RU2694138C1 - Method for accelerated data transmission with preservation and protection - Google Patents

Abstract

FIELD: calculating; counting.

SUBSTANCE: invention relates to the computer equipment. Method of preparation for data transmission and monitoring of data transmission with preservation and protection comprises steps of generating data for sending; checking format of sent data; recording access to sent data; method of sending is fixed; formed a chain of distributed information, consisting of data on time, date of sending, on organization, participants and main content of message; parameterisation of sent data occurs; "consent" of all nodes is formed; forming a data unit; using a guaranteed data transmission bus, with parameter locking, to speed up guaranteed delivery of a data unit: recording and adding the data unit to the distributed storage registry; controlling access rights to the received data on the data acquisition request; integrity of the data unit is monitored; cryptographic authentication of data is performed; data block is transmitted; obtaining a data block by at least one recipient.

EFFECT: technical result consists in fixing any parameterized properties of a data unit in a distributed storage registry.

1 cl, 2 dwg

Description

The invention relates to the field of electronic information systems and information management systems with the preservation, transparency of operations for third parties, immutability of data and protection against unauthorized access to information generated and stored in computer systems.

The proposed method relates to the field of ensuring guaranteed transmission of information with fixing the status and characteristics of the transmitted information at all stages of data exchange and coordination between several organizations that are directly involved in these operations with the possibility of reducing the time for their consideration.

There are various ways of exchanging information through various means.

Currently, the conclusion and / or registration of the contract, if necessary, is usually determined by the number of regulators, their individual requirements and hidden consideration of the operation. At the same time, even a positive result in the outcome of the conclusion and / or registration of the contract does not guarantee the intervention of other interested parties that may affect the review process and the terms of the contract. Also in today's conditions of market relations, often the outcome of the operation may be affected by the corruption component in someone's favor. At the same time, it will be impossible to prove and confirm at what stage of the operation third parties could have influenced the coordination process during the exchange of information, which, among other things, increased the deadlines for obtaining a final decision. In wireless standards with low transmit power, such as Bluetooth or other technologies that provide the ability to implement extremely low-power personal networks, data integrity protection of the packet level is either not available or optional. When packet level integrity information is available, existing approaches are not able to provide a combination of suitable protection and real-time performance.

The information transmission system is known (E.V. Kalyanov. Information transfer using coding of masking chaotic oscillations. - Radioengineering and Electronics, 2002, V. 47, №4, Fig. 1, p. 469), in which the masking of the transmitted message is performed as follows in the following way: the sum of the message and noise is transmitted through one channel, and only noise is transmitted through the other. In the receiver, at the output of the subtractor, the message is highlighted without noise. However, this system does not provide measures that prevent demodulation of the radio signal, i.e. masking is carried out only at the level of modulating signals.

The disadvantage of this method is also the impossibility of sending a message to the addressee without special skills.

There is a method of data transfer for the conclusion and / or registration of the contract in which the transfer is carried out using paper. The conclusion and registration of the contract occurs at a personal meeting. However, this method does not provide for the protection of the document itself against substitution or theft and is a time-consuming task.

There is a method of controlling the authenticity of products, according to which the authenticity of products is determined by the compliance of its external features with the corresponding marking data established by the manufacturer of this product (GOST 16317-87 "Electric household appliances", general technical conditions, section 3.27 "Marking", 1987).

The disadvantage of this method is its poor efficiency and the complexity of establishing the fact of compliance of external signs of the marking data established by the manufacturer, since this conformity can only be established by experts as a result of merchandising expertise. Examination takes time and is an expensive service. Such an approach is unacceptable when carrying out operations for the purchase and sale of products, which often comes not directly from the manufacturer-manufacturer, but through intermediaries.

A known data transmission method with guaranteed information preservation (US 2016/0012465 A1, 01/14/2016), which discloses data transmission via the Internet / Network. The data is information about the purchase or sale and the funds transferred without limitation in their quantity and volume. However, in this method, the transfer rate is quite low and the information transmitted is limited to bank transactions.

Also known is a method of controlling the authenticity and quality of products in the process of production and sale (RU 2639015 C1, 12/19/2017), in which each unit of production is assigned an identification code, which is entered into a distributed information system database, and the control of product authenticity is determined by comparing the identification code units of production with the code available in the specified identification code database, and if the codes match, they give a message about the authenticity of this unit of production, as identification carrier codes for each unit of production use a barcode with the identification data recorded in it and applied to the label and / or individual packaging, characterized in that the exchange and logical data processing is carried out at each stage of the production process by storing information about each production operation in a distributed database data of the information system using the blockchain technology and add to the chain of distributed database a new fragment for each operation and information about the entire distributed system In order to store and process information, all parts of which are consistent with the general state of its operations, upon receipt of raw materials and / or components for production, the manufacturer’s server database and the specified distributed information system database will verify the authenticity of the primary information about raw materials, materials and components, containing at least information on the type, properties, production time of raw materials and components, their composition, forming the primary identification code of the unit using the specified distributed information system database, reconcile with the regulatory body's information database for volumes, types, properties, raw material production time, and then enter the identification code of the unit of production into the manufacturer’s server database, then, during the production process, supplement the primary information units of production data on the manufacturer, type, date and time, place of manufacture, composition, expiration date, quality, status, and at the last stage Yer on each unit of production in a printed way put a barcode on the individual packaging, read the code information forming the identification code of the unit of production, fasten it with an electronic signature, and then enter the identification code of the unit of production into the database of the manufacturer’s server and into the specified distributed database of the information system for further processing, then when packing on the outer packaging in a printed way, put a bar code, carry out the reading of the code information of the bar code, batch identification code is fastened with an electronic signature, and then the product batch identification code is entered into the manufacturer’s server database, then when moving products from the conveyor to the warehouse on the package, data is read from the code of each unit and / or product batch and the received data is entered into database server in the warehouse and in the specified distributed database of the information system, when exporting products from the warehouse, read the code data of each unit and / or batch we export products and enter a mark in the server database in the warehouse on the movement of these products and in the specified distributed database of the information system, when the product arrives at the point of sale in the latter, the identification codes of the received product are read, enter them into the server database of the point of sale and the distributed database information system, which also enter data from the identification codes of products sold. However, this method does not provide a controlling authority and, due to the complexity of the system, a low data transfer rate.

The present invention is directed to solving a technical problem in implementing a new data transfer method, which ensures accelerated guaranteed and audited delivery of a data block from a sender to a recipient, as well as fixing any parameterized properties of said data block in a distributed storage registry.

The method uses the blockchain technology, which ensures the preservation of information about each transaction for the exchange, coordination and approval of data, which is entered into a distributed database.

The method of data transmission is characterized by the fact that it contains the steps:

- formation of a data block for sending;

- parameterization of the data block;

- check the format of the sent data;

- fixing access rights to sent data;

- fixing the transfer;

- formation of a chain of distributed information;

- using the guaranteed data transfer bus, parameters are recorded and added to the distributed storage register with parameter locking;

- monitoring the integrity of the data block;

- control of access rights;

- fixation of receiving the data block by the recipient;

- cryptographic authentication of the data block;

- opening of the data block by the recipient;

- at the same time, at least one interested third party has access to the entire history of the operation without the right to modify and delete the data block.

As a data block, we consider any bit sequence transmitted as a whole between devices of computer systems, a data processing system or a computer network.

Under parameterizable properties, any characteristics of a data block that can be defined for information systems (for example, but not limited to, the formation date and time, volume, type, etc.) are considered.

The present invention is an integration bus guaranteed data transfer with the ability to connect various information systems. To this end, the invention specifies a set of integration components for interacting with information systems for the purpose of exchanging data blocks.

The invention is illustrated by drawings:

FIG. 1 shows the scheme of the claimed method;

FIG. 2 is a block diagram.

The block diagram of the claimed method:

At the first stage:

1) data is generated (for example, a contract) to be sent;

2) the rights of the sender are determined;

3) the mode of transmission is determined:

A) calculation of Hash data, with this method, the transfer of the image will be performed without storing the data in the structure;

B) the format control of the data, with this method, the data transfer will be performed with the data stored in the structure.

4) the parameters of the data are determined (date and time of formation, volume, type, creator, etc.);

5) parameters are recorded in the data block;

6) “agreement” of all nodes is formed;

7) a data block is formed;

At the second stage:

8) the data block is fixed in all network nodes;

9) send a request for data;

10) checks the access rights of the recipient;

11) the integrity of the data block is checked, if the data transfer fails, then the lost data is restored;

12) data is transferred to the recipient;

13) the fact of receiving data by at least one recipient is recorded.

Each operation, consisting of a directional flow of information from one organization to another, is recorded and adds a new fragment to the distributed database chain that stores time, date, organization, participants, and the main message content, while interested third parties have secure access to the entire history of operations without the right to change, including deletion, as well as the impact on the outcome of the possibility or impossibility of concluding and / or registering the contract.

Within the framework of this information management system for data transmission, one or more organizations can participate, which allows to simplify the process of entering into and / or registering a contract and minimize time. At the same time, the present method aimed at preserving and protecting information allows eliminating the corruption component when concluding and registering an agreement, due to the guarantee of immutability of information, as well as unauthorized access to the created and stored information on all transactions.

The present invention has characteristic features that distinguish it from existing systems of guaranteed data transmission, such as:

Логика хранения всей совокупности данных (исполняемая логика изобретения и данные передаваемые и хранимые изобретением) реализована по принципам распределенных реестров хранения (полный набор данных хранится на каждом узле изобретения), что обеспечивает сохранение работоспособности изобретения при выходе из строя отдельных узлов.

The storage logic of the entire data set (the executable logic of the invention and the data transmitted and stored by the invention) is implemented according to the principles of distributed storage registers (the full set of data is stored on each node of the invention), which ensures the preservation of the invention’s performance in case of failure of individual nodes.

Фиксация и накопление неизменной истории передачи блоков данных, включая историю изменения параметризуемых свойств. Фиксация и накопление, а главное неизменность достигаются за счет применения логики хранения данных, связывающая блоки данных по средством размещения образа (Hash) каждого блока в следующем за ним, и включаемого в расчет образа блока в котором он размещен. Таким образом создается «цепочка данных» теряющая целостность при изменении любого блока данных предшествующего последнему. Изобретение обладает встроенными алгоритмами контроля целостности, и восстанавливает целостность за счет распределенного реестра хранения (копируется ненарушенная цепочка с другого узла распределенного реестра хранения).

Fixation and accumulation of a constant transfer history of data blocks, including the history of change of parameterized properties. Fixation and accumulation, and most importantly, immutability are achieved through the use of data storage logic, connecting data blocks by placing an image (Hash) of each block in the next one, and including the block image in which it is placed in the calculation. Thus, a “data chain” is created that loses integrity when any data block preceding the latter changes. The invention has built-in integrity monitoring algorithms, and restores integrity through a distributed storage registry (the unbroken chain is copied from another distributed storage registry node).

Изобретение на уровне исполняемой логики имеет механизм достижения согласия между узлами сети (распределенного реестра хранения). Механизм реализован на основании решения задачи «Византийского консенсуса» и достижения согласия «через большинство».

An invention at the level of executable logic has a mechanism for reaching agreement between network nodes (distributed storage registry). The mechanism is implemented on the basis of solving the problem of the “Byzantine consensus” and reaching agreement “through the majority”.

Логика (правила) хранения и обмена блоками данных параметризуется (определяется/настраивается) для всей сети (распределенного реестра хранения) и хранится как часть исполняемой логики изобретения, что обеспечивает соблюдение единых правил взаимодействия для всех узлов сети и исключает возможность не корректной обработки или формирования блоков данных, за счет использования механизмов достижения согласия.

The logic (rules) of storing and exchanging data blocks is parameterized (determined / configured) for the entire network (distributed storage registry) and stored as part of the executable logic of the invention, which ensures compliance with uniform interaction rules for all network nodes and eliminates the possibility of incorrect processing or block formation. data through the use of agreement mechanisms.

Изобретение на уровне исполняемой логики имеет возможность передачи большого объема данных без сохранения в собственной структуре (если это необходимо). В таком случае Изобретение выполняет транспортную роль сохраняя, лишь образ передаваемых данных (Hash) и параметризованные для этих данных свойства (объем, дата и время формирования, дата отправки и получения и др.). Поскольку алгоритмы получения образа блока данных устойчивы к коллизиям, это позволяет в дальнейшем сопоставлять исходные данные с параметризованными образами данных.

An invention at the level of executable logic has the ability to transfer a large amount of data without storing it in its own structure (if necessary). In such a case, the Invention fulfills the transport role by retaining only the image of the transmitted data (Hash) and the properties parameterized for this data (volume, date and time of formation, date of sending and receiving, etc.). Since the algorithms for obtaining the image of a data block are resistant to collisions, this allows us to compare the initial data with the parameterized data images in the future.

Для изобретения может быть определено и параметризованное бесконечное количество блоков данных и их параметров.

For the invention, a parameterized infinite number of data blocks and their parameters can also be defined.

Изобретение на уровне исполняемой логики имеет возможность ограничения и параметризации доступа к блокам данных, реализованное посредством распределения ролей между узлами сети. Роли определяют как в принципе возможность доступа к данным (определения их существования для определенной роли) так и права доступа (Запись, Чтение, Изменение).

An invention at the level of executable logic has the ability to limit and parameterize access to data blocks, implemented through the distribution of roles between network nodes. Roles are defined both in principle, the ability to access data (determine their existence for a particular role) and access rights (Write, Read, Modify).

Claims (18)

1. The method of preparation for data transmission and control of data transmission with preservation and protection, consisting in the sequential performance of two stages, namely, at stage 1 the following sequence of actions is performed: - data for sending is generated; - check the format of the sent data; - recorded access rights to the sent data; - the way of sending is fixed - calculation of data Hash for transfer without saving the data in the structure or format control of the data for saving the data in the structure; - a chain of distributed information is formed, consisting of data on time, date of dispatch, organization, participants and the main content of the message; - parametrization of the sent data occurs; - “agreement” of all nodes is formed; - a data block is being formed; then, at stage 2, the following sequence of actions is performed using a guaranteed data transfer bus, with parameters being fixed, to accelerate guaranteed delivery of a data block: - the data block is recorded and added to the distributed storage registry; - control of access rights to the received data on the request for receiving data; - the integrity of the data block is monitored; - cryptographic authentication of data is carried out; - data block transfer is in progress; - the receipt of a data block by at least one recipient is fixed; at the same time, at least one interested third party has access to the entire history of the operation without the right to modify and delete a data block. 2. The method according to claim 1, in which the parameterization of the data block records the time and date of dispatch, the organization and the parties to the contract and message.

Images