Nothing Special   »   [go: up one dir, main page]

CN118656838A - Digital business system management method, platform, equipment and medium for distributed system - Google Patents

Digital business system management method, platform, equipment and medium for distributed system Download PDF

Info

Publication number
CN118656838A
CN118656838A CN202411134188.9A CN202411134188A CN118656838A CN 118656838 A CN118656838 A CN 118656838A CN 202411134188 A CN202411134188 A CN 202411134188A CN 118656838 A CN118656838 A CN 118656838A
Authority
CN
China
Prior art keywords
digital
digital service
service
trusted device
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202411134188.9A
Other languages
Chinese (zh)
Other versions
CN118656838B (en
Inventor
江源富
向雅倩
蒋文创
曾宇航
樊梅
陆蓓婷
徐晓林
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Value Chain Technology Shenzhen Co ltd
Guizhou University of Finance and Economics
Original Assignee
Value Chain Technology Shenzhen Co ltd
Guizhou University of Finance and Economics
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Value Chain Technology Shenzhen Co ltd, Guizhou University of Finance and Economics filed Critical Value Chain Technology Shenzhen Co ltd
Priority to CN202411134188.9A priority Critical patent/CN118656838B/en
Publication of CN118656838A publication Critical patent/CN118656838A/en
Application granted granted Critical
Publication of CN118656838B publication Critical patent/CN118656838B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

本发明公开了一种分布式体系的数字业务系统管理方法、平台、设备及介质,区块链上布置可信装置生成节点为用户生成专属的可信装置,可信装置为用户颁发数字身份标识;可信装置响应于用户发送的数字业务需求,生成对应的服务闭环链;可信装置将服务闭环链上链以触发智能合约,以使服务闭环链对应的数字业务服务节点按照智能合约协同执行数字业务需求,得到执行结果并存储在数字业务存储节点上;区块链响应于用户的读取请求,以从数字业务存储节点上读取执行结果。本发明实施例提供的分布式体系的数字业务系统管理方法,能够突破数字业务服务节点之间的孤岛现象,实现协同作业,简化作业流程,提升作业效率,合法授权访问,提升数据的安全性。

The present invention discloses a digital business system management method, platform, equipment and medium of a distributed system. A trusted device generation node is arranged on the blockchain to generate an exclusive trusted device for the user, and the trusted device issues a digital identity to the user; the trusted device generates a corresponding service closed-loop chain in response to the digital business demand sent by the user; the trusted device links the service closed-loop chain to trigger a smart contract, so that the digital business service node corresponding to the service closed-loop chain executes the digital business demand in coordination with the smart contract, obtains the execution result and stores it on the digital business storage node; the blockchain responds to the user's read request to read the execution result from the digital business storage node. The distributed system digital business system management method provided by the embodiment of the present invention can break through the island phenomenon between digital business service nodes, realize collaborative operation, simplify the operation process, improve operation efficiency, legally authorize access, and improve data security.

Description

分布式体系的数字业务系统管理方法、平台、设备及介质Digital business system management method, platform, equipment and medium for distributed system

技术领域Technical Field

本发明涉及数字业务管理技术领域,尤其涉及一种分布式体系的数字业务系统管理方法、平台、设备及介质。The present invention relates to the technical field of digital business management, and in particular to a distributed digital business system management method, platform, device and medium.

背景技术Background Art

数字业务系统作为自然人、法人、机构的专属数字化业务开展空间,是数字化业务实现的基础,但各数字业务系统之间相互独立,无法实现相互通信和交互,造成不同数字业务系统之间存在孤岛现象,不能够一次性将所有的数字业务全部办理完成,需要重复多次的操作。另,各数字业务所需的用户身份属性信息各异,导致用户需针对不同的数字业务需求多次提交身份属性信息。As the exclusive digital business development space for natural persons, legal persons, and institutions, the digital business system is the basis for the realization of digital business. However, each digital business system is independent of each other and cannot communicate and interact with each other, resulting in the existence of isolated islands between different digital business systems. It is not possible to complete all digital business at one time, and multiple operations need to be repeated. In addition, the user identity attribute information required for each digital business is different, resulting in users having to submit identity attribute information multiple times for different digital business needs.

为保证数字业务数据的安全性,一般需要对申请人进行严苛繁杂的验证,造成数字业务的开展操作繁琐,对作业人员的专业性有一定的要求,且作业效率低,无法满足数字业务的快速发展。In order to ensure the security of digital business data, applicants are generally required to undergo strict and complex verification, which makes the operation of digital business cumbersome, places certain requirements on the professionalism of operators, and has low operating efficiency, which cannot meet the rapid development of digital business.

由此可见,如何解决现有数字业务系统之间存在的孤岛现象,以及如何在保证数据安全的前提下简化数字业务操作流程、提高数字业务作业效率已经成为本领域技术人员所要亟待解决的技术问题。It can be seen that how to solve the island phenomenon between existing digital business systems, and how to simplify the digital business operation process and improve the efficiency of digital business operations while ensuring data security have become technical problems that technical personnel in this field need to solve urgently.

发明内容Summary of the invention

本发明提供了一种分布式体系的数字业务系统管理方法、平台、设备及介质,以解决现有数字业务系统之间存在的孤岛现象,以及如何在保证数据安全的前提下简化数字业务操作流程、提高数字业务作业效率的技术问题,实现不同数字业务系统之间协作作业,多项数字业务一次性完成,作业数据安全可靠的效果。The present invention provides a distributed digital business system management method, platform, device and medium to solve the island phenomenon between existing digital business systems, as well as the technical problem of how to simplify the digital business operation process and improve the digital business operation efficiency under the premise of ensuring data security, so as to achieve collaborative operation between different digital business systems, complete multiple digital businesses at one time, and ensure the safety and reliability of operation data.

第一方面,本发明提供了一种分布式体系的数字业务系统管理方法,所述数字业务系统包括布置在区块链上的数字业务服务节点、可信装置生成节点、数字业务存储节点和智能合约,所述方法包括:In a first aspect, the present invention provides a digital business system management method of a distributed system, wherein the digital business system includes a digital business service node, a trusted device generation node, a digital business storage node and a smart contract arranged on a blockchain, and the method includes:

所述可信装置生成节点响应于用户的可信装置生成请求,为所述用户生成专属的可信装置,专属的所述可信装置为所述用户颁发对应的数字身份标识;The trusted device generation node generates a dedicated trusted device for the user in response to the trusted device generation request of the user, and the dedicated trusted device issues a corresponding digital identity to the user;

专属的所述可信装置响应于所述用户发送的数字业务需求,以根据所述数字业务需求生成对应的服务闭环链;所述服务闭环链包括所述数字业务需求所有涉及的数字业务服务节点;The dedicated trusted device responds to the digital service demand sent by the user to generate a corresponding service closed-loop chain according to the digital service demand; the service closed-loop chain includes all digital service service nodes involved in the digital service demand;

所述可信装置将所述服务闭环链上链并触发所述智能合约,以使所述服务闭环链包括的所述数字业务服务节点按照所述智能合约协同执行所述数字业务需求,得到执行结果并基于对应的所述数字身份标识存储在所述数字业务存储节点上;The trusted device links the service closed-loop chain to the chain and triggers the smart contract, so that the digital business service nodes included in the service closed-loop chain collaboratively execute the digital business requirements according to the smart contract, obtain the execution results and store them on the digital business storage nodes based on the corresponding digital identity identifiers;

所述区块链响应于所述用户的读取请求,以从所述数字业务存储节点上读取所述执行结果。The blockchain responds to the user's read request to read the execution result from the digital business storage node.

优选的,所述可信装置为所述用户颁发对应的数字身份标识,包括:Preferably, the trusted device issues a corresponding digital identity to the user, including:

由所述可信装置内置的非对称密码学算法生成对应的公钥和私钥;Generate corresponding public and private keys using an asymmetric cryptographic algorithm built into the trusted device;

基于所述用户的身份属性信息生成对应的数字身份标识,将所述数字身份标识进行哈希运算后得到第一哈希指纹,将所述第一哈希指纹和所述公钥建立对应的映射关系后在所述区块链上链,所述身份属性信息包括但不限于身份证号、营业执照以及特性环境下的ID。A corresponding digital identity is generated based on the identity attribute information of the user, and a first hash fingerprint is obtained after a hash operation is performed on the digital identity. A corresponding mapping relationship is established between the first hash fingerprint and the public key and then uploaded to the blockchain. The identity attribute information includes but is not limited to an identity card number, a business license, and an ID under a characteristic environment.

优选的,所述专属的所述可信装置响应于所述用户发送的数字业务需求,以根据所述数字业务需求生成对应的服务闭环链,包括:Preferably, the dedicated trusted device responds to the digital service demand sent by the user to generate a corresponding service closed-loop chain according to the digital service demand, including:

专属的所述可信装置对接收的数字业务需求和所述身份属性信息进行识别,以确定是否为所述可信装置对应的所述用户发送;The dedicated trusted device identifies the received digital service demand and the identity attribute information to determine whether it is sent by the user corresponding to the trusted device;

识别通过后,专属的所述可信装置对所述数字业务需求进行分析,得到所述数字业务需求所有涉及的数字业务服务节点;After the identification is passed, the dedicated trusted device analyzes the digital service demand to obtain all digital service service nodes involved in the digital service demand;

从所有涉及的所述数字业务服务节点读取对应的数字业务作业要求,并对所述数字业务作业要求进行分析,生成数字业务作业树状结构图;Reading corresponding digital service operation requirements from all the digital service service nodes involved, and analyzing the digital service operation requirements to generate a digital service operation tree structure diagram;

将所有涉及的所述数字业务服务节点按照所述数字业务作业树状结构图建立对应的关联关系,以生成服务闭环链。Corresponding association relationships are established among all the digital business service nodes involved according to the digital business operation tree structure diagram to generate a service closed-loop chain.

