收,并在接收请求的同时进行响应,获取并根据请求中携带的请求方身份信息和目标链标识信息,对请求方的分区链访问权限进行验证,以获取验证结果。可以理解的是,该验证结果可以是验证通过或验证不通过,若验证结果为验证通过,则基础链模块201可将业务交易请求发送至寻址到的目标分区链,以使目标分区链执行目标业务。本实施例中涉及的分区链访问权限验证步骤将在想问详细说明。Specifically, after receiving the business transaction request sent by the requester, the business transaction system 200 can send the business transaction request to the basic chain module 201, or the business transaction request is directly received by the basic chain module 201, and the request is processed while receiving the request. In response, obtain and verify the requester's partition chain access authority according to the requester's identity information and target chain identification information carried in the request to obtain the verification result. It can be understood that the verification result can be that the verification passes or the verification fails. If the verification result is that the verification passes, the basic chain module 201 can send the business transaction request to the addressed target partition chain, so that the target partition chain executes. target business. The steps of verifying the access authority of the partition chain involved in this embodiment will be described in detail in the question.
在一个实施例中,本步骤包括:401、所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果;其中,所述分区链访问权限表中记录有至少一对的用户身份标识和分区链标识;402、所述基础链模块根据所述信息匹配结果,对所述请求方的分区链访问权限进行验证,得到验证结果。In one embodiment, this step includes: 401. The basic chain module responds to the business transaction request, and respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table , to obtain an information matching result; wherein, at least a pair of user identity identifiers and partition chain identifiers are recorded in the partition chain access permission table; 402, the basic chain module, according to the information matching result, Verify the access rights of the partition chain and get the verification result.
本实施例中,分区链访问权限表中预先记录有至少一对的用户身份标识和分区链标识,也即是说,用户身份标识和分区链标识之间,可以是一对一的配对形式,也可以是一对多或多对一的配对形式,具有配对关联关系的用户身份标识和分区链标识在进行分区链访问权限验证时,所得验证结果是验证通过。In this embodiment, at least a pair of user identity identifiers and partition chain identifiers are pre-recorded in the partition chain access permission table, that is to say, the user identity identifier and the partition chain identifier may be in a one-to-one pairing form. It can also be in the form of one-to-many or many-to-one pairing. When the user identity identifier and the partition chain identifier with a pairing relationship are verified for the access authority of the partition chain, the verification result obtained is that the verification is passed.
具体地,基础链模块201接收并响应了请求人发送的业务交易请求,可将请求方身份信息与预设的分区链访问权限表进行匹配,得到第一信息匹配结果,再将目标链标识信息与预设的分区链访问权限表进行匹配,得到第二信息匹配结果,最后根据第一信息匹配结果和/或第二信息匹配结果,对请求方的分区链访问权限进行验证,以获取验证结果。Specifically, the basic chain module 201 receives and responds to the business transaction request sent by the requester, and can match the requester's identity information with the preset partition chain access permission table, obtain the first information matching result, and then match the target chain identification information Match with the preset partition chain access authority table to obtain the second information matching result, and finally verify the partition chain access authority of the requester according to the first information matching result and/or the second information matching result to obtain the verification result .
例如,基础链模块201将请求方身份信息与预设的分区链访问权限表进行匹配,得到的第一信息匹配结果可以是分区链访问权限表中的用户身份标识,或者是预设提示“非有效用户”。其中,“非有效用户”的含义是请求中携带的请 求方身份信息并未存在于分区链访问权限表中,属于无效用户,而分区链访问权限表中存在的用户属于有效用户。进一步地,若第一信息匹配结果是分区链访问权限表中的用户身份标识,则基础链模块201可继续将目标链标识信息与预设的分区链访问权限表进行匹配,即查询该分区链访问权限表中与该用户身份标识相对应的分区链标识,是否包括目标分区链的分区链标识,若是,则得到的第二信息匹配结果为“匹配成功”。由此,基础链模块201对请求方的分区链访问权限进行验证,得到验证结果为“验证通过”。For example, the basic chain module 201 matches the requester's identity information with the preset partition chain access permission table, and the obtained first information matching result may be the user ID in the partition chain access permission table, or the preset prompt "Not valid user". Among them, the meaning of "invalid user" is that the identity information of the requester carried in the request does not exist in the partition chain access permission table, and is an invalid user, while the user existing in the partition chain access permission table is a valid user. Further, if the first information matching result is the user identity in the partition chain access authority table, the basic chain module 201 can continue to match the target chain identification information with the preset partition chain access authority table, that is, query the partition chain. Whether the partition chain identifier corresponding to the user identity identifier in the access permission table includes the partition chain identifier of the target partition chain, and if so, the obtained second information matching result is "matching successful". Therefore, the basic chain module 201 verifies the access authority of the partition chain of the requester, and obtains the verification result as "verification passed".
需要说明的是,虽然上述示例说明的是先将请求方身份信息与分区链访问权限表进行匹配,再将目标链标识信息与分区链访问权限表进行匹配,但不排除在其他实施例中是先将目标链标识信息与分区链访问权限表进行匹配,后将请求方身份信息与分区链访问权限表进行匹配。又或者是,同时查询分区链访问权限表中是否包括请求方身份信息和目标链标识信息,若是,则继续判定其在分区链访问权限表中是否存在对应关系。本实施例中涉及的信息匹配结果获取步骤将在下文详细描述。It should be noted that although the above example illustrates that the requester identity information is first matched with the partition chain access permission table, and then the target chain identification information is matched with the partition chain access permission table, it is not excluded in other embodiments that First, the target chain identification information is matched with the partition chain access permission table, and then the requester identity information is matched with the partition chain access permission table. Or, at the same time, query whether the requester identity information and target chain identification information are included in the partition chain access permission table, and if so, continue to determine whether there is a corresponding relationship in the partition chain access permission table. The step of obtaining the information matching result involved in this embodiment will be described in detail below.
在一个实施例中,所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果的步骤,包括:501、所述基础链模块响应所述业务交易请求,确定所述分区链访问权限表中的目标用户身份标识,所述目标用户身份标识为与所述请求方身份信息相匹配的用户身份标识;502、所述基础链模块获取所述目标用户身份标识对应的至少一个分区链标识;503、所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果。In one embodiment, in response to the business transaction request, the basic chain module matches the requester's identity information and the target chain's identification information with a preset partition chain access permission table, respectively, to obtain an information matching result. The steps include: 501. The basic chain module responds to the business transaction request, and determines the target user identity in the partition chain access permission table, where the target user identity matches the requester identity information. User identification; 502. The basic chain module obtains at least one partition chain identification corresponding to the target user identification; 503. The basic chain module analyzes the at least one partition chain identification and the target chain identification information, and obtains Information matching results.
本实施例中,目标用户身份标识可以是指与请求方身份信息相匹配的用户身份标识,即是指分区链访问权限表中记录的、与请求方身份信息一致的用户身份标识。In this embodiment, the target user identity may refer to the user identity that matches the requester's identity information, that is, the user's identity that is recorded in the partition chain access permission table and that is consistent with the requester's identity information.
具体地,本实施例中说明的信息匹配结果获取步骤,即为上一个实施例中简单说明的第一种示例步骤,即先将请求方身份信息与分区链访问权限表进行匹配,确定分区链访问权限表中的目标用户身份标识,并获取与该目标用户身份标识相对应的至少一个分区链标识,再将目标链标识信息与分区链访问权限表中与该目标用户身份标识相对应的至少一个分区链标识进行匹配,若该至少 一个分区链标识中包括目标链标识信息所对应目标分区链的分区链标识,则可得信息匹配结果为“匹配成功”。本实施例中涉及的标识匹配步骤将在下文详细说明。Specifically, the information matching result acquisition step described in this embodiment is the first example step briefly described in the previous embodiment, that is, the requester identity information is first matched with the partition chain access permission table, and the partition chain is determined. Access the target user ID in the permission table, obtain at least one partition chain ID corresponding to the target user ID, and then compare the target chain ID information with at least one partition chain ID corresponding to the target user ID in the partition chain access permission table. A partition chain identifier is matched, and if the at least one partition chain identifier includes the partition chain identifier of the target partition chain corresponding to the target chain identifier information, the information matching result is "matching successful". The identification matching steps involved in this embodiment will be described in detail below.
在一个实施例中,所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果的步骤,包括:601、所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息;602、若所述至少一个分区链标识中包括目标分区链标识,则确定所述信息匹配结果为匹配成功,所述目标分区链标识为所述目标链标识信息中的分区链标识;603、若所述至少一个分区链标识中不包括所述目标分区链标识,则确定所述信息匹配结果为匹配失败。In one embodiment, the basic chain module analyzes the at least one partition chain identifier and the target chain identifier information, and the step of obtaining an information matching result includes: 601. The basic chain module analyzes the at least one partition chain The identifier and the target chain identifier information; 602. If the at least one partition chain identifier includes a target partition chain identifier, determine that the information matching result is a successful match, and the target partition chain identifier is the target chain identifier information 603. If the at least one partition chain identifier does not include the target partition chain identifier, determine that the information matching result is a matching failure.
具体地,本实施例中涉及的标识匹配步骤,部分实施方式已在上述实施例中说明,即当目标用户身份标识对应的至少一个分区链标识中,包括有目标链标识信息所对应目标分区链的分区链标识,则可确定信息匹配结果为“匹配成功”,反之则确定信息匹配结果为“匹配失败”。信息匹配结果的获取作用在于确定验证结果,验证结果的获取作用在于判断是否将业务交易请求发送至目标分区链,而这一过程即为基础链的鉴权过程。Specifically, part of the implementation of the identification matching step involved in this embodiment has been described in the above-mentioned embodiments, that is, when at least one partition chain identification corresponding to the target user identification information includes the target partition chain corresponding to the target chain identification information If the partition chain identifier is , it can be determined that the information matching result is "matching successful", otherwise, it can be determined that the information matching result is "matching failure". The function of obtaining the information matching result is to determine the verification result, and the function of obtaining the verification result is to judge whether to send the business transaction request to the target partition chain, and this process is the authentication process of the basic chain.
303、所述基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链。303. When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain.
本实施例中,目标分区链可以是请求人所指定用于执行业务交易请求目标业务的分区链。In this embodiment, the target partition chain may be a partition chain designated by the requester for executing the business transaction requesting the target business.
具体地,当基础链模块201检测到对当前的分区链访问权限进行验证,所得到的验证结果为“验证通过”时,即可将该业务交易请求发送至目标分区链,由于上述实施例中已详细说明本申请所涉及的区块链网络中,各个分区链均存在对应的分区链标识,因此基础链模块201的寻址过程即为利用业务交易请求中的目标链标识信息,来查询确定目标分区链的过程。进一步地,基础链模块201确定了目标分区链之后,即可将业务交易请求发送至目标分区链,由此可知,其他分区链无法接收到当前的业务交易请求,一方面而言,区块链网络交易仅在分区链内执行,降低开销,另一方面而言,业务交易请求中携带的相关业务数据仅在目标分区链上的节点服务器处可见,充分保护了数据隐私。Specifically, when the basic chain module 201 detects that the current access authority of the partition chain is verified, and the obtained verification result is "verification passed", the business transaction request can be sent to the target partition chain. It has been explained in detail that in the blockchain network involved in this application, each partition chain has a corresponding partition chain identifier, so the addressing process of the basic chain module 201 is to use the target chain identifier information in the business transaction request to query and determine The process of the target partition chain. Further, after the basic chain module 201 determines the target partition chain, it can send the business transaction request to the target partition chain. It can be seen that other partition chains cannot receive the current business transaction request. Network transactions are only executed in the partition chain, reducing overhead. On the other hand, the relevant business data carried in the business transaction request is only visible at the node server on the target partition chain, which fully protects data privacy.
304、所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。304. After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the Basic chain module.
本实施例中,业务交易结果可以是指目标分区链执行目标业务过程中,或执行目标业务后产生的结果,例如,业务交易结果为目标业务顺利执行后所产生的结论性信息-“业务交易成功”;又例如,业务交易结果为目标业务执行过程中存在异常情况而产生的提示性信息-“业务交易失败”;再例如,业务交易结果为目标业务顺利执行后,所得交易结果数据无法进行存储而产生的提示性信息-“数据存储失败”。In this embodiment, the business transaction result may refer to the result generated during the execution of the target business by the target partition chain, or after the execution of the target business. Success”; another example, the business transaction result is the informative information generated by abnormal conditions during the execution of the target business - “business transaction failed”; another example, the business transaction result is that after the target business is successfully executed, the obtained transaction result data cannot be processed. Informative message from storage - "Data storage failed".
具体地,分区链模块202中的目标分区链接收到了基础链模块201发送的业务交易请求之后,可进一步获取业务交易请求中用于执行目标业务的相关数据,以便根据该数据执行请求人请求其执行的目标业务,例如数据分析任务、数据统计任务、数据分类存储任务、数据查询任务等,并在执行该目标业务过程中所产生的业务交易结果,或执行完目标业务后得到业务交易结果反馈至基础链模块201,以使基础链模块201能够根据业务交易结果进一步执行后续操作。本实施例中涉及的业务交易结果处理步骤将在下文详细说明。Specifically, after receiving the business transaction request sent by the basic chain module 201, the target partition link in the partition chain module 202 can further obtain the relevant data for executing the target business in the business transaction request, so as to execute the request by the requester according to the data. The target business to be executed, such as data analysis tasks, data statistics tasks, data classification storage tasks, data query tasks, etc., and the business transaction results generated during the execution of the target business, or the business transaction result feedback after the target business is executed to the basic chain module 201, so that the basic chain module 201 can further perform subsequent operations according to the business transaction result. The business transaction result processing steps involved in this embodiment will be described in detail below.
在一个实施例中,本步骤包括:701、所述目标分区链接收到所述基础链模块发送的业务交易请求后,根据所述业务交易请求中携带的业务数据,执行所述目标业务,得到交易结果数据;702、所述目标分区链获取所述交易结果数据对应的哈希数据;703、所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块,所述哈希数据用于供所述基础链模块存储。In one embodiment, this step includes: 701. After receiving the service transaction request sent by the basic chain module, the target partition link executes the target service according to the service data carried in the service transaction request, and obtains transaction result data; 702, the target partition chain obtains the hash data corresponding to the transaction result data; 703, the target partition chain stores the transaction result data, and uses the hash data as the business transaction result It is fed back to the basic chain module, and the hash data is used for storage by the basic chain module.
本实施例中,"哈希"就是计算机可以对任意内容,计算出一个长度相同的特征值。区块链中的哈希长度是256位,也即是说,无论原始内容是什么,最后都会计算出一个256位的二进制数字。而且可以保证,只要原始内容不同,对应的哈希一定是不同的。本申请实施例中涉及的哈希数据,即为交易结果数据经过哈希计算所得对应的哈希数据,也可称为摘要信息。In this embodiment, "hash" means that a computer can calculate a feature value with the same length for any content. The hash length in the blockchain is 256 bits, which means that no matter what the original content is, a 256-bit binary number will be calculated in the end. And it can be guaranteed that as long as the original content is different, the corresponding hash must be different. The hash data involved in the embodiment of the present application is the hash data corresponding to the transaction result data obtained through hash calculation, and may also be referred to as digest information.
具体地,分区链模块202中的目标分区链在接收到基础链模块201发送的业务交易请求,并根据业务交易请求中携带的业务数据执行目标业务,得到了 交易结果数据之后,即可对交易结果数据进行哈希计算,如采用信息摘要算法(Message-Digest Algorithm,MD5)获取该交易结果数据对应的摘要信息(哈希数据),作为交易结果数据,以将交易结果数据对应的哈希数据发送至基础链模块201中进行存储,以便后期基础链模块201能够依据预存的哈希数据,进一步提升所有数据的可信度。本实施例中所提哈希数据的作用将在下文详细描述,但需说明的是,上文所述是目标分区链得到交易结果数据的情况,至于目标分区链未获得交易结果数据,而需将业务交易结果反馈至基础链模块201的情况,可以是将“业务交易失败”这类提示性信息作为业务交易结果,发送至基础链模块201。Specifically, after the target partition chain in the partition chain module 202 receives the business transaction request sent by the basic chain module 201, and executes the target business according to the business data carried in the business transaction request, and obtains the transaction result data, the transaction can be processed. The result data is hashed, for example, a message digest algorithm (Message-Digest Algorithm, MD5) is used to obtain the summary information (hash data) corresponding to the transaction result data as the transaction result data, so as to convert the hash data corresponding to the transaction result data It is sent to the basic chain module 201 for storage, so that the basic chain module 201 can further improve the credibility of all data based on the pre-stored hash data. The function of the hash data mentioned in this embodiment will be described in detail below, but it should be noted that the above is the case where the target partition chain obtains the transaction result data. In the case of feeding back the business transaction result to the basic chain module 201, prompt information such as "business transaction failure" may be sent to the basic chain module 201 as the business transaction result.
在一个实施例中,在所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块之后,还包括如下步骤:801、所述基础链模块接收分区链发送的数据校验请求,所述数据校验请求中携带有待校验的交易结果数据;802、所述基础链模块对所述待校验的交易结果数据进行哈希计算,得到待验哈希数据;803、所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性。In one embodiment, after the target partition chain stores the transaction result data and feeds back the hash data as the business transaction result to the basic chain module, the following steps are further included: 801. The The basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified; 802, the basic chain module performs hash calculation on the transaction result data to be verified , to obtain the hash data to be verified; 803 , the basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
本实施例中,数据校验请求可以是业务交易***200中任意一个分区链上的节点服务器发送的请求,该请求可以是用于请求对待存储的数据,或待外发的数据进行有效性校验的请求。In this embodiment, the data verification request may be a request sent by a node server on any partition chain in the business transaction system 200, and the request may be used to request data to be stored or data to be sent out for validity verification inspection request.
本实施例中,待校验的交易结果数据可以是上述实施例中涉及的交易结果数据,也可以是其他未提及的交易结果数据,若是上述实施例中提及的交易结果数据,则请求对其进行校验的目的在于,预防其存储在分区链模块202期间被恶意篡改,而引发后续一系列的安全问题。In this embodiment, the transaction result data to be verified may be the transaction result data involved in the above embodiment, or other unmentioned transaction result data. If it is the transaction result data mentioned in the above embodiment, the request The purpose of verifying it is to prevent it from being maliciously tampered with during its storage in the partition chain module 202 , thereby causing a series of subsequent security problems.
具体地,目标分区链执行目标业务所得的交易结果数据,无需发送至基础链模块201,而仅需存储在分区链模块202中,降低业务交易***200的数据存储成本。而在目标分区链存储了交易结果数据,并将哈希数据作为业务交易结果反馈至基础链模块201之后,该储存在基础链模块201中的哈希数据即可用于对分区链后续提交的相关数据进行有效性验证,即当基础链模块接收到任意分区链发送的数据校验请求之后,可基于该数据校验请求中携带的待校验的交易结果数据进行哈希计算,以获取待校验交易结果数据对应的待验哈希数 据,最终分析待验哈希数据和预存的哈希数据,以此确定待校验的交易结果数据的真实性,基于真实性判断结果执行相关处理操作。本实施例中涉及的数据真实性判断步骤将在下文详细说明。Specifically, the transaction result data obtained by the target partition chain executing the target business does not need to be sent to the basic chain module 201 , but only needs to be stored in the partition chain module 202 , thereby reducing the data storage cost of the business transaction system 200 . After the target partition chain stores the transaction result data and feeds back the hash data as the business transaction result to the basic chain module 201, the hash data stored in the basic chain module 201 can be used for the subsequent submission of the partition chain. The validity of the data is verified, that is, when the basic chain module receives the data verification request sent by any partition chain, it can perform hash calculation based on the transaction result data to be verified carried in the data verification request to obtain the data to be verified. Verify the hash data to be verified corresponding to the transaction result data, and finally analyze the hash data to be verified and the pre-stored hash data to determine the authenticity of the transaction result data to be verified, and perform relevant processing operations based on the authenticity judgment results. The steps of judging the authenticity of the data involved in this embodiment will be described in detail below.
在一个实施例中,所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性的步骤,包括:901、所述基础链模块将所述待验哈希数据与预存的哈希数据进行匹配,得到哈希匹配结果;902、当所述哈希匹配结果为匹配相同时,所述基础链模块生成数据真实提示,并将所述数据真实提示反馈至所述分区链;903、当所述哈希匹配结果为匹配不同时,所述基础链模块生成数据虚假提示,并将所述数据虚假提示反馈至所述分区链。In one embodiment, the step of determining, by the basic chain module, the authenticity of the transaction result data to be verified according to the hash data to be verified, includes: 901. The basic chain module The hash data is matched with the pre-stored hash data, and a hash matching result is obtained; 902. When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain; 903. When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
