CN109583893B - Traceable block chain-based digital currency transaction system - Google Patents
Traceable block chain-based digital currency transaction system Download PDFInfo
- Publication number
- CN109583893B CN109583893B CN201811393040.1A CN201811393040A CN109583893B CN 109583893 B CN109583893 B CN 109583893B CN 201811393040 A CN201811393040 A CN 201811393040A CN 109583893 B CN109583893 B CN 109583893B
- Authority
- CN
- China
- Prior art keywords
- certificate
- transaction
- sending node
- module
- digital currency
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/04—Payment circuits
- G06Q20/06—Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
- G06Q20/065—Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme using e-cash
Abstract
The invention discloses a traceable block chain-based digital currency transaction system, which comprises: the certificate application module is used for generating corresponding parameters and public and private keys by the certificate certification authority and the transaction sending node; the certificate issuing module is used for the certificate certification authority to sign the public key of the transaction sending node and generate the certificate of the transaction sending node; the certificate randomization module is used for randomizing the certificate obtained by the terminal equipment by the transaction sending node and sending the randomized certificate to the remote verification terminal; the digital currency transaction module is used for performing block chain-based digital currency transaction among the transaction sending node, the miner node and the transaction receiving node; and the user identity tracking module is used for tracking the identity of the transaction sending node by the certificate authority. The system combines the existing PKI system and the digital currency transaction system, so that the system has good cross-platform characteristics, the expandability of the system is enhanced, and the anonymity and the traceability of terminal equipment are guaranteed.
Description
Technical Field
The invention relates to the technical field of block chains and digital currency, in particular to a traceable block chain-based digital currency transaction system.
Background
In recent years, the innovative development of information technology, mobile internet technology and cloud computing technology is changing the payment means of people. The birth and circulation of digital currency based on blockchains represented by bitcoin further mark the new era of value internet featuring the acceleration of internet generation and transfer featuring information generation and flow. The digital currency with the characteristics of going to the center, being incapable of being counterfeited and the like can eliminate the cost of printing and escort storage of the traditional currency design, reduce the fund circulation barriers across regions and mechanisms, improve the convenience and transparency of transaction activities, and is a currency form which is suitable for the modernization and networking requirements. The block chain is a decentralized infrastructure which is gradually raised along with the increasing popularization of digital encryption currencies such as bitcoin and the like, and the unique working mechanism of the whole network authentication enables the block chain to have the characteristics of fraud prevention and double payment prevention in a distributed system and a P2P node, so that the safety and the stability of a digital currency system are ensured. After the development and improvement of several years, the blockchain gradually becomes a novel distributed, decentralized and distrusted technical scheme.
The generation of digital currency and the innovative development of a block chain bring changes to social production, and simultaneously, higher requirements on information safety and individual privacy protection in a transaction system are provided. The current digital currency systems such as bitcoin can only provide a weak way of protecting privacy in the form of pseudonyms. In addition, the design of existing digital currency transaction systems circumvents the supervision of any existing organization or institution. Due to the lack of a supervision mechanism, no mechanism or organization is used for credit endorsement, so that the excessively high currency value fluctuation is easily caused, and illegal crimes such as tax evasion and tax loss and strange money laundering by using digital currencies such as bit currency are bred. How to provide privacy protection for transactants, how to perform efficient supervision of registrars, how to balance privacy protection and security supervision in a transaction system, and the like all face problems and challenges that need to be solved urgently.
Disclosure of Invention
The present invention is directed to solving, at least to some extent, one of the technical problems in the related art.
To this end, the invention aims to propose a traceable block chain based digital currency transaction system.
To achieve the above object, the present invention provides a traceable block chain-based digital currency transaction system, comprising: the system comprises a certificate application module, a tracking module and a data processing module, wherein the certificate application module is used for creating system parameters of a digital currency transaction system, respectively generating a public and private key of a certificate certification authority and a public and private key of a transaction sending node according to the system parameters, and generating a tracking parameter according to the public and private key of the certificate certification authority; the certificate issuing module is used for signing the public key of the transaction sending node according to the private key of the certificate certification authority to generate a certificate and adding the certificate and the tracking parameter into a certificate bank; the certificate randomization module is used for the transaction sending node to sign and verify the certificate, randomize the certificate and the public key of the terminal equipment after the transaction sending node confirms that the certificate is valid, and send the randomized certificate to the digital currency transaction module; the digital currency transaction module is used for initiating a transaction to a transaction receiving node by the transaction sending node to generate a transaction order, the transaction order is collected by the miner node, and a new block is generated by the miner node based on the agreement achieved by a POW agreement mechanism to complete the transaction in a block chain form; and the user identity tracking module is used for acquiring the tracking parameters from the certificate library and tracking the terminal equipment according to the randomized public key of the terminal equipment so as to realize the tracking of the user identity.