优选的,所述对所述数字业务作业要求进行分析,生成数字业务作业树状结构图,包括:Preferably, the step of analyzing the digital service operation requirements to generate a digital service operation tree structure diagram includes:

若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:以另一个涉及的所述数字业务服务节点的执行结果为依据,则在两个所述涉及的数字业务服务节点之间建立层次关联关系,所述层次关联关系为两个所述涉及的数字业务服务节点先后执行;If the digital service operation requirement of one of the digital service nodes involved is: based on the execution result of another digital service node involved, a hierarchical association relationship is established between the two digital service nodes involved, and the hierarchical association relationship is that the two digital service nodes involved are executed in sequence;

若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:不需要依据其他涉及的所述数字业务服务节点的执行结果,则对应的所述数字业务服务节点可与其他任意涉及的所述数字业务服务节点建立同步关联关系,所述同步关联关系为两个所述涉及的数字业务服务节点同步执行;If the digital service operation requirement of one of the digital service nodes involved is: not depending on the execution results of other digital service nodes involved, the corresponding digital service node can establish a synchronous association relationship with any other digital service node involved, and the synchronous association relationship is that the two digital service nodes involved are executed synchronously;

若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:与另一个涉及的数字业务服务节点的执行结果显示在同一界面,则在两个所述涉及的数字业务服务节点之间建立连通关系,所述连通关系为两个所述涉及的数字业务服务节点的执行结果在同一界面显示。If the digital business operation requirement of one of the digital business service nodes involved is: the execution result of another digital business service node involved is displayed on the same interface, then a connectivity relationship is established between the two digital business service nodes involved, and the connectivity relationship is that the execution results of the two digital business service nodes involved are displayed on the same interface.

优选的,所述智能合约为:Preferably, the smart contract is:

所述服务闭环链中涉及的所述数字业务服务节点按照所述数字业务作业树状结构图执行所述数字业务需求。The digital service service nodes involved in the service closed-loop chain execute the digital service requirements according to the digital service operation tree structure diagram.

优选的,所述得到执行结果并存储在所述数字业务存储节点,包括:Preferably, obtaining the execution result and storing it in the digital service storage node includes:

采用所述公钥对所述执行结果进行加密,得到执行结果密文;Encrypting the execution result using the public key to obtain a ciphertext of the execution result;

将所述执行结果密文和对应的所述第一哈希指纹建立映射关系后存储在所述数字业务存储节点上。A mapping relationship is established between the execution result ciphertext and the corresponding first hash fingerprint and then stored in the digital service storage node.

优选的,所述区块链响应于所述用户的读取请求,以从所述数字业务存储节点上读取所述执行结果,包括:Preferably, the blockchain responds to the user's read request to read the execution result from the digital business storage node, including:

所述区块链接收所述用户通过所述可信装置发送的数字身份标识并进行哈希运算,得到第二哈希指纹,将所述第二哈希指纹和区块链上存储的所述第一哈希指纹比对,比对通过后从所述区块链上读取所述第一哈希指纹对应的所述执行结果密文;The blockchain receives the digital identity sent by the user through the trusted device and performs a hash operation to obtain a second hash fingerprint, compares the second hash fingerprint with the first hash fingerprint stored on the blockchain, and reads the execution result ciphertext corresponding to the first hash fingerprint from the blockchain after the comparison is successful;

采用所述私钥对所述执行结果密文解密,得到所述执行结果。The private key is used to decrypt the execution result ciphertext to obtain the execution result.

第二方面,本发明还提供了一种分布式体系的数字业务系统管理平台,实现上述所述的分布式体系的数字业务系统管理方法,所述系统包括:身份凭证颁发单元、身份凭证验证单元和实体数字凭证生成单元;In a second aspect, the present invention further provides a distributed digital business system management platform, which implements the distributed digital business system management method described above, wherein the system comprises: an identity certificate issuing unit, an identity certificate verification unit, and an entity digital certificate generating unit;

所述可信装置生成单元,用于所述可信装置生成节点响应于用户的可信装置生成请求,为所述用户生成专属的可信装置,专属的所述可信装置为所述用户颁发对应的数字身份标识;The trusted device generation unit is used for the trusted device generation node to generate a dedicated trusted device for the user in response to a trusted device generation request of the user, and the dedicated trusted device issues a corresponding digital identity to the user;

所述服务闭环链生成单元,用于专属的所述可信装置响应于所述用户发送的数字业务需求,以根据所述数字业务需求生成对应的服务闭环链;所述服务闭环链包括所述数字业务需求所有涉及的数字业务服务节点;The service closed-loop chain generating unit is used for the dedicated trusted device to respond to the digital service demand sent by the user to generate a corresponding service closed-loop chain according to the digital service demand; the service closed-loop chain includes all digital service service nodes involved in the digital service demand;

所述数字业务需求执行单元,用于所述可信装置将所述服务闭环链上链并触发所述智能合约,以使所述服务闭环链包括的所述数字业务服务节点按照所述智能合约协同执行所述数字业务需求,得到执行结果并基于对应的所述数字身份标识存储在所述数字业务存储节点上;The digital service demand execution unit is used for the trusted device to put the service closed-loop chain on the chain and trigger the smart contract, so that the digital service nodes included in the service closed-loop chain can collaboratively execute the digital service demand according to the smart contract, obtain the execution result and store it on the digital service storage node based on the corresponding digital identity;

所述执行结果读取单元,用于所述区块链响应于所述用户的读取请求,以从所述数字业务存储节点上读取所述执行结果。The execution result reading unit is used for the blockchain to respond to the user's read request to read the execution result from the digital business storage node.

第三方面,本发明还提供一种计算机设备,所述计算机设备包括存储器、处理器和收发器,它们之间通过总线连接;存储器用于存储一组计算机程序指令和数据,并将存储的数据传输给处理器,处理器执行存储器存储的程序指令,以执行上述所述的分布式体系的数字业务系统管理方法。In a third aspect, the present invention also provides a computer device, comprising a memory, a processor and a transceiver, which are connected via a bus; the memory is used to store a set of computer program instructions and data, and transmit the stored data to the processor, and the processor executes the program instructions stored in the memory to execute the digital business system management method of the distributed system described above.

第四方面,本发明还提供一种计算机可读存储介质,所述计算机可读存储介质中存储有计算机程序,当所述计算机程序被运行时,实现上述所述的分布式体系的数字业务系统管理方法。In a fourth aspect, the present invention further provides a computer-readable storage medium, wherein a computer program is stored in the computer-readable storage medium, and when the computer program is executed, the above-mentioned distributed system digital business system management method is implemented.

本发明提供了一种分布式体系的数字业务系统管理方法、平台、设备及介质,相比于现有技术,本发明实施例的有益效果在于以下所述中的至少一点:The present invention provides a distributed digital business system management method, platform, device and medium. Compared with the prior art, the beneficial effects of the embodiments of the present invention are at least one of the following:

(1)通过生成用户专属的可信装置,为用户颁发数字身份标识,对访问可信装置的用户进行验证和访问控制,确保数字业务系统的合法授权访问;(1) By generating a user-specific trusted device, issuing a digital identity to the user, and verifying and controlling access to the user who accesses the trusted device, we ensure legal and authorized access to the digital business system;

(2)可信装置根据数字业务需求生成对应的服务闭环链,以将数字业务需求所涉及的数字业务服务节点进行业务流程的关联,每一个数字业务服务节点不仅能够独立完成数字业务的作业,且能够与其他数字业务服务节点进行协同作业,突破不同数字业务服务节点之间存在的孤岛现象;(2) The trusted device generates a corresponding service closed-loop chain according to the digital business requirements, so as to associate the digital business service nodes involved in the digital business requirements with the business processes. Each digital business service node can not only independently complete the digital business operations, but also collaborate with other digital business service nodes, thus breaking through the isolated island phenomenon between different digital business service nodes.

(3)可信装置将服务闭环链上链以触发智能合约,以协同执行数字业务需求,简化数字业务作业流程,提升数字业务作业效率;(3) Trusted devices link service closed loops to the chain to trigger smart contracts, so as to collaboratively execute digital business needs, simplify digital business operation processes, and improve digital business operation efficiency;

(4)将执行结果存储在区块链上,在用户通过可信装置完成身份的验证后以哈希指纹为地址搜寻执行结果,以保证数据的安全性。(4) The execution results are stored on the blockchain. After the user completes identity verification through a trusted device, the execution results are searched using the hash fingerprint as the address to ensure data security.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

图1是本发明一个优选实施例所提供的一种分布式体系的数字业务系统管理方法步骤示意图;FIG1 is a schematic diagram of steps of a digital business system management method of a distributed system provided by a preferred embodiment of the present invention;

图2是本发明一个优选实施例所提供的数字身份标识颁发的方法步骤示意图;FIG2 is a schematic diagram of the steps of a method for issuing a digital identity provided by a preferred embodiment of the present invention;

图3是本发明一个优选实施例所提供的服务闭环链生成规则步骤示意图;3 is a schematic diagram of the steps of generating rules for a service closed-loop chain provided by a preferred embodiment of the present invention;

图4是本发明一个优选实施例所提供的数字业务作业树状结构图生成规则步骤示意图;FIG4 is a schematic diagram of the steps of generating a rule for a tree structure diagram of a digital business operation provided by a preferred embodiment of the present invention;

图5是本发明一个优选实施例所提供的数字业务作业树状结构图;FIG5 is a tree structure diagram of a digital service operation provided by a preferred embodiment of the present invention;

图6是本发明一个优选实施例所提供的执行结果存储在数字业务存储节点上的方法步骤示意图;6 is a schematic diagram of the steps of a method for storing execution results on a digital service storage node provided by a preferred embodiment of the present invention;

图7是本发明一个优选实施例所提供的从区块链上的数字业务存储节点上读取执行结果的方法步骤示意图;FIG7 is a schematic diagram of the steps of a method for reading an execution result from a digital business storage node on a blockchain provided by a preferred embodiment of the present invention;

图8是本发明一个优选实施例所提供的一种分布式体系的数字业务系统管理平台结构示意图;FIG8 is a schematic diagram of the structure of a digital business system management platform of a distributed system provided by a preferred embodiment of the present invention;

图9是本发明一个优选实施例所提供的一种计算机设备示意图。FIG. 9 is a schematic diagram of a computer device provided by a preferred embodiment of the present invention.

具体实施方式DETAILED DESCRIPTION

下面结合附图具体阐明本发明的实施方式,实施例的给出仅仅是为了说明目的,并不能理解为对本发明的限定,包括附图仅供参考和说明使用,不构成对本发明专利保护范围的限制。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。在本发明描述中,术语“第一”、“第二”、“第三”等仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”、“第三”等的特征可以明示或者隐含地包括一个或者更多个该特征。在本发明的描述中,除非另有说明,“多个”的含义是两个或两个以上。The following is a detailed explanation of the implementation mode of the present invention in conjunction with the accompanying drawings. The embodiments are provided only for illustrative purposes and cannot be understood as limiting the present invention. The accompanying drawings are only for reference and illustration purposes and do not constitute a limitation on the scope of patent protection of the present invention. Based on the embodiments in the present invention, all other embodiments obtained by ordinary technicians in this field without making creative work are within the scope of protection of the present invention. In the description of the present invention, the terms "first", "second", "third", etc. are only used for descriptive purposes and cannot be understood as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Therefore, the features defined as "first", "second", "third", etc. may explicitly or implicitly include one or more of the features. In the description of the present invention, unless otherwise specified, the meaning of "multiple" is two or more.

在本发明的描述中,需要说明的是,除非另有明确的规定和限定,术语“安装”、“相连”、“连接”应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或一体地连接;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,可以是两个元件内部的连通。本文所使用的术语“垂直的”、“水平的”、“左”、“右”、“上”、“下”以及类似的表述只是为了说明的目的,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本发明的限制。本文所使用的术语“及/或”包括一个或多个相关的所列项目的任意的和所有的组合。对于本领域的普通技术人员而言,可以具体情况理解上述术语在本发明中的具体含义。In the description of the present invention, it should be noted that, unless otherwise clearly specified and limited, the terms "installed", "connected" and "connected" should be understood in a broad sense. For example, it can be a fixed connection, a detachable connection, or an integral connection; it can be a mechanical connection or an electrical connection; it can be a direct connection, or it can be indirectly connected through an intermediate medium, or it can be a connection between the two elements. The terms "vertical", "horizontal", "left", "right", "upper", "lower" and similar expressions used herein are only for illustrative purposes, and do not indicate or imply that the device or element referred to must have a specific orientation, be constructed and operated in a specific orientation, and therefore cannot be understood as a limitation on the present invention. The term "and/or" used herein includes any and all combinations of one or more related listed items. For those of ordinary skill in the art, the specific meanings of the above terms in the present invention can be understood according to specific circumstances.

在本发明的描述中,需要说明的是,除非另有定义,本发明所使用的所有的技术和科学术语与属于本的技术领域的技术人员通常理解的含义相同。本发明中说明书中所使用的术语只是为了描述具体的实施例的目的,不是旨在于限制本发明,对于本领域的普通技术人员而言,可以具体情况理解上述术语在本发明中的具体含义。In the description of the present invention, it should be noted that, unless otherwise defined, all technical and scientific terms used in the present invention have the same meaning as those commonly understood by those skilled in the art. The terms used in the specification of the present invention are only for the purpose of describing specific embodiments and are not intended to limit the present invention. For those of ordinary skill in the art, the specific meanings of the above terms in the present invention can be understood by specific circumstances.

请参阅图1,在本发明的实施例中,提供了一种分布式体系的数字业务系统管理方法,其中,所述数字业务系统包括布置在区块链上的数字业务服务节点、可信装置生成节点、数字业务存储节点和智能合约,所述方法包括:Referring to FIG. 1 , in an embodiment of the present invention, a distributed digital business system management method is provided, wherein the digital business system includes a digital business service node, a trusted device generation node, a digital business storage node and a smart contract arranged on a blockchain, and the method includes:

S1、所述可信装置生成节点响应于用户的可信装置生成请求,为所述用户生成专属的可信装置,专属的所述可信装置为所述用户颁发对应的数字身份标识。S1. The trusted device generation node generates an exclusive trusted device for the user in response to a trusted device generation request from the user, and the exclusive trusted device issues a corresponding digital identity to the user.

S2、所述可信装置响应于所述用户发送的数字业务需求,以根据所述数字业务需求生成对应的服务闭环链;所述服务闭环链包括所述数字业务需求所有涉及的数字业务服务节点。S2. The trusted device responds to the digital service demand sent by the user to generate a corresponding service closed-loop chain according to the digital service demand; the service closed-loop chain includes all digital service service nodes involved in the digital service demand.

S3、所述可信装置将所述服务闭环链上链并触发所述智能合约,以使所述服务闭环链包括的所述数字业务服务节点按照所述智能合约协同执行所述数字业务需求,得到执行结果并基于对应的所述数字身份标识存储在所述数字业务存储节点上。S3. The trusted device puts the service closed-loop chain on the chain and triggers the smart contract, so that the digital business service nodes included in the service closed-loop chain collaboratively execute the digital business requirements according to the smart contract, obtain the execution results and store them on the digital business storage nodes based on the corresponding digital identity.

S4、所述区块链响应于所述用户的读取请求,以从所述数字业务存储节点上读取所述执行结果。S4. The blockchain responds to the user's read request to read the execution result from the digital business storage node.

区块链是一种块链式存储、不可篡改、安全可信的去中心化分布式账本,它结合了分布式存储、点对点传输、共识机制、密码学等技术 ,通过不断增长的数据块链(Blocks)记录交易和信息,确保数据的安全性和透明性。本发明优选实施例中提供的数字业务系统正是基于区块链技术构建完成的,具体为,将提供数字业务服务的机构、单位、企业和/或个人作为数字业务服务节点布置在区块链上,对于数字业务的存储,采用分布式存储,以形成区块链的数字业务存储节点。在区块链上还布置有可信装置生成节点,可信装置生成节点主要用于生成可信装置,并将可信装置在区块链上上链。Blockchain is a decentralized distributed ledger that is tamper-proof, secure and reliable. It combines distributed storage, peer-to-peer transmission, consensus mechanism, cryptography and other technologies. It records transactions and information through a growing data block chain (Blocks) to ensure the security and transparency of data. The digital business system provided in the preferred embodiment of the present invention is built based on blockchain technology. Specifically, the institutions, units, enterprises and/or individuals that provide digital business services are arranged on the blockchain as digital business service nodes. For the storage of digital business, distributed storage is used to form digital business storage nodes of the blockchain. A trusted device generation node is also arranged on the blockchain. The trusted device generation node is mainly used to generate a trusted device and chain the trusted device on the blockchain.

在本发明优选实施例中,可信装置可选但不限为具有数字身份标识生成、密码锁功能、数据分析与判断功能的单片机或智能卡芯片,或者是借助终端设备实现数字身份标识生成、密码锁功能、数据分析与判断功能的专属链接。如可信装置为内置单片机或智能卡芯片,则单片机或智能卡芯片具有存储空间,存储空间内置算法和程序,利用算法或程序可以为用户颁发对应的数字身份标识,以及对数字业务需求进行处理。如为专属链接,则可通过专属链接进入专属的存储空间,该存储空间也内置有算法和程序,同样可利用算法或程序为用户颁发对应的数字身份标识,以及对数字业务需求进行处理。In a preferred embodiment of the present invention, the trusted device may be, but is not limited to, a single-chip microcomputer or smart card chip with digital identity generation, password lock function, data analysis and judgment function, or a dedicated link that uses a terminal device to realize digital identity generation, password lock function, data analysis and judgment function. If the trusted device is a built-in single-chip microcomputer or smart card chip, the single-chip microcomputer or smart card chip has a storage space with built-in algorithms and programs. The algorithms or programs can be used to issue corresponding digital identities to users and process digital business needs. If it is a dedicated link, the dedicated storage space can be accessed through the dedicated link. The storage space also has built-in algorithms and programs. The algorithms or programs can also be used to issue corresponding digital identities to users and process digital business needs.

不管是单片机或智能卡芯片形式的可信装置,或是专属链接形式的可信装置,其存储空间包括用户空间和内置空间,在数据访问方面,内置空间的程序可以访问内置空间的数据和用户空间的数据,用户空间的程序只能访问用户空间的数据,且不能访问内置空间的数据和程序。用户空间存储仅应用于用户的身份属性信息,如身份证号、营业执照、以及特定环境下的ID等基本信息,身份属性信息可由用户进行维护。内置空间中保存和处理不可篡改、不可窃取泄露的认证关键数据、不可被篡改的数字业务服务节点维护的数字业务作业要求,以及不可泄露的算法和程序。具体的,本实施例可信装置内置空间中的算法和程序包括数字身份凭证颁发程序、服务闭环链生成程序、用于非对称加密的椭圆加密算法、适用于数字签名标准的安全哈希算法等。Whether it is a trusted device in the form of a single-chip microcomputer or a smart card chip, or a trusted device in the form of a dedicated link, its storage space includes user space and built-in space. In terms of data access, programs in the built-in space can access data in the built-in space and data in the user space, and programs in the user space can only access data in the user space, and cannot access data and programs in the built-in space. User space storage is only used for the user's identity attribute information, such as identity card number, business license, and basic information such as ID in a specific environment. Identity attribute information can be maintained by the user. The built-in space stores and processes authentication key data that cannot be tampered with, stolen or leaked, digital business operation requirements maintained by digital business service nodes that cannot be tampered with, and algorithms and programs that cannot be leaked. Specifically, the algorithms and programs in the built-in space of the trusted device in this embodiment include a digital identity certificate issuance program, a service closed-loop chain generation program, an elliptic encryption algorithm for asymmetric encryption, a secure hash algorithm applicable to digital signature standards, and the like.

在本发明优选实施例中,用户在申请数字业务时,不是直接向数字业务服务节点进行申请,而是先向可信装置生成节点发送可信装置生成请求,可信装置生成节点为用户生成专属的可信装置。在本发明中,以可信装置为专属链接为例进行说明,用户通过该可信链接进入专属的存储空间,并在该存储空间内进行身份属性信息的维护,如身份证号、营业执照、以及特定环境下的ID等。激活身份凭证颁发程序,以为用户颁发对应的数字身份标识,如图2所述,可信装置为用户颁发对应的数字身份标识包括以下步骤:In a preferred embodiment of the present invention, when applying for a digital service, the user does not apply directly to the digital service service node, but first sends a trusted device generation request to the trusted device generation node, and the trusted device generation node generates an exclusive trusted device for the user. In the present invention, the trusted device is taken as an example for explanation as an exclusive link. The user enters the exclusive storage space through the trusted link and maintains identity attribute information in the storage space, such as identity card number, business license, and ID in a specific environment. Activate the identity credential issuance program to issue the corresponding digital identity to the user. As shown in Figure 2, the trusted device issues the corresponding digital identity to the user, including the following steps:

S101、由所述可信装置内置的非对称密码学算法生成对应的公钥和私钥。S101. Generate corresponding public and private keys using an asymmetric cryptographic algorithm built into the trusted device.

在可信装置的全局生成阶段采用非对称加密的椭圆加密算法生成专属于该可信装置的公钥和私钥。In the global generation phase of the trusted device, an asymmetric elliptic encryption algorithm is used to generate a public key and a private key that are exclusive to the trusted device.

S102、基于所述用户的身份属性信息生成对应的数字身份标识,将所述数字身份标识进行哈希运算后得到第一哈希指纹,将所述第一哈希指纹和所述公钥建立对应的映射关系后在所述区块链上链,所述身份属性信息包括但不限于身份证号、营业执照以及特性环境下的ID。S102. Generate a corresponding digital identity based on the identity attribute information of the user, perform a hash operation on the digital identity to obtain a first hash fingerprint, establish a corresponding mapping relationship between the first hash fingerprint and the public key, and then upload them to the blockchain. The identity attribute information includes but is not limited to an identity card number, a business license, and an ID under a characteristic environment.

将用户的身份属性信息和随机生成的字符串组成用户的数字身份标识,对于随机生成的字符串可借鉴密码生成机制,例如:由大小写字母、数字和特殊字符随机组成的8位字符串。将数字身份标识进行哈希运算后得到对应的第一哈希指纹,以哈希指纹的形式传输和存储数字身份标识,以及寻址,不仅能够保证数据传输的安全性,同时,通过比对哈希指纹即可完成数字身份标识的比对,提升身份识别的效率。The user's identity attribute information and randomly generated character string form the user's digital identity. The randomly generated character string can refer to the password generation mechanism, for example: an 8-bit character string composed of uppercase and lowercase letters, numbers and special characters. The digital identity is hashed to obtain the corresponding first hash fingerprint. The digital identity is transmitted and stored in the form of hash fingerprint, and the addressing can not only ensure the security of data transmission, but also complete the comparison of digital identity by comparing hash fingerprints, thereby improving the efficiency of identity recognition.

进一步的,将第一哈希指纹和公钥建立对应的映射关系后在区块链上上链,存储在相应的数字业务存储节点上,区块链上的其他节点同步存储。Furthermore, after establishing a corresponding mapping relationship between the first hash fingerprint and the public key, the fingerprint is uploaded to the blockchain and stored on the corresponding digital business storage node, and other nodes on the blockchain store the fingerprint synchronously.

在本发明优选实施例中,可信装置作为用户和区块链之间的桥梁,在接收到用户发送的数字业务需求时,根据数字业务需求生成对应的服务闭环链,如图3所述,包括以下步骤:In a preferred embodiment of the present invention, the trusted device acts as a bridge between the user and the blockchain. When receiving a digital service demand sent by the user, the trusted device generates a corresponding service closed-loop chain according to the digital service demand, as shown in FIG3 , including the following steps:

S201、专属的所述可信装置对接收的数字业务需求和所述数字身份标识进行识别,以确定是否为所述可信装置对应的所述用户发送。S201. The dedicated trusted device identifies the received digital service demand and the digital identity to determine whether they are sent by the user corresponding to the trusted device.

在本发明优选实施例中,每一个用户都有专属的可信装置,该可信装置内的用户空间存储有用户的身份属性信息。用户向该可信装置发送用户的数字业务需求和身份属性信息以请求数字业务作业,基于身份属性信息,可信装置能够识别该请求是否为专属于该可信装置的用户发送。采用可信装置与用户一一对应的映射关系进行绑定,以提升可信装置访问的安全性,确保数字业务系统的合法授权访问。In a preferred embodiment of the present invention, each user has a dedicated trusted device, and the user space in the trusted device stores the user's identity attribute information. The user sends the user's digital service requirements and identity attribute information to the trusted device to request a digital service operation. Based on the identity attribute information, the trusted device can identify whether the request is sent by the user who is dedicated to the trusted device. The trusted device and the user are bound by a one-to-one mapping relationship to improve the security of trusted device access and ensure legal and authorized access to the digital service system.

S202、识别通过后,专属的所述可信装置对所述数字业务需求进行分析,得到所述数字业务需求所有涉及的数字业务服务节点。S202: After the identification is successful, the dedicated trusted device analyzes the digital service demand to obtain all digital service service nodes involved in the digital service demand.

在本发明优选实施例中,当识别通过后,激活可信装置的服务闭环链生成程序,先对数字业务需求进行分析,得到执行该数字业务需求所涉及到的数字业务服务节点。得到执行该数字业务需求所涉及到的数字业务服务节点可以采用以下方法实现:建立数字业务需求与数字业务服务节点映射数据库,以接收的数字业务需求在数字业务需求与数字业务服务节点映射数据库进行检索,以得到数字业务需求所有涉及的数字业务服务节点。In a preferred embodiment of the present invention, after the identification is passed, the service closed-loop chain generation program of the trusted device is activated, and the digital service demand is first analyzed to obtain the digital service service node involved in executing the digital service demand. The digital service service node involved in executing the digital service demand can be obtained by the following method: establishing a digital service demand and digital service node mapping database, and searching the digital service demand and digital service node mapping database with the received digital service demand to obtain all the digital service service nodes involved in the digital service demand.

S203、从所有涉及的所述数字业务服务节点读取对应的数字业务作业要求,并对所述数字业务作业要求进行分析,生成数字业务作业树状结构图。S203: Read corresponding digital service operation requirements from all the digital service service nodes involved, analyze the digital service operation requirements, and generate a digital service operation tree structure diagram.

在本发明优选实施例中,可信装置依据得到的数字业务需求所有涉及的数字业务服务节点,在区块链上进行查询,以从数字业务需求所有涉及的数字业务服务节点读取各个数字业务服务节点节点对应的数字业务作业要求。该数字业务作业要求至少包括:数字业务办理需要的资料,是否需要以其他数字业务服务节点的执行结果为依据,是否可以与其他数字业务服务节点的执行结果组合。对以上数字业务作业进行分析,生成数字业务作业树状结构图,如图4所示,包括以下步骤:In a preferred embodiment of the present invention, the trusted device queries the blockchain based on all the digital business service nodes involved in the obtained digital business requirements, so as to read the digital business operation requirements corresponding to each digital business service node from all the digital business service nodes involved in the digital business requirements. The digital business operation requirements at least include: the information required for the digital business handling, whether it is necessary to be based on the execution results of other digital business service nodes, and whether it can be combined with the execution results of other digital business service nodes. The above digital business operations are analyzed to generate a digital business operation tree structure diagram, as shown in Figure 4, including the following steps:

S2031、若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:以另一个涉及的所述数字业务服务节点的执行结果为依据,则在两个所述涉及的数字业务服务节点之间建立层次关联关系,所述层次关联关系为先后执行。S2031. If the digital service operation requirement of one of the digital service nodes involved is: based on the execution result of another digital service node involved, a hierarchical association relationship is established between the two digital service nodes involved, and the hierarchical association relationship is executed in sequence.

如图5所示,数字业务服务节点B的执行必须以数字业务服务节点A的执行结果为依据,则在数字业务服务节点A和数字业务服务节点B之间建立层次关联关系,即数字业务服务节点A先执行,数字业务服务节点B后执行。As shown in FIG5 , the execution of the digital business service node B must be based on the execution result of the digital business service node A, so a hierarchical association relationship is established between the digital business service node A and the digital business service node B, that is, the digital business service node A is executed first and the digital business service node B is executed later.

S2032、若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:不需要依据其他涉及的所述数字业务服务节点的执行结果,则对应的所述数字业务服务节点可与其他任意涉及的所述数字业务服务节点建立同步关联关系,所述同步关联关系为同步执行。S2032. If the digital service operation requirement of one of the digital service nodes involved is: not depending on the execution results of other digital service nodes involved, the corresponding digital service node can establish a synchronous association relationship with any other digital service node involved, and the synchronous association relationship is synchronous execution.

如图5所示,数字业务服务节点C和数字业务服务节点D均不需要依据任何其他涉及的数字业务服务节点的执行结果,则数字业务服务节点C的数字业务服务节点D的执行先后顺序不受约束,可以与任何其他涉及的数字业务服务节点建立同步关联关系,以和任何其他涉及的数字业务服务节点同步执行。As shown in Figure 5, neither the digital business service node C nor the digital business service node D needs to be based on the execution results of any other involved digital business service node. Therefore, the execution order of the digital business service node D of the digital business service node C is not constrained, and a synchronous association relationship can be established with any other involved digital business service node to execute synchronously with any other involved digital business service node.

S2033、若其中一个涉及的所述数字业务服务节点的所述数字业务作业要求为:与另一个涉及的数字业务服务节点的执行结果显示在同一界面,则在两个所述涉及的数字业务服务节点之间建立连通关系,所述连通关系为两个所述涉及的数字业务服务节点的执行结果在同一界面显示。S2033. If the digital business operation requirement of one of the digital business service nodes involved is: the execution result of another digital business service node involved is displayed on the same interface, a connectivity relationship is established between the two digital business service nodes involved, and the connectivity relationship is that the execution results of the two digital business service nodes involved are displayed on the same interface.

如图5所示,数字业务服务节点A和数字业务服务节点B为层次关联关系,如果数字业务服务节点A和数字业务服务节点B采用相同的执行表单,表明数字业务服务节点A和数字业务服务节点B的执行结果满足组合显示的条件,其执行结果能够在同一界面进行显示,则数字业务服务节点A和数字业务服务节点B之间建立连通关系。在数字业务办理树状结构图上可以采用区别于实线箭头的虚线箭头表明两个数字业务服务节点之间存在连通关系。如果数字业务服务节点C和数字业务服务节点D的执行结果也满足组合显示的条件,其执行结果能够在同一界面进行显示,则数字业务服务节点C和数字业务服务节点D之间建立连通关系。As shown in Figure 5, digital business service node A and digital business service node B are in a hierarchical association relationship. If digital business service node A and digital business service node B use the same execution form, it indicates that the execution results of digital business service node A and digital business service node B meet the conditions for combined display, and their execution results can be displayed on the same interface, then a connection relationship is established between digital business service node A and digital business service node B. In the tree structure diagram of digital business handling, a dotted arrow different from a solid arrow can be used to indicate that there is a connection relationship between two digital business service nodes. If the execution results of digital business service node C and digital business service node D also meet the conditions for combined display, and their execution results can be displayed on the same interface, then a connection relationship is established between digital business service node C and digital business service node D.

采用数字业务作业树状结构图的形式将数字业务需求所涉及的数字业务服务节点按照一定的执行顺序进行关联,组成一个相互关联的完整的数字业务执行闭环链,以使数字业务的执行更加的高效。The digital business service nodes involved in the digital business needs are associated in a certain execution order in the form of a digital business operation tree structure diagram, forming an interconnected and complete digital business execution closed-loop chain to make the execution of digital business more efficient.

S204、将所有涉及的所述数字业务服务节点按照所述数字业务办理树状结构图建立对应的关联关系,以生成服务闭环链。S204: Establish corresponding association relationships among all the digital business service nodes involved according to the digital business handling tree structure diagram to generate a service closed-loop chain.

在本发明优选实施例中,将所有涉及的数字业务服务节点依据数字业务作业树状结构图进行关联,以生成服务闭环链,按照该服务闭环链可依次执行数字业务需求所涉及的所有数字业务,简化数字业务执行的流程,提升数字业务执行的效率。In a preferred embodiment of the present invention, all involved digital business service nodes are associated according to a digital business operation tree structure diagram to generate a service closed-loop chain. According to the service closed-loop chain, all digital services involved in the digital business requirements can be executed in sequence, simplifying the digital business execution process and improving the efficiency of digital business execution.

在生成服务闭环链之后,可信装置将服务闭环链在区块链上进行上链并触发区块链上布置的智能合约,以使服务闭环链对应的数字业务服务节点按照智能合约协同执行数字业务需求。在本发明优选实施例中,智能合约配置为:服务闭环链中涉及的数字业务服务节点按照数字业务办理树状结构图执行数字业务需求。数字业务办理树状结构图是一个完整的数字业务需求执行的流程图,故服务闭环链中涉及的数字业务服务节点只需按照数字业务办理树状结构图执行相关步骤,即可得到数字业务需求最终的执行结果。After the service closed-loop chain is generated, the trusted device uploads the service closed-loop chain to the blockchain and triggers the smart contract arranged on the blockchain, so that the digital business service nodes corresponding to the service closed-loop chain can collaboratively execute the digital business requirements according to the smart contract. In a preferred embodiment of the present invention, the smart contract is configured as follows: the digital business service nodes involved in the service closed-loop chain execute the digital business requirements according to the digital business handling tree structure diagram. The digital business handling tree structure diagram is a complete flowchart of the execution of digital business requirements, so the digital business service nodes involved in the service closed-loop chain only need to execute the relevant steps according to the digital business handling tree structure diagram to obtain the final execution result of the digital business requirements.

在本发明优选实施例中,将最终的执行结果存储在数字业务存储节点上,如图6所示,包括以下步骤:In a preferred embodiment of the present invention, the final execution result is stored in a digital service storage node, as shown in FIG6 , including the following steps:

S301、采用所述公钥对所述执行结果进行加密,得到执行结果密文。S301. Use the public key to encrypt the execution result to obtain a ciphertext of the execution result.

S302、将所述执行结果密文和对应的所述第一哈希指纹建立映射关系后存储在所述数字业务存储节点上。S302: Establish a mapping relationship between the execution result ciphertext and the corresponding first hash fingerprint and store them in the digital service storage node.

在所涉及的数字业务服务节点执行数字业务需求得到执行结果后,根据存储在区块链上的对应可信装置上链的公钥对执行结果进行加密,得到执行结果密文。将执行结果密文和对应的第一哈希指纹也建立映射关系后存储在数字业务存储节点上。只需通过可信装置向用户反馈数字业务需求执行完成的情况即可,如已执行完成。用户如需要对执行结果进行下载,需要通过可信装置向区块链发送读取请求,以从区块链上的数字业务存储节点上读取执行结果,如图7所示,包括以下步骤:After the digital business service node involved executes the digital business demand and obtains the execution result, the execution result is encrypted according to the public key of the corresponding trusted device on the blockchain to obtain the execution result ciphertext. The execution result ciphertext and the corresponding first hash fingerprint are also mapped and stored on the digital business storage node. It is only necessary to feedback the completion of the execution of the digital business demand to the user through the trusted device, such as the execution is completed. If the user needs to download the execution result, it is necessary to send a read request to the blockchain through the trusted device to read the execution result from the digital business storage node on the blockchain, as shown in Figure 7, including the following steps:

S401、所述区块链接收所述用户通过所述可信装置发送的数字身份标识并进行哈希运算,得到第二哈希指纹,将所述第二哈希指纹和区块链上存储的所述第一哈希指纹比对,比对通过后从所述区块链上读取所述第一哈希指纹对应的所述执行结果密文。S401. The blockchain receives the digital identity sent by the user through the trusted device and performs a hash operation to obtain a second hash fingerprint, compares the second hash fingerprint with the first hash fingerprint stored on the blockchain, and reads the execution result ciphertext corresponding to the first hash fingerprint from the blockchain after the comparison is successful.

S402、采用所述私钥对所述执行结果密文解密,得到所述执行结果。S402: Decrypt the execution result ciphertext using the private key to obtain the execution result.

因数字业务需求的执行往往不能即时反馈执行结果,为避免将执行结果存储在可信装置中被泄露,本发明的优选实施例未采用将执行结果直接发送至可信装置,由可信装置返回用户的常规方式,而是采用将执行结果存储在区块链的数字业务存储节点,用户在验证完成之后才可以下载。用户通过可信装置向区块链发送数字身份标识,区块链对数字身份标识进行哈希运算,得到对应的第二哈希指纹,以第二哈希指纹寻找区块链上存储的第一哈希指纹,以读取与第一哈希指纹映射存储的执行结果密文,采用用户专属的可信装置内存储私钥解密执行结果密文,以得到执行结果。对于执行结果的下载,以哈希指纹进行寻址,并采用用户专属的私钥进行解密,保证数据的安全性。Because the execution of digital business needs often cannot provide immediate feedback on the execution results, in order to avoid the execution results being stored in a trusted device and leaked, the preferred embodiment of the present invention does not adopt the conventional method of sending the execution results directly to the trusted device and returning them to the user by the trusted device, but adopts the method of storing the execution results in the digital business storage node of the blockchain, which the user can download only after the verification is completed. The user sends the digital identity to the blockchain through the trusted device, and the blockchain performs a hash operation on the digital identity to obtain the corresponding second hash fingerprint. The second hash fingerprint is used to find the first hash fingerprint stored on the blockchain to read the execution result ciphertext stored in the mapping with the first hash fingerprint, and the execution result ciphertext is decrypted using the private key stored in the trusted device exclusive to the user to obtain the execution result. For the download of the execution result, the hash fingerprint is used for addressing, and the user's exclusive private key is used for decryption to ensure the security of the data.

在本发明优选实施例中,通过在区块链上布置可信装置生成节点,用于响应用户的可信装置生成请求,为用户生成专属的可信装置,该专属的可信装置可为用户颁发数字身份标识,对访问可信装置的用户进行验证和访问控制,确保数字业务系统的合法授权访问。可信装置响应于用户发送的数字业务需求,根据数字业务需求生成对应的服务闭环链,以将数字业务需求所涉及的数字业务服务节点进行业务流程的关联,每一个数字业务服务节点不仅能够独立完成数字业务的作业,且能够与其他数字业务服务节点进行协同作业,突破不同数字业务服务节点之间存在的孤岛现象。可信装置将服务闭环链上链以触发智能合约,以使服务闭环链对应的数字业务服务节点按照智能合约协同执行数字业务需求,简化数字业务作业流程,提升数字业务作业效率。将执行结果存储在区块链上,在用户通过可信装置完成身份的验证后以哈希指纹为地址搜寻执行结果,以保证数据的安全性。In a preferred embodiment of the present invention, a trusted device generation node is arranged on the blockchain to respond to the user's trusted device generation request, and a dedicated trusted device is generated for the user. The dedicated trusted device can issue a digital identity for the user, verify and control the access of the user who accesses the trusted device, and ensure the legal authorized access of the digital business system. The trusted device responds to the digital business requirements sent by the user, generates a corresponding service closed-loop chain according to the digital business requirements, and associates the digital business service nodes involved in the digital business requirements with the business process. Each digital business service node can not only independently complete the operation of the digital business, but also can cooperate with other digital business service nodes to break the island phenomenon between different digital business service nodes. The trusted device links the service closed-loop chain to trigger the smart contract, so that the digital business service nodes corresponding to the service closed-loop chain can cooperate to execute the digital business requirements according to the smart contract, simplify the digital business operation process, and improve the digital business operation efficiency. The execution results are stored on the blockchain, and after the user completes the identity verification through the trusted device, the execution results are searched with the hash fingerprint as the address to ensure the security of the data.

相应地,如图8所示,基于一种分布式体系的数字业务系统管理方法,本发明实施例还提供一种分布式体系的数字业务系统管理平台,实现本发明实施例公开的分布式体系的数字业务系统管理方法,包括:可信装置生成单元1、服务闭环链生成单元2、数字业务需求执行单元3和执行结果读取单元4;Accordingly, as shown in FIG8 , based on a distributed digital business system management method, an embodiment of the present invention further provides a distributed digital business system management platform, which implements the distributed digital business system management method disclosed in the embodiment of the present invention, including: a trusted device generation unit 1, a service closed-loop chain generation unit 2, a digital business demand execution unit 3, and an execution result reading unit 4;

所述可信装置生成单元1,用于所述可信装置生成节点响应于用户的可信装置生成请求,为所述用户生成专属的可信装置,专属的所述可信装置为所述用户颁发对应的数字身份标识。The trusted device generation unit 1 is used for the trusted device generation node to generate an exclusive trusted device for the user in response to a trusted device generation request of the user, and the exclusive trusted device issues a corresponding digital identity to the user.

所述服务闭环链生成单元2,用于专属的所述可信装置响应于所述用户发送的数字业务需求,以根据所述用户的数字业务需求生成对应的服务闭环链;所述服务闭环链包括所述数字业务需求所有涉及的数字业务服务节点。The service closed-loop chain generation unit 2 is used for the exclusive trusted device to respond to the digital service requirements sent by the user to generate a corresponding service closed-loop chain according to the digital service requirements of the user; the service closed-loop chain includes all digital service service nodes involved in the digital service requirements.

所述数字业务需求执行单元3,用于所述可信装置将所述服务闭环链上链并触发所述智能合约,以使所述服务闭环链包括的所述数字业务服务节点按照所述智能合约协同执行所述数字业务需求,得到执行结果并基于对应的所述数字身份标识存储在所述数字业务存储节点上。The digital business demand execution unit 3 is used by the trusted device to put the service closed-loop chain on the chain and trigger the smart contract, so that the digital business service nodes included in the service closed-loop chain can collaboratively execute the digital business demand according to the smart contract, obtain the execution result and store it on the digital business storage node based on the corresponding digital identity.

所述执行结果读取单元4,用于所述区块链响应于所述用户的读取请求,以从所述数字业务存储节点上读取所述执行结果。The execution result reading unit 4 is used for the blockchain to respond to the user's read request to read the execution result from the digital business storage node.

关于一种分布式体系的数字业务系统管理平台的具体限定可以参见上述对于一种分布式体系的数字业务系统管理方法的限定,此处不再赘述。本领域普通技术人员可以意识到,结合本发明所公开的实施例描述的各个模块和步骤,能够以硬件、软件或者两者结合来实现。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用使用不同方法来实现所描述的功能,但是这种实现不应认为超出本发明的范围。For the specific definition of a digital business system management platform for a distributed system, please refer to the above-mentioned definition of a digital business system management method for a distributed system, which will not be repeated here. A person of ordinary skill in the art will appreciate that the various modules and steps described in conjunction with the embodiments disclosed in the present invention can be implemented in hardware, software, or a combination of both. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. Professional and technical personnel can use different methods to implement the described functions for each specific application, but such implementation should not be considered to be beyond the scope of the present invention.

如图9所示,本发明实施例提供的一种计算机设备,包括处理器、存储器以及存储在所述存储器中且被配置为由所述处理器执行的计算机程序,所述处理器执行所述计算机程序时实现如上述基于区块链的实体数字凭证生成方法实施例中的步骤,例如图1中所述的步骤S1~S4。As shown in FIG9 , a computer device provided by an embodiment of the present invention includes a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor. When the processor executes the computer program, the steps in the above-mentioned blockchain-based entity digital credential generation method embodiment are implemented, such as steps S1 to S4 described in FIG1 .

本领域技术人员可以理解,所述示意图9仅仅是计算机设备的示例,并不构成对计算机设备的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件,例如所述计算机设备还可以包括输入输出设备、网络接入设备、总线等。Those skilled in the art will appreciate that the schematic diagram 9 is merely an example of a computer device and does not constitute a limitation on the computer device. The computer device may include more or fewer components than shown in the diagram, or a combination of certain components, or different components. For example, the computer device may also include input and output devices, network access devices, buses, etc.

所述处理器可以是中央处理单元(Central Processing Unit,CPU),还可以是其他通用处理器、数字信号处理器(Digital Signal Processor,DSP)、专用集成电路(Application Specific Integrated Circuit,ASIC)、现成可编程门阵列(Field-Programmable Gate Array,FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件等。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等,所述处理器是所述计算机设备的控制中心,利用各种接口和线路连接整个计算机设备的各个部分。The processor may be a central processing unit (CPU), or other general-purpose processors, digital signal processors (DSP), application-specific integrated circuits (ASIC), field-programmable gate arrays (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, etc. A general-purpose processor may be a microprocessor or any conventional processor, etc. The processor is the control center of the computer device, and uses various interfaces and lines to connect various parts of the entire computer device.

