CN115796871A

CN115796871A - Resource data processing method and device based on block chain and server

Info

Publication number: CN115796871A
Application number: CN202211518077.9A
Authority: CN
Inventors: 李佳潞
Original assignee: Bank of China Ltd
Current assignee: Bank of China Ltd
Priority date: 2022-11-29
Filing date: 2022-11-29
Publication date: 2023-03-14

Abstract

The specification provides a resource data processing method, a resource data processing device and a server based on a block chain, and is applied to the technical field of the block chain. Based on the method, when a resource demand side needs to apply for resource data from a resource provider side, a first node server firstly utilizes a first private key to decrypt first ciphertext data of a transaction certificate and then utilizes a second public key to encrypt the first ciphertext data to obtain second ciphertext data of the transaction certificate; and then generating a resource application request associated with the second ciphertext data of the transaction certificate. The resource node server receives and responds to the resource application request, and decrypts second ciphertext data of the transaction certificate by using a second private key to obtain a corresponding transaction certificate; verifying the transaction credential; obtaining a certificate identifier of the transaction certificate under the condition that the transaction certificate passes verification; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; in an instance in which it is determined that the associated data of the transaction credential passed validation, resource data is provided to the first node server.

Description

Resource data processing method and device based on block chain and server

Technical Field

The present specification belongs to the technical field of a block chain, and in particular, to a resource data processing method, device and server based on a block chain.

Background

In a financial business scenario, a business often needs to apply for required resource data from a financial transaction institution such as a bank using a transaction certificate such as a creditor certificate provided by another business as a mortgage.

Based on the existing method, the resource application flow is often complicated and complicated, and the processing efficiency during application is relatively low; moreover, there is a security risk in the implementation, which affects the data security of the participating parties.

In view of the above problems, no effective solution has been proposed.

Disclosure of Invention

The present specification provides a resource data processing method, device and server based on a block chain, which can effectively simplify a resource application flow, efficiently and safely complete data processing related to resource application, and improve processing efficiency.

The present specification provides a resource data processing method based on a block chain, which is applied to a resource node server, wherein the resource node server is arranged on one side of a resource provider, and the method includes:

receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side;

responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate;

verifying the transaction credential;

under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction certificate stored in the block chain according to the certificate identification of the transaction certificate;

and under the condition that the associated data of the transaction certificate is verified, providing the requested resource data to the first node server according to the resource application request.

In one embodiment, the transaction credential includes structured data and unstructured data; the structured data are stored in the intelligent contract, and the unstructured data are stored in a preset distributed storage system.

In one embodiment, verifying the transaction credential includes:

inquiring the intelligent contract, and verifying the structured data of the transaction certificate to obtain a first verification result;

inquiring a preset distributed storage system, and verifying unstructured data of the transaction certificate to obtain a second verification result;

and determining whether the transaction certificate passes the verification according to the first verification result and the second verification result.

In one embodiment, the provisioned distributed storage system comprises an IPFS-based distributed file system.

In one embodiment, the data associated with the transaction credential includes at least one of: authority data of the resource demand party, qualification information of the resource demand party, signed agreement information of the resource demand party, and qualification information of the generator of the transaction certificate.

In one embodiment, providing the requested resource data to the first node server in accordance with the resource application request includes:

determining the requested resource data according to the resource application request;

encrypting the requested resource data by using the first public key according to a preset protocol rule; and allocating the encrypted requested resource data to the first account of the demand side based on the blockchain.

In one embodiment, the requested resource data is encrypted with the first public key according to a preset protocol rule; and allocating the encrypted requested resource data to a target process in a first account of the demand side based on the blockchain, the method further comprising:

according to a preset protocol rule, a first consensus request about a target processing process is initiated to a alliance chain; and the node servers in the alliance chain respond to the first consensus request to perform consensus operation on the target processing process.

In one embodiment, the transaction credentials include: creditor credentials.

The present specification further provides a resource data processing method based on a block chain, which is applied to a first node server, where the first node server is arranged on one side of a resource demander, and the method includes:

receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate;

encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate;

generating a resource application request associated with the second ciphertext data of the transaction credential;

sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of determining that the verification is passed.

In one embodiment, in the target application process of generating the resource application request, the method further includes:

according to a preset protocol rule, a second consensus request about a target application process is sent to the alliance chain; and the node servers in the alliance chain respond to the second consensus request to perform consensus operation on the target application process.

This specification also provides a device for processing resource data based on a block chain, which is applied to a resource node server, wherein the resource node server is arranged on one side of a resource provider, and the device includes:

the receiving module is used for receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side;

the decryption module is used for responding to the resource application request and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate;

the first verification module is used for verifying the transaction certificate;

the second verification module is used for acquiring the certificate identifier of the transaction certificate under the condition that the transaction certificate is confirmed to pass verification; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher;

and the processing module is used for providing the requested resource data to the first node server according to the resource application request under the condition that the associated data of the transaction certificate is verified to be passed.

This specification also provides a resource data processing apparatus based on a block chain, which is applied to a first node server, wherein the first node server is arranged on one side of a resource demander, and the apparatus includes:

the receiving module is used for receiving and responding to a trigger instruction initiated by a demand party and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate;

the encryption module is used for encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate;

the generating module is used for generating a resource application request associated with the second ciphertext data of the transaction certificate;

the sending module is used for sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

The present specification also provides a server comprising a processor and a memory for storing processor-executable instructions, which when executed by the processor implement the relevant steps of the method for processing resource data based on block chains.

The present specification also provides a computer readable storage medium having stored thereon computer instructions which, when executed by a processor, perform the steps of: receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side; responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; and under the condition that the associated data of the transaction certificate is verified, providing the requested resource data to the first node server according to the resource application request.

The present specification also provides a computer program product comprising a computer program which, when executed by a processor, performs the relevant steps of the method for processing resource data based on block chains.

When a resource demander needs to apply resource data to a resource provider, a first node server arranged on one side of the resource demander can decrypt first ciphertext data of a transaction certificate by using a held first private key and then encrypt the first ciphertext data by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate; then generating a resource application request associated with the second ciphertext data of the transaction certificate; and sending the resource application request to a resource node server. The resource node server arranged on one side of the resource provider receives and responds to the resource application request, and decrypts second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher, and inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; in an instance in which it is determined that the data associated with the transaction credential validates, the requested resource data is provided to the first node server. Therefore, the resource application flow can be effectively simplified, the data processing related to the resource application can be efficiently and safely completed, the processing efficiency is improved, and the waiting time of the resource application is shortened.

Drawings

In order to more clearly illustrate the embodiments of the present specification, the drawings needed to be used in the embodiments will be briefly described below, and the drawings in the following description are only some of the embodiments described in the specification, and it is obvious to those skilled in the art that other drawings can be obtained based on the drawings without any inventive work.

Fig. 1 is a flowchart illustrating a method for processing resource data based on a block chain according to an embodiment of the present specification;

fig. 2 is a schematic diagram of an embodiment of a method for processing resource data based on a blockchain according to an embodiment of the present specification, in an example scenario;

fig. 3 is a schematic diagram illustrating an embodiment of a method for processing resource data based on a block chain according to an embodiment of the present specification, in a scenario example;

fig. 4 is a flowchart illustrating a method for processing resource data based on a block chain according to another embodiment of the present disclosure;

FIG. 5 is a schematic diagram of a server according to an embodiment of the present disclosure;

fig. 6 is a schematic structural component diagram of a resource data processing apparatus based on a block chain according to an embodiment of the present specification;

fig. 7 is a schematic structural composition diagram of a resource data processing apparatus based on a block chain according to another embodiment of the present specification.

Detailed Description

In order to make those skilled in the art better understand the technical solutions in the present specification, the technical solutions in the embodiments of the present specification will be clearly and completely described below with reference to the drawings in the embodiments of the present specification, and it is obvious that the described embodiments are only a part of the embodiments of the present specification, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments in the present specification without making any creative effort shall fall within the protection scope of the present specification.

Referring to fig. 1, an embodiment of the present specification provides a resource data processing method based on a block chain, where the method is specifically applied to a resource node server side, where the resource node server is arranged on a resource provider side. In specific implementation, the method may include the following:

s101: receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side;

s102: responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate;

s103: verifying the transaction credential;

s104: under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher;

s105: and under the condition that the associated data of the transaction certificate is verified, providing the requested resource data to the first node server according to the resource application request.

In some embodiments, the resource data processing method based on the block chain may be specifically applied to the side of the resource node server. The resource node server is arranged at one side of the resource provider. The resource provider may be specifically understood as a data party capable of providing the resource data required by the resource demander, for example, a financial transaction institution such as a bank, a financing institution, and the like.

Referring to fig. 2, the resource node server may be specifically connected to a resource data processing system based on a block chain. The resource data processing system may be specifically understood as a data processing system based on a block chain technology and constructed according to a preset protocol rule.

Specifically, the resource data processing system may include the following service function modules: the system comprises a permission applying and inquiring module, an information registering and inquiring module, an agreement signing and inquiring module, a certificate issuing and inquiring module, an applying and inquiring module and a resource distributing and inquiring module. Further, the resource data processing system may further include a preset distributed storage system and a structural module such as an intelligent contract.

Referring to fig. 2, in addition to the resource node server, the resource data processing system may further include a first node server and a second node server. The first node server may be specifically disposed on a side of the resource demander. The second node server may be specifically arranged on the side of the generation party of the transaction certificate.

Specifically, the resource demander may be specifically understood as a data demander that currently holds a transaction certificate and wants to apply for resource data from the resource provider by using the transaction certificate. The generating party may be specifically understood as a data party generating the transaction certificate.

In a supply chain financial scenario, the generator may specifically be a core enterprise of the supply chain. The resource demander can be a supplier of the core enterprise, or a downstream enterprise of the core enterprise based on the supply chain.

Of course, it should be noted that the above listed application scenarios, resource demanders, resource providers, and generators are only schematic illustrations. In specific implementation, the resource data processing system can be applied to other application scenarios according to specific situations and processing requirements. Correspondingly, the resource demanding party, the resource providing party and the generating party may further include a data party corresponding to other application scenarios. The present specification is not limited to these.

In addition, the resource data processing system can also be connected with a monitoring node server arranged at one side of a monitoring party. The supervision node server can supervise the processing flow related to the resource data in the resource data processing system so as to effectively protect the data security of the related participants.

In this embodiment, the node server (including the resource node server, the first node server, the second node server, and the like) may specifically include a background server capable of implementing functions such as data transmission and data processing. Specifically, the node server may be, for example, an electronic device having data operation, storage function and network interaction function. Alternatively, the node server may be a software program running in the electronic device and providing support for data processing, storage and network interaction. In this embodiment, the number of servers included in the node server is not particularly limited. The node server may be specifically one server, several servers, or a server cluster formed by several servers.

In some embodiments, when a node server (including a resource node server, a first node server, and a second node server) is just connected to a resource data processing system based on a block chain, registration processing needs to be performed according to a preset protocol rule; acquiring corresponding authority and providing required information data as associated data; the associated data can be stored in the block chain, so that the subsequent query can be conveniently used.

In specific implementation, the node server may apply for block chain uplink permissions to permission application and query modules in the resource data processing system. The authority application and query module can generate a public key and private key pair aiming at the node server according to a corresponding encryption algorithm and record authority data aiming at the node server.

Specifically, for example, the permission applying and querying module may respond to the uplink permission application of the first node server, and generate a first private key and a first public key corresponding to each other by using the server identifier of the first node server based on a corresponding encryption algorithm; sending the first private key and the first public key to a first node server; and recording authority data about the first node server in the blockchain. After obtaining the first private key and the first public key, the first node server may publish the first public key to the outside and hold the first private key.

For another example, the permission application and query module may respond to the uplink permission application of the resource node server, and generate a second private key and a second public key corresponding to each other by using the server identifier of the resource node server based on a corresponding encryption algorithm; sending the second private key and the second public key to a second node server; and recording authority data about the second node server in the blockchain. After obtaining the second private key and the second public key, the second node server may publish the second public key to the outside and hold the second private key.

Further, the node servers (including the resource node server, the first node server and the second node server) can perform specific registration processing through an information registration and query module and a protocol signing and query module in the resource data processing system. When registration processing is specifically performed, the node server can provide relevant basic information (such as qualification information, enterprise information and the like) to the information registration and query module for storage after public key signature; meanwhile, the node server may also sign the relevant protocol rule (e.g., the preset protocol rule based on the block chain) by using the public key; and then the signed protocol rule is provided for the protocol signing and inquiring module to be stored.

It should be noted that the information data referred to in this specification is acquired and used under the condition that the user agrees and knows. Moreover, the acquisition, storage, use, processing and the like of the information data all conform to relevant regulations of national laws and regulations.

In some embodiments, when necessary, the second node server disposed on the side of the generating party may generate a corresponding transaction credential for the requiring party corresponding to the first node server according to a preset protocol rule.

The transaction voucher may specifically include a creditor voucher and the like. Of course, it should be noted that the above listed creditor certificates are only illustrative. In particular implementation, the transaction voucher may also include other types of voucher data, such as asset voucher, stock right voucher, etc., according to specific application scenario and processing requirements. The present specification is not limited to these.

Taking the creditor certificate as the transaction certificate as an example, the second node server can generate the transaction certificate aiming at the first node server through a certificate issuing and inquiring module in the resource data processing system; encrypting the transaction certificate by using a first public key corresponding to the first node server to obtain first ciphertext data of the transaction certificate; and storing the first ciphertext data of the transaction certificate into the block chain through the certificate opening and query module. Meanwhile, the second node server can also record the generation record of the transaction certificate in the block chain.

In some embodiments, the transaction credential may specifically include structured data and unstructured data.

Specifically, the structured data may specifically include one or more of the following listed information: a voucher number of the transaction voucher, a uniform social credit code, an amount of issuance and a date of committed payment, a contract number, a contract name, a contract date, a contract amount, an identification of a purchasing party, an identification of a supplying party, an invoice number, an invoice type, an invoice invoicing date, an identification of a selling party, an identification of a purchasing party, a tax-bearing amount and a tax-free amount.

The unstructured data may specifically include a certification document in pdf, zip, png, gip, etc. format related to the structured data, such as a copy of a contract, a photo containing an invoice, or a commitment statement, etc.

In specific implementation, the second node server may associate structured data and unstructured data belonging to the same transaction voucher through a voucher establishment and query module in the resource data processing system, and then store the associated data and unstructured data in the block chain separately.

Specifically, the structured data in the transaction voucher can be stored in an intelligent contract of the block chain; and storing unstructured data in the transaction certificate in a preset distributed storage system of the block chain.

Therefore, data of different structure types in the transaction voucher can be effectively distinguished, and the data of different structure types in the transaction voucher are stored in the block chain in a differentiated storage mode, so that the data security of the transaction voucher can be protected, and the follow-up query of the transaction voucher is facilitated.

In some embodiments, the preset distributed storage system may specifically include an IPFS-based distributed file system.

The IPFS (Inter planar File System) may be a File storage and content distribution network protocol that combines a Distributed Hash Table (DHTs), a BitTorrent, a version control System Git, a Self-Certified File System (Self-Certified File systems-SFS) and a block chain, and is a network transmission protocol that aims to create persistent and Distributed storage and sharing files, and has the characteristics of persistent, decentralized storage, sharing files, and content-addressable peer-to-peer hypermedia distribution and storage.

The distributed file system based on the IPFS is used as a preset distributed storage system, and more types of unstructured data can be stored in a supporting mode, so that diversified storage requirements can be met.

In some embodiments, the second node server may further initiate a consensus request about the target generation process to the federation chain according to a preset protocol rule in the process of generating the transaction certificate in the above manner. The node server in the alliance chain can respond to the consensus request, perform consensus operation on the target generation process of the transaction certificate so as to verify the authenticity of the transaction certificate, and once the consensus passes, determine that the transaction certificate is authentic and credible, and the transaction certificate can take effect formally.

After the second node server generates the transaction certificate, the first node server may provide the first ciphertext data of the transaction certificate, which is obtained by encrypting the transaction certificate with the first public key, to the first node server.

The first node server may attempt to decrypt the first ciphertext data of the transaction credential by using the held first private key, and if decryption is successful, it may be determined that the transaction credential is a trusted and valid transaction credential generated by the second node server for the first node server.

In some embodiments, the first node server may generate, by an application and query module in the resource data processing system, a resource application request based on the transaction credential in response to a trigger instruction initiated by the requestor; and sending the resource application request to a resource node server.

Specifically, when a resource application request is generated, the first node server can decrypt first ciphertext data of the transaction certificate stored in the block chain by using the held first private key to obtain the transaction certificate in a plaintext form; then, a second public key provided by the resource node server is used for encrypting the transaction certificate to obtain second ciphertext data of the transaction certificate; and generating a resource application request associated with the second ciphertext data of the transaction certificate.

The first node server can also initiate a second consensus request related to the target application process to the alliance chain according to a preset protocol rule in the target application process of generating the resource application request; and the node server in the alliance chain responds to the second consensus request to perform consensus operation on the target application process so as to ensure that the resource application request is real and credible.

After receiving the resource application request, the resource node server may respond to the resource application request, and find the second ciphertext data of the transaction credential stored in the block chain through the credential development and query module in the resource data processing system. And the second cipher text data of the transaction certificate is decrypted by using the held second private key to obtain the transaction certificate in a plaintext form.

Further, the resource node server may perform a first verification based on the transaction credential to determine whether the transaction credential is authentic and valid.

In some embodiments, referring to fig. 3, the verification of the transaction credential may be implemented as follows:

s1: inquiring the intelligent contract, and verifying the structured data of the transaction certificate to obtain a first verification result;

s2: inquiring a preset distributed storage system, and verifying unstructured data of the transaction certificate to obtain a second verification result;

s3: and determining whether the transaction certificate passes the verification according to the first verification result and the second verification result.

Specifically, the resource node server may obtain unstructured data and structured data of the transaction credential; verifying whether the unstructured data meet the requirements according to corresponding verification rules to obtain a corresponding first verification result; verifying whether the structured data meet the requirements according to corresponding verification rules to obtain a corresponding second verification result; further, it may be determined that the transaction credential is validated upon determining that both the unstructured data and the structured data of the transaction credential meet the requirements based on the first validation result and the second validation result.

In addition, the structured data and the unstructured data of the transaction voucher can be combined to carry out comparison and verification, so that the first verification of the transaction voucher is realized more accurately.

In an instance in which it is determined that the transaction credential fails verification, a first error-reporting prompt may be generated with respect to the transaction credential; feeding back a first error prompt to the first node server; and suspend subsequent data processing with respect to the resource data application.

On the contrary, under the condition that the transaction certificate is confirmed to pass the verification, the certificate identification of the transaction certificate can be obtained, and the associated data of the transaction certificate can be obtained through the authority applying and inquiring module, the information registering and inquiring module and the protocol signing and inquiring module in the resource data processing system according to the certificate identification of the transaction certificate; and performing second verification according to the associated data of the transaction certificate.

The data associated with the transaction credential may specifically include at least one of: authority data of the resource demand party, qualification information of the resource demand party, signed agreement information of the resource demand party, qualification information of the generator of the transaction certificate and the like.

Specifically, the resource node server may first detect whether the associated data is valid and trusted. Under the condition that the associated data is determined to be credible and effective, whether the resource data requested by the resource application request is matched with the transaction certificate can be verified according to the associated data and the unstructured data of the transaction certificate; in the event that it is determined that the resource data requested by the resource application request matches the transaction credential, it is determined that the authentication is passed.

In the event that verification of the associated data of the transaction credential is determined to be passed, the requested resource data may be provided to the first node server in accordance with the resource application request.

Conversely, in the event that it is determined that the associated data of the transaction credential fails verification, a second error prompt may be generated; feeding back a second error report prompt to the first node server; and suspend subsequent data processing with respect to the resource data application.

In some embodiments, the providing the requested resource data to the first node server may be implemented as follows:

s1: determining the requested resource data according to the resource application request;

s2: encrypting the requested resource data by using the first public key according to a preset protocol rule; and allocating the encrypted requested resource data to the first account of the demand side based on the blockchain.

In some embodiments, the requested resource data is encrypted with the first public key by a resource allocation and query module in the resource data processing system according to a preset protocol rule; and allocating the encrypted requested resource data to a target processing process in a first account of the demand side based on the block chain, and when the method is implemented, the method may further include: according to a preset protocol rule, a first consensus request about a target processing process is initiated to a alliance chain; and the node servers in the alliance chain respond to the first consensus request to perform consensus operation on the target processing process. Therefore, the target processing process of providing the resource data to the resource demander by the resource provider can be guaranteed to be real and credible.

In some embodiments, the requested resource data is encrypted with the first public key according to a preset protocol rule; and after allocating the encrypted requested resource data to a target process in the first account of the blockchain based on the demand party, the method further comprises: a usage credential for the requested resource data; and sending the usage credential to the first node server.

Correspondingly, after receiving the use credential, the first node server may log into the first account based on the blockchain; carrying out decryption processing by using the held first private key to obtain resource data in a plaintext form; further, the resource data can be normally used by using the use certificate.

As can be seen from the above, according to the resource data processing method based on the block chain provided in the embodiment of the present specification, when a resource demander needs to apply for resource data from a resource provider, a first node server disposed on one side of the resource demander may first decrypt first ciphertext data of a transaction credential using a first private key that is held, and then encrypt the first ciphertext data using a second public key that is provided by the resource node server to obtain second ciphertext data of the transaction credential; and then generating a resource application request associated with the second ciphertext data of the transaction certificate. The resource node server arranged on one side of the resource provider receives and responds to the resource application request, and decrypts second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher, and inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; in an instance in which it is determined that the associated data of the transaction credential validates, the requested resource data is provided to the first node server. Therefore, the resource application process can be effectively simplified, the data processing related to the resource application can be efficiently and safely completed, and the processing efficiency is improved.

Referring to fig. 4, an embodiment of the present disclosure further provides another resource data processing method based on a block chain, which is applied to a first node server, where the first node server is disposed on a side of a resource demanding party. When the method is implemented, the following contents can be included:

s401: receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate;

s402: encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate;

s403: generating a resource application request associated with the second ciphertext data of the transaction credential;

s404: sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

In some embodiments, in the target application process of generating a resource application request, when the method is implemented specifically, the following may be further included: according to a preset protocol rule, a second consensus request about a target application process is sent to the alliance chain; and the node servers in the alliance chain respond to the second consensus request to perform consensus operation on the target application process.

In some embodiments, before receiving and responding to a trigger instruction initiated by a demander, and decrypting first ciphertext data of a transaction credential stored in a block chain by using a held first private key to obtain the transaction credential, the method may further include, when implemented, the following: receiving first ciphertext data of the transaction certificate generated by the second node server; the second node server is arranged at one side of a generator of the transaction certificate; and the first ciphertext data of the transaction certificate is generated by the second node server through alliance chain consensus according to a preset protocol rule.

In some embodiments, after receiving the first ciphertext data of the transaction credential provided by the second node server, the first node server may also attempt to decrypt the first ciphertext data of the transaction credential using the held first private key to determine whether the transaction credential was generated by the second node server for the first node server.

If the decryption is successful, it can be determined that the transaction credential was indeed generated by the second node server for the first node server, which can be used normally.

Conversely, if decryption fails, a review prompt may be generated for the transaction credential; sending a review prompt of the transaction voucher to a second node server; and sets the transaction credential to a frozen state to prevent misuse of the transaction credential.

And the second node server receives and responds to the rechecking prompt to recheck the transaction certificate, recovers the first ciphertext data of the transaction certificate stored in the block chain under the condition of determining that the transaction certificate has errors, and regenerates the first ciphertext data of the corresponding transaction certificate aiming at the first node server.

Embodiments of the present specification further provide a server, including a processor and a memory for storing processor-executable instructions, where the processor, when implemented, may perform the following steps according to the instructions: receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by the first node server decrypting the first ciphertext data of the transaction certificate by using the held first private key and then encrypting by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side; responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; and under the condition that the associated data verification of the transaction certificate is confirmed to pass, providing the requested resource data to the first node server according to the resource application request.

In order to more accurately complete the above instructions, referring to fig. 5, another specific server is provided in the embodiments of the present specification, wherein the server includes a network communication port 501, a processor 502 and a memory 503, and the above structures are connected by an internal cable, so that the structures can perform specific data interaction.

The network communication port 501 may be specifically configured to receive a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by the first node server decrypting the first ciphertext data of the transaction certificate by using the held first private key and then encrypting by using a second public key provided by the resource node server; the first node server is arranged on one side of the resource demand side.

The processor 502 may be specifically configured to respond to the resource application request, and decrypt, by using the held second private key, second ciphertext data of the transaction credential associated with the resource application request to obtain a corresponding transaction credential; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; and under the condition that the associated data of the transaction certificate is verified, providing the requested resource data to the first node server according to the resource application request.

The memory 503 may be specifically configured to store a corresponding instruction program.

In this embodiment, the network communication port 501 may be a virtual port that is bound to different communication protocols, so that different data can be sent or received. For example, the network communication port may be a port responsible for web data communication, a port responsible for FTP data communication, or a port responsible for mail data communication. In addition, the network communication port can also be a communication interface or a communication chip of an entity. For example, it may be a wireless mobile network communication chip, such as GSM, CDMA, etc.; it can also be a Wifi chip; it may also be a bluetooth chip.

In this embodiment, the processor 502 may be implemented in any suitable manner. For example, the processor may take the form of, for example, a microprocessor or processor and a computer-readable medium that stores computer-readable program code (e.g., software or firmware) executable by the (micro) processor, logic gates, switches, an Application Specific Integrated Circuit (ASIC), a programmable logic controller, an embedded microcontroller, and so forth. The description is not intended to be limiting.

In this embodiment, the memory 503 may include multiple layers, and in a digital system, the memory may be any memory as long as binary data can be stored; in an integrated circuit, a circuit without a real form and with a storage function is also called a memory, such as a RAM, a FIFO and the like; in the system, the storage device in physical form is also called a memory, such as a memory bank, a TF card and the like.

Embodiments of the present specification further provide another server, including a processor and a memory for storing processor-executable instructions, where the processor, when implemented in detail, may perform the following steps according to the instructions: receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate; encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate; generating a resource application request associated with the second ciphertext data of the transaction credential; sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of determining that the verification is passed.

The present specification further provides a computer-readable storage medium based on the above method for processing resource data based on a block chain, where the computer-readable storage medium stores computer program instructions, and when the computer program instructions are executed, the computer program instructions implement: receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side; responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; and under the condition that the associated data of the transaction certificate is verified, providing the requested resource data to the first node server according to the resource application request.

The present specification further provides another computer-readable storage medium based on the above method for processing resource data based on a block chain, where the computer-readable storage medium stores computer program instructions, and when the computer program instructions are executed, the computer program instructions implement: receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate; encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate; generating a resource application request associated with the second ciphertext data of the transaction credential; sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

In this embodiment, the storage medium includes, but is not limited to, a Random Access Memory (RAM), a Read-Only Memory (ROM), a Cache (Cache), a Hard Disk (HDD), or a Memory Card (Memory Card). The memory may be used to store computer program instructions. The network communication unit may be an interface for performing network connection communication, which is set in accordance with a standard prescribed by a communication protocol.

In this embodiment, the functions and effects specifically realized by the program instructions stored in the computer-readable storage medium can be explained in comparison with other embodiments, and are not described herein again.

Embodiments of the present specification further provide a computer program product, which includes a computer program, and when the computer program is executed by a processor, the computer program implements the following steps: receiving a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by encrypting the first ciphertext data of the transaction certificate by the first node server by using the held first private key and then by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side; responding to the resource application request, and decrypting second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; and under the condition that the associated data verification of the transaction certificate is confirmed to pass, providing the requested resource data to the first node server according to the resource application request.

Embodiments of the present specification also provide another computer program product, which includes a computer program, and when the computer program is executed by a processor, the computer program implements the following steps: receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate; encrypting the transaction certificate by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction certificate; generating a resource application request associated with the second ciphertext data of the transaction credential; sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

Referring to fig. 6, in a software level, an embodiment of the present specification further provides a resource data processing apparatus based on a block chain, where the apparatus may specifically include the following structural modules:

a receiving module 601, specifically configured to receive a resource application request initiated by a first node server; wherein the resource application request is associated with second ciphertext data of a transaction credential stored in a blockchain; the second ciphertext data of the transaction certificate is obtained by the first node server decrypting the first ciphertext data of the transaction certificate by using the held first private key and then encrypting by using a second public key provided by the resource node server; the first node server is arranged at one side of the resource demand side;

the decryption module 602 may be specifically configured to respond to the resource application request, and decrypt, by using the held second private key, second ciphertext data of the transaction credential associated with the resource application request to obtain a corresponding transaction credential;

the first verification module 603 may be specifically configured to verify a transaction credential;

the second verification module 604 may be specifically configured to obtain a credential identifier of the transaction credential when it is determined that the transaction credential passes verification; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher;

the processing module 605 may be specifically configured to, when it is determined that the associated data of the transaction credential passes verification, provide the requested resource data to the first node server according to the resource application request.

In some embodiments, the transaction credentials may specifically include structured data and unstructured data; the structured data may be specifically stored in an intelligent contract of the block chain, and the unstructured data may be specifically stored in a preset distributed storage system of the block chain.

In some embodiments, the first verification module 603 may be implemented to verify the transaction credential as follows: inquiring the intelligent contract, and verifying the structured data of the transaction certificate to obtain a first verification result; inquiring a preset distributed storage system, and verifying unstructured data of the transaction certificate to obtain a second verification result; and determining whether the transaction certificate passes the verification according to the first verification result and the second verification result.

In some embodiments, the data associated with the transaction credential may specifically include at least one of: authority data of the resource demand party, qualification information of the resource demand party, signed agreement information of the resource demand party, qualification information of the generator of the transaction certificate and the like.

In some embodiments, when the processing module 605 is implemented, the requested resource data may be provided to the first node server according to the resource application request in the following manner: determining the requested resource data according to the resource application request; encrypting the requested resource data by using the first public key according to a preset protocol rule; and allocating the encrypted requested resource data to the first account of the demand side based on the blockchain.

In some embodiments, the processing module 605 encrypts the requested resource data with the first public key according to a preset protocol rule; the encrypted requested resource data are distributed to a target processing process in a first account of a demand side based on a block chain, and when the method is specifically implemented, the method can be used for initiating a first consensus request related to the target processing process to a alliance chain according to a preset protocol rule; and the node servers in the alliance chain respond to the first consensus request to perform consensus operation on the target processing process.

In some embodiments, the transaction credentials may specifically include: creditor credentials, etc.

Referring to fig. 7, in a software level, an embodiment of the present specification further provides a resource data processing apparatus based on a block chain, where the apparatus may specifically include the following structural modules:

the receiving module 701 may be specifically configured to receive and respond to a trigger instruction initiated by a demander, and decrypt, by using a held first private key, first ciphertext data of a transaction credential stored in a block chain to obtain the transaction credential;

the encryption module 702 may be specifically configured to encrypt the transaction credential by using a second public key provided by the resource node server to obtain second ciphertext data of the transaction credential;

the generating module 703 may be specifically configured to generate a resource application request associated with the second ciphertext data of the transaction credential;

a sending module 704, specifically configured to send the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

In some embodiments, the apparatus, in a target application process of generating a resource application request, may be further configured to initiate, according to a preset protocol rule, a second consensus request related to the target application process to the federation chain; and the node servers in the alliance chain respond to the second consensus request to perform consensus operation on the target application process.

It should be noted that, the units, devices, modules, and the like described in the foregoing embodiments may be specifically implemented by a computer chip or an entity, or implemented by a product with certain functions. For convenience of description, the above devices are described as being divided into various modules by functions, and are described separately. It is to be understood that, in implementing the present specification, functions of each module may be implemented in one or more pieces of software and/or hardware, or a module that implements the same function may be implemented by a combination of a plurality of sub-modules or sub-units, or the like. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.

As can be seen from the above, according to the resource data processing apparatus based on the block chain provided in the embodiment of the present specification, when a resource demander needs to apply for resource data from a resource provider, a first node server disposed on one side of the resource demander may first decrypt first ciphertext data of a transaction credential by using a first private key that is held, and then encrypt the first ciphertext data by using a second public key that is provided by the resource node server to obtain second ciphertext data of the transaction credential; and then generating a resource application request associated with the second ciphertext data of the transaction certificate. The resource node server arranged on one side of the resource provider receives and responds to the resource application request, and decrypts second ciphertext data of the transaction certificate associated with the resource application request by using the held second private key to obtain a corresponding transaction certificate; verifying the transaction credential; under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher, and inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher; in an instance in which it is determined that the associated data of the transaction credential validates, the requested resource data is provided to the first node server. Therefore, the resource application flow can be effectively simplified, the data processing related to the resource application can be efficiently and safely completed, and the processing efficiency is improved.

Although the present specification provides method steps as described in the examples or flowcharts, additional or fewer steps may be included based on conventional or non-inventive means. The order of steps recited in the embodiments is merely one manner of performing the steps in a multitude of orders and does not represent the only order of execution. When implemented in practice, an apparatus or client product may execute sequentially or in parallel (e.g., in a parallel processor or multithreaded processing environment, or even in a distributed data processing environment) in accordance with the embodiments or methods depicted in the figures. The terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, the presence of additional identical or equivalent elements in processes, methods, articles, or apparatus that include the recited elements is not excluded. The terms first, second, etc. are used to denote names, but not any particular order.

Those skilled in the art will also appreciate that, in addition to implementing the controller as pure computer readable program code, the same functionality can be implemented by logically programming method steps such that the controller is in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Such a controller may therefore be considered as a hardware component, and the means included therein for performing the various functions may also be considered as a structure within the hardware component. Or even means for performing the functions may be regarded as being both a software module for performing the method and a structure within a hardware component.

This description may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, classes, etc. that perform particular tasks or implement particular abstract data types. The specification may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer-readable storage media including memory storage devices.

From the above description of the embodiments, it is clear to those skilled in the art that the present specification can be implemented by software plus necessary general hardware platform. Based on such understanding, the technical solutions in this specification may be essentially embodied in the form of a software product, which may be stored in a storage medium, such as a ROM/RAM, a magnetic disk, an optical disk, etc., and includes several instructions for enabling a computer device (which may be a personal computer, a mobile terminal, a server, or a network device, etc.) to execute the methods described in the embodiments or some parts of the embodiments in this specification.

The embodiments in the present specification are described in a progressive manner, and the same or similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. The description is operational with numerous general purpose or special purpose computing system environments or configurations. For example: personal computers, server computers, hand-held or portable devices, tablet-type devices, multiprocessor systems, microprocessor-based systems, set top boxes, programmable electronic devices, network PCs, minicomputers, mainframe computers, distributed computing environments that include any of the above systems or devices, and the like.

While the specification has been described with examples, those skilled in the art will appreciate that there are numerous variations and permutations of the specification that do not depart from the spirit of the specification, and it is intended that the appended claims include such variations and modifications that do not depart from the spirit of the specification.

Claims

1. A resource data processing method based on a block chain is characterized in that the method is applied to a resource node server, wherein the resource node server is arranged at one side of a resource provider, and the method comprises the following steps:

verifying the transaction credential;

under the condition that the transaction voucher passes the verification, acquiring a voucher identification of the transaction voucher; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher;

2. The method of claim 1, wherein the transaction credential includes structured data and unstructured data; the structured data are stored in the intelligent contract, and the unstructured data are stored in a preset distributed storage system.

3. The method of claim 2, wherein verifying the transaction credential comprises:

4. The method of claim 2, wherein the provisioned distributed storage system comprises an IPFS-based distributed file system.

5. The method of claim 1, wherein the data associated with the transaction credential comprises at least one of: authority data of the resource demand party, qualification information of the resource demand party, signed agreement information of the resource demand party and qualification information of the generator of the transaction certificate.

6. The method of claim 1, wherein providing the requested resource data to the first node server in response to the resource application request comprises:

7. The method of claim 6, wherein the requested resource data is encrypted with the first public key according to a preset protocol rule; and allocating the encrypted requested resource data to a target process in a first account of the demand side based on the blockchain, the method further comprising:

initiating a first consensus request about a target processing process to a alliance chain according to a preset protocol rule; and the node servers in the alliance chain respond to the first consensus request to perform consensus operation on the target processing process.

8. The method of claim 1, wherein the transaction credentials comprise: a creditor certificate.

9. A resource data processing method based on a block chain is characterized in that the method is applied to a first node server, wherein the first node server is arranged on one side of a resource demand side, and the method comprises the following steps:

sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of confirming that the verification is passed.

10. The method of claim 9, wherein in generating the target application process of the resource application request, the method further comprises:

11. A resource data processing device based on a block chain is characterized in that the device is applied to a resource node server, wherein the resource node server is arranged at one side of a resource provider, and the device comprises:

the second verification module is used for acquiring the certificate identification of the transaction certificate under the condition that the transaction certificate is confirmed to pass verification; inquiring and verifying the associated data of the transaction voucher stored in the block chain according to the voucher identification of the transaction voucher;

12. The utility model provides a resource data processing apparatus based on block chain which characterized in that is applied to first node server, wherein, first node server lays in resource demander side, the device includes:

the receiving module is used for receiving and responding to a trigger instruction initiated by a demand party, and decrypting first ciphertext data of the transaction certificate stored in the block chain by using a held first private key to obtain the transaction certificate;

the sending module is used for sending the resource application request to a resource node server; the resource node server responds to the resource application request and carries out verification processing; and the resource node server provides the requested resource data to the first node server according to the resource application request under the condition of determining that the verification is passed.

13. A server comprising a processor and a memory for storing processor-executable instructions which, when executed by the processor, implement the steps of the method of any one of claims 1 to 8, or 9 to 10.

14. A computer-readable storage medium having stored thereon computer instructions which, when executed by a processor, carry out the steps of the method of any of claims 1 to 8, or 9 to 10.

15. A computer program product comprising a computer program which, when executed by a processor, carries out the steps of the method of any one of claims 1 to 8, or 9 to 10.