The traceable digital currency transaction system based on the block chain in the embodiment of the invention has good cross-platform characteristics by combining the conventional Public Key Infrastructure (PKI) system architecture and digital currency transaction systems such as bitcoin and the like, enhances the expandability of the system and ensures the anonymity and the traceability of terminal equipment.
In addition, the traceable block chain-based digital currency transaction system according to the above embodiment of the present invention may also have the following additional technical features:
further, in an embodiment of the present invention, the operations of the certificate application module and the certificate randomization module are performed by a user side, the operations of the certificate issuance module and the user identity tracking module are performed by the certificate authority, and the operations of the digital currency transaction module are performed by the transaction transmission node, the miners node and the transaction reception node.
Further, in one embodiment of the invention, the transaction sending node is an initiator of a digital money transaction and the transaction receiving node is a receiver of the digital money transaction.
Further, in an embodiment of the present invention, the certificate application module is specifically configured to: creating system parameters for the certificate authority and the transaction sending node in a digital currency transaction system; the certificate certification authority generates a public and private key pair by using system parameters corresponding to the certificate certification authority, stores a private key and publishes a public key; and the transaction sending node generates a public and private key pair by using the system parameters corresponding to the transaction sending node, stores the private key, and sends the public key and the tracking parameters to the certificate certification authority.
Further, in an embodiment of the present invention, the certificate issuing module is specifically configured to: receiving a public key of the transaction sending node in the certificate application module, wherein the certificate certification authority signs the public key of the transaction sending node by using a private key corresponding to the certificate certification authority to generate a certificate, and sends the certificate to the transaction sending node; and the certificate certification authority registers the transaction sending node at a certificate registration authority, and adds the certificate of the transaction sending node and the tracking parameter into a certificate library.
Further, in an embodiment of the present invention, the certificate randomization module is specifically configured to: after the transaction sending node receives the certificate, signature verification is carried out on the certificate; the transaction sending node randomizes the certificate and the public key which pass the verification; the validity of the randomized certificate is certified using zero-knowledge certification techniques and the randomized certificate is sent to a digital currency transaction module.
Optionally, in an embodiment of the present invention, if the certificate received by the transaction sending node passes verification, the transaction sending node outputs 1 to receive the certificate; and if the certificate received by the transaction sending node is not verified, the transaction sending node outputs 0 and returns warning information to the certificate certification authority.
Further, in an embodiment of the present invention, the digital currency transaction module is specifically configured to: the transaction sending node generates a transaction list containing the randomized certificate of the transaction receiving node and sends the transaction list to the miner node; after the miner node receives the transaction order, validity verification is carried out on the randomized certificate and the transaction order; and the miner nodes achieve consensus based on a POW consensus mechanism to generate a new block, and record the transaction list in a block chain form to complete the transaction.
Further, in an embodiment of the present invention, the user identity tracking module is specifically configured to: after the certificate certification authority receives a user identity tracking request, the certificate certification authority calls tracking parameters of all terminal equipment in a certificate library during registration; and the certificate certification authority tracks the user identity according to the public key and the related parameters after the randomization of the certificate.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
The foregoing and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
FIG. 1 is a block chain based traceable digital currency transaction system architecture diagram of one embodiment of the present invention;
FIG. 2 is a block chain-based traceable digital currency transaction system framework diagram of one embodiment of the present invention;
FIG. 3 is a block chain based traceable digital currency transaction system flow diagram of one embodiment of the invention;
FIG. 4 is a schematic diagram of a certificate application module, a certificate issuance module, and a certificate randomization module of a traceable blockchain-based digital currency transaction system in accordance with an embodiment of the present invention;
FIG. 5 is a schematic diagram of a digital currency transaction module of a traceable blockchain-based digital currency transaction system of one embodiment of the present invention;
FIG. 6 is a schematic diagram of a user identity tracking module of a traceable blockchain-based digital currency transaction system, in accordance with an embodiment of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the drawings are illustrative and intended to be illustrative of the invention and are not to be construed as limiting the invention.
A traceable blockchain-based digital currency transaction system proposed according to an embodiment of the present invention is described below with reference to the accompanying drawings.
FIG. 1 is a block chain based traceable digital currency transaction system architecture diagram of one embodiment of the present invention.