所述存储器可用于存储所述计算机程序和/或模块,所述处理器通过运行或执行存储在所述存储器内的计算机程序和/或模块,以及调用存储在存储器内的数据,实现所述计算机设备的各种功能。所述存储器可主要包括存储程序区和存储数据区,其中,存储程序区可存储操作系统、至少一个功能所需的应用程序(比如声音播放功能、图像播放功能等)等;存储数据区可存储根据手机的使用所创建的数据(比如音频数据、电话本等)等。此外,存储器可以包括高速随机存取存储器,还可以包括非易失性存储器,例如硬盘、内存、插接式硬盘,智能存储卡(Smart Media Card, SMC),安全数字(Secure Digital, SD)卡,闪存卡(Flash Card)、至少一个磁盘存储器件、闪存器件、或其他易失性固态存储器件。The memory can be used to store the computer program and/or module, and the processor realizes various functions of the computer device by running or executing the computer program and/or module stored in the memory, and calling the data stored in the memory. The memory can mainly include a program storage area and a data storage area, wherein the program storage area can store an operating system, an application required for at least one function (such as a sound playback function, an image playback function, etc.), etc.; the data storage area can store data created according to the use of the mobile phone (such as audio data, a phone book, etc.), etc. In addition, the memory can include a high-speed random access memory, and can also include a non-volatile memory, such as a hard disk, a memory, a plug-in hard disk, a smart memory card (Smart Media Card, SMC), a secure digital (Secure Digital, SD) card, a flash card (Flash Card), at least one disk storage device, a flash memory device, or other volatile solid-state storage devices.

其中,所述计算机设备集成的模块如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本发明实现上述实施例方法中的全部或部分流程,也可以通过计算机程序来指令相关的硬件来完成,所述的计算机程序可存储于一计算机可读存储介质中,该计算机程序在被处理器执行时,可实现上述各个方法实施例的步骤。其中,所述计算机程序包括计算机程序代码,所述计算机程序代码可以为源代码形式、对象代码形式、可执行文件或某些中间形式等。所述计算机可读介质可以包括:能够携带所述计算机程序代码的任何实体或装置、记录介质、U盘、移动硬盘、磁碟、光盘、计算机存储器、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、电载波信号、电信信号以及软件分发介质等。Wherein, if the module integrated in the computer device is implemented in the form of a software functional unit and sold or used as an independent product, it can be stored in a computer-readable storage medium. Based on such an understanding, the present invention implements all or part of the processes in the above-mentioned embodiment method, and can also be completed by instructing the relevant hardware through a computer program. The computer program can be stored in a computer-readable storage medium, and the computer program can implement the steps of the above-mentioned various method embodiments when executed by the processor. Wherein, the computer program includes computer program code, and the computer program code can be in source code form, object code form, executable file or some intermediate form, etc. The computer-readable medium can include: any entity or device capable of carrying the computer program code, recording medium, U disk, mobile hard disk, disk, optical disk, computer memory, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), electric carrier signal, telecommunication signal and software distribution medium, etc.

本领域普通技术人员可以理解实现上述实施例方法中的全部或部分流程,是可以通过计算机程序来指令相关的硬件来完成,所述的程序可存储于一计算机可读取存储介质中,该程序在执行时,可包括如上述各方法的实施例的流程。其中,所述的存储介质可为磁碟、光盘、只读存储记忆体(Read-Only Memory,ROM)或随机存储记忆体(Random AccessMemory,RAM)等。Those skilled in the art can understand that all or part of the processes in the above-mentioned embodiments can be implemented by instructing the relevant hardware through a computer program, and the program can be stored in a computer-readable storage medium, and when the program is executed, it can include the processes of the embodiments of the above-mentioned methods. The storage medium can be a disk, an optical disk, a read-only memory (ROM) or a random access memory (RAM), etc.

相应地,本发明实施例提供一种计算机可读存储介质,所述计算机可读存储介质包括存储的计算机程序,其中,在所述计算机程序运行时控制所述计算机可读存储介质所在设备执行如上述实施例的基于区块链的实体数字凭证生成方法中的步骤,例如图1中所述的步骤S1~S4。Accordingly, an embodiment of the present invention provides a computer-readable storage medium, which includes a stored computer program, wherein when the computer program is running, the device where the computer-readable storage medium is located is controlled to execute the steps in the blockchain-based entity digital certificate generation method of the above embodiment, such as steps S1 to S4 described in Figure 1.

本实施例中提供的一种分布式体系的数字业务系统管理方法、平台、计算机设备及存储介质,针对现有数字业务系统之间存在的孤岛现象,以及如何在保证数据安全的前提下简化数字业务操作流程、提高数字业务作业效率的技术问题。本发明通过在区块链上布置可信装置生成节点,用于响应用户的可信装置生成请求,为用户生成专属的可信装置,该专属的可信装置可为用户颁发数字身份标识,对访问可信装置的用户进行验证和访问控制,确保数字业务系统的合法授权访问。可信装置响应于用户发送的数字业务需求,根据数字业务需求生成对应的服务闭环链,以将数字业务需求所涉及的数字业务服务节点进行业务流程的关联,每一个数字业务服务节点不仅能够独立完成数字业务的作业,且能够与其他数字业务服务节点进行协同作业,突破不同数字业务服务节点之间存在的孤岛现象。可信装置将服务闭环链上链以触发智能合约,以使服务闭环链对应的数字业务服务节点按照智能合约协同执行数字业务需求,以简化数字业务作业流程,提升数字业务作业效率。将执行结果存储在区块链上,在用户通过可信装置完成身份的验证后以哈希指纹为地址搜寻执行结果,以保证数据的安全性。A distributed digital business system management method, platform, computer device and storage medium provided in this embodiment are aimed at the island phenomenon between existing digital business systems, and the technical problem of how to simplify the digital business operation process and improve the digital business operation efficiency under the premise of ensuring data security. The present invention arranges a trusted device generation node on the blockchain to respond to the user's trusted device generation request, generate a dedicated trusted device for the user, and the dedicated trusted device can issue a digital identity for the user, verify and control the user who accesses the trusted device, and ensure the legal authorized access to the digital business system. The trusted device responds to the digital business requirements sent by the user, generates a corresponding service closed-loop chain according to the digital business requirements, and associates the digital business service nodes involved in the digital business requirements with the business process. Each digital business service node can not only independently complete the digital business operation, but also can work in collaboration with other digital business service nodes, breaking through the island phenomenon between different digital business service nodes. The trusted device links the service closed-loop chain to trigger the smart contract, so that the digital business service nodes corresponding to the service closed-loop chain can collaboratively execute the digital business requirements according to the smart contract, so as to simplify the digital business operation process and improve the digital business operation efficiency. The execution results are stored on the blockchain. After the user completes identity verification through a trusted device, the execution results are searched using the hash fingerprint as the address to ensure data security.

以上所述实施例仅表达了本发明的几种优选实施方式,其描述较为具体和详细,但并不能因此而理解为对发明专利范围的限制。应当指出的是,对于本技术领域的普通技术人员来说,在不脱离本发明技术原理的前提下,还可以做出若干改进和替换,这些改进和替换也应视为本发明的保护范围。因此,本发明专利的保护范围应以所述权利要求的保护范围为准。The above-mentioned embodiments only express several preferred implementation modes of the present invention, and the description thereof is relatively specific and detailed, but it cannot be understood as limiting the scope of the invention patent. It should be pointed out that, for ordinary technicians in this technical field, several improvements and substitutions can be made without departing from the technical principle of the present invention, and these improvements and substitutions should also be regarded as the protection scope of the present invention. Therefore, the protection scope of the patent of the present invention shall be based on the protection scope of the claims.

Claims (10)

1. A digital service system management method of a distributed architecture, wherein the digital service system comprises a digital service node, a trusted device generation node, a digital service storage node, and an intelligent contract arranged on a blockchain, the method comprising:
The trusted device generation node responds to a trusted device generation request of a user, generates a dedicated trusted device for the user, and issues a corresponding digital identity for the user by the dedicated trusted device;
The exclusive trusted device responds to the digital service requirement sent by the user to generate a corresponding service closed-loop chain according to the digital service requirement; the service closed loop comprises all the digital service nodes related to the digital service requirement;
The trusted device links the service closed-loop chain and triggers the intelligent contract, so that the digital service nodes included in the service closed-loop chain cooperatively execute the digital service demands according to the intelligent contract to obtain an execution result and store the execution result on the digital service storage nodes based on the corresponding digital identity;
The blockchain responds to the read request of the user to read the execution result from the digital service storage node.
2. The method for digital service system management of a distributed architecture according to claim 1, wherein said trusted device issues a corresponding digital identification to said user, comprising:
generating a corresponding public key and private key by an asymmetric cryptography algorithm built in the trusted device;
Generating a corresponding digital identity mark based on the identity attribute information of the user, carrying out hash operation on the digital identity mark to obtain a first hash fingerprint, establishing a corresponding mapping relation between the first hash fingerprint and the public key, and then uploading the corresponding mapping relation to the blockchain, wherein the identity attribute information comprises, but is not limited to, an identity card number, a business license and an ID under a characteristic environment.
3. The method for digital service system management of a distributed architecture as recited in claim 2, wherein,
The exclusive trusted device responds to the digital service requirement sent by the user to generate a corresponding service closed-loop chain according to the digital service requirement, and the exclusive trusted device comprises:
The exclusive trusted device identifies the received digital service requirement and the identity attribute information to determine whether to send the data to the user corresponding to the trusted device;
after the identification is passed, the exclusive trusted device analyzes the digital service requirements to obtain all the related digital service nodes of the digital service requirements;
reading corresponding digital service operation requirements from all the related digital service nodes, analyzing the digital service operation requirements, and generating a digital service operation tree structure diagram;
And establishing corresponding association relations among all the related digital service nodes according to the digital service operation tree structure diagram so as to generate a service closed-loop chain.
4. The method for digital service system management of a distributed architecture according to claim 3,
The step of analyzing the digital business operation requirement to generate a digital business operation tree structure diagram comprises the following steps:
If the digital service operation requirement of one of the related digital service nodes is: establishing a hierarchical association relationship between two related digital service nodes according to the execution result of the other related digital service node, wherein the hierarchical association relationship is executed by the two related digital service nodes successively;
If the digital service operation requirement of one of the related digital service nodes is: the corresponding digital service nodes can establish synchronous association relations with any other related digital service nodes without depending on the execution results of the other related digital service nodes, and the synchronous association relations are synchronously executed by the two related digital service nodes;
If the digital service operation requirement of one of the related digital service nodes is: and if the execution result of the digital service node and the execution result of the other related digital service node are displayed on the same interface, establishing a communication relation between the two related digital service nodes, wherein the communication relation is that the execution results of the two related digital service nodes are displayed on the same interface.
5. The method for digital service system management of a distributed architecture according to claim 3,
The intelligent combination is about:
And the digital service nodes involved in the service closed-loop chain execute the digital service demands according to the digital service operation tree structure diagram.
6. The distributed architecture digital service system management method according to claim 2, wherein the obtaining the execution result and storing in the digital service storage node comprises:
encrypting the execution result by adopting the public key to obtain an execution result ciphertext;
and establishing a mapping relation between the execution result ciphertext and the corresponding first hash fingerprint, and then storing the mapping relation on the digital service storage node.
7. The method for digital business system management of distributed architecture according to claim 6, wherein,
The blockchain responding to the read request of the user to read the execution result from the digital service storage node, comprising:
The blockchain receives a digital identity sent by the user through the trusted device and carries out hash operation to obtain a second hash fingerprint, the second hash fingerprint is compared with the first hash fingerprint stored on the blockchain, and after the comparison is passed, the execution result ciphertext corresponding to the first hash fingerprint is read from the blockchain;
and decrypting the execution result ciphertext by adopting the private key to obtain the execution result.
8. A digital service system management platform of a distributed architecture, implementing the digital service system management method of a distributed architecture according to any one of claims 1-7, comprising: the system comprises a trusted device generating unit, a service closed loop chain generating unit, a digital service demand executing unit and an execution result reading unit;
The trusted device generation unit is used for responding to a trusted device generation request of a user by the trusted device generation node, generating a dedicated trusted device for the user, and issuing a corresponding digital identity for the user by the dedicated trusted device;
The service closed-loop chain generation unit is used for responding to the digital service requirement sent by the user by the exclusive trusted device so as to generate a corresponding service closed-loop chain according to the digital service requirement; the service closed loop comprises all the digital service nodes related to the digital service requirement;
The digital service demand execution unit is used for the trusted device to uplink the service closed-loop chain and trigger the intelligent contract, so that the digital service node included in the service closed-loop chain cooperatively executes the digital service demand according to the intelligent contract to obtain an execution result and stores the execution result on the digital service storage node based on the corresponding digital identity;
the execution result reading unit is used for responding to the reading request of the user by the blockchain so as to read the execution result from the digital service storage node.
9. A computer device, characterized by: the computer device comprises a memory, a processor and a transceiver, which are connected through a bus; the memory is used to store a set of computer program instructions and data and to transfer the stored data to the processor, which executes the program instructions stored in the memory to perform the digital service system management method of the distributed architecture as claimed in any one of claims 1 to 7.
10. A computer-readable storage medium, characterized by: the computer readable storage medium has stored therein a computer program which, when executed, implements the digital service system management method of the distributed architecture as claimed in any one of claims 1 to 7.
CN202411134188.9A 2024-08-19 2024-08-19 Digital business system management method, platform, equipment and medium of distributed system Active CN118656838B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202411134188.9A CN118656838B (en) 2024-08-19 2024-08-19 Digital business system management method, platform, equipment and medium of distributed system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202411134188.9A CN118656838B (en) 2024-08-19 2024-08-19 Digital business system management method, platform, equipment and medium of distributed system

Publications (2)

Publication Number Publication Date
CN118656838A true CN118656838A (en) 2024-09-17
CN118656838B CN118656838B (en) 2024-10-29

Family

ID=92699321

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202411134188.9A Active CN118656838B (en) 2024-08-19 2024-08-19 Digital business system management method, platform, equipment and medium of distributed system

Country Status (1)

Country Link
CN (1) CN118656838B (en)

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113450113A (en) * 2021-06-28 2021-09-28 上海计算机软件技术开发中心 Cross-chain interaction intelligent contract interaction model and collaborative execution system
CN113554421A (en) * 2021-09-14 2021-10-26 南京烽火星空通信发展有限公司 Police affair resource data governance cooperation method based on block chain
CN114254269A (en) * 2021-12-24 2022-03-29 北京航空航天大学云南创新研究院 System and method for determining rights of biological digital assets based on block chain technology
CN115510154A (en) * 2022-09-22 2022-12-23 金蝶软件(中国)有限公司 Block chain-based evidence storage data generation method and device and computer equipment
CN116996331A (en) * 2023-09-27 2023-11-03 腾讯科技(深圳)有限公司 Block chain-based data processing method, device, equipment and medium
WO2024093593A1 (en) * 2022-11-02 2024-05-10 腾讯科技(深圳)有限公司 Multi-blockchain-based data processing method and apparatus, and electronic device, computer-readable storage medium and computer program product
CN118013559A (en) * 2024-04-09 2024-05-10 南京邮电大学 Seal data encryption security system based on blockchain data user role model

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113450113A (en) * 2021-06-28 2021-09-28 上海计算机软件技术开发中心 Cross-chain interaction intelligent contract interaction model and collaborative execution system
CN113554421A (en) * 2021-09-14 2021-10-26 南京烽火星空通信发展有限公司 Police affair resource data governance cooperation method based on block chain
CN114254269A (en) * 2021-12-24 2022-03-29 北京航空航天大学云南创新研究院 System and method for determining rights of biological digital assets based on block chain technology
CN115510154A (en) * 2022-09-22 2022-12-23 金蝶软件(中国)有限公司 Block chain-based evidence storage data generation method and device and computer equipment
WO2024093593A1 (en) * 2022-11-02 2024-05-10 腾讯科技(深圳)有限公司 Multi-blockchain-based data processing method and apparatus, and electronic device, computer-readable storage medium and computer program product
CN116996331A (en) * 2023-09-27 2023-11-03 腾讯科技(深圳)有限公司 Block chain-based data processing method, device, equipment and medium
CN118013559A (en) * 2024-04-09 2024-05-10 南京邮电大学 Seal data encryption security system based on blockchain data user role model

Also Published As

Publication number Publication date
CN118656838B (en) 2024-10-29

Similar Documents

Publication Publication Date Title
CN111046352B (en) A blockchain-based identity information security authorization system and method
CN110417750B (en) Block chain technology-based file reading and storing method, terminal device and storage medium
WO2020191928A1 (en) Digital identity authentication method, device, apparatus and system, and storage medium
WO2020073513A1 (en) Blockchain-based user authentication method and terminal device
CN108234515A (en) A kind of Self-certified digital identity management system and its method based on intelligent contract
US9698974B2 (en) Method for creating asymmetrical cryptographic key pairs
Zhang et al. A Secure and Privacy‐Preserving Medical Data Sharing via Consortium Blockchain
US8806206B2 (en) Cooperation method and system of hardware secure units, and application device
CN111143474B (en) A method of one-click exchange and binding of mobile phone numbers based on blockchain technology
WO2021190197A1 (en) Method and apparatus for authenticating biometric payment device, computer device and storage medium
Babel et al. Bringing data minimization to digital wallets at scale with general-purpose zero-knowledge proofs
CN110445840B (en) File storage and reading method based on block chain technology
Sun et al. Research on logistics information blockchain data query algorithm based on searchable encryption
Xu et al. An efficient blockchain‐based privacy‐preserving scheme with attribute and homomorphic encryption
CN114357492A (en) Medical data privacy fusion method and device based on block chain
CN113315745A (en) Data processing method, device, equipment and medium
CN118611919A (en) A system and method for secure sharing of identity resolution data based on optimized Shiro framework
CN116886357A (en) A mobile platform distributed digital identity authentication method, device and medium
TW200823715A (en) Content control system and method using certificate revocation lists
TW201426395A (en) Data security system and method
US20220191034A1 (en) Technologies for trust protocol with immutable chain storage and invocation tracking
WO2025020651A1 (en) Data generation method, data processing method, data sending method, communication system, electronic terminal and storage medium
CN112187767A (en) Multi-party contract consensus system, method and medium based on block chain
CN2914498Y (en) Information security device based on universal serial bus human-computer interaction type device
CN111914270A (en) Programmable authentication service method and system based on block chain technology

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant