Nothing Special   »   [go: up one dir, main page]

CN109118186A - A kind of digital cash method of commerce based on hardware chip - Google Patents

A kind of digital cash method of commerce based on hardware chip Download PDF

Info

Publication number
CN109118186A
CN109118186A CN201810955011.3A CN201810955011A CN109118186A CN 109118186 A CN109118186 A CN 109118186A CN 201810955011 A CN201810955011 A CN 201810955011A CN 109118186 A CN109118186 A CN 109118186A
Authority
CN
China
Prior art keywords
safety chip
transaction information
chip
signature
private key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810955011.3A
Other languages
Chinese (zh)
Inventor
何伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Idea Of Shenzhen Famous Communication Technology Ltd By Share Ltd
Original Assignee
Oracle Science And Technology Era (shenzhen) Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oracle Science And Technology Era (shenzhen) Co Ltd filed Critical Oracle Science And Technology Era (shenzhen) Co Ltd
Priority to CN201810955011.3A priority Critical patent/CN109118186A/en
Publication of CN109118186A publication Critical patent/CN109118186A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/72Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • G06Q20/06Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
    • G06Q20/065Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme using e-cash
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Mathematical Physics (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The embodiment of the invention discloses a kind of digital cash method of commerce based on hardware chip, this method is applied in mobile terminal, mobile terminal includes system environments and security context, built-in security chip in mobile terminal, safety chip is run under security context, this method comprises: into the block chain wallet application under system environments;The external exchange instruction that user inputs in block chain wallet application is received, the Transaction Information unsigned is generated according to external exchange instruction, and the Transaction Information that this is unsigned is sent to safety chip;Signature operation is carried out to the Transaction Information unsigned by private key pre-stored in safety chip, the Transaction Information after generating signature;Transaction Information after receiving the signature that safety chip returns.The technical solution of the embodiment of the present invention is by built-in security chip in the terminal, and trading signature is isolated in safety chip and runs, and the security performance of transaction can not only be significantly greatly increased, and user can carry, and user is facilitated to control.

Description

A kind of digital cash method of commerce based on hardware chip
Technical field
The present invention relates to electronic technology fields, and in particular to a kind of digital cash method of commerce based on hardware chip.
Background technique
Wallet is storage and the tool using digital cash, has very important status in block chain field.Block chain Wallet is related to wallet address, private key and the several key concepts of public key, and user is signed transaction by private key, to prove that the user gathers around There is the output of transaction to weigh, and private key can calculate public key, public key can generate wallet address by a series of digital signature again. It therefore, is the most important thing to the protection of private key in block chain wallet.
Common several block chain wallet types have following several: On-chain wallet, send number to a wallet address Word currency, transaction broadcasts in the whole network, are identified, being packed into block, and On-chain wallet needs oneself keeping private key, and in net Network secure context, the consciousness and ability of ordinary user are all inadequate.Off-chain wallet is traded by exchange, user There is no private key, private key is however the wind that exchange occurs in the previous security incident of block chain as hosted by transaction for I Danger is maximum, is subject to the malicious attack of hacker.Cold wallet, i.e., offline, suspension, the position of private key storage cannot be visited by network The wallet asked often relies on " cold " equipment to store private key, such as computer, mobile phone, the hand-written notebook etc. do not networked, though So avoid the risk stolen by hacker, but physical security risk may be faced, for example, computer hard disc damage, notebook lose or It is torn to pieces.Hot money packet, private key are stored in the position that can be accessed by network, and the risk for stealing private key by hacker is larger.Therefore, have Necessity designs a kind of digital cash method of commerce that safe and convenient user controls for block chain wallet.
Summary of the invention
The embodiment of the invention provides a kind of digital cash method of commerce based on hardware chip, by the terminal Built-in security chip, and trading signature is isolated in safety chip and runs, and the security performance of transaction can not only be significantly greatly increased, and User can carry, and user is facilitated to control.
First aspect of the embodiment of the present invention provides a kind of digital cash method of commerce based on hardware chip, and the method is answered For in mobile terminal, the mobile terminal to include system environments and security context, safe core is built-in in the mobile terminal Piece, the safety chip are run under the security context, which comprises
Into the block chain wallet application under the system environments;
The external exchange instruction that user inputs in the block chain wallet application is received, is instructed according to the external exchange The Transaction Information unsigned is generated, and the Transaction Information unsigned is sent to the safety chip;
Signature operation is carried out to the Transaction Information unsigned by pre-stored private key in the safety chip, it is raw At the Transaction Information after signature;
Transaction Information after receiving the signature that the safety chip returns.
As an alternative embodiment, in first aspect of the embodiment of the present invention, the system environments and the peace It is physically isolated between full ambient engine, the hardware under the system environments and the safety chip are carried out by serial peripheral equipment interface SPI Communication.
As an alternative embodiment, the security context is in offline in first aspect of the embodiment of the present invention State.
As an alternative embodiment, in first aspect of the embodiment of the present invention, it is described to pass through the safety chip In pre-stored private key signature operation is carried out to the Transaction Information unsigned, the Transaction Information after generating signature, comprising:
Elliptic curve cipher ECC algorithm or elliptic curve number are utilized by pre-stored private key in the safety chip Signature algorithm ECDSA carries out static signature operation to the Transaction Information unsigned, the Transaction Information after generating signature.
As an alternative embodiment, in first aspect of the embodiment of the present invention, it is described to enter the system environments Under block chain wallet application after, the external exchange that inputs in the block chain wallet application of user that receives instructs it Before, the method also includes:
Wallet account is created, the private key for being directed to the wallet account is generated;
Back-up processing is carried out to the private key, the private key is backed up in the safety chip.
As an alternative embodiment, the private key is in the system ring in first aspect of the embodiment of the present invention It is invisible under border.
As an alternative embodiment, in first aspect of the embodiment of the present invention, the method also includes:
Transaction Information after the signature is subjected to node broadcasts.
As an alternative embodiment, the safety chip supports state close in first aspect of the embodiment of the present invention At least one of algorithm SM1, SM2, SM3, SM4.
As an alternative embodiment, being built-in in the safety chip in first aspect of the embodiment of the present invention For resisting the high-low voltage detection unit of false voltage attack, also it is built-in in the safety chip for resisting failure-frequency The clock unit of attack.
Compared with prior art, the embodiment of the present invention has the advantages that
Built-in security chip in the terminal of the embodiment of the present invention, and safety chip runs on the system with mobile terminal Under the security context that environment is isolated, when entering the block chain wallet application being installed under system environments, user can receive The external exchange instruction inputted in the block chain wallet application generates the transaction unsigned according to external exchange instruction and believes Breath, and the Transaction Information that this is unsigned is sent to the safety chip in security context;Further, by pre- in safety chip The private key first stored carries out signature operation to the Transaction Information unsigned, the Transaction Information after generating signature, and will be after signature Transaction Information return to the block chain wallet application under system environments.Technical solution in the embodiment of the present invention, by moving Built-in security chip in dynamic terminal, and trading signature is isolated in safety chip and runs, i.e. private key are only stored in and mobile terminal The physically-isolated safety chip of system environments in, so as to which the security performance of transaction is significantly greatly increased, avoid the risk being hacked; In addition, mobile terminal is carried convenient for user, user is facilitated to control.
Detailed description of the invention
It to describe the technical solutions in the embodiments of the present invention more clearly, below will be to needed in the embodiment Attached drawing is briefly described, it should be apparent that, drawings in the following description are only some embodiments of the invention, for ability For the those of ordinary skill of domain, without creative efforts, it can also be obtained according to these attached drawings other attached Figure.
Fig. 1 is a kind of structural schematic diagram of mobile terminal applied to digital cash transaction provided in an embodiment of the present invention;
Fig. 2 is a kind of process signal of digital cash method of commerce based on hardware chip provided in an embodiment of the present invention Figure;
Fig. 3 is the process signal of another digital cash method of commerce based on hardware chip provided in an embodiment of the present invention Figure.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that the described embodiment is only a part of the embodiment of the present invention, instead of all the embodiments.Based on this Embodiment in invention, every other reality obtained by those of ordinary skill in the art without making creative efforts Example is applied, shall fall within the protection scope of the present invention.
It should be noted that term " includes " and " having " and their any changes in the embodiment of the present invention and attached drawing Shape, it is intended that cover and non-exclusive include.Such as contain the process, method of a series of steps or units, system, product or Equipment is not limited to listed step or unit, but optionally further comprising the step of not listing or unit or optional Ground further includes the other step or units intrinsic for these process, methods, product or equipment.
The embodiment of the invention discloses a kind of digital cash method of commerce based on hardware chip, by the terminal Built-in security chip, and trading signature is isolated in safety chip and runs, and the security performance of transaction can not only be significantly greatly increased, and User can carry, and user is facilitated to control.It is described in detail separately below.
Referring to Fig. 1, Fig. 1 is a kind of knot of mobile terminal applied to digital cash transaction provided in an embodiment of the present invention Structure schematic diagram.As shown in Figure 1, mobile terminal may include system environments and security context, and it is built-in with one in the terminal Safety chip IC.Mobile terminal can include but is not limited to cell phone, tablet computer, personal digital assistant (Personal Digital Assistant, PDA), intelligent wearable device (such as smartwatch, Intelligent bracelet, intelligent necklace), mobile interchange Each class of electronic devices, the embodiment of the present invention such as net equipment (Mobile Internet Device, MID) are not construed as limiting.Safe core Piece IC can be combined into one with integrated mode with mobile terminal, i.e. safety chip IC is non-dismountable in the terminal;Safety Chip IC can also be by the way of plug in conjunction with mobile terminal, i.e. safety chip IC is detachable in the terminal, here It is not construed as limiting.Block chain wallet application is installed in the terminal, which can be used for carrying out digital goods The transaction of coin, wherein digital cash common are bit coin (Bitcoin), Lay spy coin, ZEC coin, bit stock etc., here not It limits.A part of composed structure is illustrated only in mobile terminal shown in FIG. 1, can also include but is not limited to memory, figure Shape processor (Graphics Processing Unit, GPU), antenna, camera, loudspeaker etc. hardware configuration, do not make here It limits.
Wherein, system environments is the running environment of mobile terminal, can include but is not limited to Android environment, IOS ring One of which in border, Windows environment etc..Block chain wallet application is installed under system environments, i.e. block chain wallet application It is run under system environments.In addition, the online application, multimedia application, instant chat application etc. in mobile terminal are being It is run under system environment.The central processing unit (Central Processing Unit, CPU) of mobile terminal is by calling memory The various executable program codes of middle storage, to realize corresponding function.Safety chip IC is located under security system, i.e., safe core Piece IC is run under security system.Security context is a kind of environment specially built for safety chip IC, it is a kind of offline Environment is not networked always.It is physically-isolated between system environments and security context, and the hardware under system environments is (such as CPU Serial Peripheral Interface (SPI) (Serial Peripheral) can be passed through between the safety chip under security context Interface, SPI) it is communicated.Private key necessary to trading for digital cash is stored under safety chip IC, makes total Word moneytary operations signature is executed at safety chip IC, and is static signature.The embodiment of the present invention is based on being built in mobile terminal Safety chip IC come private key needed for saving digital cash transaction, and complete to grasp the signature of Transaction Information in safety chip Make.Compared with existing digital mode of doing business, static signature can be avoided the risk being hacked, even if mobile terminal system environment exists By hacker attack when line is networked, hacker also cannot be introduced under security context and get private key, to greatly improve digital cash The safety of transaction.In addition, mobile terminal is carried convenient for user, user is facilitated to control the dynamic of digital cash transaction at any time State.
Referring to Fig. 2, Fig. 2 is a kind of digital cash method of commerce based on hardware chip provided in an embodiment of the present invention Flow diagram.Wherein, the digital cash method of commerce based on hardware chip described in Fig. 2 can be applied to mobile terminal In, mobile terminal may include system environments and security context, be built-in with safety chip in mobile terminal, safety chip operation Under security context.As shown in Figure 1, being somebody's turn to do the digital cash method of commerce based on hardware chip may comprise steps of:
210, block chain wallet application receives the external exchange instruction of user's input, is generated not according to external exchange instruction The Transaction Information of signature.
In the embodiment of the present invention, block chain wallet application is installed under the system environments of mobile terminal, and block chain wallet is answered With can be in mobile terminal carry application software.Enter block chain wallet application, tool under the system environments of mobile terminal Body, user can click or double-click the icon of the block chain wallet application on mobile terminal desktop to enter the block chain wallet Using certainly, except block chain wallet application default is opened.
In the embodiment of the present invention, enter block chain wallet application after, user can in block chain wallet application into Row operations, for example, carry out the transaction (such as bank settlement) of digital cash, the checking of digital cash assets, modify payment cipher, Account name etc..When user wants to carry out external exchange (as paid the bill), block chain wallet application can receive user's input External exchange instruction, and the Transaction Information unsigned is generated according to external exchange instruction.Wherein, the external exchange of user's input Instruction may include the amount of money (quantity of such as digital currency) of external exchange, reciprocal account information (the wallet address of such as debit), mine Expenses of labour use etc..It is understood that generally requiring after opening block chain wallet application and first logging in wallet, user can at this time To carry out logon operation, after logging in successfully, it can realize operations in block chain wallet application.Wherein, wallet is stepped on Land mode may include that the account name for being manually entered wallet and modification logging are logged in, or the biological characteristic of acquisition user is believed Breath is matched to complete to log in, wherein the biological information of user can include but is not limited to the fingerprint characteristic letter of user Breath, iris feature information, face characteristic information, vocal print feature information, retinal feature information, gesture feature information, person's handwriting are special At least one of reference breath etc..
220, the Transaction Information that block chain wallet application unsigns this is sent to safety chip.
230, safety chip private key according to the pre-stored data carries out signature operation to the Transaction Information unsigned, and generates label Transaction Information after name.
It, can after the external exchange instruction inputted according to user generates the Transaction Information unsigned in the embodiment of the present invention Safety chip is sent to the Transaction Information that this is unsigned.Safety chip is after receiving the Transaction Information unsigned, root Signature operation is carried out to the Transaction Information unsigned according to private key pre-stored in itself, to generate the transaction letter after signature Breath.Wherein, safety chip is run in a secure environment, and wallet private key is only stored in the safety chip under security system, It is not saved under the system environments of mobile terminal, so that private key is sightless under system environments.System environments and safety collar It is physically isolated between border, and the hardware under system environments is communicated with safety chip by serial peripheral equipment interface SPI, therefore, When the Transaction Information unsigned is issued safety chip by block chain wallet application, the SPI of the CPU by mobile terminal can be The Transaction Information that interface unsigns this issues safety chip, i.e., the exchange of information between the two is realized by SPI interface.It moves To move subterminal system environments and security context can only be communicated on hardware by SPI interface, thus considered critical system (Application Programming Interface, application programming connect CommAPI between environment and safety chip Mouthful) quantity and function, the safety of private key is ensured with this.Private key is run in a secure environment with signature process, and outside can only Obtain a result.
Optionally, step 230 safety chip private key according to the pre-stored data signs to the Transaction Information that this is unsigned The specific embodiment of operation, the Transaction Information after generating signature may comprise steps of:
21) safety chip private key according to the pre-stored data utilizes elliptic curve cipher ECC algorithm or elliptic curve number label Name algorithm ECDSA carries out static signature operation to the Transaction Information unsigned, the Transaction Information after generating signature.
Wherein, safety chip can support digital cash signature algorithm ECC (Elliptic curve cryptography, Elliptic Curve Cryptography) and ECDSA (Elliptic Curve Digital Signature Algorithm, elliptic curve At least one of word signature algorithm).It is understood that safety chip can also support other numbers popular on current market Word currency signature algorithm, is not construed as limiting here.ECC and ECDSA is that more signature algorithm is used to obtain in current industry, specific Realization process thing embodiment of the present invention will not describe.External exchange can be understood as the ownership of digital cash from an address Turn to the process of another address.Transaction has output side and recipient, and output side needs a cryptography digital signature, is used for Unlock fund, and legitimate signature could be created by only possessing private key, just can guarantee that transaction goes on.Due to system environments and peace Full ambient engine is physically-isolated, even if security context can not also connect network in the state of system environments networking, so that safety Environment forms a completely offline state.Safety chip carries out signature operation under offline environment, can be greatly improved The safety of transaction prevents malicious attack of the hacker to private key, private key is avoided to be stolen.
240, safety chip returns to the Transaction Information after the signature.
In the embodiment of the present invention, after safety chip carries out static signature to Transaction Information using private key, signature can be returned Transaction Information afterwards gives block chain wallet application, specifically, safety chip is anti-by the Transaction Information after the signature by SPI interface CPU under feeding system environment feeds back to block chain wallet application by CPU.
Optionally, after block chain wallet application receives the Transaction Information after the signature, Fig. 2 is described to be based on hardware core The digital cash method of commerce of piece can with the following steps are included:
22) Transaction Information after the signature is carried out node broadcasts by block chain wallet application.
Specifically, need to broadcast Transaction Information to the whole network after block chain wallet application one external exchange of every initiation, with Other nodes (as dug mine node) are made to carry out some basic verifications, such as the digital cash that this transaction is spent to the Transaction Information It whether is the currency not being spent, i.e. the process of trade confirmation.When being identified through, it may indicate that this transaction is safe, and It is difficult to tamper with.
Built-in security chip in the terminal of the embodiment of the present invention, and safety chip runs on the system with mobile terminal Under the security context that environment is isolated, when entering the block chain wallet application being installed under system environments, user can receive The external exchange instruction inputted in the block chain wallet application generates the transaction unsigned according to external exchange instruction and believes Breath, and the Transaction Information that this is unsigned is sent to the safety chip in security context;Further, by pre- in safety chip The private key first stored carries out signature operation to the Transaction Information unsigned, the Transaction Information after generating signature, and will be after signature Transaction Information return to the block chain wallet application under system environments.Technical solution in the embodiment of the present invention, by moving Built-in security chip in dynamic terminal, and trading signature is isolated in safety chip and runs, i.e. private key are only stored in and mobile terminal The physically-isolated safety chip of system environments in, so as to which the security performance of transaction is significantly greatly increased, avoid the risk being hacked; In addition, mobile terminal is carried convenient for user, user is facilitated to control.
Referring to Fig. 3, Fig. 3 is another digital cash method of commerce based on hardware chip provided in an embodiment of the present invention Flow diagram.Wherein, this method can be applied in mobile terminal, and mobile terminal may include system environments and safety collar Border is built-in with safety chip in mobile terminal, which runs under security context.As shown in figure 3, hardware core should be based on The digital cash method of commerce of piece may comprise steps of:
310, block chain wallet application creates wallet account, generates the private key for being directed to the wallet account.
In the embodiment of the present invention, block chain wallet application is run under system environments.When using wallet application or again for the first time When one new wallet of new registration, need first to create wallet account when opening wallet application.Wherein, wallet account may include Wallet account (such as account name) and modification logging.Wallet account and modification logging can be manually entered by user, and can be by User's sets itself and modification.After successfully creating wallet account, wallet created can be backed up, the benefit of backup It is, it, can be by straight when wallet application is deleted or wallet account is deleted, or forgets wallet account or modification logging The wallet that importing has been backed up is connect to restore wallet.The essence of backup wallet is backup private key in fact, can be generated in backup wallet One private key, and the private key is unique.
320, block chain wallet application backs up to the private key in safety chip.
In the embodiment of the present invention, which is transmitted directly to save in safety chip by block chain wallet application, and Private key is not saved under the system environments of mobile terminal.In addition, any wallet application will be unable to again from the safety under security context The private key information is got in chip, when showing wallet account information under the system environments of mobile terminal, is only able to display except private Other other than key information can disclose information, such as account name, account assets remaining sum information, i.e. private key is not under system environments It is visible.
330, block chain wallet application receives the external exchange instruction of user's input, is generated not according to external exchange instruction The Transaction Information of signature.
In the embodiment of the present invention, when user wants to carry out external exchange (as paid the bill), block chain wallet application can be connect The external exchange instruction of user's input is received, and the Transaction Information unsigned is generated according to external exchange instruction.Wherein, user is defeated The external exchange entered instructs the amount of money (quantity of such as digital currency) that may include external exchange, reciprocal account information (such as debit Wallet address), miner's expense etc..
The Transaction Information that 340 block chain wallet applications unsign this is sent to safety chip.
350, safety chip private key according to the pre-stored data carries out signature operation to the Transaction Information unsigned, and generates label Transaction Information after name.
In the embodiment of the present invention, the private key saved when pre-stored private key is backup wallet in safety chip, one A wallet can only correspond to a private key, and the private key of different wallets is different.Preferably, safety chip can be with private according to the pre-stored data Key carries out the Transaction Information unsigned using elliptic curve cipher ECC algorithm or elliptic curve digital signature algorithm ECDSA Static signature operation, the Transaction Information after generating signature.Since security context is one offline and carry out object with system environments Private key is stored in the offline environment of an isolation by the environment for managing isolation, and signature operation is also to complete under off-line state , so as to which the safety of transaction is greatly improved, prevents malicious attack of the hacker to private key, private key is avoided to be stolen.
In the embodiment of the present invention, safety chip can be regarded as to an encryption chip, can be current line and encrypt in the industry The higher encryption chip of performance.The safety chip can support at least one of state close SM1, SM2, SM3, SM4 etc. password to calculate Method can additionally support that some other popular cryptographic algorithm, the embodiment of the present invention are not construed as limiting in the industry.
In the embodiment of the present invention, safety chip can prevent various attacks, specifically, can be built-in with height in safety chip Low voltage test unit, for resisting the attack of false voltage;It can be built-in with high-precision clock unit in safety chip, use To resist failure-frequency attack;Safety chip can also be supported by technologies such as comprehensive wiring, increase redundant circuit, balance power consumptions Imperial SPA (Simple Power Analysis, simple power consumption analysis), DPA (Differential Power Analysis, it is poor Point power consumption analysis) etc. the bypass attack based on power consumption;Safety chip can also by multilayer wiring, bus scrambling, bus encryption, Redundant circuit etc. resists physical attacks, such as cuts open piece attack, probe attack, domain conversed analysis.
360, safety chip returns to the Transaction Information after the signature.
In the embodiment of the present invention, block chain wallet application receive safety chip return signature after Transaction Information after, Transaction Information after the signature is broadcast to all nodes.Specifically, block chain wallet application is by the peripherad section of Transaction Information Point is broadcasted, and node is broadcast to the node around oneself again after receiving, finally diffuse to the whole network.
Wherein, the private key of backup production is transmitted to and is moved when creating wallet account by method described in implementing Fig. 3 It is stored in the physically-isolated security context of system environments of dynamic terminal, and private can not be obtained under the system environments of mobile terminal Key, and security context is offline, so that even if hacker also cannot be introduced into safety when system environments is by hacker's malicious attack Private key is obtained under environment.Therefore, by saving private key into the safety chip built in mobile terminal, and the friendship to digital cash The signature operation of easy information is carried out offline in safety chip, so as to which the safety of transaction is greatly improved, is prevented black Malicious attack of the visitor to private key, avoids private key from being stolen.Further, since the mobile terminal for being built-in with safety chip can be hand The isometric smaller equipment of machine, wearable device, therefore user can be facilitated to carry, so that user can slap whenever and wherever possible Control wallet.
Mobile terminal provided by the embodiment of the present invention at least may include: to be stored with executable program under system environments The memory of code, the central processing unit coupled with memory;Wherein, central processing unit can call stored in memory can Program code is executed, the operation that control block chain wallet application is completed under system environments is executed.
In addition, the safety chip of mobile terminal in a secure environment at least may include being stored with executable program code Memory, the processor coupled with memory;Wherein, processor can call the executable program code stored in memory, Execute the operation that safety chip is completed, such as signature operation.
The embodiment of the present invention provides a kind of computer readable storage medium, stores computer program, wherein the computer Program enables a computer to execute method described in Fig. 2 or Fig. 3.
Those of ordinary skill in the art will appreciate that all or part of the steps in the various methods of above-described embodiment is can It is completed with instructing relevant hardware by program, which can be stored in a computer readable storage medium, storage Medium include read-only memory (Read-Only Memory, ROM), random access memory (Random Access Memory, RAM), programmable read only memory (Programmable Read-only Memory, PROM), erasable programmable is read-only deposits Reservoir (Erasable Programmable Read Only Memory, EPROM), disposable programmable read-only memory (One- Time Programmable Read-Only Memory, OTPROM), the electronics formula of erasing can make carbon copies read-only memory (Electrically-Erasable Programmable Read-Only Memory, EEPROM), CD-ROM (Compact Disc Read-Only Memory, CD-ROM) or other disc memories, magnetic disk storage, magnetic tape storage or can For carrying or any other computer-readable medium of storing data.
A kind of digital cash method of commerce based on hardware chip disclosed by the embodiments of the present invention has been carried out in detail above It introduces, used herein a specific example illustrates the principle and implementation of the invention, the explanation of above embodiments It is merely used to help understand method and its core concept of the invention;At the same time, for those skilled in the art, according to this The thought of invention, there will be changes in the specific implementation manner and application range, in conclusion the content of the present specification is not answered It is interpreted as limitation of the present invention.

Claims (9)

1. a kind of digital cash method of commerce based on hardware chip, which is characterized in that the method is applied in mobile terminal, The mobile terminal includes system environments and security context, and safety chip, the safety chip are built-in in the mobile terminal It runs under the security context, which comprises
Into the block chain wallet application under the system environments;
The external exchange instruction that user inputs in the block chain wallet application is received, is instructed and is generated according to the external exchange The Transaction Information unsigned, and the Transaction Information unsigned is sent to the safety chip;
Signature operation is carried out to the Transaction Information unsigned by pre-stored private key in the safety chip, generates label Transaction Information after name;
Transaction Information after receiving the signature that the safety chip returns.
2. the digital cash method of commerce according to claim 1 based on hardware chip, which is characterized in that the system ring It is physically isolated between border and the security context, the hardware under the system environments is connect with the safety chip by serial peripheral Mouth SPI is communicated.
3. the digital cash method of commerce according to claim 1 based on hardware chip, which is characterized in that the safety collar Border is in off-line state.
4. the digital cash method of commerce according to claim 1 based on hardware chip, which is characterized in that described to pass through institute It states pre-stored private key in safety chip and signature operation is carried out to the Transaction Information unsigned, the transaction after generating signature Information, comprising:
Elliptic curve cipher ECC algorithm or digital signature of elliptic curve are utilized by pre-stored private key in the safety chip Algorithm ECDSA carries out static signature operation to the Transaction Information unsigned, the Transaction Information after generating signature.
5. the digital cash method of commerce described in any one of -4 based on hardware chip according to claim 1, which is characterized in that After the block chain wallet application under the system environments, the reception user is in the block chain wallet application Before the external exchange instruction of input, the method also includes:
Wallet account is created, the private key for being directed to the wallet account is generated;
Back-up processing is carried out to the private key, the private key is backed up in the safety chip.
6. the digital cash method of commerce according to claim 5 based on hardware chip, which is characterized in that the private key exists It is invisible under the system environments.
7. the digital cash method of commerce described in any one of -4 based on hardware chip according to claim 1, which is characterized in that The method also includes:
Transaction Information after the signature is subjected to node broadcasts.
8. the digital cash method of commerce described in any one of -4 based on hardware chip according to claim 1, which is characterized in that The safety chip supports at least one of national secret algorithm SM1, SM2, SM3, SM4.
9. the digital cash method of commerce described in any one of -4 based on hardware chip according to claim 1, which is characterized in that It is built-in with the high-low voltage detection unit for resisting false voltage attack in the safety chip, is gone back in the safety chip interior It is equipped with the clock unit for resisting failure-frequency attack.
CN201810955011.3A 2018-08-21 2018-08-21 A kind of digital cash method of commerce based on hardware chip Pending CN109118186A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810955011.3A CN109118186A (en) 2018-08-21 2018-08-21 A kind of digital cash method of commerce based on hardware chip

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810955011.3A CN109118186A (en) 2018-08-21 2018-08-21 A kind of digital cash method of commerce based on hardware chip

Publications (1)

Publication Number Publication Date
CN109118186A true CN109118186A (en) 2019-01-01

Family

ID=64853382

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810955011.3A Pending CN109118186A (en) 2018-08-21 2018-08-21 A kind of digital cash method of commerce based on hardware chip

Country Status (1)

Country Link
CN (1) CN109118186A (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109886662A (en) * 2019-02-18 2019-06-14 北京正合链通科技有限公司 Block chain wallet application method and system, terminal and computer readable storage medium
CN109903052A (en) * 2019-02-13 2019-06-18 杭州秘猿科技有限公司 A kind of block chain endorsement method and mobile device
CN110381075A (en) * 2019-07-26 2019-10-25 烨链(上海)科技有限公司 Equipment identities authentication method and device based on block chain
CN111126973A (en) * 2019-11-20 2020-05-08 北京锐格信安技术有限公司 Encrypted digital currency wallet signature device and signature method
CN111523883A (en) * 2019-12-23 2020-08-11 杜晓楠 Digital asset remote isolation trusteeship system and method
WO2020168564A1 (en) * 2019-02-22 2020-08-27 王健 Method and device for digital currency transaction and account authentication, and storage medium
CN111768199A (en) * 2020-06-30 2020-10-13 数字钱包(北京)科技有限公司 Digital currency transaction method and local wallet system
CN111967864A (en) * 2020-09-02 2020-11-20 上海思赞博微信息科技有限公司 Wallet integrating trusted computing chip with digital currency and working process thereof
CN112287360A (en) * 2019-07-24 2021-01-29 三星电子株式会社 Electronic device and operation method thereof
CN113506104A (en) * 2021-05-07 2021-10-15 杭州宇链科技有限公司 Software and hardware combined signature generation and verification method and system
CN113574828A (en) * 2019-03-29 2021-10-29 华为技术有限公司 Security chip, security processing method and related equipment
CN114448637A (en) * 2020-11-02 2022-05-06 上海源庐加佳信息科技有限公司 Block chain transaction signature device and system, signature method applied to block chain transaction signature device and system, and storage medium
CN115082067A (en) * 2022-07-27 2022-09-20 北京大学 Digital currency double-off-line payment method and device based on SM2
WO2024069089A1 (en) * 2022-09-30 2024-04-04 Ledger Method for switching a terminal to a secure mode for processing a transaction

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109903052A (en) * 2019-02-13 2019-06-18 杭州秘猿科技有限公司 A kind of block chain endorsement method and mobile device
CN109886662A (en) * 2019-02-18 2019-06-14 北京正合链通科技有限公司 Block chain wallet application method and system, terminal and computer readable storage medium
WO2020168564A1 (en) * 2019-02-22 2020-08-27 王健 Method and device for digital currency transaction and account authentication, and storage medium
CN113574828A (en) * 2019-03-29 2021-10-29 华为技术有限公司 Security chip, security processing method and related equipment
CN112287360B (en) * 2019-07-24 2024-05-24 三星电子株式会社 Electronic device and operation method thereof
CN112287360A (en) * 2019-07-24 2021-01-29 三星电子株式会社 Electronic device and operation method thereof
CN110381075B (en) * 2019-07-26 2021-10-29 烨链(上海)科技有限公司 Block chain-based equipment identity authentication method and device
CN110381075A (en) * 2019-07-26 2019-10-25 烨链(上海)科技有限公司 Equipment identities authentication method and device based on block chain
CN111126973A (en) * 2019-11-20 2020-05-08 北京锐格信安技术有限公司 Encrypted digital currency wallet signature device and signature method
CN111523883A (en) * 2019-12-23 2020-08-11 杜晓楠 Digital asset remote isolation trusteeship system and method
CN111523883B (en) * 2019-12-23 2023-04-07 杜晓楠 Digital asset remote isolation trusteeship system and method
CN111768199A (en) * 2020-06-30 2020-10-13 数字钱包(北京)科技有限公司 Digital currency transaction method and local wallet system
CN111967864A (en) * 2020-09-02 2020-11-20 上海思赞博微信息科技有限公司 Wallet integrating trusted computing chip with digital currency and working process thereof
CN114448637A (en) * 2020-11-02 2022-05-06 上海源庐加佳信息科技有限公司 Block chain transaction signature device and system, signature method applied to block chain transaction signature device and system, and storage medium
CN113506104A (en) * 2021-05-07 2021-10-15 杭州宇链科技有限公司 Software and hardware combined signature generation and verification method and system
CN113506104B (en) * 2021-05-07 2024-03-01 杭州宇链科技有限公司 Signature generation and verification modes and system combining software and hardware
CN115082067A (en) * 2022-07-27 2022-09-20 北京大学 Digital currency double-off-line payment method and device based on SM2
WO2024069089A1 (en) * 2022-09-30 2024-04-04 Ledger Method for switching a terminal to a secure mode for processing a transaction

Similar Documents

Publication Publication Date Title
CN109118186A (en) A kind of digital cash method of commerce based on hardware chip
US20190362340A1 (en) Secure multiple cryptocurrency wallet and methods of use thereof
KR101673073B1 (en) Dealing method of Crypto-currency base on Blockchain System
CN107278307A (en) Software layer is mutually authenticated
Doran A forensic look at bitcoin cryptocurrency
CN104463001A (en) Method for independently generating and storing encrypted digital currency private key and device for bearing encrypted digital currency private key
CN110880113A (en) Authentication server and authentication method for block chain transaction
WO2020199028A1 (en) Security chip, security processing method and related device
Islam et al. Cryptocurrency vs. fiat currency: architecture, algorithm, cashflow & ledger technology on emerging economy: the influential facts of cryptocurrency and fiat currency
CN109003186A (en) A kind of method of commerce for preventing from denying, apparatus and system based on block chain
Rezaeighaleh et al. Multilayered defense-in-depth architecture for cryptocurrency wallet
US20200226589A1 (en) Data structure, transmission device, receiving device, settlement device, method, and computer program
Rosenbaum Grokking bitcoin
US20200311717A1 (en) Data structure, transmission device, reception device, settlement device, method, and computer program
JP7174977B2 (en) Payment device, method, computer program
Valcke Best practices in mobile security
Agrawal et al. A role of blockchain in IoT and financial applications
CN109858903A (en) A kind of comment information credibility evaluation method and device based on block chain
Scollan et al. Designing digital currency wallets for broad adoption
Sharma et al. Using crypto currency and associated advantages and disadvantages
Rezaeighaleh et al. Efficient off-chain transaction to avoid inaccessible coins in cryptocurrencies
US20200342448A1 (en) Virtual currency data issuing system, user terminal, management device, method, and computer program
Urien Introducing innovative bare metal crypto terminal for blockchains and bigbang paradigm
Zahid Bitcoins: Mining, Transaction, Security Challenges and Future of This Currency
Meeradevi et al. Blockchain-Powered Charity Integrity System

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right

Effective date of registration: 20190225

Address after: 518000 Shenzhen, Nanshan District, Guangdong Province, Guangdong, Guangdong Road, Binhai Road, Shenzhen software industrial base 2 C block 7.

Applicant after: The idea of Shenzhen famous communication technology Limited by Share Ltd

Address before: 518000 Room 201, building A, No. 1, Qian Wan Road, Qianhai Shenzhen Hong Kong cooperation zone, Shenzhen, Guangdong (Shenzhen Qianhai business secretary Co., Ltd.)

Applicant before: Oracle science and technology era (Shenzhen) Co., Ltd.

TA01 Transfer of patent application right
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20190101

WD01 Invention patent application deemed withdrawn after publication