As shown in fig. 1, the traceable blockchain-based digital currency transaction system 10 includes: a certificate application module 100, a certificate issuance module 200, a certificate randomization module 300, a digital currency transaction module 400, and a user identity tracking module 500.
It should be noted that the digital currency transaction system according to the embodiment of the present invention includes: certificate authority ca (certificate authority), transaction sending node, miner node and transaction receiving node. Among them, the certificate authority ca (certificate authority) is the issuing and tracking authority of certificates, which is the core of the PKI system; the transaction sending node is a sender of the digital currency transaction system and is also a user of the PKI certificate; the transaction receiving node is a recipient of the digital currency transaction system; the mineworker node is the verifier of the randomized certificate of the transaction sending user.
The certificate application module 100 is configured to create system parameters of a digital currency transaction system, generate a public and private key of a certificate authority and a public and private key of a transaction sending node according to the system parameters, and generate a tracking parameter according to the public and private keys of the certificate authority.
Further, in an embodiment of the present invention, the certificate application module 100 is specifically configured to: establishing system parameters of a certificate certification authority and a transaction sending node in a digital currency transaction system; the certificate certification authority generates a public and private key pair by using system parameters corresponding to the certificate certification authority, stores the private key and publishes the public key; and the transaction sending node generates a public and private key pair by using the system parameters corresponding to the transaction sending node, stores the private key, and sends the public key and the tracking parameters to a certificate certification authority.
In other words, the execution process of the certificate application module 100 is as follows:
step 1: the CA mechanism and the transaction sending node establish corresponding system parameters;
step 2: the CA mechanism generates a private and public key pair by using the system parameters, stores the private key and publishes the public key;
and step 3: the transaction sending node generates a private and public key pair by using the system parameters, stores the private key, and sends the public key and the tracking parameters to the CA mechanism.
It should be noted that the operations of the certificate application module 100 and the certificate randomization module 300 are performed by the user side, the operations of the certificate issuance module 200 and the user identity tracking module 500 are performed by the certificate authority, and the operations of the digital currency transaction module 400 are performed by the transaction sending node, the miners node and the transaction receiving node.
The certificate issuing module 200 is configured to sign the public key of the transaction sending node according to the private key of the certificate authority to generate a certificate, and add the certificate and the tracking parameter to the certificate repository.
Further, in an embodiment of the present invention, the certificate issuing module 200 is specifically configured to: receiving a public key of a transaction sending node in a certificate application module, signing the public key of the transaction sending node by a certificate certification authority by using a private key corresponding to the certificate certification authority to generate a certificate, and sending the certificate to the transaction sending node; the certificate certification authority registers the transaction sending node in the certificate registration authority, and adds the certificate and the tracking parameters of the transaction sending node into the certificate library.
Briefly, the certificate issuing module 200 performs the following processes:
step 1: after receiving the public key of the transaction sending node, the CA mechanism signs the public key of the user by using the private key of the CA mechanism to generate a certificate and sends the certificate to the user;
step 2: and simultaneously, the CA mechanism registers the transaction sending node and adds the user certificate and the tracking parameters into the certificate library.
The certificate randomizing module 300 is configured to perform signature verification on the certificate by the transaction sending node, randomize the certificate and the public key of the terminal device by the transaction sending node after the certificate is confirmed to be valid, and send the randomized certificate to the digital currency transaction module.
Further, in an embodiment of the present invention, the certificate randomization module 300 is specifically configured to: after the transaction sending node receives the certificate, signature verification is carried out on the certificate; the transaction sending node randomizes the certificate and the public key which pass the verification; the validity of the certificate to be randomized is certified using zero-knowledge certification techniques and the randomized certificate is sent to the digital money transaction module 400.
If the certificate received by the transaction sending node passes verification, the transaction sending node outputs 1 and receives the certificate; and if the certificate received by the transaction sending node is not verified, the transaction sending node outputs 0 and returns warning information to the certificate certification authority.
In other words, the certificate randomization module performs the following process:
step 1, after receiving the certificate, the transaction sending node performs signature verification on the certificate, if the certificate passes the verification, 1 is output, the certificate is accepted, otherwise, the user outputs 0, and warning information ⊥ is returned to the CA mechanism;
step 2: randomizing the certificate and the public key which pass the verification by the user;
and step 3: the user is effectively randomized using zero-knowledge proof of knowledge techniques (i.e., the user holds a private key that corresponds to the public key of the certificate body).
The digital currency transaction module 400 is used for the transaction sending node to initiate a transaction to the transaction receiving node, generate a transaction order, the miner node collects the transaction order, and the miner node achieves consensus based on the POW consensus mechanism to generate a new block, so as to complete the transaction in a block chain form.
Further, in one embodiment of the present invention, the digital currency transaction module 400 is specifically configured to: the transaction sending node generates a transaction list containing the randomized certificate of the transaction receiving node and sends the transaction list to the miner node; after receiving the transaction order, the miner node verifies the effectiveness of the randomized certificate and the transaction order; the miners' nodes achieve consensus based on the POW consensus mechanism to generate new blocks, and record the transaction list in a block chain form to complete the transaction.
Specifically, the digital money transaction module 400 performs the following processes:
step 1: the transaction sending node generates a transaction order containing the randomized certificate to the transaction receiving node;
step 2: after the miners collect the transaction order, the validity verification is carried out on the transaction order and the randomized certificate;
and step 3: the miners reach consensus based on a POW consensus mechanism to generate a new block, and finally a block chain form is formed to record the transaction list to complete the transaction.
The user identity tracking module 500 is configured to obtain tracking parameters from the certificate repository, and track the terminal device according to the randomized public key of the terminal device to implement tracking of the user identity.
That is, after receiving the user identity tracking request, the certificate authority calls the tracking parameters of all terminal devices in the certificate base during registration; and the certificate certification authority tracks the user identity according to the public key and the related parameters after randomizing the certificate.
It should be noted that, in the embodiment of the present invention, the format of the certificate satisfies the x509.v3 specification and has randomness, and the transaction sending node has identity traceability.
A complete description of the traceable blockchain-based digital currency transaction system of embodiments of the present invention is provided below in conjunction with the specific examples shown in fig. 2-6.
As shown in fig. 2, a specific example of the present invention includes: certificate authority CA, transaction sending user, transaction receiving user and miner. It should be noted that, in the specific example, the transaction sending user and the user are the above mentioned transaction sending node, the transaction receiving user is the above mentioned transaction receiving node, and the miner is the above mentioned miner node.
In this specific example, the model of the CA server and the model of the database server are both dell OptiPlex3046Mini Tower, the host model of the transaction sending user and the transaction receiving user terminal is the association thinkcenter E74STower, the Bitcoin wallet Bitcoin Core is installed for digital currency transaction, F2Pool mine Pool software is purchased for miners to mine, and the network environment is the campus level network environment.
As shown in fig. 3 and 4, in the certificate application module 100, the CA organization and the transaction sending user need to create corresponding public parameters to generate their respective public-private key pairs, and the user needs to fill in a personal certificate application form, where the user public key is a main field for confirming the user identity, and other identifiers are optional items. The Email address is used when the certificate is transferred after the certificate is generated, and a valid address must be input, otherwise, the application is unsuccessful. The method specifically comprises the following steps:
step 1: the CA organization and the transaction-sending user create corresponding system parameters.
Let G1,G2And GTIs three p-order cyclic groups (p is prime number), e: G1×G2→GTIs a bilinear pair of type 3, G1≠G2,G1And G2There is no valid homomorphic mapping between them. Definition of
Output System parameter pp ← (p, G)1,G2,GT,e)。
Step 2: the CA authority uses the system parameters pp to generate its own public and private key pair (cpk, csk), holds the private key csk, and publishes the public key cpk.
CA mechanism random selection
Computing
Generate private key csk ═ x, y, public key
The CA authority holds a private key csk, publishing a public key cpk.
And step 3: the transaction sending user generates a private and public key pair (upk, usk) by using the system parameter pp, stores the private key usk, and sends the public key upk to the CA organization. And simultaneously, generating parameters required by the tracking module according to the public key cpk of the CA mechanism.
User randomly selects G ← G1,α←ZpThe generated private key is usk α publicThe key is
Simultaneous calculation
The user saves the private key usk and sends the public key upk and the tracking parameter T to the CA authority.
As shown in fig. 3 and 4, after receiving the user public key and the related parameters in the certificate issuing module 200, the CA performs signature on the user public key by using its own private key to generate a certificate, and sends the certificate to the transaction sending user, and at the same time, registers and registers the certificate user, and finally adds the user certificate and the tracking parameters to the certificate repository. The method specifically comprises the following steps:
step 1: after receiving the user public key upk, the CA authority signs the user public key with its own private key to generate a certificate Cert, and sends the certificate Cert to the user.
After receiving the user public key upk ═ X, Y, the CA mechanism randomly chooses r ← ZpUpk are calculatedr=(X,Y)r=(gr,gαr) Generating a signature σ ═ (g)r,grX·gαr·Y)=(gr,gr(X+Yα))=(σ1,σ2). The CA mechanism sets the signature σ (σ)1,σ2) Sent to the user as a certificate Cert.
