KR102000244B1 - Blockchain system based on Zero Knowledge Proofs with Format-Preserving Encryption and control method thereof - Google Patents

Abstract

Disclosed in the present invention are a blockchain system based on zero-knowledge proof with format-preservation encryption and a control method thereof. In the present invention, data to be kept private due to privacy protection and the like among data to be registered in a blockchain network as a transaction are encrypted through the format-preservation encryption, the data to be kept private that are encrypted by the format-preservation encryption and publicly available data are registered in the blockchain network as a transaction. Therefore, a problem that data may be searched only by knowing a hash value since a key value of the existing block is composed of hash values can be solved by encrypting some content using the format-preservation encryption, so that monitoring data can be protected by using the zero-knowledge proof.

Description

BACKGROUND OF THE INVENTION 1. Field of the Invention [0001] The present invention relates to a block-chain system based on zero-knowledge proof with shape-preserving encryption and a control method thereof.

The present invention relates to a block-chain system based on a zero-knowledge proof based on shape-preserving encryption and a control method thereof. More particularly, the present invention relates to a block- The present invention relates to a block-chain system based on a zero-knowledge proof based on shape-preserving encryption and a control method thereof, in which shape-preserving encryption is used to register private data and openable data encrypted with shape-preserving encryption as transactions in a block-chain network.

The block chain means a transaction system in which a `distributed transaction book` method is introduced.

In other words, the block chain is more secure than the existing centralized transaction record keeping method, in which the transaction information is distributed to the personal transaction (P2P) network, recorded in the transaction book, and jointly managed by the participants. In addition, the nodes of the block chain all share specific information to form a chain, thereby ensuring transparency and reliability. It also allows everyone to have high integrity by sharing blocks.

In the case of such a block chain, it is currently applied only to coin-oriented, and its application range is limited.

In addition, the characteristics of such a block chain can be poisonous to privacy protection. If you upload information or photos about a person for malicious purpose, you can not delete it because it is difficult to delete and forgery, so it is difficult to demand a right to forget on a block-chain network. In addition, there is also the problem that there is no portal agency role that can request post deletion because of decentralization characteristic.

Nevertheless, since a block chain is applied to various fields such as a cloud storage service, a block chain computing service, an IOT (or the Internet of things) as well as an electronic money system, a large amount of data is registered in a block chain, An infringement accident may occur.

Korean Patent No. 10-1680260 [Title: Authorized certificate issuing system based on block chain and method of issuing public certificate based on block chain using the same]

It is an object of the present invention to provide a method and apparatus for encrypting data to be privately secreted by using shape-preserving encryption among data to be registered as a transaction in a block-chain network for personal information protection and the like, Block-chain system based on zero-knowledge proof to which shape-preserving encryption is applied to register as a transaction in a block-chain network, and a control method thereof.

Another object of the present invention is to provide a block chain system based on zero-knowledge proof with shape-preserving encryption configured by replacing data having shape-preserving encryption and data for monitoring instead of hash values constituting key values of blocks of a block- And to provide a control method thereof.

The block chain system based on the zero knowledge proof based on the shape preservation encryption according to the embodiment of the present invention confirms the data to be unlisted and the data that can be released from the information to be registered in the block chain, A terminal encrypting the data by applying predetermined shape-preserving encryption, generating new data including the shape-preserved encrypted data and the identified openable data, and transmitting the generated new data and the identification information of the terminal; And a block chain server for registering a key value corresponding to new data transmitted from the terminal into a block chain network as a transaction.

As an example related to the present invention, the block-chain server may register the data encrypted by the shape-preservation encryption and the new data composed of the releasable data as a key value of the block.

As an example related to the present invention, when a key value related to the new data is selected from among a plurality of key values registered in the block chain server, the key value provided from the block chain server is received, When the symmetric key for the data encrypted by the shape preserving encryption is absent, the other terminal displaying the contents of the openable data set as the public information among the key values.

According to an embodiment of the present invention, there is provided a control method of a block chain system based on a zero knowledge proof based on shape-preserving encryption, comprising: checking, by the terminal, data to be unlisted and releasable data among information to be registered in a block chain; Encrypting the confirmed data to be secretly applied by the terminal by applying preset shape-preserving encryption; Generating, by the terminal, new data including shape-preserved encrypted data and the identified openable data; Transmitting the generated new data and the identification information of the terminal by the terminal; And registering, by the block-chain server, new data transmitted from the terminal as a transaction in the block-chain network as a key value of the block.

As an example related to the present invention, when a key value related to the new data is selected from among a plurality of key values registered in the block chain server by another terminal, receiving the key value provided from the block chain server ; When there is a predetermined symmetric key corresponding to the data encrypted by the shape-preservation encryption included in the key value by the other terminal, data encrypted by the shape-preservation encryption from among the key values is transmitted through the symmetric key Decoding and displaying the decoded data; And decrypting and displaying the content of the releasable data set as the public information included in the key value by the another terminal.

The present invention relates to a method and apparatus for encrypting data to be privately secreted by way of shape-preserving encryption among data to be registered as a transaction in a block-chain network due to privacy protection or the like, By registering as a transaction in the network, the key value of the existing block is composed of the hash value. Therefore, it is possible to solve the problem that can be inquired only by knowing the hash value by encrypting some contents using the shape preservation encryption, Data can also be protected.

In addition, the present invention can replace the hash value constituting the key value of the block of the block chain with the data to which the shape preservation encryption is applied and the data for monitoring, so that the data retrieval, history management, tracking, So that the function can be efficiently provided.

FIG. 1 is a block diagram illustrating a configuration of a block-chain system based on a zero-knowledge proof applying shape preservation encryption according to an embodiment of the present invention.
2 is a block diagram illustrating a configuration of a UE according to an embodiment of the present invention.
3 is a diagram illustrating an example of a shape preservation encryption algorithm according to an embodiment of the present invention.
4 is a flowchart illustrating a method of controlling a block chain system based on a zero knowledge proof applied with shape preservation encryption according to an embodiment of the present invention.
5 is a diagram illustrating an example of a format of original data according to an embodiment of the present invention.
6 is a diagram illustrating an example of a format of new data to which shape preservation encryption is applied according to an embodiment of the present invention.

It is noted that the technical terms used in the present invention are used only to describe specific embodiments and are not intended to limit the present invention. In addition, the technical terms used in the present invention should be construed in a sense generally understood by a person having ordinary skill in the art to which the present invention belongs, unless otherwise defined in the present invention, Should not be construed to mean, or be interpreted in an excessively reduced sense. In addition, when a technical term used in the present invention is an erroneous technical term that does not accurately express the concept of the present invention, it should be understood that technical terms that can be understood by a person skilled in the art can be properly understood. In addition, the general terms used in the present invention should be interpreted according to a predefined or prior context, and should not be construed as being excessively reduced.

Furthermore, the singular expressions used in the present invention include plural expressions unless the context clearly dictates otherwise. The term "comprising" or "comprising" or the like in the present invention should not be construed as necessarily including the various elements or steps described in the invention, Or may further include additional components or steps.

Furthermore, terms including ordinals such as first, second, etc. used in the present invention can be used to describe elements, but the elements should not be limited by terms. Terms are used only for the purpose of distinguishing one component from another. For example, without departing from the scope of the present invention, the first component may be referred to as a second component, and similarly, the second component may also be referred to as a first component.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings, wherein like reference numerals refer to like or similar elements throughout the several views, and redundant description thereof will be omitted.

In the following description, well-known functions or constructions are not described in detail since they would obscure the invention in unnecessary detail. It is to be noted that the accompanying drawings are only for the purpose of facilitating understanding of the present invention, and should not be construed as limiting the scope of the present invention with reference to the accompanying drawings.

FIG. 1 is a block diagram showing the configuration of a block-chain system 10 based on a zero knowledge proof applying shape preservation encryption according to an embodiment of the present invention.

As shown in FIG. 1, a block chain system 10 based on a zero knowledge proof based on shape-preserving encryption is composed of a terminal 100, a block-chain server 200, and other terminals 300. Not all of the components of the block chain system 10 shown in Fig. 1 are essential components, and the block chain system 10 may be implemented by more components than the components shown in Fig. 1, The block chain system 10 may also be implemented by components.

The terminal 100 and the other terminal 300 may be a smart phone, a portable terminal, a mobile terminal, a foldable terminal, a personal digital assistant (PDA), a portable multimedia player (PMP) terminal, a telematics terminal, a navigation terminal, a personal computer, a notebook computer, a slate PC, a tablet PC, ultrabook, a wearable device such as a smartwatch, a smart glass, a head mounted display (HMD), a wibro terminal, an internet protocol television (IPTV) The present invention can be applied to various terminals such as terminals, smart TVs, digital broadcasting terminals, AVN (Audio Video Navigation) terminals, A / V (Audio / Video) systems, flexible terminals and digital signage devices.

2, the terminal 100 includes a communication unit 110, a storage unit 120, a display unit 130, a voice output unit 140, and a control unit 150. Not all the components of the terminal 100 shown in Fig. 2 are essential components, and the terminal 100 may be implemented by more components than the components shown in Fig. 2, The terminal 100 may be implemented.

The communication unit 110 communicates with at least one terminal of an external arbitrary component through a wired / wireless communication network. At this time, the external arbitrary terminal may include the block chain server 200, the other terminal 300, and the like. Here, the wireless Internet technology includes a wireless LAN (WLAN), a digital living network alliance (DLNA), a wireless broadband (Wibro), a world interoperability for a microwave (WiMAX), a high speed downlink packet access ), HSUPA (High Speed Uplink Packet Access), IEEE 802.16, Long Term Evolution (LTE), Long Term Evolution-Advanced (LTE-A), Wireless Mobile Broadband Service (WMBS) And the communication unit 110 transmits and receives data according to at least one wireless Internet technology in a range including Internet technologies not listed above. In addition, the near field communication technology includes Bluetooth, Radio Frequency Identification (RFID), Infrared Data Association (IrDA), UWB (Ultra Wideband), ZigBee, Near Field Communication (NFC) , Ultra Sound Communication (USC), Visible Light Communication (VLC), Wi-Fi, and Wi-Fi Direct. The wired communication technology may include a power line communication (PLC), a USB communication, an Ethernet, a serial communication, an optical / coaxial cable, and the like.

In addition, the communication unit 110 can transmit information with an arbitrary terminal through a universal serial bus (USB).

In addition, the communication unit 110 may be a mobile communication system such as a mobile communication system, a mobile communication system, a mobile communication system, a mobile communication system, a mobile communication system, (Enhanced Voice-Data Optimized or Enhanced Voice-Data Only), Wideband CDMA (WCDMA), High Speed Downlink Packet Access (HSDPA), High Speed Uplink Packet Access (HSUPA), Long Term Evolution The block-chain server 200, the other terminal 300, and the like on a mobile communication network constructed according to a long-term evolution-advanced (Long Term Evolution-Advanced)

The communication unit 110 receives various information provided from the block chain server 200 under the control of the control unit 150. [

The storage unit 120 stores various user interfaces (UI), a graphical user interface (GUI), and the like.

Also, the storage unit 120 stores data and programs necessary for the terminal 100 to operate.

That is, the storage unit 120 may store a plurality of application programs or applications that are driven by the terminal 100, data for operation of the terminal 100, and commands. At least some of these applications may be downloaded from an external server via wireless communication. At least some of these application programs may exist on the terminal 100 from the time of shipment for the basic function of the terminal 100. [ The application program may be stored in the storage unit 120 and may be installed in the terminal 100 and may be operated by the control unit 150 to perform the operation (or function) of the terminal 100.

The storage unit 120 may be a flash memory type, a hard disk type, a multimedia card micro type, a card type memory (for example, SD or XD A random access memory (SRAM), a read-only memory (ROM), an electrically erasable programmable read-only memory (EEPROM), a magnetic random access memory And a PROM (Programmable Read-Only Memory). In addition, the terminal 100 may operate a web storage that performs a storage function of the storage unit 120 on the Internet, or may operate in association with the web storage.

Also, the storage unit 120 stores the received various information under the control of the controller 150.

The display unit 130 may display various contents such as various menu screens by using the user interface and / or graphical user interface stored in the storage unit 120 under the control of the controller 150 have. Here, the content displayed on the display unit 130 includes various text or image data (including various information data), a menu screen including data such as an icon, a list menu, and a combo box. Also, the display unit 130 may be a touch screen.

The display unit 130 may be a liquid crystal display (LCD), a thin film transistor-liquid crystal display (TFT LCD), an organic light-emitting diode (OLED) And may include at least one of a flexible display, a 3D display, an e-ink display, and an LED (Light Emitting Diode).

In addition, the display unit 130 displays the received various information under the control of the controller 150.

The voice output unit 140 outputs voice information included in the signal processed by the controller 150. [ Here, the speaker 140 may include a receiver, a speaker, a buzzer, and the like.

Also, the voice output unit 140 outputs the guidance voice generated by the controller 150.

In addition, the sound output unit 140 outputs sound information (or a sound effect) corresponding to the received various information or the like under the control of the controller 150.

The controller or microcontroller unit (MCU) 150 performs an overall control function of the terminal 100.

Also, the controller 150 performs an overall control function of the terminal 100 using the program and data stored in the storage unit 120. [ The controller 150 may include a RAM, a ROM, a CPU, a GPU, and a bus, and the RAM, the ROM, the CPU, and the GPU may be connected to each other via a bus. The CPU accesses the storage unit 120 and can perform booting using the O / S stored in the storage unit 120. The CPU can use various programs, contents, data stored in the storage unit 120 So that various operations can be performed.

In addition, the control unit 150 may register various information in a block through a dedicated application provided by the block-chain server 200 by interlocking with the block-chain server 200, Information / key value), and registers personal information and the like in the block-chain server 200. [

Also, the controller 150 can register as a user to the block-chain server 200 by using the SNS account information registered by the user of the corresponding terminal 100. Here, the SNS account may be information related to Facebook, Twitter, cacao story, and the like.

In addition, when performing the membership registration procedure, the controller 150 must complete the authentication function through the authentication means (for example, mobile phone, credit card, Ipfin, etc.) Can normally be completed.

After the subscription is completed, the controller 150 transmits a dedicated application (or an application / application program / specific application) provided from the block chain server 200 to the service provided by the block chain server 200 App) in the terminal 100. At this time, the dedicated application may be an app for registering information in a block chain or for checking information registered in a block chain.

When the dedicated application installed in the terminal 100 is executed according to the user selection (or user touch / control) of the terminal 100, the control unit 150 displays the application execution result screen on the display unit 130 do. Here, the application execution result screen includes an additional menu (or item / button) for confirming the additional information provided by the block chain server 200 related to the dedicated application, a registration menu for registering the information, A setting menu for setting personal information related to the user of the terminal 100 or setting a function for the corresponding dedicated application, and the like.

In addition, the controller 150 identifies data (or content / area) to be unlisted and data (or data for monitoring) that can be disclosed from among one information or files to be registered in the block chain. At this time, the information to be registered in the block chain may be any type of data or a file including one or more data.

Also, the controller 150 encrypts the data to be secreted by applying the preset Format-Preserving Encryption (FPE) shown in FIG. At this time, the shape preserving encryption method is a symmetric key based encryption algorithm, and uses the same key for encryption and decryption.

That is, the control unit 150 can encrypt the data to be unlisted using the predetermined symmetric key used for the shape preserving encryption with respect to the confirmed non-disclosure data.

Here, the shape preserving cipher (FPE) uses a generalized-feistel cipher type FPE, and repeats the feistel network until a form similar to the original form is obtained, such as a cycle walking cipher And encrypts the data.

In addition, the control unit 150 generates new data (or new information / new file) including the shape-preserved encrypted data and the identified openable data.

That is, the controller 150 configures the key value of the block in the block chain as the shape-preserved encrypted data and the identified openable data (or data for monitoring) with respect to the original data to be registered in the block chain. At this time, the key value may be a unique value of a predetermined size.

In addition, the control unit 150 sets (or determines) the encrypted data and the position of the data for monitoring according to a manual that is configured in advance.

For example, from 0 to 11 digits, the encrypted data is composed of 17 bits of new data, and 12 to 16 digits are composed of the data for monitoring.

In addition, the controller 150 may perform inquiry management, history management, data statistics management, and the like on the new data registered in the block chain server 200 through the monitoring data.

In addition, the controller 150 may convert the previous expression containing contents that the certifier does not want to disclose to the QAP (secondary arithmetic program) through the calculation through the proof of case zkSnarks.

Accordingly, although it is not known what information the corresponding information is, it is possible to derive a result value that can confirm whether the information is true or not.

In other words, data for monitoring (or open data) is received using only the results of the zero knowledge proof, and the collected data can be used to derive statistics of the electronic document management system.

In this manner, when an electronic document is managed in a file format, data monitoring and statistical functions can be provided for the electronic document in the file format.

In addition, the controller 150 transmits the generated new data, the identification information of the terminal 100, and the like to the block chain server 200. The identification information of the terminal 100 includes a mobile directory number (MDN), a mobile IP, a mobile MAC, a SIM (subscriber identity module) card unique information, and a serial number.

The block chain server 200 communicates with the terminal 100, the other terminal 300, and the like.

The block chain server 200 includes the communication unit 110, the storage unit 120, the display unit 130, the audio output unit 140, the control unit 150, As shown in FIG.

In addition, the block-chain server 200 performs a membership registration procedure for the user of the terminal 100, the other terminal 300, and the like.

In addition, the block-chain server 200 registers personal information related to the user of the terminal 100, the other terminal 300, and the like. At this time, the block-chain server 200 may register (or manage) the personal information and the like in the DB server (not shown).

In addition, the block-chain server 200 performs a member management function for a user of the terminal 100 and a user of the other terminal 300. [

In addition, the block-chain server 200 transmits a dedicated application for providing various information managed by the corresponding block-chain server 200 or for registering or inquiring specific information in a block chain, through the terminal 100, the other terminal 300 ).

Also, the block-chain server 200 receives new data transmitted from the terminal 100, identification information of the terminal 100, and the like. At this time, the new data may be composed of data encrypted by shape-preservation encryption and data that can be disclosed from among all the information.

In addition, the block-chain server 200 registers (or stores) the received new data in a block chain with a key value of a block related to the new data.

That is, the block-chain server 200 registers new data including data encrypted by the received shape-preserving encryption and releasable data as a transaction in a block-chain network with a key value of a block related to the new data. At this time, the data of the corresponding block may be encrypted with shape-preserving encryption, SHA-256 or the like according to data to be stored for confirmation of forgery of electronic document.

The block chain is a concept of a de-centralized database. That is, the block chain can provide transparency, fairness, and reliability of the entire system because transactions are transmitted and verified only by agreement between all the nodes participating in the network without any one party taking control of the system have.

The block-chain network does not erase the record of the transaction unless all the nodes of the network conserve the block data once the transaction is recorded, so that the entire node of the network is shut down at one time and completely discarded.

The block-chain server 200 (or the block-chain network 200) is configured to divide the information that can be opened and the information that is not to be opened, ), Even if an arbitrary attacker seizes the KEY value, it is impossible to know from where to where the encrypted data is stored, so that it is not possible to decrypt the corresponding form-preserved encrypted data, have.

In addition, the key (KEY) corresponding to the new data to be registered in the block-chain server 200 as a block in the terminal 100 is composed of data encrypted by shape-preserving encryption and data that can be published, Data (or data for monitoring) is utilized as an index value for block data inquiry, and has unique characteristics. At this time, the format (or format / structure) of the key value may be preset in advance.

Also, the key may be managed using a hardware security module (HSM). At this time, the key policy can be defined as JSON type.

In this manner, the key policy can be set (or managed) after the pre-defined shape-preserved encryption is applied and the data can be disclosed.

In addition, the block-chain server 200 communicates with the other terminal 300.

When at least one key value is selected among a plurality of key values managed by the block-chain server 200 (or when a transmission request for at least one key value is received, the block-chain server 200 transmits (Or transmits) the selected (or requested) at least one key value (or information / data corresponding to the corresponding key value) to the other terminal 300.

In the exemplary embodiment of the present invention, shape-preserving encryption is applied to a part of all one piece of data to be registered in the block chain in the terminal 100, and data for the shape- However, the present invention is not limited to this. The block chain server 200 may be configured such that a part of one entire data provided from the terminal 100 is registered in a block managed by the block chain server 200 It is also possible to apply shape-preserving encryption, and to register the data to which the shape-preserving encryption is applied and the data for monitoring as a transaction.

Also, in the embodiment of the present invention, information (or a key value corresponding to the information) is registered in the block chain through the exclusive application provided from the block-chain server 200, , And may provide the function of registering the information (or a key value corresponding to the information) in a block chain through a web site (or web page) provided by the block chain server 200 in addition to the dedicated application.

The other terminal 300 communicates with the terminal 100, the block chain server 200, and the like.

The other terminal 300 is connected to the communication unit 110, the storage unit 120, the display unit 130, the audio output unit 140, and the control unit 150 of the terminal 100 And can include each corresponding component.

In addition, the other terminal 300 may register various information in a block through a dedicated application provided by the block-chain server 200 in cooperation with the block-chain server 200, Or an information / key value), and registers personal information and the like in the block chain server 200. [

Also, the other terminal 300 may register as a user to the block-chain server 200 using the SNS account information registered by the user of the other terminal 300. [ Here, the SNS account may be information related to Facebook, Twitter, cacao story, and the like.

In addition, at the time of performing the membership registration procedure, the other terminal 300 must complete the authentication function through the authentication means (for example, mobile phone, credit card, Ipfin, etc.) The procedure can be completed normally.

In order to utilize the service provided by the block chain server 200, the other terminal 300 transmits a dedicated application provided from the block chain server 200 to the corresponding terminal 100 Install it. At this time, the dedicated application may be an app for registering information in a block chain or for checking information registered in a block chain.

Also, when the dedicated application installed in the other terminal 300 is executed according to user selection (or user touch / control) of the other terminal 300, the other terminal 300 displays an application execution result screen. Here, the application execution result screen includes an additional menu (or item / button) for confirming the additional information provided by the block chain server 200 related to the dedicated application, a registration menu for registering the information, A setting menu for setting personal information related to the user of the other terminal 300 or setting a function for the corresponding dedicated application, and the like.

The other terminal 300 receives a key value related to the new data registered in the block chain server 200 transmitted from the corresponding block chain server 200. At this time, the other terminal 300 may not have the symmetric key to decrypt the shape preserving encrypted data included in the key value related to the new data.

That is, when a key value related to the new data is selected from a plurality of key values registered in the block chain server 200 while the other terminal 300 is connected to the block chain server 200 The other terminal 300 selects the block corresponding to the key value related to the new data among the plurality of blocks registered in the block chain server 200, Lt; / RTI >

Also, the other terminal 300 displays the content of the openable data set as the open information among the received key values.

That is, the other terminal 300 displays the content of the openable data set as the open information among the received key values. Herein, if the openable data set as the public information among the key values is encrypted through the symmetric key method or the asymmetric key method, the other terminal 300 decrypts the openable data using the previously disclosed symmetric key or private key , And display the contents of the decrypted corresponding releasable data.

At this time, since the other terminal 300 does not have the symmetric key for decrypting the shape-preserved encrypted data included in the key value related to the new data, the other terminal 300 transmits the received key value It is impossible to confirm the contents of the data encrypted by the corresponding shape preserving encryption which is set as the private information.

The other terminal 300 receives a key value related to the new data registered in the block chain server 200 transmitted from the corresponding block chain server 200. At this time, the other terminal 300 may be in a state having the symmetric key for decrypting the shape preserving encrypted data included in the key value related to the new data.

That is, when a key value related to the new data is selected from a plurality of key values registered in the block chain server 200 while the other terminal 300 is connected to the block chain server 200 The other terminal 300 selects the block corresponding to the key value related to the new data among the plurality of blocks registered in the block chain server 200, Lt; / RTI >

Also, the other terminal 300 decrypts the data encrypted by the shape preserving encryption set as the secret information among the received key values using the predetermined (or stored) symmetric key.

Also, the other terminal 300 identifies the publicly available data set as public information among the received key values. Here, if the public key data set as the public key of the key value is encrypted using the symmetric key method or the asymmetric key method, the other terminal 300 uses the symmetric key or the private key It can be decoded.

Also, the other terminal 300 displays data set as the decrypted private information and data set as the confirmed (or decrypted) public information.

At this time, since the other terminal 300 has the symmetric key for decrypting the shape-preserved encrypted data included in the key value related to the new data, the other terminal 300 transmits the received key value The contents can be confirmed.

In this way, data to be privately secreted is encrypted by shape-preserving encryption among the data to be registered as a transaction in the block-chain network due to the protection of personal information and the like. You can register as a transaction in the network.

In this manner, instead of the hash value constituting the key value of the block of the block chain, data for which shape preservation encryption is applied and data for monitoring can be replaced.

Hereinafter, a method for controlling a block chain system based on a zero knowledge proof applied with shape preservation encryption according to the present invention will be described in detail with reference to FIG. 1 to FIG.

4 is a flowchart illustrating a method of controlling a block chain system based on a zero knowledge proof applied with shape preservation encryption according to an embodiment of the present invention.

First, the terminal 100 identifies data (or content / area) to be unlisted and data (or data for monitoring) that can be disclosed from among one information or files to be registered in the block chain.

For example, the first terminal 100 confirms the data to be unlisted and the data that can be disclosed from among the first data generated due to the transfer of 100,000 KRW to Mr. Hong. As shown in FIG. 5, the first data may include a name of a sender (for example, Hong Gil Dong), a name of a receiver (e.g., Mr. Young), remittance account information (for example, Korean Bank 12345-6789) (For example, Bank of Korea 98765-4321), a date of transfer (for example, March 15, 2019, 15:30:25), and a transfer amount (for example, 100,000 won) The account information, the receiving account information, and the transfer date are data to be closed, and the remitter name and transfer amount may be data to be disclosed.

In another example, the second terminal 100 may transmit data (for example, ABCD, which is a file name) to the non-disclosure data (e.g., ABCD) (For example, the file creation date of March 13, 2019, 13:10:15) (S410).

Then, the terminal 100 encrypts the data to be secretly verified by applying preset shape preserving encryption (FPE). At this time, the symmetric key used in the shape preserving encryption method may be preset, and the secret data can be encrypted using the symmetric key.

Also, the terminal 100 generates new data including the shape-preserved encrypted data and the identified openable data.

Also, the terminal 100 transmits the generated new data, the identification information of the terminal 100, and the like to the block chain server 200. Here, the identification information of the terminal 100 includes an MDN, a mobile IP, a mobile MAC, a SIM (subscriber identity module) card specific information, a serial number, and the like.

For example, the first terminal encrypts a recipient's name, remittance account information, receiving account information, and transfer date, which are data to be unlisted, from the first data using a first symmetric key set in advance and the shape- Obtain shape-preserved encrypted second data.

Also, as shown in FIG. 6, the first terminal generates new third data including the obtained type-preserved encrypted second data and the remitter name and transfer amount, which is data to be released from the first data And transmits the generated third data and the identification information of the first terminal to the block chain server 200.

In another example, the second terminal encrypts a file name (for example, ABCD), which is data to be unlisted, from the ABCD.HWP file using a second symmetric key and a shape-preserving encryption method set in advance, And obtains the eleventh data.

Also, the second terminal generates new twelfth data including the obtained shape-preserved encrypted eleventh data and a file creation date, which is data to be released from information related to the ABCD.HWP file, Transmits the twelfth data and the identification information of the second terminal to the block chain server 200 (S420).

Then, the block-chain server 200 receives new data transmitted from the terminal 100, identification information of the terminal 100, and the like. At this time, the new data may be composed of data encrypted by shape-preservation encryption and data that can be disclosed from among all the information.

In addition, the block-chain server 200 registers (or stores) the received new data in a block chain with a key value of a block related to the new data.

That is, the block-chain server 200 registers new data including data encrypted by the received shape-preserving encryption and releasable data as a transaction in a block-chain network with a key value of a block related to the new data. At this time, the data of the corresponding block may be encrypted with shape-preserving encryption, SHA-256 or the like according to data to be stored for confirmation of forgery of electronic document.

For example, the block-chain server 200 receives the third data transmitted from the first terminal and the identification information of the first terminal. At this time, the third data is the name of the remitter, which is the data to be disclosed from among the first data which is the original data, the second data which is the form of the transfer date, the transfer person's account, the transfer account information, Include transfer amount.

In addition, the block-chain server 200 registers the received third data as a transaction in the block-chain network with a third key value of a third block related to the third data. At this time, the data of the third block related to the third key value may be encrypted with SHA-256.

In another example, the block-chain server 200 receives the twelfth data transmitted from the second terminal and the identification information of the second terminal. In this case, the twelfth data includes the eleventh data in which the file name of the ABCD.HWP file which is the original file and the file name of the non-disclosure data is stored in the ABCD.HWP file, and the file creation date which is data to be released from the ABCD.HWP file .

In addition, the block-chain server 200 transmits the 11th data, which is the form-preserved encrypted file name of the received private data, and the 12th data including the file creation date, which is data to be released from the original file ABCD.HWP file, The data is registered as a transaction in the block-chain network with the twelfth key value of the twelfth block related to the twelfth data (S430).

Then, the other terminal 300 transmits a key value (or a key value related to a block corresponding to the new data) related to the new data registered in the block chain server 200 transmitted from the block chain server 200 . At this time, the other terminal 300 may not have the symmetric key to decrypt the shape preserving encrypted data included in the key value related to the new data.

That is, when a key value related to the new data is selected from a plurality of key values registered in the block chain server 200 while the other terminal 300 is connected to the block chain server 200 The other terminal 300 selects the block corresponding to the key value related to the new data among the plurality of blocks registered in the block chain server 200, Lt; / RTI >

Also, the other terminal 300 displays the content of the openable data set as the open information among the received key values.

That is, the other terminal 300 displays the content of the openable data set as the open information among the received key values. Herein, if the openable data set as the public information among the key values is encrypted through the symmetric key method or the asymmetric key method, the other terminal 300 decrypts the openable data using the previously disclosed symmetric key or private key , And display the contents of the decrypted corresponding releasable data.

At this time, since the other terminal 300 does not have the symmetric key for decrypting the shape-preserved encrypted data included in the key value related to the new data, the other terminal 300 transmits the received key value It is impossible to confirm the contents of the data encrypted by the corresponding shape preserving encryption which is set as the private information.

For example, when the eleventh other terminal 300 is connected to the block-chain server 200, a key value associated with the third data among a plurality of key values registered in the block-chain server 200 according to a user input , The eleventh other terminal receives a third key value related to the third data provided from the block chain server (200). Here, the third key value is a name of a remitter, which is data to be disclosed from the first data, which is the original data, And the transfer amount. At this time, the eleventh other terminal may be a terminal possessed by a general user and may not have the first symmetric key for confirming private data.

Also, the eleventh other terminal can not confirm the information set as the private key among the received third key values, but instead transmits the transfer person's name (for example, Hong Kil-Dong) and the transfer amount (for example, 100,000 won) (S440).

The other terminal 300 receives a key value related to the new data registered in the block chain server 200 transmitted from the corresponding block chain server 200. At this time, the other terminal 300 may be in a state having the symmetric key for decrypting the shape preserving encrypted data included in the key value related to the new data.

That is, when a key value related to the new data is selected from a plurality of key values registered in the block chain server 200 while the other terminal 300 is connected to the block chain server 200 The other terminal 300 selects the block corresponding to the key value related to the new data among the plurality of blocks registered in the block chain server 200, Lt; / RTI >

Also, the other terminal 300 decrypts the data encrypted by the shape preserving encryption set as the secret information among the received key values using the predetermined (or stored) symmetric key.

Also, the other terminal 300 identifies the publicly available data set as public information among the received key values. Here, if the public key data set as the public key of the key value is encrypted using the symmetric key method or the asymmetric key method, the other terminal 300 uses the symmetric key or the private key It can be decoded.

Also, the other terminal 300 displays data set as the decrypted private information and data set as the confirmed (or decrypted) public information.

At this time, since the other terminal 300 has the symmetric key for decrypting the shape-preserved encrypted data included in the key value related to the new data, the other terminal 300 transmits the received key value The contents can be confirmed.

For example, when the twelfth other terminal 300 accesses the block-chain server 200 and selects a key value related to the twelfth data among a plurality of key values registered in the block-chain server 200, 12 other terminal receives the twelfth key value associated with the twelfth data provided from the block-chain server 200. [ Here, the twelfth key value includes the twelfth data including the shape data of the file name, which is data to be closed, and the file creation date, which is the data to be released from the ABCD.HWP file, which is the original file. At this time, the twelfth other terminal may be a terminal possessed by a general user, and may be a terminal carrying the first symmetric key for checking private data.

Also, the twelfth different terminal may decrypt the eleventh data with the shape-preserved encryption set to the private key among the received twelfth key values through the shape symmetric key decryption with the first symmetric key, Check the creation date of the file.

In addition, the 12th other terminal displays the decoded file name (for example, ABCD) and the confirmed file creation date (e.g., March 13, 2013, 13:10:15) (S450).

As described above, according to the embodiment of the present invention, data to be privately secreted is encrypted by shape-preserving encryption, and encrypted by shape-preserving encryption, And the data that can be released are registered in the block-chain network as a transaction, and the key value of the existing block is composed of the hash value. Therefore, if the hash value is known, And monitoring data can also be protected using the zero knowledge proof.

In the embodiment of the present invention, as described above, instead of the hash value constituting the key value of the block of the block chain, the data for which the shape preservation encryption is applied and the data for monitoring are constructed by replacing the hash value constituting the key value of the block of the block chain, , History management, tracking, monitoring, and statistics.

It will be apparent to those skilled in the art that various modifications and variations can be made in the present invention without departing from the spirit or essential characteristics thereof. Therefore, the embodiments disclosed in the present invention are intended to illustrate rather than limit the scope of the present invention, and the scope of the technical idea of the present invention is not limited by these embodiments. The scope of protection of the present invention should be construed according to the following claims, and all technical ideas within the scope of equivalents should be construed as falling within the scope of the present invention.

100: A block chain system based on zero knowledge proof with shape preservation encryption
100: terminal 200: block chain server
300: another terminal 110: communication section
120: storage unit 130: display unit
140: audio output unit 150:

Claims (5)

The method comprising the steps of: confirming data to be privately disclosed and data that can be disclosed from the information to be registered in the block chain, encrypting the data to be privately denied by applying preset shape-preserving encryption, A terminal for generating new data including openable data used for management and history management and data statistics management, and transmitting the generated new data and identification information of the terminal;
A block chain server for registering a key value corresponding to new data transmitted from the terminal into a block chain network as a transaction; And
And another terminal receiving the key value provided from the block chain server when a key value related to the new data is selected from a plurality of key values registered in the block chain server,
The other terminal,
When there is no symmetric key for the data encrypted by the shape preserving encryption included in the key value, only the contents of the openable data set as the public information among the key values are displayed,
When there is a predetermined symmetric key corresponding to the data encrypted by the shape preservation encryption included in the key value, data encrypted by the shape preservation encryption is decrypted through the symmetric key among the key values, Displays the data to be closed and the content of the openable data set as the open information included in the key value together,
The terminal,
Based on openable data set as the open information, which is a result value that can confirm whether or not the information is true with respect to the key value including the data to be paved through the paper case nk (zkSnarks) , History management, and data statistics management functions. The method according to claim 1,
The block-
Wherein the new data composed of the data encrypted by the shape preservation encryption and the new data composed of the releasable data is registered as a key value of the block. delete Confirming data to be unlisted from the information to be registered in the block chain, disclosable data used for query management, history management, and data statistics management by the terminal;
Encrypting the confirmed data to be secretly applied by the terminal by applying preset shape-preserving encryption;
Generating, by the terminal, new data including shape-preserved encrypted data and the identified openable data;
Transmitting the generated new data and the identification information of the terminal by the terminal;
Registering new data transmitted from the terminal by a block chain server as a transaction in a block-chain network with a key value of the block;
Receiving, by another terminal, the key value provided from the block chain server when a key value related to the new data is selected from a plurality of key values registered in the block chain server;
Displaying only the content of the openable data set as the open information among the key values when there is no symmetric key for the data encrypted by the shape preserving encryption included in the key value by the other terminal; And
When there is a symmetric key for the data encrypted by the shape preserving encryption included in the key value, the data encrypted by the shape preserving encryption is decrypted by the other terminal through the symmetric key, Displaying the data to be privately disclosed and the contents of the openable data set as the public information included in the key value together with the confirmed private data,
The terminal,
Based on the publicly available data set as the public information, which is a result value that can confirm whether the information about the key value including the data to be non-publicized is true or not through the proof-of- And a data statistic management function. The method of controlling a block chain system based on zero knowledge proof applied with shape preserving encryption. delete

Images