具体地,基础链模块201获取到待验哈希数据之后,可将待验哈希数据与预存的哈希数据进行匹配,匹配方式可以是在预存的哈希数据中查询是否包括待验哈希数据,以此获取哈希匹配结果。若哈希匹配结果为“匹配相同”,则可生成“数据真实提示”,并将该“数据真实提示”反馈至发送数据校验请求的分区链;若哈希匹配结果为“匹配不同”,则可生成“数据虚假提示”,并将该“数据虚假提示”反馈至发送数据校验请求的分区链。Specifically, after the basic chain module 201 obtains the hash data to be verified, it can match the hash data to be verified with the pre-stored hash data. The matching method can be to query whether the hash data to be verified is included in the pre-stored hash data. data to obtain the hash matching result. If the hash matching result is "matching the same", a "data truth prompt" can be generated, and the "data truth prompt" can be fed back to the partition chain that sent the data verification request; if the hash matching result is "different matching", Then a "data false prompt" can be generated, and the "data false prompt" can be fed back to the partition chain that sends the data verification request.
上述实施例中,本申请提出将区块链网络划分为“基础链+分区链”架构,由基础链充当决策组织、分区链充当业务实施组织,使得分区链可在基础链的鉴权保障下安全有效地执行目标业务,大幅提升区块链网络的业务交易安全。同时,由于交易业务仅在目标分区链中执行、交易结果数据仅存储在分区链中,不仅降低了网络资源开销,也节省了***数据存储成本。此外,各类业务部门可根据自身业务需求,快速加入或退出业务分区,最大程度地利用自身设备资源,提高了区块链网络的可用性。In the above embodiment, this application proposes to divide the blockchain network into a "basic chain + partitioned chain" structure, with the basic chain as the decision-making organization and the partitioned chain as the business implementation organization, so that the partitioned chain can be under the authentication guarantee of the basic chain. Execute the target business safely and effectively, and greatly improve the business transaction security of the blockchain network. At the same time, since the transaction business is only executed in the target partition chain, and the transaction result data is only stored in the partition chain, it not only reduces the network resource overhead, but also saves the system data storage cost. In addition, various business departments can quickly join or exit business divisions according to their own business needs, maximizing the use of their own equipment resources and improving the availability of the blockchain network.
如图2所示,本申请实施例提供了一种基于区块链技术的业务交易***200,其包括基础链模块201,以及与所述基础链模块中任意一个服务器通信连接的分区链模块202,所述分区链模块中包括至少一个分区链;As shown in FIG. 2 , an embodiment of the present application provides a business transaction system 200 based on blockchain technology, which includes a basic chain module 201 and a partition chain module 202 that is communicatively connected to any server in the basic chain module. , the partition chain module includes at least one partition chain;
所述基础链模块201,用于验证接收到的业务交易请求,并将验证通过的业务交易请求发送至所述分区链模块中的目标分区链,以便接收并存储所述目标分区链反馈的业务交易结果;The basic chain module 201 is used to verify the received business transaction request, and send the verified business transaction request to the target partition chain in the partition chain module, so as to receive and store the business fed back by the target partition chain transaction results;
所述分区链模块202,用于通过所述目标分区链,接收所述基础链模块发 送的验证通过的业务交易请求,并在所述目标分区链执行所述业务交易请求中的目标业务,得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。The partition chain module 202 is configured to receive the verified business transaction request sent by the basic chain module through the target partition chain, and execute the target business in the business transaction request on the target partition chain, and obtain: After the business transaction result, the business transaction result is fed back to the basic chain module.
由于上文已对业务交易***200进行了详细描述,在此不再赘述。Since the business transaction system 200 has been described in detail above, it will not be repeated here.
本领域普通技术人员可以理解,上述实施例的各种方法中的全部或部分步骤可以通过指令来完成,或通过指令控制相关的硬件来完成,该指令可以存储于一计算机可读存储介质中,并由处理器进行加载和执行。其中,该存储介质可以包括:只读存储器(ROM,Read Only Memory)、随机存取记忆体(RAM,Random Access Memory)、磁盘或光盘等。Those of ordinary skill in the art can understand that all or part of the steps in the various methods of the above-mentioned embodiments can be completed by instructions, or by instructions that control relevant hardware, and the instructions can be stored in a computer-readable storage medium, and loaded and executed by the processor. Wherein, the storage medium may include: a read-only memory (ROM, Read Only Memory), a random access memory (RAM, Random Access Memory), a magnetic disk or an optical disk, and the like.
为此,本申请实施例提供一种存储介质,其中,所述存储介质存储有多条指令,所述指令适于处理器进行加载,以执行如下步骤:To this end, an embodiment of the present application provides a storage medium, wherein the storage medium stores a plurality of instructions, and the instructions are adapted to be loaded by a processor to perform the following steps:
所述基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;The basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target The partition chain is used to execute the target business in the business transaction request;
所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;The basic chain module responds to the business transaction request, and verifies the requester's partition chain access authority according to the requester identity information and the target chain identification information, and obtains a verification result;
所述基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
在所述的存储介质中,执行所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果的步骤,包括:In the storage medium, the basic chain module is executed to respond to the business transaction request, and according to the requester identity information and the target chain identification information, the access authority of the partition chain of the requester is verified to obtain Steps to verify the results, including:
所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果;其中,所述分区链访问权限表中记录有至少一对的用户身份标识和分区链标识;In response to the business transaction request, the basic chain module respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table to obtain an information matching result; wherein, the partition chain There are at least one pair of user ID and partition chain ID recorded in the access permission table;
所述基础链模块根据所述信息匹配结果,对所述请求方的分区链访问权限 进行验证,得到验证结果。The basic chain module verifies the access authority of the partition chain of the requester according to the information matching result, and obtains the verification result.
在所述的存储介质中,执行所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果的步骤,包括:In the storage medium, the basic chain module is executed to respond to the business transaction request, and the identity information of the requester and the identification information of the target chain are respectively matched with the preset partition chain access permission table to obtain the information Steps to match results, including:
所述基础链模块响应所述业务交易请求,确定所述分区链访问权限表中的目标用户身份标识,所述目标用户身份标识为与所述请求方身份信息相匹配的用户身份标识;The basic chain module, in response to the business transaction request, determines the target user identity in the partition chain access permission table, and the target user identity is the user identity that matches the requester identity information;
所述基础链模块获取所述目标用户身份标识对应的至少一个分区链标识;The basic chain module obtains at least one partition chain identifier corresponding to the target user identifier;
所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果。The base chain module analyzes the at least one partition chain identifier and the target chain identifier information to obtain an information matching result.
在所述的存储介质中,执行所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果的步骤,包括:In the storage medium, the steps of executing the basic chain module to analyze the at least one partition chain identifier and the target chain identifier information to obtain an information matching result include:
所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息;The base chain module analyzes the at least one partition chain identifier and the target chain identifier information;
若所述至少一个分区链标识中包括目标分区链标识,则确定所述信息匹配结果为匹配成功,所述目标分区链标识为所述目标链标识信息中的分区链标识;If the at least one partition chain identifier includes a target partition chain identifier, it is determined that the information matching result is a successful match, and the target partition chain identifier is the partition chain identifier in the target chain identifier information;
若所述至少一个分区链标识中不包括所述目标分区链标识,则确定所述信息匹配结果为匹配失败。If the at least one partition chain identifier does not include the target partition chain identifier, it is determined that the information matching result is a matching failure.
在所述的存储介质中,执行所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块的步骤,包括:In the storage medium, after executing the target partition link and receiving the business transaction request sent by the basic chain module, the target business in the business transaction request is executed, and after obtaining the business transaction result, the The steps of feeding back business transaction results to the basic chain module include:
所述目标分区链接收到所述基础链模块发送的业务交易请求后,根据所述业务交易请求中携带的业务数据,执行所述目标业务,得到交易结果数据;After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business according to the business data carried in the business transaction request to obtain transaction result data;
所述目标分区链获取所述交易结果数据对应的哈希数据;The target partition chain obtains the hash data corresponding to the transaction result data;
所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块,所述哈希数据用于供所述基础链模块存储。The target partition chain stores the transaction result data, and feeds back the hash data to the basic chain module as the business transaction result, and the hash data is used for storage by the basic chain module.
在所述的存储介质中,在执行所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块之后,所述方法还包括:In the storage medium, after the target partition chain is executed to store the transaction result data, and the hash data is fed back to the basic chain module as the business transaction result, the method further includes:
所述基础链模块接收分区链发送的数据校验请求,所述数据校验请求中携带有待校验的交易结果数据;The basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified;
所述基础链模块对所述待校验的交易结果数据进行哈希计算,得到待验哈希数据;The basic chain module performs hash calculation on the transaction result data to be verified to obtain hash data to be verified;
所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性。The basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
在所述的存储介质中,执行所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性的步骤,包括:In the storage medium, executing the step of determining the authenticity of the transaction result data to be verified according to the hash data to be verified by the basic chain module, including:
所述基础链模块将所述待验哈希数据与预存的哈希数据进行匹配,得到哈希匹配结果;The basic chain module matches the to-be-verified hash data with the pre-stored hash data to obtain a hash matching result;
当所述哈希匹配结果为匹配相同时,所述基础链模块生成数据真实提示,并将所述数据真实提示反馈至所述分区链;When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain;
当所述哈希匹配结果为匹配不同时,所述基础链模块生成数据虚假提示,并将所述数据虚假提示反馈至所述分区链。When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
以上各个操作的具体实施可参见前面的实施例,在此不再赘述。For the specific implementation of the above operations, reference may be made to the foregoing embodiments, and details are not described herein again.
此外,在本申请一些实施例中,业务交易***200可以实现为一种计算机程序的形式,计算机程序可在如图4所示的计算机设备上运行。计算机设备的存储器中可存储组成该业务交易***200的各个程序模块,比如,图2所示的基础链模块201和分区链模块202。各个程序模块构成的计算机程序使得处理器执行本说明书中描述的本申请各个实施例的业务交易方法中的步骤。In addition, in some embodiments of the present application, the business transaction system 200 may be implemented in the form of a computer program, and the computer program may be executed on the computer device as shown in FIG. 4 . The memory of the computer device can store various program modules constituting the business transaction system 200 , for example, the basic chain module 201 and the partition chain module 202 shown in FIG. 2 . The computer program constituted by each program module enables the processor to execute the steps in the business transaction method of each embodiment of the present application described in this specification.
例如,图4所示的计算机设备可以通过如图2所示的业务交易***200中的基础链模块201执行步骤301、302、303。计算机设备可通过分区链模块202执行步骤304。该计算机设备包括通过***总线连接的处理器、存储器和网络接口。其中,该计算机设备的处理器用于提供计算和控制能力。该计算机设备的存储器包括非易失性存储介质和内存储器。该非易失性存储介质存储有操作***和计算机程序。该内存储器为非易失性存储介质中的操作***和计算机程序的运行提供环境。该计算机设备的网络接口用于与外部的计算机设备通过网络连接通信。该计算机程序被处理器执行时以实现一种基于区块链技术的业务交易方法。For example, the computer device shown in FIG. 4 may execute steps 301 , 302 and 303 through the basic chain module 201 in the business transaction system 200 shown in FIG. 2 . The computer device may perform step 304 through the partition chain module 202 . The computer device includes a processor, memory, and a network interface connected by a system bus. Among them, the processor of the computer device is used to provide computing and control capabilities. The memory of the computer device includes non-volatile storage media and internal memory. The nonvolatile storage medium stores an operating system and a computer program. The internal memory provides an environment for the execution of the operating system and computer programs in the non-volatile storage medium. The network interface of the computer equipment is used to communicate with external computer equipment through a network connection. When the computer program is executed by the processor, a business transaction method based on the blockchain technology is implemented.
本领域技术人员可以理解,图4中示出的结构,仅仅是与本申请方案相关的部分结构的框图,并不构成对本申请方案所应用于其上的计算机设备的限定,具体的计算机设备可以包括比图中所示更多或更少的部件,或者组合某些部件,或者具有不同的部件布置。Those skilled in the art can understand that the structure shown in FIG. 4 is only a block diagram of a partial structure related to the solution of the present application, and does not constitute a limitation on the computer equipment to which the solution of the present application is applied. Include more or fewer components than shown in the figures, or combine certain components, or have a different arrangement of components.
综上所述,本申请通过将区块链网络划分为“基础链+分区链”架构,由基础链充当决策组织、分区链充当业务实施组织,使得分区链可在基础链的鉴权保障下安全有效地执行目标业务,大幅提升区块链网络的业务交易安全。同时,由于交易业务仅在目标分区链中执行、交易结果数据仅存储在分区链中,不仅降低了网络资源开销,也节省了***数据存储成本。此外,各类业务部门可根据自身业务需求,快速加入或退出业务分区,最大程度地利用自身设备资源,提高了区块链网络的可用性。To sum up, this application divides the blockchain network into a "basic chain + partitioned chain" structure, with the basic chain as the decision-making organization and the partitioned chain as the business implementation organization, so that the partitioned chain can be guaranteed by the authentication of the basic chain. Execute the target business safely and effectively, and greatly improve the business transaction security of the blockchain network. At the same time, since the transaction business is only executed in the target partition chain, and the transaction result data is only stored in the partition chain, it not only reduces the network resource overhead, but also saves the system data storage cost. In addition, various business departments can quickly join or exit business divisions according to their own business needs, maximizing the use of their own equipment resources and improving the availability of the blockchain network.
可以理解的是,对本领域普通技术人员来说,可以根据本申请的技术方案及其发明构思加以等同替换或改变,而所有这些改变或替换都应属于本申请所附的权利要求的保护范围。It can be understood that for those of ordinary skill in the art, equivalent replacements or changes can be made according to the technical solutions and inventive concepts of the present application, and all these changes or replacements should belong to the protection scope of the appended claims of the present application.

Claims (15)

  1. 一种基于区块链技术的业务交易方法,其应用于业务交易***,所述业务交易***包括基础链模块及与所述基础链模块中任意一个服务器通信连接的分区链模块,所述分区链模块中包括至少一个分区链,所述业务交易方法包括如下步骤:A business transaction method based on blockchain technology, which is applied to a business transaction system, wherein the business transaction system includes a basic chain module and a partitioned chain module that is communicatively connected to any server in the basic chain module, and the partitioned chain The module includes at least one partition chain, and the business transaction method includes the following steps:
    所述基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;The basic chain module receives a business transaction request sent by the requester, and the business transaction request carries the requester's identity information and target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target The partition chain is used to execute the target business in the business transaction request;
    所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;The basic chain module responds to the business transaction request, and verifies the requester's partition chain access authority according to the requester identity information and the target chain identification information, and obtains a verification result;
    所述基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
    所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
  2. 如权利要求1所述的业务交易方法,其中,所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果的步骤,包括:The business transaction method according to claim 1, wherein, in response to the business transaction request, the basic chain module, according to the requester identity information and the target chain identification information, obtains access rights to the partition chain of the requester The steps of performing verification and obtaining the verification result include:
    所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果;其中,所述分区链访问权限表中记录有至少一对的用户身份标识和分区链标识;In response to the business transaction request, the basic chain module respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table to obtain an information matching result; wherein, the partition chain There are at least one pair of user ID and partition chain ID recorded in the access permission table;
    所述基础链模块根据所述信息匹配结果,对所述请求方的分区链访问权限进行验证,得到验证结果。The basic chain module verifies the access authority of the partition chain of the requester according to the information matching result, and obtains a verification result.
  3. 如权利要求2所述的业务交易方法,其中,所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果的步骤,包括:The business transaction method according to claim 2, wherein, in response to the business transaction request, the basic chain module performs a transaction between the requester identity information, the target chain identification information and a preset partition chain access permission table, respectively. Matching, the steps of obtaining the information matching result include:
    所述基础链模块响应所述业务交易请求,确定所述分区链访问权限表中的目标用户身份标识,所述目标用户身份标识为与所述请求方身份信息相匹配的 用户身份标识;The basic chain module responds to the business transaction request, and determines the target user identity in the partition chain access permission table, and the target user identity is the user identity that matches the requester identity information;
    所述基础链模块获取所述目标用户身份标识对应的至少一个分区链标识;The basic chain module obtains at least one partition chain identifier corresponding to the target user identifier;
    所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果。The base chain module analyzes the at least one partition chain identifier and the target chain identifier information to obtain an information matching result.
  4. 如权利要求3所述的业务交易方法,其中,所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果的步骤,包括:The business transaction method according to claim 3, wherein the step of analyzing the at least one partition chain identifier and the target chain identifier information by the basic chain module to obtain an information matching result comprises:
    所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息;The base chain module analyzes the at least one partition chain identifier and the target chain identifier information;
    若所述至少一个分区链标识中包括目标分区链标识,则确定所述信息匹配结果为匹配成功,所述目标分区链标识为所述目标链标识信息中的分区链标识;If the at least one partition chain identifier includes a target partition chain identifier, it is determined that the information matching result is a successful match, and the target partition chain identifier is the partition chain identifier in the target chain identifier information;
    若所述至少一个分区链标识中不包括所述目标分区链标识,则确定所述信息匹配结果为匹配失败。If the at least one partition chain identifier does not include the target partition chain identifier, it is determined that the information matching result is a matching failure.
  5. 如权利要求1所述的业务交易方法,其中,所述目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块的步骤,包括:The service transaction method according to claim 1, wherein after receiving the service transaction request sent by the basic chain module, the target partition link executes the target service in the service transaction request, and after obtaining the service transaction result , the step of feeding back the business transaction result to the basic chain module includes:
    所述目标分区链接收到所述基础链模块发送的业务交易请求后,根据所述业务交易请求中携带的业务数据,执行所述目标业务,得到交易结果数据;After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business according to the business data carried in the business transaction request to obtain transaction result data;
    所述目标分区链获取所述交易结果数据对应的哈希数据;The target partition chain obtains the hash data corresponding to the transaction result data;
    所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块,所述哈希数据用于供所述基础链模块存储。The target partition chain stores the transaction result data, and feeds back the hash data to the basic chain module as the business transaction result, and the hash data is used for storage by the basic chain module.
  6. 如权利要求5所述的业务交易方法,其中,在所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块之后,所述方法还包括:The business transaction method according to claim 5, wherein after the target partition chain stores the transaction result data and feeds back the hash data as the business transaction result to the basic chain module, the Methods also include:
    所述基础链模块接收分区链发送的数据校验请求,所述数据校验请求中携带有待校验的交易结果数据;The basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified;
    所述基础链模块对所述待校验的交易结果数据进行哈希计算,得到待验哈希数据;The basic chain module performs hash calculation on the transaction result data to be verified to obtain hash data to be verified;
    所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据 的真实性。The basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
  7. 如权利要求6所述的业务交易方法,其中,所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性的步骤,包括:The business transaction method according to claim 6, wherein the step of determining the authenticity of the transaction result data to be verified according to the hash data to be verified by the basic chain module comprises:
    所述基础链模块将所述待验哈希数据与预存的哈希数据进行匹配,得到哈希匹配结果;The basic chain module matches the to-be-verified hash data with the pre-stored hash data to obtain a hash matching result;
    当所述哈希匹配结果为匹配相同时,所述基础链模块生成数据真实提示,并将所述数据真实提示反馈至所述分区链;When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain;
    当所述哈希匹配结果为匹配不同时,所述基础链模块生成数据虚假提示,并将所述数据虚假提示反馈至所述分区链。When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
  8. 一种基于区块链技术的业务交易***,其包括基础链模块,以及与所述基础链模块中任意一个服务器通信连接的分区链模块,所述分区链模块中包括至少一个分区链;A business transaction system based on blockchain technology, comprising a basic chain module, and a partition chain module communicatively connected to any server in the basic chain module, wherein the partition chain module includes at least one partition chain;
    所述基础链模块,用于验证接收到的业务交易请求,并将验证通过的业务交易请求发送至所述分区链模块中的目标分区链,以便接收并存储所述目标分区链反馈的业务交易结果;The basic chain module is used to verify the received business transaction request, and send the verified business transaction request to the target partition chain in the partition chain module, so as to receive and store the business transaction fed back by the target partition chain result;
    所述分区链模块,用于通过所述目标分区链,接收所述基础链模块发送的验证通过的业务交易请求,并在所述目标分区链执行所述业务交易请求中的目标业务,得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块。The partition chain module is configured to receive the verified business transaction request sent by the basic chain module through the target partition chain, and execute the target business in the business transaction request on the target partition chain to obtain the business transaction request. After the transaction result, the business transaction result is fed back to the basic chain module.
  9. 一种存储介质,其中,所述存储介质存储有多条指令,所述指令适于处理器进行加载,以执行如下步骤:A storage medium, wherein the storage medium stores a plurality of instructions, and the instructions are suitable for being loaded by a processor to perform the following steps:
    基础链模块接收请求方发送的业务交易请求,所述业务交易请求中携带有请求方身份信息和目标链标识信息,所述目标链标识信息包括目标分区链的分区链标识,所述目标分区链用于执行所述业务交易请求中的目标业务;The basic chain module receives the business transaction request sent by the requester, the business transaction request carries the requester identity information and the target chain identification information, and the target chain identification information includes the partition chain identification of the target partition chain, and the target partition chain for executing the target service in the service transaction request;
    基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果;The basic chain module responds to the business transaction request, and verifies the access authority of the partition chain of the requester according to the identity information of the requester and the identification information of the target chain, and obtains a verification result;
    基础链模块检测到所述验证结果为验证通过时,将所述业务交易请求发送至所述目标分区链;When the basic chain module detects that the verification result is verified, it sends the business transaction request to the target partition chain;
    目标分区链接收到所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反 馈至所述基础链模块。After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business in the business transaction request, and after obtaining the business transaction result, feeds back the business transaction result to the basic chain module.
  10. 根据权利要求9所述的存储介质,其中,执行所述基础链模块响应所述业务交易请求,根据所述请求方身份信息和所述目标链标识信息,对所述请求方的分区链访问权限进行验证,得到验证结果的步骤,包括:The storage medium according to claim 9, wherein, in response to the business transaction request, executing the basic chain module, according to the requester identity information and the target chain identification information, obtains access rights to the partition chain of the requester The steps of performing verification and obtaining the verification result include:
    所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果;其中,所述分区链访问权限表中记录有至少一对的用户身份标识和分区链标识;In response to the business transaction request, the basic chain module respectively matches the requester identity information and the target chain identification information with a preset partition chain access permission table to obtain an information matching result; wherein, the partition chain There are at least one pair of user ID and partition chain ID recorded in the access permission table;
    所述基础链模块根据所述信息匹配结果,对所述请求方的分区链访问权限进行验证,得到验证结果。The basic chain module verifies the access authority of the partition chain of the requester according to the information matching result, and obtains a verification result.
  11. 根据权利要求10所述的存储介质,其中,执行所述基础链模块响应所述业务交易请求,分别将所述请求方身份信息、所述目标链标识信息与预设的分区链访问权限表进行匹配,得到信息匹配结果的步骤,包括:The storage medium according to claim 10, wherein, in response to the business transaction request, the basic chain module executes the requester identity information, the target chain identification information and a preset partition chain access permission table respectively. Matching, the steps of obtaining the information matching result include:
    所述基础链模块响应所述业务交易请求,确定所述分区链访问权限表中的目标用户身份标识,所述目标用户身份标识为与所述请求方身份信息相匹配的用户身份标识;The basic chain module, in response to the business transaction request, determines the target user identity in the partition chain access permission table, and the target user identity is the user identity that matches the requester identity information;
    所述基础链模块获取所述目标用户身份标识对应的至少一个分区链标识;The basic chain module obtains at least one partition chain identifier corresponding to the target user identifier;
    所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果。The base chain module analyzes the at least one partition chain identifier and the target chain identifier information to obtain an information matching result.
  12. 根据权利要求11所述的存储介质,其中,执行所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息,得到信息匹配结果的步骤,包括:The storage medium according to claim 11, wherein the step of executing the basic chain module to analyze the at least one partition chain identifier and the target chain identifier information to obtain an information matching result comprises:
    所述基础链模块分析所述至少一个分区链标识和所述目标链标识信息;The base chain module analyzes the at least one partition chain identifier and the target chain identifier information;
    若所述至少一个分区链标识中包括目标分区链标识,则确定所述信息匹配结果为匹配成功,所述目标分区链标识为所述目标链标识信息中的分区链标识;If the at least one partition chain identifier includes a target partition chain identifier, it is determined that the information matching result is a successful match, and the target partition chain identifier is the partition chain identifier in the target chain identifier information;
    若所述至少一个分区链标识中不包括所述目标分区链标识,则确定所述信息匹配结果为匹配失败。If the at least one partition chain identifier does not include the target partition chain identifier, it is determined that the information matching result is a matching failure.
  13. 根据权利要求9所述的存储介质,其中,执行所述目标分区链接收到 所述基础链模块发送的业务交易请求后,执行所述业务交易请求中的目标业务,并在得到业务交易结果之后,将所述业务交易结果反馈至所述基础链模块的步骤,包括:The storage medium according to claim 9, wherein after executing the target partition link and receiving the service transaction request sent by the basic chain module, the target service in the service transaction request is executed, and after obtaining a service transaction result , the step of feeding back the business transaction result to the basic chain module includes:
    所述目标分区链接收到所述基础链模块发送的业务交易请求后,根据所述业务交易请求中携带的业务数据,执行所述目标业务,得到交易结果数据;After receiving the business transaction request sent by the basic chain module, the target partition link executes the target business according to the business data carried in the business transaction request to obtain transaction result data;
    所述目标分区链获取所述交易结果数据对应的哈希数据;The target partition chain obtains the hash data corresponding to the transaction result data;
    所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块,所述哈希数据用于供所述基础链模块存储。The target partition chain stores the transaction result data, and feeds back the hash data to the basic chain module as the business transaction result, and the hash data is used for storage by the basic chain module.
  14. 根据权利要求13所述的存储介质,其中,在执行所述目标分区链存储所述交易结果数据,并将所述哈希数据作为所述业务交易结果反馈至所述基础链模块之后,所述方法还包括:The storage medium according to claim 13, wherein after the target partition chain is executed to store the transaction result data, and the hash data is fed back to the basic chain module as the business transaction result, the Methods also include:
    所述基础链模块接收分区链发送的数据校验请求,所述数据校验请求中携带有待校验的交易结果数据;The basic chain module receives the data verification request sent by the partition chain, and the data verification request carries the transaction result data to be verified;
    所述基础链模块对所述待校验的交易结果数据进行哈希计算,得到待验哈希数据;The basic chain module performs hash calculation on the transaction result data to be verified to obtain hash data to be verified;
    所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性。The basic chain module determines the authenticity of the transaction result data to be verified according to the hash data to be verified.
  15. 根据权利要求14所述的存储介质,其中,执行所述基础链模块根据所述待验哈希数据,确定所述待校验的交易结果数据的真实性的步骤,包括:The storage medium according to claim 14, wherein the step of determining the authenticity of the transaction result data to be verified according to the hash data to be verified by the basic chain module comprises:
    所述基础链模块将所述待验哈希数据与预存的哈希数据进行匹配,得到哈希匹配结果;The basic chain module matches the to-be-verified hash data with the pre-stored hash data to obtain a hash matching result;
    当所述哈希匹配结果为匹配相同时,所述基础链模块生成数据真实提示,并将所述数据真实提示反馈至所述分区链;When the hash matching result is the same, the basic chain module generates a data truth prompt, and feeds back the data truth prompt to the partition chain;
    当所述哈希匹配结果为匹配不同时,所述基础链模块生成数据虚假提示,并将所述数据虚假提示反馈至所述分区链。When the hash matching result is that the matching is different, the basic chain module generates a data false prompt, and feeds back the data false prompt to the partition chain.
PCT/CN2020/140653 2020-12-29 2020-12-29 Blockchain technology-based business transaction method and system, and storage medium WO2022141024A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/CN2020/140653 WO2022141024A1 (en) 2020-12-29 2020-12-29 Blockchain technology-based business transaction method and system, and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2020/140653 WO2022141024A1 (en) 2020-12-29 2020-12-29 Blockchain technology-based business transaction method and system, and storage medium

Publications (1)

Publication Number Publication Date
WO2022141024A1 true WO2022141024A1 (en) 2022-07-07

Family

ID=82259910

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2020/140653 WO2022141024A1 (en) 2020-12-29 2020-12-29 Blockchain technology-based business transaction method and system, and storage medium

Country Status (1)

Country Link
WO (1) WO2022141024A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115664678A (en) * 2022-10-27 2023-01-31 成都质数斯达克科技有限公司 Block chain based trusted data verification method, device, equipment and storage medium
CN117670330A (en) * 2024-02-01 2024-03-08 中国信息通信研究院 Block chain-based transaction processing method and device, electronic equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106991164A (en) * 2017-03-31 2017-07-28 北京京东金融科技控股有限公司 Method, device and electronic equipment that finance data is handled are used for based on block chain
US20180150865A1 (en) * 2016-11-29 2018-05-31 Mastercard International Incorporated Method and system for authentication of coupons via blockchain
CN110687821A (en) * 2019-11-14 2020-01-14 腾讯科技(深圳)有限公司 Intelligent home control system and method based on block chain

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180150865A1 (en) * 2016-11-29 2018-05-31 Mastercard International Incorporated Method and system for authentication of coupons via blockchain
CN106991164A (en) * 2017-03-31 2017-07-28 北京京东金融科技控股有限公司 Method, device and electronic equipment that finance data is handled are used for based on block chain
CN110687821A (en) * 2019-11-14 2020-01-14 腾讯科技(深圳)有限公司 Intelligent home control system and method based on block chain

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115664678A (en) * 2022-10-27 2023-01-31 成都质数斯达克科技有限公司 Block chain based trusted data verification method, device, equipment and storage medium
CN117670330A (en) * 2024-02-01 2024-03-08 中国信息通信研究院 Block chain-based transaction processing method and device, electronic equipment and storage medium

Similar Documents

Publication Publication Date Title
CN108810006B (en) Resource access method, device, equipment and storage medium
US11651109B2 (en) Permission management method, permission verification method, and related apparatus
CN110727712B (en) Data processing method and device based on block chain network, electronic equipment and storage medium
US10891383B2 (en) Validating computer resource usage
US20230328109A1 (en) Data access policies
CN111163182B (en) Block chain-based device registration method and apparatus, electronic device, and storage medium
CN111523890B (en) Block chain-based data processing method, device, storage medium and equipment
US10880073B2 (en) Optimizing performance of a blockchain
WO2021159606A1 (en) Organization node chaining method and system based on blockchain
WO2021012572A1 (en) Blockchain transaction data processing method and apparatus, computer device, and storage medium
US11057368B2 (en) Issuing a certificate based on an identification of an application
CN110569658A (en) User information processing method and device based on block chain network, electronic equipment and storage medium
WO2022141024A1 (en) Blockchain technology-based business transaction method and system, and storage medium
WO2022237569A1 (en) Transaction repeat checking method and apparatus, and device and medium
CN115328645A (en) Computing task scheduling method, computing task scheduling device and electronic equipment
CN112651044B (en) Business transaction method, system and storage medium based on block chain technology
CN110445765B (en) Data sharing method based on block chain, terminal device and medium
WO2022088710A1 (en) Mirror image management method and apparatus
CN114827161A (en) Service calling request sending method and device, electronic equipment and readable storage medium
WO2020000716A1 (en) Big data analysis system, server, data processing method, program and storage medium
CN111597537B (en) Block chain network-based certificate issuing method, related equipment and medium
US20230325521A1 (en) Data processing method and apparatus based on blockchain network, device, and storage medium
CN109828832B (en) Block chain-based data circulation method, device, equipment and medium
CN115001707B (en) Device authentication method based on block chain and related device
US11704296B2 (en) Data management system, data management apparatus, and non-transitory computer readable medium storing data management program

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20967374

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20967374

Country of ref document: EP

Kind code of ref document: A1