Step 2: and the CA mechanism registers the certificate user at the same time, and adds the user certificate Cert and the tracking parameter T into the certificate library.
As shown in FIGS. 3 and 4, the transaction sends a user in the certificate randomization module 300 to first verify the validity of the certificate, if the certificate is verified, the user randomizes the certificate and the public key and proves that a valid randomization operation was performed, if the certificate is not verified, an alert ⊥ is returned to the CA authority.
Step 1: and after receiving the certificate Cert, the user performs signature verification on the certificate to verify the validity of the certificate.
Receiving certificate Cert ═ σ ═ (σ ═ σ -1,σ2) First, examineWhether there is a certificate
Second verify the equation
If the equation is true, output 1, i.e., accept the certificate, otherwise the user outputs 0 and returns an alert ⊥ to the CA authority.
Step 2: if the certificate passes the verification, the user randomizes the certificate and the public key which pass the verification.
User randomly selects u ← ZpCalculate g1=gu,
Obtain the randomized public key upk' ═ g1,X1)。
User randomly selects v ← ZpCalculating
Obtaining a certificate Cert ' ═ σ ' (σ) '1,σ′2)。
And step 3: the user is effectively randomized using zero-knowledge proof of knowledge techniques (i.e., the user holds a private key that corresponds to the public key of the certificate body).
In order to prove that the user really utilizes the correct private key to carry out effective randomization operation, the user firstly calculates
Then, the non-interactive zero knowledge proof protocol (NIZK) is used for calculation
Finally the user changes the randomized certificate and the attestation parameter Cert ″ (Cert', σ)3,σ4)=(σ′1,σ′2,σ3,σ4) For digital currency transaction modules.
As shown in fig. 3 and 5, the transaction sending user generates a transaction order for the transaction receiving user in the digital money transaction module 400, which contains not only the input-output address and sender signature required in the normal transaction order, but also the randomized certificate and certification parameters. Based on the existing digital currency system such as the bitcoin, miners in the mine pool collect transaction sheets and carry out validity verification on the transaction sheets and the randomized certificates. The miners reach the consensus based on the POW consensus mechanism to generate a new block, and finally a block chain type transaction list is formed to complete the transaction.
The method specifically comprises the following steps:
step 1: the transaction sending user generates a transaction order containing the randomized certificate to the transaction receiving user.
The transaction sending user initiates a transaction to the transaction receiving user to generate a transaction sheet. The transaction ticket includes the sender's signature verification public key, the receiver's public key, the transaction amount, the sender's signature on the transaction ticket and the sender's randomized public key and certificate. The signature algorithm uses ECDSA signatures, and the specific ECDSA signature is as follows:
let ECDSA signature algorithm system parameter be (F)qE, G, n, a, b, h), wherein FqIs a finite field, E is FqAnd G is a base point on E, the order of G is n (n is a prime number), a and b are coefficients of the elliptic curve E, and h is a one-way safe hash function. Let the signature key pair of the transaction sending user be (upk)t,uskt) And (Q, d), wherein Q is dG, and the transaction information to be signed is m.
Selecting a random number k, k is more than or equal to 1 and less than or equal to n-1, and calculating k.G ═ x1,y1),r=x1modn,e=H(m),s=k-1(e + dr) for generating a signature σ of the transaction sending user on the transaction order information mt=(r,s)。
Step 2: and after the miners collect the transaction order, the validity verification is carried out on the transaction order and the randomized certificate.
(1) Transaction order signature verification process: after the miners collect the transaction order, the signature sigma is obtainedtH (m), w ═ s, and e ═ h (m) are calculated-1modn; calculating u1=ewmodn,u2=rwmodn,u1G+u2Q=(x0,y0) (ii) a Calculating v ═ x0modn; if v ═ r, the signature passes verification, otherwise the verification fails.
(2) Randomized certificate verification procedure: receiving certificate Cert ═ (Cert', σ)3,σ4)=(σ′1,σ′2,σ3,σ4) First, whether there is
Second verify the equation
Whether or not this is true. If the equation is true, the signature passes verification, otherwise the verification fails.
And if the signature and the randomized certificate of the transaction sending user are verified, the transaction order is accepted. Otherwise, the transaction order is not recorded.
It can be seen that if the user correctly randomizes the original certificate, the randomized certificate is still a valid certificate. Because, if
Then equation
Is equivalent to
Thereby having
I.e. the randomized certificate still fulfils the validity of the original certificate.
And step 3: the miners reach consensus based on a POW consensus mechanism to generate a new block, and finally a block chain form is formed to record the transaction list to complete the transaction.
In the POW consensus mechanism of the block chain, a key data item, namely a random number Nonce, exists in a data block. Miners continuously try to find this random number by collecting and verifying individual transaction sheets, i.e., mine excavation H (Nonce prev block tx | | | | | | | | | tx | | | |. Within every 10 minutes, only miners who successfully dig into the mine obtain the accounting right once, generate a new block and synchronously add account book information to other nodes. After the 6 new blocks are generated, the original transaction is confirmed as completed.
As shown in fig. 3 and 6, after the user identity tracking module 500 receives the user identity tracking request, the CA organization invokes tracking parameters when all transactions in the certificate base send user registration, and tracks the user identity according to the randomized public key and related parameters of the user. The method specifically comprises the following steps:
step 1: after receiving the user identity tracking request, the CA mechanism calls the tracking parameters of all transactions in the certificate bank when sending user registration
Wherein
αiPrivate key α for the ith user;
step 2: the CA entity randomizes its public key upk' according to the user (g)1,X1) And tracking parameter lists
The identity of the user is tracked. CA mechanism verifies equality one by one using tracking parameters
If there is a certain TiSo that the equation holds, then the TiThe corresponding registered user is the user to be tracked.
It can be seen that the CA mechanism must be able to utilize the tracking parameter flow table in the certificate store
The corresponding user is tracked. Because for a certain user i,
so as long as the tracking parameters are submitted when the user registers, the tracking parameters can be checked and tracked by the CA mechanism according to the equation.
According to the traceable digital currency transaction system based on the block chain, which is provided by the embodiment of the invention, the existing Public Key Infrastructure (PKI) system architecture and digital currency transaction systems such as bit currency are combined, so that the system has a good cross-platform characteristic, the expandability of the system is enhanced, and the anonymity and the traceability of terminal equipment are ensured.
Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one such feature. In the description of the present invention, "a plurality" means at least two, e.g., two, three, etc., unless specifically limited otherwise.
In the present invention, unless otherwise expressly stated or limited, the terms "mounted," "connected," "secured," and the like are to be construed broadly and can, for example, be fixedly connected, detachably connected, or integrally formed; can be mechanically or electrically connected; they may be directly connected or indirectly connected through intervening media, or they may be connected internally or in any other suitable relationship, unless expressly stated otherwise. The specific meanings of the above terms in the present invention can be understood by those skilled in the art according to specific situations.
In the present invention, unless otherwise expressly stated or limited, the first feature "on" or "under" the second feature may be directly contacting the first and second features or indirectly contacting the first and second features through an intermediate. Also, a first feature "on," "over," and "above" a second feature may be directly or diagonally above the second feature, or may simply indicate that the first feature is at a higher level than the second feature. A first feature being "under," "below," and "beneath" a second feature may be directly under or obliquely under the first feature, or may simply mean that the first feature is at a lesser elevation than the second feature.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above are not necessarily intended to refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, various embodiments or examples and features of different embodiments or examples described in this specification can be combined and combined by one skilled in the art without contradiction.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made to the above embodiments by those of ordinary skill in the art within the scope of the present invention.
Claims (9)
1. A traceable blockchain-based digital currency transaction system, comprising:
the system comprises a certificate application module, a tracking module and a data processing module, wherein the certificate application module is used for creating system parameters of a digital currency transaction system, respectively generating a public and private key of a certificate certification authority and a public and private key of a transaction sending node according to the system parameters, and generating a tracking parameter according to the public and private key of the certificate certification authority;
the certificate issuing module is used for signing the public key of the transaction sending node according to the private key of the certificate certification authority to generate a certificate and adding the certificate and the tracking parameter into a certificate bank;
the certificate randomization module is used for the transaction sending node to sign and verify the certificate, randomize the public key of the certificate and the terminal equipment after the transaction sending node confirms that the certificate is valid, and send the randomized certificate to the digital currency transaction module;
the digital currency transaction module is used for initiating a transaction to a transaction receiving node by the transaction sending node to generate a transaction order, the transaction order is collected by the miner node, and a new block is generated by the miner node based on the agreement achieved by a POW agreement mechanism to complete the transaction in a block chain form; and
and the user identity tracking module is used for acquiring the tracking parameters from the certificate library and tracking the terminal equipment according to the randomized public key of the terminal equipment so as to realize the tracking of the user identity.
2. The traceable blockchain-based digital currency transaction system of claim 1, wherein operations of the certificate application module and the certificate randomization module are performed by a user end, operations of the certificate issuance module and the user identity tracking module are performed by the certificate authority, and operations of the digital currency transaction module are performed by the transaction sending node, the mineworker node, and the transaction receiving node.
3. The traceable blockchain-based digital currency transaction system of claim 1, wherein the transaction sending node is an originator of a digital currency transaction and the transaction receiving node is a recipient of the digital currency transaction.
4. The traceable blockchain-based digital currency transaction system of claim 1, wherein the certificate application module is specifically configured to:
creating system parameters for the certificate authority and the transaction sending node in a digital currency transaction system;
the certificate certification authority generates a public and private key pair by using system parameters corresponding to the certificate certification authority, stores a private key and publishes a public key; and
and the transaction sending node generates a public and private key pair by using the system parameters corresponding to the transaction sending node, stores the private key, and sends the public key and the tracking parameters to the certificate certification authority.
5. The traceable blockchain-based digital currency transaction system of claim 1, wherein the certificate issuing module is specifically configured to:
receiving a public key of the transaction sending node in the certificate application module, wherein the certificate certification authority signs the public key of the transaction sending node by using a private key corresponding to the certificate certification authority to generate a certificate, and sends the certificate to the transaction sending node;
and the certificate certification authority registers the transaction sending node at a certificate registration authority, and adds the certificate of the transaction sending node and the tracking parameter into a certificate library.
6. The traceable blockchain-based digital currency transaction system of claim 1, wherein the certificate randomization module is specifically configured to:
after the transaction sending node receives the certificate, signature verification is carried out on the certificate;
the transaction sending node randomizes the certificate and the public key which pass the verification;
the validity of the randomized certificate is certified using zero-knowledge certification techniques and the randomized certificate is sent to a digital currency transaction module.
7. The traceable blockchain-based digital currency transaction system of claim 6,
if the certificate received by the transaction sending node passes the verification, the transaction sending node outputs 1 and receives the certificate;
and if the certificate received by the transaction sending node is not verified, the transaction sending node outputs 0 and returns warning information to the certificate certification authority.
8. The traceable blockchain-based digital currency transaction system of claim 1, wherein the digital currency transaction module is specifically configured to:
the transaction sending node generates a transaction list containing the randomized certificate of the transaction receiving node and sends the transaction list to the miner node;
after the miner node receives the transaction order, validity verification is carried out on the randomized certificate and the transaction order;
and the miner nodes achieve consensus based on a POW consensus mechanism to generate a new block, and record the transaction list in a block chain form to complete the transaction.
9. The traceable blockchain-based digital currency transaction system of claim 1, wherein the user identity tracking module is specifically configured to:
after the certificate certification authority receives a user identity tracking request, the certificate certification authority calls tracking parameters of all terminal equipment in a certificate library during registration;
and the certificate certification authority tracks the user identity according to the public key and the related parameters after the randomization of the certificate.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811393040.1A CN109583893B (en) | 2018-11-21 | 2018-11-21 | Traceable block chain-based digital currency transaction system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811393040.1A CN109583893B (en) | 2018-11-21 | 2018-11-21 | Traceable block chain-based digital currency transaction system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109583893A CN109583893A (en) | 2019-04-05 |
| CN109583893B true CN109583893B (en) | 2020-07-10 |
Family
ID=65923657
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811393040.1A Active CN109583893B (en) | 2018-11-21 | 2018-11-21 | Traceable block chain-based digital currency transaction system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109583893B (en) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2020227920A1 (en) * | 2019-05-14 | 2020-11-19 | Daolicloud Information Technology (Beijing) Co., Ltd. | Trustlessly agreeable distributed consensus authentication for identity as a public key |
| CN110223067B (en) * | 2019-06-12 | 2021-04-06 | 北京航空航天大学 | Under-chain one-to-many payment method and system with decentralized characteristic |
| CN110544167B (en) * | 2019-07-25 | 2022-03-01 | 晋商博创(北京)科技有限公司 | Data processing method, server and storage medium of alliance chain based on CPK |
| CN113554436A (en) * | 2020-04-24 | 2021-10-26 | 中国科学院信息工程研究所 | User identity anonymization method, tracking method and system for block chain system |
| CN112365268A (en) * | 2020-11-10 | 2021-02-12 | 深圳易派支付科技有限公司 | Internet payment information system and method based on block chain architecture |
| CN112819467A (en) * | 2021-02-23 | 2021-05-18 | 中国信息通信研究院 | Privacy transaction method, device and system |
| CN113364596A (en) * | 2021-05-27 | 2021-09-07 | 南方科技大学 | Ore digging method and device based on block chain, mobile terminal and storage medium |
| CN113269649A (en) * | 2021-06-16 | 2021-08-17 | 上海势炎信息科技有限公司 | System and method for tracking digital currency |
| CN113450093B (en) * | 2021-07-06 | 2023-02-24 | 山西特信环宇信息技术有限公司 | Real-time consensus authentication method and system for digital change wallet based on cone block chain |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106910072A (en) * | 2017-02-15 | 2017-06-30 | 捷德(中国)信息科技有限公司 | Digital cash management method and system |
| CN107911216A (en) * | 2017-10-26 | 2018-04-13 | 矩阵元技术(深圳)有限公司 | A kind of block chain transaction method for secret protection and system |
| CN108537546A (en) * | 2018-04-11 | 2018-09-14 | 北京奇虎科技有限公司 | Node identities method for tracing, device and computing device based on number of addresses |
| EP3396612A1 (en) * | 2017-04-24 | 2018-10-31 | BlockSettle AB | Method and system for creating a user identity |
-
2018
- 2018-11-21 CN CN201811393040.1A patent/CN109583893B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106910072A (en) * | 2017-02-15 | 2017-06-30 | 捷德(中国)信息科技有限公司 | Digital cash management method and system |
| EP3396612A1 (en) * | 2017-04-24 | 2018-10-31 | BlockSettle AB | Method and system for creating a user identity |
| CN107911216A (en) * | 2017-10-26 | 2018-04-13 | 矩阵元技术(深圳)有限公司 | A kind of block chain transaction method for secret protection and system |
| CN108537546A (en) * | 2018-04-11 | 2018-09-14 | 北京奇虎科技有限公司 | Node identities method for tracing, device and computing device based on number of addresses |
Non-Patent Citations (1)
| Title |
|---|
| Lightweight and Manageable Digital Evidence Preservation System on Bitcoin;Mingming Wang,Qianhong Wu,等;《Journal or Computer Science and Technology》;20180531;第33卷(第3期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109583893A (en) | 2019-04-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109583893B (en) | Traceable block chain-based digital currency transaction system | |
| CN111342973B (en) | Safe bidirectional heterogeneous digital signature method between PKI and IBC | |
| Zhao et al. | An efficient certificateless aggregate signature scheme for the Internet of Vehicles | |
| CN102170352B (en) | Method of using ECDSA with winternitz one time signature | |
| Gennaro et al. | RSA-based undeniable signatures | |
| CN110545279A (en) | block chain transaction method, device and system with privacy and supervision functions | |
| CN111211910B (en) | Anti-quantum computation CA (certificate Authority) and certificate issuing system based on secret shared public key pool and issuing and verifying method thereof | |
| Kumar et al. | A secure anonymous e-voting system using identity-based blind signature scheme | |
| CN106059747A (en) | Reusable public key certificate scheme based on public key infrastructure | |
| CN1937496A (en) | Extensible false name certificate system and method | |
| JPH08328472A (en) | Authentication exchange method, restoration-type electronic signature method, addition-type electronic signature method,key exchange method, restoration-type public electronic signature method, addition-type public electronic signature method and blind electronic signature method | |
| CN101951388A (en) | Remote attestation method in credible computing environment | |
| CN111064734A (en) | Block chain system user identity anonymity and traceable method, corresponding storage medium and electronic device | |
| CN104184588A (en) | Undetachable digital signature method based on identity | |
| JP2002534701A (en) | Auto-recoverable, auto-encryptable cryptosystem using escrowed signature-only keys | |
| KR20030062401A (en) | Apparatus and method for generating and verifying id-based blind signature by using bilinear parings | |
| CN104901804A (en) | User autonomy-based identity authentication implementation method | |
| CN111654366B (en) | Secure bidirectional heterogeneous strong-designated verifier signature method between PKI and IBC | |
| CN111738857B (en) | Generation and verification method and device of concealed payment certificate applied to block chain | |
| CN108712259A (en) | Identity-based acts on behalf of the efficient auditing method of cloud storage for uploading data | |
| CN110599164A (en) | Method for rapidly paying by any payee under supervision chain | |
| CN101441693A (en) | Security protection method for electric document digital signing based on elliptical curve | |
| CN102291396B (en) | Anonymous authentication algorithm for remote authentication between credible platforms | |
| CN112989436B (en) | Multi-signature method based on block chain platform | |
| CN101873328A (en) | Multipartite contract signing method based on aggregated signature |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |