CN106504091B - The method and device merchandised on block chain - Google Patents
The method and device merchandised on block chain Download PDFInfo
- Publication number
- CN106504091B CN106504091B CN201610968783.1A CN201610968783A CN106504091B CN 106504091 B CN106504091 B CN 106504091B CN 201610968783 A CN201610968783 A CN 201610968783A CN 106504091 B CN106504091 B CN 106504091B
- Authority
- CN
- China
- Prior art keywords
- certificate
- block chain
- information
- certificate revocation
- transaction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/04—Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Economics (AREA)
- Physics & Mathematics (AREA)
- Development Economics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Marketing (AREA)
- Strategic Management (AREA)
- Technology Law (AREA)
- Signal Processing (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Computer And Data Communications (AREA)
- Storage Device Security (AREA)
Abstract
The present invention relates to the method and device merchandised on a kind of block chain, the method merchandised on the block chain includes:After certificate revocation list is published on block chain by certificate authority, the block chain synchronizes the certificate revocation list to each node of the block chain;After the intelligent contract on the node receives the transaction request for carrying parameter transaction, the permission accessed on the block chain revokes system, the certificate revocation list on system, the parameter transaction and the node is revoked based on the permission to verify the permission of the transaction request, according to transaction request described in verification result response or refusal respond.The present invention directly can obtain certificate revocation list in real time when being traded on block chain on block chain, not need to inquire the permission of transaction from CA by a believable mechanism so that transactional operation is simple and efficient, mitigates overhead.
Description
Technical field
The present invention relates to the method and devices merchandised in block chain technical field more particularly to a kind of block chain.
Background technology
After intelligent contract is placed on block chain, one is problem of management to permission the problem of must take into consideration.Intelligence is closed
A string of the codes about inherently run in block chain network, therefore have many application programming interfaces in intelligent contract
(Application Programming Interface,API).How to manage when which API can be made by which user
Be one be often mentioned in block chain field the problem of.The solution of one of mainstream is that user right is write on to be demonstrate,proved
Inside the digital certificate that book certification authority (Certification Authority, CA) authenticated, it is then issued to user.When with
Family will be to one during intelligent contract initiation transaction, which can issue intelligent contract, intelligence together the transaction signed and certificate is recognized
Energy contract can check the permission on certificate to decide whether to continue to run with.
However, user right is not invariability, Public Key Infrastructure (Public Key Infrastructure,
PKI) in system, the revocation list of certificate can be stored in a center control system, if the node on block chain will be verified
Whether one certificate has permission (purpose of verification certificate is to determine whether to permit the execution of a certain transaction), the node on block chain
It must inquire whether this certificate is revoked from CA theres by a believable mechanism, when this allows for each transaction generation,
It is required to by obtaining newest certificate revocation list in the control system of center, to determine whether transaction related side has the power of transaction
Limit so that transactional operation is cumbersome, overhead is big.
Invention content
The purpose of the present invention is to provide the method and devices merchandised on a kind of block chain, it is intended to solve the friendship on block chain
The problem of easy to operate cumbersome, overhead is big.
To achieve the above object, the present invention provides a kind of method merchandised on block chain, the side to merchandise on the block chain
Method includes:
S1, after certificate revocation list is published on block chain by certificate authority, the block chain synchronizes the card
Book revocation list to the block chain each node;
S2 after the intelligent contract on the node receives the transaction request for carrying parameter transaction, accesses the block
Permission on chain revokes system, and the certificate revocation revoked based on the permission on system, the parameter transaction and the node is clear
The permission of transaction request described in single pair is verified, according to transaction request described in verification result response or refusal respond.
Preferably, the step S2 includes:
S21 revokes system by the permission and the parameter transaction is parsed;
S22 when parsing obtains certificate information and certificate authority, analyzes the certificate information and whether belongs to the certificate and hang
The certificate revocation information in inventory is sold, is verified with the permission to the transaction request;
S23, if the certificate information belongs to the certificate revocation information in the certificate revocation list, refusal respond institute
State transaction request;
S24 if the certificate information belongs to the non-certificate revocation information in the certificate revocation list, responds the friendship
Easily request.
Preferably, also record has whether the corresponding each fraction limit of non-certificate revocation information is hung in the certificate revocation list
The information of pin, then the step S24 further include:
S241, will the corresponding each fraction limit of non-certificate revocation information respectively with respectively not revoking card in the certificate revocation list
Letter ceases corresponding certificate authority and is compared;
S242 if there is fraction limit not to be revoked, responds the transaction request;
S243, if each fraction limit is revoked, transaction request described in refusal respond.
Preferably, it after the step S21, further includes:
If the certificate authority, transaction request described in refusal respond are not obtained after parsing.
To achieve the above object, it the present invention also provides the device merchandised on a kind of block chain, merchandises on the block chain
Device includes:
Synchronization module, for working as after certificate revocation list is published on block chain by certificate authority, the block chain
The certificate revocation list is synchronized to each node of the block chain;
Transaction modules after the intelligent contract for working as on the node receives the transaction request for carrying parameter transaction, are visited
It asks that the permission on the block chain revokes system, is revoked on system, the parameter transaction and the node based on the permission
Certificate revocation list verifies the permission of the transaction request, is asked according to transaction described in verification result response or refusal respond
It asks.
Preferably, the transaction modules include:
Access unit parses the parameter transaction for revoking system by the permission;
Authentication unit, for when parsing obtains certificate information and certificate authority, analyzing whether the certificate information belongs to
Certificate revocation information in the certificate revocation list, is verified with the permission to the transaction request;
First processing units, if belonging to the letter of certificate revocation in the certificate revocation list for the certificate information
It ceases, then transaction request described in refusal respond;
Second processing unit, if belonging to the non-certificate revocation letter in the certificate revocation list for the certificate information
Breath, then respond the transaction request.
Preferably, also record has whether the corresponding each fraction limit of non-certificate revocation information is hung in the certificate revocation list
The information of pin, the second processing unit further include:
Comparison subunit, for will the corresponding each fraction limit of non-certificate revocation information respectively in the certificate revocation list
Respectively the corresponding certificate authority of non-certificate revocation information is compared;
Third handles subelement, if for there is fraction limit not to be revoked, responds the transaction request;
Fourth process subelement, if being revoked for each fraction limit, transaction request described in refusal respond.
Preferably, the transaction modules further comprise:5th processing unit, if for not obtaining the certificate after parsing
Permission, then transaction request described in refusal respond.
The beneficial effects of the invention are as follows:After the certificate revocation list of the present invention is published to block chain, block chain is synchronized
To each node of block chain, i.e., certificate revocation list is stored directly on block chain, is asked when intelligent contract receives transaction
When asking, can certificate revocation list be directly obtained in real time on block chain, system, transaction request are revoked according to the permission accessed
The parameter transaction of middle carrying verifies the permission of the transaction request with certificate revocation list, does not need to be believable by one
Mechanism inquires the permission of transaction from CA so that transactional operation is simple and efficient, mitigates overhead.
Description of the drawings
Fig. 1 is the flow diagram of one embodiment of method merchandised on block chain of the present invention;
Fig. 2 is the refinement flow diagram of step S2 shown in Fig. 1;
Fig. 3 is the refinement flow diagram of step S24 shown in Fig. 2;
Fig. 4 is the structure diagram of one embodiment of device merchandised on block chain of the present invention.
Specific embodiment
The principle and features of the present invention will be described below with reference to the accompanying drawings, and the given examples are served only to explain the present invention, and
It is non-to be used to limit the scope of the present invention.
As shown in FIG. 1, FIG. 1 is the flow diagram of one embodiment of method merchandised on block chain of the present invention, the block chains
The method of upper transaction includes the following steps:
Step S1, after certificate revocation list is published on block chain by certificate authority, the block chain synchronizes institute
Certificate revocation list is stated to each node of the block chain;
Block chain (Blockchain) be by a string using cryptography methods generate data chunk into, each block
The cryptographic Hash (hash) of a block is contained, current block, shape are initially connected to from original block (genesis block)
Blocking chain.Block chain is also the distributed data base system participated in by node, is substantially the database account of a decentralization
This, records all transaction records, by taking the block chain of bit coin as an example, each person of participating in business is the section of block network
Point, each node have a complete public account book backup, have recite transaction letter all since bit coin is born above
Breath.Any one node initiates trading activity and is required for each node being transmitted to relevant information in block network, so as to
Account book on all nodes can verify this transaction behavior and accurately update.In addition, account book is blockette storage, with
The increase of transaction, new data block can be attached on already present chain, form chain structure.
After certificate revocation list is published on block chain by certificate authority, block chain can utilize the equity of itself
Certificate revocation list is synchronized on each node of block chain by (Peer-to-peer, P2P) network and common recognition algorithm, will be demonstrate,proved
Book revocation list is propagated on each node of block chain.Wherein, it preserves in certificate revocation list and is hung by certificate authority
Each information of certificate revocation of pin and the non-certificate revocation information not being revoked, if certificate information has been revoked, do not have
It has permission and performs corresponding intelligent contract, i.e., no permission is traded, if certificate information is not revoked, i.e., certificate revocation is clear
There is no the certificate information in list, then have permission and perform corresponding intelligent contract, that is, have permission and be traded.
In addition, the information of certificate revocation in certificate revocation list may change, at this point, certificate authority meeting
Publication one carries updated certificate revocation list to block chain, and the certificate revocation list of storage is replaced with update by block chain again
Certificate revocation list or the certificate revocation list according to the change storage of updated certificate revocation list afterwards.
Step S2, after the intelligent contract on the node receives the transaction request for carrying parameter transaction, described in access
Permission on block chain revokes system, revokes the certificate on system, the parameter transaction and the node based on the permission and hangs
Pin inventory verifies the permission of the transaction request, according to transaction request described in verification result response or refusal respond.
In the present embodiment, intelligent contract that each node on block chain can be on storage running block chain, an intelligence
Contract is a set of promise (promises) defined in digital form, these promises can be performed above including contract participant
Agreement.When the transaction request that one carries parameter transaction is passed on the node of block chain, this parameter transaction can be recorded
Intelligent contract corresponding with the parameter transaction is transmitted on to the corresponding transaction journal of the node and simultaneously to go to run, and by the transaction
Code on the corresponding intelligent contract of parameter is updated the data of intelligent contract.
Wherein, parameter transaction includes certificate information and corresponding certificate authority, and certificate information includes certification authority, card
Preface row number, validity period of certificate, certificate holder user information etc..
After the intelligent contract on node receives the transaction request for carrying parameter transaction, by accessing the power on block chain
Limit revokes system to obtain certificate information and the corresponding certificate authority in parameter transaction, but it is possible that there is card in the parameter transaction
Book permission is also possible to no certificate authority.Permission revokes system for handling relevant permission matters, such as permission revokes and is
System, which can perform, the parameter transaction such as parses.When the permission to transaction request is verified, if it is possible to join from transaction
Certificate information and certificate authority are got in number, then by the certificate revocation list on certificate information node corresponding with intelligent contract
In the information of certificate revocation be compared, to verify whether the certificate information is certificate revocation information, if the certificate is believed
Breath is certificate revocation information, then the transaction request lack of competence is traded, if the certificate information is not certificate revocation letter
Breath, then the transaction request, which has permission, is traded.
Compared with prior art, after the certificate revocation list of the present embodiment is published to block chain, block chain is synchronized to
Certificate revocation list, i.e., be stored directly on block chain by each node of block chain, when intelligent contract receives transaction request
When, system, transaction request can be revoked according to the permission accessed from directly certificate revocation list is obtained in real time on block chain
The parameter transaction of middle carrying verifies the permission of the transaction request with certificate revocation list, does not need to be believable by one
Mechanism inquires the permission of transaction from CA so that transactional operation is simple and efficient, mitigates overhead.
In a preferred embodiment, as shown in Fig. 2, on the basis of the embodiment of above-mentioned Fig. 1, above-mentioned steps S2 is into one
Step includes:
S21 revokes system by the permission and the parameter transaction is parsed;
S22 when parsing obtains certificate information and certificate authority, analyzes the certificate information and whether belongs to the certificate and hang
The certificate revocation information in inventory is sold, is verified with the permission to the transaction request;
S23, if the certificate information belongs to the certificate revocation information in the certificate revocation list, refusal respond institute
State transaction request;
S24 if the certificate information belongs to the non-certificate revocation information in the certificate revocation list, responds the friendship
Easily request.
In the present embodiment, if the intelligent contract for running or storing on the node of block chain, which receives, carries parameter transaction
After transaction request, the permission that can be accessed by predetermined address on the block chain chain revokes system with to the transaction request
Permission verified, specifically, access the block chain chain on permission revoke system when, by permission revoke system to transaction
Parameter is parsed, if parsing obtains certificate information but do not parse to obtain certificate authority, illustrates the transaction request lack of competence
It is traded, intelligent contract refuses the transaction request;If parsing obtains certificate information and certificate authority, further analysis is demonstrate,proved
Whether letter breath belongs to the certificate revocation information in certificate revocation list, specifically, can be by certificate information and certificate revocation
The information of certificate revocation in inventory is compared one by one, to determine whether the certificate information belongs to having revoked in revocation list
Certificate information.If certificate information belongs to the certificate revocation information in certificate revocation list, which carries out
Transaction, intelligent contract refusal respond transaction request;If certificate information is not belonging to the certificate revocation in certificate revocation list
Information, then the transaction request, which has permission, is traded, and intelligent contract responds the transaction request.
If in addition, can only parse to obtain certificate information from parameter transaction, but failing to access certificate authority after parsing,
Then also lack of competence is traded the transaction request.
The present embodiment revokes system when the permission to transaction request is verified, by accessing the permission on block chain,
System is revoked by permission to parse parameter transaction, when parsing obtains certificate information and certificate authority, passes through certificate of analysis
The information of certificate revocation whether information belongs in certificate revocation list is verified come the permission to transaction request, can improve
The rate of transaction data processing.
In a preferred embodiment, as shown in figure 3, on the basis of the embodiment of above-mentioned Fig. 2, in certificate revocation list
The information whether corresponding each fraction limit of non-certificate revocation information is revoked can also be recorded, in this embodiment, if detection
The certificate revocation information being not belonging to the certificate information in the certificate revocation list, then the step S24 can also be into
One step includes the following steps:
Step S241, will the corresponding each fraction limit of non-certificate revocation information respectively with not hung respectively in the certificate revocation list
The corresponding certificate authority of pin certificate information is compared, and determines whether the fraction limit has been revoked.If so, it enters step
Otherwise S242, performs step S243.
Step S242 responds the transaction request.
Step S243, transaction request described in refusal respond.
In the present embodiment, record has whether the corresponding each fraction limit of non-certificate revocation information is revoked in certificate revocation list
Information, that is, record the information that each fraction limit has been revoked or do not revoked.
In the present embodiment, a certificate information corresponds to multiple fraction limits, in order to enable user is revoked in part fraction limit
Afterwards, other certificate authority affairs can also be performed on block chain by certificate information, the present embodiment is in certificate revocation list
The information that whether corresponding each fraction limit is revoked under certificate information is had recorded, if certificate information is not revoked, further
It will the corresponding each fraction limit of non-certificate revocation information certificate corresponding with non-certificate revocation information each in certificate revocation list respectively
Permission is compared, if there is fraction limit not revoke, response transaction request, if each fraction limit has been revoked, refusal respond is handed over
Easily request.
As shown in figure 4, Fig. 4 is the structure diagram of one embodiment of device merchandised on block chain of the present invention, the block chain
The device of upper transaction includes:
Synchronization module 101, for working as after certificate revocation list is published on block chain by certificate authority, the block
Chain synchronizes the certificate revocation list to each node of the block chain;
Block chain (Blockchain) be by a string using cryptography methods generate data chunk into, each block
The cryptographic Hash (hash) of a block is contained, current block, shape are initially connected to from original block (genesis block)
Blocking chain.Block chain is also the distributed data base system participated in by node, is substantially the database account of a decentralization
This, records all transaction records, by taking the block chain of bit coin as an example, each person of participating in business is the section of block network
Point, each node have a complete public account book backup, have recite transaction letter all since bit coin is born above
Breath.Any one node initiates trading activity and is required for each node being transmitted to relevant information in block network, so as to
Account book on all nodes can verify this transaction behavior and accurately update.In addition, account book is blockette storage, with
The increase of transaction, new data block can be attached on already present chain, form chain structure.
After certificate revocation list is published on block chain by certificate authority, block chain can utilize the equity of itself
Certificate revocation list is synchronized on each node of block chain by (Peer-to-peer, P2P) network and common recognition algorithm, will be demonstrate,proved
Book revocation list is propagated on each node of block chain.Wherein, it preserves in certificate revocation list and is hung by certificate authority
Each information of certificate revocation of pin and the non-certificate revocation information not being revoked, if certificate information has been revoked, do not have
It has permission and performs corresponding intelligent contract, i.e., no permission is traded, if certificate information is not revoked, i.e., certificate revocation is clear
There is no the certificate information in list, then have permission and perform corresponding intelligent contract, that is, have permission and be traded.
In addition, the information of certificate revocation in certificate revocation list may change, at this point, certificate authority meeting
Publication one carries updated certificate revocation list to block chain, and the certificate revocation list of storage is replaced with update by block chain again
Certificate revocation list or the certificate revocation list according to the change storage of updated certificate revocation list afterwards.
Transaction modules 102, after the intelligent contract for working as on the node receives the transaction request for carrying parameter transaction,
The permission accessed on the block chain revokes system, is revoked on system, the parameter transaction and the node based on the permission
Certificate revocation list the permission of the transaction request is verified, according to verification result response or refusal respond described in transaction
Request.
In the present embodiment, intelligent contract that each node on block chain can be on storage running block chain, an intelligence
Contract is a set of promise (promises) defined in digital form, these promises can be performed above including contract participant
Agreement.When the transaction request that one carries parameter transaction is passed on the node of block chain, this parameter transaction can be recorded
Intelligent contract corresponding with the parameter transaction is transmitted on to the corresponding transaction journal of the node and simultaneously to go to run, and by the transaction
Code on the corresponding intelligent contract of parameter is updated the data of intelligent contract.
Wherein, parameter transaction includes certificate information and corresponding certificate authority, and certificate information includes certification authority, card
Preface row number, validity period of certificate, certificate holder user information etc..
After the intelligent contract on node receives the transaction request for carrying parameter transaction, by accessing the power on block chain
Limit revokes system to obtain certificate information and the corresponding certificate authority in parameter transaction, but it is possible that there is card in the parameter transaction
Book permission is also possible to no certificate authority, and permission revokes system for handling relevant permission matters, such as permission revokes and is
System, which can perform, the parameter transaction such as parses.When the permission to transaction request is verified, if it is possible to join from transaction
Certificate information and certificate authority are got in number, then by the certificate revocation list on certificate information node corresponding with intelligent contract
In the information of certificate revocation be compared, to verify whether the certificate information is certificate revocation information, if the certificate is believed
Breath is certificate revocation information, then the transaction request lack of competence is traded, if the certificate information is not certificate revocation letter
Breath, then the transaction request, which has permission, is traded.
In a preferred embodiment, on the basis of the embodiment of above-mentioned Fig. 4, above-mentioned transaction modules 102 are further wrapped
It includes:
Access unit parses the parameter transaction for revoking system by the permission;
Authentication unit, for when parsing obtains certificate information and certificate authority, analyzing whether the certificate information belongs to
Certificate revocation information in the certificate revocation list, is verified with the permission to the transaction request;
First processing units, if belonging to the letter of certificate revocation in the certificate revocation list for the certificate information
It ceases, then transaction request described in refusal respond;
Second processing unit, if belonging to the non-certificate revocation letter in the certificate revocation list for the certificate information
Breath, then respond the transaction request.
In the present embodiment, if the intelligent contract for running or storing on the node of block chain, which receives, carries parameter transaction
After transaction request, the permission that can be accessed by predetermined address on the block chain chain revokes system with to the transaction request
Permission verified, specifically, access the block chain chain on permission revoke system when, by permission revoke system to transaction
Parameter is parsed, if parsing obtains certificate information but do not parse to obtain certificate authority, illustrates the transaction request lack of competence
It is traded, intelligent contract refuses the transaction request;If parsing obtains certificate information and certificate authority, further analysis is demonstrate,proved
Whether letter breath belongs to the certificate revocation information in certificate revocation list, specifically, can be by certificate information and certificate revocation
The information of certificate revocation in inventory is compared one by one, to determine whether the certificate information belongs to having revoked in revocation list
Certificate information.If certificate information belongs to the certificate revocation information in certificate revocation list, which carries out
Transaction, intelligent contract refusal respond transaction request;If certificate information is not belonging to the certificate revocation in certificate revocation list
Information, then the transaction request, which has permission, is traded, and intelligent contract responds the transaction request.
If in addition, can only parse to obtain certificate information from parameter transaction, but failing to access certificate authority after parsing,
Then also lack of competence is traded the transaction request.
The present embodiment revokes system when the permission to transaction request is verified, by accessing the permission on block chain,
System is revoked by permission to parse parameter transaction, when parsing obtains certificate information and certificate authority, passes through certificate of analysis
The information of certificate revocation whether information belongs in certificate revocation list is verified come the permission to transaction request, can improve
The rate of transaction data processing.
In a preferred embodiment, it also records to have on the basis of the above embodiments, in certificate revocation list and not hang
The information whether corresponding each fraction limit of pin certificate information is revoked, if the certificate information belongs to non-certificate revocation information, institute
Second processing unit is stated to include:
Comparison subunit, for will the corresponding each fraction limit of non-certificate revocation information respectively in the certificate revocation list
Respectively the corresponding certificate authority of non-certificate revocation information is compared;
Third handles subelement, if for there is fraction limit not revoke, responds the transaction request;
Fourth process subelement, if having been revoked for each fraction limit, transaction request described in refusal respond.
In the present embodiment, a certificate information corresponds to multiple fraction limits, in order to enable user is revoked in part fraction limit
Afterwards, other certificate authority affairs can also be performed on block chain by certificate information, the present embodiment is in certificate revocation list
The information that whether corresponding each fraction limit is revoked under certificate information is had recorded, if certificate information is not revoked, further
It will the corresponding each fraction limit of non-certificate revocation information certificate corresponding with non-certificate revocation information each in certificate revocation list respectively
Permission is compared, if there is fraction limit not revoke, response transaction request, if each fraction limit has been revoked, refusal respond is handed over
Easily request.
The foregoing is merely presently preferred embodiments of the present invention, is not intended to limit the invention, it is all the present invention spirit and
Within principle, any modification, equivalent replacement, improvement and so on should all be included in the protection scope of the present invention.
Claims (6)
1. a kind of method merchandised on block chain, which is characterized in that the method merchandised on the block chain includes:
S1, after certificate revocation list is published on block chain by certificate authority, the block chain synchronizes the certificate and hangs
Inventory is sold to each node of the block chain;
After the intelligent contract on the node receives the transaction request for carrying parameter transaction, system is revoked by permission by S2
The parameter transaction is parsed, when parsing obtains certificate information and certificate authority, analyzes whether the certificate information belongs to described
Certificate revocation information in certificate revocation list, if the certificate information, which belongs in the certificate revocation list, has revoked card
Letter ceases, then transaction request described in refusal respond, if the certificate information, which belongs in the certificate revocation list, does not revoke card
Letter ceases, then responds the transaction request.
2. the method merchandised on block chain according to claim 1, which is characterized in that also remember in the certificate revocation list
Record has the information whether corresponding each fraction limit of non-certificate revocation information is revoked, and the step S2 is further included:
Will the corresponding each fraction limit of non-certificate revocation information respectively with non-certificate revocation information pair each in the certificate revocation list
The certificate authority answered is compared;
If there is fraction limit not to be revoked, the transaction request is responded;
If each fraction limit is revoked, transaction request described in refusal respond.
3. the method merchandised on block chain according to claim 1, which is characterized in that the step S2 is further included:
If parsing the parameter transaction does not obtain the certificate authority, transaction request described in refusal respond.
4. the device merchandised on a kind of block chain, which is characterized in that the device merchandised on the block chain includes:
Synchronization module, for working as after certificate revocation list is published on block chain by certificate authority, the block chain synchronizes
The certificate revocation list to the block chain each node;
Transaction modules, the transaction modules include:
Access unit after the intelligent contract for working as on the node receives the transaction request for carrying parameter transaction, passes through institute
It states the permission on block chain and revokes parameter transaction described in system analysis;
Authentication unit, for when parsing obtains certificate information and certificate authority, analyzing whether the certificate information belongs to described
Certificate revocation information in certificate revocation list, is verified with the permission to the transaction request;
First processing units, if belonging to the certificate revocation information in the certificate revocation list for the certificate information,
Transaction request described in refusal respond;
Second processing unit, if belonging to the non-certificate revocation information in the certificate revocation list for the certificate information,
Respond the transaction request.
5. the device merchandised on block chain according to claim 4, which is characterized in that also remember in the certificate revocation list
Record has the information whether corresponding each fraction limit of non-certificate revocation information is revoked, and the second processing unit further includes:
Comparison subunit, for will the corresponding each fraction limit of non-certificate revocation information respectively in the certificate revocation list it is each not
The corresponding certificate authority of certificate revocation information is compared;
Third handles subelement, if for there is fraction limit not to be revoked, responds the transaction request;
Fourth process subelement, if being revoked for each fraction limit, transaction request described in refusal respond.
6. the device merchandised on block chain according to claim 4, which is characterized in that the transaction modules are further wrapped
It includes:5th processing unit, if for not obtaining the certificate authority, transaction request described in refusal respond after parsing.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610968783.1A CN106504091B (en) | 2016-10-27 | 2016-10-27 | The method and device merchandised on block chain |
| PCT/CN2017/091253 WO2018076763A1 (en) | 2016-10-27 | 2017-06-30 | Method and system for transaction on block chain, electronic device, and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610968783.1A CN106504091B (en) | 2016-10-27 | 2016-10-27 | The method and device merchandised on block chain |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106504091A CN106504091A (en) | 2017-03-15 |
| CN106504091B true CN106504091B (en) | 2018-06-29 |
Family
ID=58322818
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610968783.1A Active CN106504091B (en) | 2016-10-27 | 2016-10-27 | The method and device merchandised on block chain |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN106504091B (en) |
| WO (1) | WO2018076763A1 (en) |
Families Citing this family (61)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9185095B1 (en) | 2012-03-20 | 2015-11-10 | United Services Automobile Association (Usaa) | Behavioral profiling method and system to authenticate a user |
| US10979410B1 (en) | 2015-05-04 | 2021-04-13 | United Services Automobile Association (Usaa) | Systems and methods for utilizing cryptology with virtual ledgers in support of transactions and agreements |
| US11032286B1 (en) | 2015-12-02 | 2021-06-08 | United Services Automobile Association (Usaa) | Block chain authentication systems and methods |
| US10454677B1 (en) | 2016-02-24 | 2019-10-22 | United Services Automobile Associate (USAA) | Cryptographic key generation from biometric data |
| US11854011B1 (en) | 2016-07-11 | 2023-12-26 | United Services Automobile Association (Usaa) | Identity management framework |
| CN106504091B (en) * | 2016-10-27 | 2018-06-29 | 深圳壹账通智能科技有限公司 | The method and device merchandised on block chain |
| CN108241968B (en) * | 2017-03-26 | 2020-08-14 | 杭州复杂美科技有限公司 | Method for leading processor to participate block chain consensus |
| CN108696356B (en) * | 2017-04-05 | 2020-08-18 | 中国移动通信有限公司研究院 | Block chain-based digital certificate deleting method, device and system |
| CN108737348A (en) * | 2017-04-21 | 2018-11-02 | 中国科学院信息工程研究所 | A kind of internet of things equipment access control method of the intelligent contract based on block chain |
| US10762506B1 (en) | 2017-05-11 | 2020-09-01 | United Services Automobile Association | Token device for distributed ledger based interchange |
| CN112929383A (en) * | 2017-05-16 | 2021-06-08 | 江峰 | Multi-center authentication system with block issuing mechanism |
| CN107194587A (en) * | 2017-05-24 | 2017-09-22 | 暨南大学 | It is a kind of to be circulated based on block chain and the art work of expert system and identification register method |
| CN107193672B (en) * | 2017-05-31 | 2020-01-14 | 无锡井通网络科技有限公司 | Cross-block asynchronous contract calling system |
| CN107425981B (en) * | 2017-06-12 | 2020-11-03 | 湖南岳麓山数据科学与技术研究院有限公司 | Block chain-based digital certificate management method and system |
| CN107360001B (en) * | 2017-07-26 | 2021-12-14 | 创新先进技术有限公司 | Digital certificate management method, device and system |
| CN107592293A (en) | 2017-07-26 | 2018-01-16 | 阿里巴巴集团控股有限公司 | The means of communication, digital certificate management method, device and electronic equipment between block chain node |
| CN107508680B (en) * | 2017-07-26 | 2021-02-05 | 创新先进技术有限公司 | Digital certificate management method and device and electronic equipment |
| US10805085B1 (en) | 2017-08-24 | 2020-10-13 | United Services Automobile Association (Usaa) | PKI-based user authentication for web services using blockchain |
| CN107507091A (en) * | 2017-09-07 | 2017-12-22 | 复旦大学 | Enhanced data Right protection method based on block chain and intelligent contract |
| CN107590659A (en) * | 2017-09-07 | 2018-01-16 | 中链科技有限公司 | Allocation of landownership and land use right data processing method, system and computer-readable recording medium |
| CN110019972A (en) * | 2017-09-25 | 2019-07-16 | 航天信息股份有限公司 | The restoration methods and electronic device of the storage method of electronic invoice, chain of keeping accounts |
| CN107749847A (en) * | 2017-10-23 | 2018-03-02 | 济南浪潮高新科技投资发展有限公司 | A kind of method of block chain quadrature digital up-converter |
| CN107707410B (en) * | 2017-10-26 | 2021-04-27 | 上海点融信息科技有限责任公司 | Method for configuring system audit service, information processing device and readable storage medium |
| CN108074177B (en) * | 2017-12-05 | 2022-01-11 | 深圳前海微众银行股份有限公司 | Data reconciliation method, system and computer-readable storage medium |
| CN108537666A (en) * | 2018-04-09 | 2018-09-14 | 深圳市云蚂蚁科技有限责任公司 | A kind of block catenary system and block chain network method of commerce |
| CN108616578A (en) * | 2018-04-09 | 2018-10-02 | 上海点融信息科技有限责任公司 | Method for processing business, equipment and the computer readable storage medium of transregional piece of platform chain |
| CN108805702B (en) * | 2018-04-19 | 2022-04-01 | 深圳市迅雷网络技术有限公司 | Transaction buffering/accelerating method based on block chain and block chain transaction processing system |
| CN108737106B (en) * | 2018-05-09 | 2021-06-01 | 深圳壹账通智能科技有限公司 | User authentication method and device on block chain system, terminal equipment and storage medium |
| CN108683539B (en) * | 2018-05-21 | 2022-03-25 | 腾讯科技(深圳)有限公司 | Block chain network management method, block chain network management device, block chain network management medium and electronic equipment |
| CN108923928B (en) * | 2018-05-31 | 2024-04-02 | 金华航大北斗应用技术有限公司 | Digital certificate revocation system and method based on block chain |
| CN108924092B (en) * | 2018-06-07 | 2020-11-20 | 北京航空航天大学 | Public arbitration distributed cloud storage method and system based on block chain |
| CN109035019B (en) * | 2018-07-11 | 2023-06-16 | 平安科技(深圳)有限公司 | Bill transaction method, system, computer device and storage medium |
| CN109102401B (en) * | 2018-07-23 | 2021-04-27 | 上海点融信息科技有限责任公司 | Method and device for operating intelligent contracts in block chain network |
| CN109218029B (en) * | 2018-09-27 | 2023-04-21 | 深圳壹账通智能科技有限公司 | Block chain-based network certificate trusted query method, device and storage medium |
| CN111091467A (en) * | 2018-10-23 | 2020-05-01 | 上海交通大学 | Stock right transaction management computer simulation system based on block chain and deep learning |
| CN109493020B (en) * | 2018-11-08 | 2022-02-11 | 众安信息技术服务有限公司 | Block chain based secure transaction method and device |
| CN110032885B (en) * | 2019-02-19 | 2020-03-06 | 阿里巴巴集团控股有限公司 | Method, node and storage medium for implementing privacy protection in block chain |
| CN111612452A (en) * | 2019-02-22 | 2020-09-01 | 中细软集团有限公司 | Intellectual property management system and method based on block chain |
| CN109615529B (en) * | 2019-02-25 | 2023-02-24 | 中国农业银行股份有限公司 | Credit investigation system based on block chain |
| KR102203758B1 (en) * | 2019-03-04 | 2021-01-18 | 알리바바 그룹 홀딩 리미티드 | Method and device for handling certificates in blockchain system |
| CN110598394B (en) * | 2019-03-28 | 2021-12-21 | 腾讯科技(深圳)有限公司 | Authority verification method and device and storage medium |
| CN110163751B (en) * | 2019-04-15 | 2023-07-04 | 广州致链科技有限公司 | Block chain access system oriented to alliance chain and implementation method thereof |
| CN110163756B (en) * | 2019-05-28 | 2023-07-18 | 深圳市迅雷网络技术有限公司 | Transaction method, system, server and blockchain system based on alliance chain |
| CN111226248B (en) | 2019-09-02 | 2024-03-26 | 创新先进技术有限公司 | Managing a blockchain-based centralized ledger system |
| CN110620776B (en) * | 2019-09-24 | 2021-11-26 | 腾讯科技(深圳)有限公司 | Data transfer information transmission method and device |
| CN110601858B (en) * | 2019-09-27 | 2021-05-28 | 腾讯科技(深圳)有限公司 | Certificate management method and device |
| CN110598482B (en) * | 2019-09-30 | 2023-09-15 | 腾讯科技(深圳)有限公司 | Digital certificate management method, device, equipment and storage medium based on blockchain |
| CN110807189B (en) * | 2019-11-15 | 2023-07-07 | 内蒙古大学 | Authority segmentation method in block chain access control |
| CN111030826A (en) * | 2019-12-06 | 2020-04-17 | 杭州溪塔科技有限公司 | Certificate revocation method and device for block chain network and electronic equipment |
| CN110992035A (en) * | 2019-12-13 | 2020-04-10 | 中国工商银行股份有限公司 | Block chain link point management method, device and system |
| CN110730081B (en) * | 2019-12-17 | 2020-04-14 | 腾讯科技(深圳)有限公司 | Block chain network-based certificate revocation method, related equipment and medium |
| CN111538783B (en) * | 2020-04-20 | 2023-05-05 | 成都质数斯达克科技有限公司 | Method, device, terminal and storage medium for intelligent contract execution constraint |
| WO2020143856A2 (en) | 2020-04-22 | 2020-07-16 | Alipay (Hangzhou) Information Technology Co., Ltd. | Managing transaction requests in ledger systems |
| SG11202103218YA (en) | 2020-04-22 | 2021-04-29 | Alipay Hangzhou Inf Tech Co Ltd | Managing transaction requests in ledger systems |
| EP3837657B1 (en) | 2020-04-22 | 2022-12-07 | Alipay (Hangzhou) Information Technology Co., Ltd. | Managing transaction requests in ledger systems |
| CN111930847B (en) * | 2020-09-16 | 2021-01-08 | 深圳壹账通智能科技有限公司 | Data processing method and device based on block chain and storage medium |
| CN112418854A (en) * | 2020-10-09 | 2021-02-26 | 深圳华工能源技术有限公司 | Energy-saving certificate management method based on block chain technology |
| CN113141257B (en) * | 2021-03-26 | 2022-06-07 | 深圳国实检测技术有限公司 | Revocation list updating method and storage medium |
| CN113504978A (en) * | 2021-07-14 | 2021-10-15 | 上海点融信息科技有限责任公司 | Method, apparatus and readable storage medium for determining out-of-block time of block chain |
| CN115388931B (en) * | 2022-10-27 | 2023-02-03 | 河北省科学院应用数学研究所 | Credible monitoring method, monitoring terminal and storage medium for sensor abnormal data |
| CN116827648B (en) * | 2023-07-07 | 2024-06-14 | 亚数信息科技(上海)有限公司 | Website effectiveness detection method, device, equipment and storage medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104036033A (en) * | 2014-06-30 | 2014-09-10 | 北京数字认证股份有限公司 | Certificate revocation list caching and checking method of digital certificate |
| CN105488431A (en) * | 2015-11-30 | 2016-04-13 | 布比(北京)网络技术有限公司 | Authority management method and device for block chain system |
| CN105591753A (en) * | 2016-01-13 | 2016-05-18 | 杭州复杂美科技有限公司 | Application method of CA certificate on block chain |
| CN105592059A (en) * | 2015-10-14 | 2016-05-18 | 杭州华三通信技术有限公司 | Digital certificate verification method and device |
| CN105701372A (en) * | 2015-12-18 | 2016-06-22 | 布比(北京)网络技术有限公司 | Block chain identity construction and verification method |
| CN105931052A (en) * | 2016-04-21 | 2016-09-07 | 四川大学 | Virtual currency transaction validation method based on block chain multi-factor cross-validation |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6385725B1 (en) * | 1998-08-24 | 2002-05-07 | Entrust Technologies Limited | System and method for providing commitment security among users in a computer network |
| CN101316273B (en) * | 2008-05-12 | 2012-08-22 | 华中科技大学 | Distributed safety memory system |
| CN102487383B (en) * | 2010-12-02 | 2015-01-28 | 上海可鲁系统软件有限公司 | Industrial internet distributed system safety access control device |
| KR101661930B1 (en) * | 2015-08-03 | 2016-10-05 | 주식회사 코인플러그 | Certificate issuance system based on block chain |
| CN105488722B (en) * | 2015-11-30 | 2019-11-26 | 布比(北京)网络技术有限公司 | Asset data processing method and processing device based on derivative chain |
| CN106504091B (en) * | 2016-10-27 | 2018-06-29 | 深圳壹账通智能科技有限公司 | The method and device merchandised on block chain |
-
2016
- 2016-10-27 CN CN201610968783.1A patent/CN106504091B/en active Active
-
2017
- 2017-06-30 WO PCT/CN2017/091253 patent/WO2018076763A1/en active Application Filing
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104036033A (en) * | 2014-06-30 | 2014-09-10 | 北京数字认证股份有限公司 | Certificate revocation list caching and checking method of digital certificate |
| CN105592059A (en) * | 2015-10-14 | 2016-05-18 | 杭州华三通信技术有限公司 | Digital certificate verification method and device |
| CN105488431A (en) * | 2015-11-30 | 2016-04-13 | 布比(北京)网络技术有限公司 | Authority management method and device for block chain system |
| CN105701372A (en) * | 2015-12-18 | 2016-06-22 | 布比(北京)网络技术有限公司 | Block chain identity construction and verification method |
| CN105591753A (en) * | 2016-01-13 | 2016-05-18 | 杭州复杂美科技有限公司 | Application method of CA certificate on block chain |
| CN105931052A (en) * | 2016-04-21 | 2016-09-07 | 四川大学 | Virtual currency transaction validation method based on block chain multi-factor cross-validation |
Non-Patent Citations (1)
| Title |
|---|
| 《分布式账簿在支付行业的应用》;向迪雅等;《金融会计》;20160930(第9期);第30-36页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2018076763A1 (en) | 2018-05-03 |
| CN106504091A (en) | 2017-03-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106504091B (en) | The method and device merchandised on block chain | |
| JP6285454B2 (en) | Entity network translation (ENT) | |
| CN103701761B (en) | Authentication method and system that open interface is called | |
| CN112686668B (en) | Alliance chain crossing system and method | |
| US20190372781A1 (en) | Method for superseding log-in of user through pki-based authentication by using blockchain database of utxo-based protocol, and server employing same | |
| CN105074685B (en) | The multi-tenant that the social business of enterprise is calculated supports method, computer-readable medium and system | |
| CN110050474A (en) | The type name of subobject for the composite object in Internet of Things network and block chain | |
| CN110069475B (en) | Manufacturing industry cross-data entity tracing method based on block chain multi-party self-maintenance | |
| CN110268678A (en) | The method by the login of the authentication proxy user based on PKI and the server using it using intelligent contract and block chain database | |
| CN110912707A (en) | Block chain-based digital certificate processing method, device, equipment and storage medium | |
| CN104363207B (en) | Multiple-factor strengthens safely authorization and identification method | |
| CN112527912B (en) | Data processing method and device based on block chain network and computer equipment | |
| US20090100261A1 (en) | Method and system for mediation of authentication within a communication network | |
| CN109246197A (en) | Data processing method and device based on intelligent contract | |
| CN114978638B (en) | Block chain cross-chain supervision method based on shared node | |
| CN113157648A (en) | Block chain based distributed data storage method, device, node and system | |
| CN110417790A (en) | Block chain system of real name queuing system and method | |
| Pinto et al. | Blockchain-based PKI for crowdsourced IoT sensor information | |
| CN113965930A (en) | Quantum key-based industrial internet active identification analysis method and system | |
| CN109587100A (en) | A kind of cloud computing platform user authentication process method and system | |
| CN113469371A (en) | Federal learning method and device | |
| CN107770276A (en) | It is a kind of to realize that user data manages the network system and method with renewal independently | |
| Elhajj et al. | Lasii: Lightweight authentication scheme using iota in iot platforms | |
| CN107846676A (en) | Safety communicating method and system based on network section security architecture | |
| CN103781026A (en) | Authentication method of general authentication mechanism |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 200000 Shanghai, Xuhui District dragon road, building 3484, room 3, room 2879 Applicant after: Shanghai one way link chain Technology Co., Ltd. Address before: 200000 Shanghai, Xuhui District dragon road, building 3484, room 3, room 2879 Applicant before: Shanghai billion through block chain Technology Co., Ltd. |
|
| CB02 | Change of applicant information | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20180525 Address after: 518000 Room 201, building A, No. 1, Qian Wan Road, Qianhai Shenzhen Hong Kong cooperation zone, Shenzhen, Guangdong (Shenzhen Qianhai business secretary Co., Ltd.) Applicant after: Shenzhen one ledger Intelligent Technology Co., Ltd. Address before: 200000 room 3484, 3 floor, 2879 Longteng Road, Xuhui District, Shanghai. Applicant before: Shanghai one way link chain Technology Co., Ltd. |
|
| TA01 | Transfer of patent application right | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |