CN108924092B - Public arbitration distributed cloud storage method and system based on block chain - Google Patents

Public arbitration distributed cloud storage method and system based on block chain Download PDF

Info

Publication number
CN108924092B
CN108924092B CN201810579654.2A CN201810579654A CN108924092B CN 108924092 B CN108924092 B CN 108924092B CN 201810579654 A CN201810579654 A CN 201810579654A CN 108924092 B CN108924092 B CN 108924092B
Authority
CN
China
Prior art keywords
storage
user
contract
service provider
transaction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810579654.2A
Other languages
Chinese (zh)
Other versions
CN108924092A (en
Inventor
张宗洋
刘建伟
黑一鸣
喻辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beihang University
Original Assignee
Beihang University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beihang University filed Critical Beihang University
Priority to CN201810579654.2A priority Critical patent/CN108924092B/en
Publication of CN108924092A publication Critical patent/CN108924092A/en
Application granted granted Critical
Publication of CN108924092B publication Critical patent/CN108924092B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • G06Q20/06Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
    • G06Q20/065Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme using e-cash
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/28Pre-payment schemes, e.g. "pay before"
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/04Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Abstract

The invention discloses a block chain-based publicly arbitrated distributed cloud storage method and system, wherein the method comprises the following steps: establishing a service contract and performing first user matching to establish first downlink connection between a user and a storage service provider; establishing a storage contract containing a storage deposit and a storage service fee through first-time downlink connection and issuing the storage contract to the whole network; performing data storage according to a storage contract issued to the whole network, and performing second user matching according to the storage record to establish second downlink connection between the user and the storage service provider; and establishing a down-link micro-payment channel through the second down-link connection to perform inquiry transaction, and submitting the signature of the last transaction content to the whole network for authentication. The method can effectively utilize the local storage space of the nodes of the whole network, and can intelligently standardize the service of the whole network by the contracts without auditing operation of a trusted third party, thereby ensuring the fairness of the storage and inquiry processes.

Description

Public arbitration distributed cloud storage method and system based on block chain
Technical Field
The invention relates to the technical field of cloud computing security, in particular to a block chain-based publicly arbitratable distributed cloud storage method and system.
Background
With the advent of the big data age, the amount of data in networks has seen explosive growth, with growth rates that have surpassed geometric magnitudes. If the generated data is to be stored, a great network storage capacity is necessarily required. This also puts higher demands on the cloud storage technology.
Nowadays, users often adopt cloud storage services provided by third-party storage providers to store mass data, so that the centralization problem is serious. In addition, TTPs (Third Trusted Party) are often required in current Third-Party-based cloud storage models to ensure data integrity and availability, which also makes auditing operations more centralized. Once the TTP audits an error or performs a malicious operation, it can result in a loss of storage service participants. On the contrary, on one hand, the storage service demand is very vigorous, and on the other hand, the local storage of a large number of users is not effectively utilized, so that the problem of imbalance of supply and demand is serious. Therefore, constructing a secure, public, and stable distributed cloud storage system is a significant challenge facing current cloud storage services.
It is therefore important to design a robust and secure solution that ensures the correct storage of data. Aiming at mass data cloud storage, on one hand, the problems of storage space and integrity of mass data need to be solved, and on the other hand, a decentralized arbitration verification method needs to be introduced.
The birth of the blockchain was the mindful bitcoin in China, and since 2009, various analog bitcoin digital currencies based on the public blockchain appeared. The block chain is a decentralized database essentially, and has the advantages of decentralized, information tamper-proofing, openness and transparency, high robustness and the like. Smart contracts are an idea proposed by nissabo in the nineties of the twentieth century, which are computer programs that run on copyable, shared accounts that can process information, receive, store, and send value. Smart contracts are digitized versions of traditional contracts. They are computer programs running on a blockchain database that can execute on their own when the conditions written in their source code are met. Intelligent contracts, once written, can be trusted by users, and the contract terms cannot be changed, so the contracts are unalterable.
Disclosure of Invention
The present invention is directed to solving, at least to some extent, one of the technical problems in the related art.
Therefore, one purpose of the present invention is to provide a block chain-based publicly arbitrated distributed cloud storage method, which has the advantages that the whole network service can be standardized by intelligent contracts without requiring a trusted third party to perform audit operations, and fairness in the storage and query processes is ensured.
Another objective of the present invention is to provide a block chain-based publicly arbitrated distributed cloud storage system.
In order to achieve the above object, an embodiment of the present invention provides a block chain-based publicly arbitrated distributed cloud storage method, including the following steps: establishing a service contract and performing first user matching to establish first downlink connection between a user and a storage service provider; establishing a storage contract containing a storage deposit and a storage service fee through the first downlink connection and issuing the storage contract to the whole network; performing data storage according to the storage contract issued to the whole network, and performing second user matching according to a storage record to establish second downlink connection between the user and the storage service provider; and establishing a down-link micro-payment channel through the second down-link connection to perform inquiry transaction, and submitting the signature of the last transaction content to the whole network for authentication.
According to the block chain-based publicly arbitrated distributed cloud storage method, the storage contract containing the storage deposit is submitted to the whole network miners, so that the local storage space of the whole network nodes is effectively utilized, the standardized under-link micro-payment channel is established for transaction and query, and the method has the advantages that the whole network service can be intelligently agreed by the contract without auditing operation of a trusted third party, and the fairness in the storage and query processes is guaranteed.
In addition, the block chain-based publicly arbitrated distributed cloud storage method according to the above embodiment of the present invention may further have the following additional technical features:
further, in an embodiment of the present invention, the making a service contract and performing a first user matching to establish a first down-link connection between the user and the storage service provider further includes: making the service contract, and converting the storage deposit into a service contract account address and declaring the storage time set by the storage service provider; and establishing the first-time downlink connection between the user and the storage service provider according to the required service inquired by the user on the block chain.
Further, in an embodiment of the present invention, the establishing, through the first downlink connection, a storage contract including a storage deposit and a storage service fee, and issuing the storage contract to the entire network further includes: partitioning the data M to be stored into k data blocks { M1, M2 … and Mk } with the same size by a partitioning algorithm, encrypting each block of data to obtain { C1, C2 … and Ck }, and reserving Hash { Hash (C1), Hash (C2) …, Hash (Ck) } and corresponding indexes of the encrypted data blocks; sending all the partitions containing the index and any random challenge value c (c e [1, k ]) to the storage service provider, and the storage service provider returning a valid storage certificate to the user; and if the user passes the verification, the storage contract C is achieved according to the storage deposit and the storage service fee, the negotiated storage amount and storage time are declared, and the storage contract is issued to the whole network.
Further, in an embodiment of the present invention, the process of establishing the downlink micro payment channel further includes: assuming that the user locks N · γ to the storage contract account as a query fee; when the user inquires for the first time, recording the inquiry fee as gamma according to the gamma inquiry fee locked to the storage service provider by the user1Sending data to the user; the storage service provider obtains the query fee gamma on the premise that the storage service provider obtains a total storage deposit to be transferred to a storage contract1(ii) a In each inquiry, the user signs accumulated transfer fee gamma to the storage service provider, the rest transfers to the transaction of the user, and after the transaction with legal signature is received, data is sent to the user; after the query operation is completed, signing the transaction, and sending the transaction containing the double signatures to the whole network; the signature of the miner transaction is verified, and if the signature passes, the signature of the miner transaction is verifiedThe transaction is accepted and the funds transfer process is completed.
Further, in an embodiment of the present invention, the downlink data transmission uses an http protocol or an IPFS protocol.
In order to achieve the above object, an embodiment of another aspect of the present invention provides a block chain-based publicly arbitrated distributed cloud storage system, including: the first matching module is used for making a service contract and carrying out first user matching so as to establish first downlink connection between a user and a storage service provider; the storage contract establishing module is used for establishing a storage contract containing a storage deposit and a storage service fee through the first downlink connection and issuing the storage contract to the whole network; the second matching module is used for storing data according to the storage contract issued to the whole network and performing second user matching according to the storage record so as to establish second downlink connection between the user and the storage service provider; and the micro-payment channel establishing module is used for establishing a down-link micro-payment channel through the second down-link connection so as to perform inquiry transaction, and submitting the signature of the last transaction content to the whole network for authentication.
The block chain-based publicly arbitrated distributed cloud storage system effectively utilizes the local storage space of the nodes of the whole network by submitting a storage contract containing a storage deposit to the miners in the whole network, establishes a standard under-link micro-payment channel for transaction and query, and has the advantages that the service of the whole network can be intelligently agreed by the contract without auditing operation of a trusted third party, and the fairness of the storage and query processes is ensured.
In addition, the block chain-based publicly arbitrated distributed cloud storage system according to the above embodiment of the present invention may further have the following additional technical features:
further, in an embodiment of the present invention, the first time matching module is further configured to: making the service contract, and converting the storage deposit into a service contract account address and declaring the storage time set by the storage service provider; and establishing the first-time downlink connection between the user and the storage service provider according to the required service inquired by the user on the block chain.
Further, in an embodiment of the present invention, the storage contract establishing module is further configured to: partitioning the data M to be stored into k data blocks { M1, M2 … and Mk } with the same size by a partitioning algorithm, encrypting each block of data to obtain { C1, C2 … and Ck }, and reserving Hash { Hash (C1), Hash (C2) …, Hash (Ck) } and corresponding indexes of the encrypted data blocks; sending all the partitions containing the index and any random challenge value c (c e [1, k ]) to the storage service provider, and the storage service provider returning a valid storage certificate to the user; and if the user passes the verification, the storage contract C is achieved according to the storage deposit and the storage service fee, the negotiated storage amount and storage time are declared, and the storage contract is issued to the whole network.
Further, in an embodiment of the present invention, the lower micro payment channel establishing process further includes: assuming that the user locks N · γ to the storage contract account as a query fee; when the user inquires for the first time, recording the inquiry fee as gamma according to the gamma inquiry fee locked to the storage service provider by the user1Sending data to the user; the storage service provider obtains the query fee gamma on the premise that the storage service provider obtains a total storage deposit to be transferred to a storage contract1(ii) a In each inquiry, the user signs accumulated transfer fee gamma to the storage service provider, the rest transfers to the transaction of the user, and after the transaction with legal signature is received, data is sent to the user; after the query operation is completed, signing the transaction, and sending the transaction containing the double signatures to the whole network; and (4) verifying the transaction signature of the miners, and if the transaction signature passes, accepting the transaction and finishing the fund transfer process.
Further, in an embodiment of the present invention, the downlink data transmission uses an http protocol or an IPFS protocol.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
The foregoing and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
fig. 1 is a flowchart of a block chain based method of publicly arbitrating distributed cloud storage according to an embodiment of the present invention;
FIG. 2 is a schematic diagram of a data storage process of a blockchain-based publicly-arbitrated distributed cloud storage method according to one embodiment of the present invention;
FIG. 3 is a schematic diagram of a data query process of a blockchain-based publicly arbitrated distributed cloud storage method according to one embodiment of the present invention;
FIG. 4 is a schematic diagram of service contract parameters for a blockchain-based publicly arbitrated distributed cloud storage method according to one embodiment of the present invention;
fig. 5 is a schematic diagram of storage contract parameters for a blockchain-based publicly arbitrated distributed cloud storage method according to one embodiment of the present invention;
FIG. 6 is a schematic diagram of a blockchain-based publicly arbitrated distributed cloud storage method storage contract pseudo-code, according to one embodiment of the present invention;
FIG. 7 is a flow diagram of an under-chain micro-payment channel of a blockchain-based publicly-arbitrated distributed cloud storage method according to one embodiment of the present invention;
FIG. 8 is a block chain-based storage attestation structure diagram illustrating a distributed cloud storage method with public arbitration according to an embodiment of the present invention;
fig. 9 is a schematic structural diagram of a block chain-based publicly arbitrated distributed cloud storage system according to an embodiment of the present invention.
Description of reference numerals:
in FIG. 2, c is the random challenge value sent by User-A to Server-B;
in fig. 3, Restore is a storage record sheet;
in fig. 4, PGserve is deposit of the depositor, Nserve is available storage, Tserve is storage time, teserver-i is contact address of the depositor Server-i;
in fig. 5, PGstore is the total deposit amount to be paid, Tstore is the storage service time, RM is the mercker tree root of the data M; PGcheck is the query cost;
in fig. 7, N γ is the query cost locked by the user; gamma 1 is the inquiry fee for inquiring a certain piece of data for the first time;
in FIG. 8, Nmax is the maximum value of the index, RM is the root of the Merck tree where data is stored, and c is the challenge value of the user to a certain index.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the drawings are illustrative and intended to be illustrative of the invention and are not to be construed as limiting the invention.
The following describes a block chain-based publicly arbitrated distributed cloud storage method and system according to an embodiment of the present invention with reference to the accompanying drawings, and first, a block chain-based publicly arbitrated distributed cloud storage method according to an embodiment of the present invention will be described with reference to the accompanying drawings, where symbols and algorithms are first explained:
(1) c represents a random challenge value sent to a Server-B by a User-A, and the value corresponds to the index value of a certain data block;
(2)RMrepresenting the root of the merck tree where data is stored;
(3)pkA、skAis a public and private key pair of User-A, pkB、skBIs a public key pair of Server-B;
(4)Hash(M)→ω,M∈{0,1}*the data M is subjected to Hash operation to obtain omega;
(5)Sig(ski,M)→σ,M∈{0,1}*the private key sk for representationiSigning M to obtain sigma;
(6) C-SER stands for the content of the service contract and C-STO stands for the content of the storage contract;
(7)ADDseve-iservice contract account address, ADD, created on behalf of istoreAn account address representing a storage contract;
(8) n γ represents the query cost for User-a to lock to the storage contract, and the query cost for each data chunk is γ. Gamma ray1Representing the fee for the first query of a block of data, if not γ1Is 0, otherwise is γ; (ii) a
(9)PGserveRepresenting service contract account amount, PGstoreTotal storage deposit, PG, representing the need for both parties to a store contracttotalRepresenting the total amount of a storage contract account, PGcheckA query deposit representing User-A;
(10)Tserverepresenting the duration of a memory declared by a memory in a service contract, NserveRepresenting the amount of storage available to the storage, Price-unit representing the current market Price of storage, PGserve=Tserve×Nserve×Price-unit;
(11)TstoreRepresenting the length of a memory in a memory contract, TcerA storage credential return delay that represents user tolerance;
(12)Cerstore-ca corresponding storage certificate representing the challenge c, the certificate comprising the content M of the data block indexed by ccAnd to RMA path of (a); restoreThe representative storage record sheet records specific data and corresponding storage persons.
Fig. 1 is a flowchart of a method for publicly arbitrating distributed cloud storage based on a blockchain according to an embodiment of the present invention.
As shown in fig. 1, the method for publicly arbitrating distributed cloud storage based on a blockchain includes a data storage phase and a data query phase, where the data storage phase includes steps S101 and S102, and the data query phase includes steps S103 and S104, and specifically includes:
in step S101, a service contract is made and a first user match is made to establish a first down-link connection between the user and the storage service provider.
In one embodiment of the present invention, in conjunction with FIGS. 2-4, Server-B formulates a service contract C-SERB,. Server-B transfers service deposit to ADDseve-BAnd declares a storage time Tstore。TstoreIs set by Server-B and is fixed and unchanged in the period of validity of the contract. N is a radical ofserveFollowing PGserveAnd market storage Price-unit linear variation (when PG is usedserveDecrease or increase of Price-unit, NserveWill automatically decrease and vice versa). And inquiring the required service from the User-A to the block chain, and establishing connection with the corresponding Server-B under the chain.
In step S102, a storage contract including a storage deposit and a storage service fee is established through a first-time downlink connection and issued to the entire network.
In one embodiment of the invention, User-A blocks M data to be stored into k equal-sized data blocks { M1,M2…,MkAnd all blocks, block correspondence indexes and a random challenge value c (c e [1, k)]) Sending to Server-B, where Server-B calculates Cerstore-cSending the data to User-A for verification;
after the verification is passed, User-a makes the content Cstore of the storage contract and calculates the signature Sstore ═ Sig (sk) as shown in fig. 5AHash (Cston)). Sending Csample and Sstore together to Server-B;
if the Server-B agrees with the contract after the verification is successful, S is calculatedstore-B=Sig(skBHash (Cston)), Cston, Sstone-A, and Sstore-BIssuing to a network;
miners verify the contract, including checking the integrity of the contract contents, the correctness of the double signature. After the miners verify that the contract is valid, packing the contract into blocks to obtain the service fee of the contract;
bidirectional contract address ADDstoreSubmitting deposit transfer at a prescribed time TtransIf the deposit is successfully transferred into the bank, the contract takes effect, and the User-A records the storage transaction to Restore. Otherwise, returning the transferred deposit, and making the contract invalid;
Tstoreupon arrival, if Server-B does not have dishonest storage behavior (i.e., Server-B does not store behavior perCan correctly return query results or store the proofs to User-A), PGstoreAll forwarded to Server-B, otherwise PGstoreAre forwarded to User-A.
In step S103, data storage is performed according to the storage contract issued to the entire network, and second user matching is performed according to the storage record, so as to establish second downlink connection between the user and the storage service provider.
In one embodiment of the invention, User-A records a single Re according to storagestoreAnd acquiring the contact address of the Server-B, and establishing the connection under the link with the Server-B. The downlink data transmission can adopt an http protocol or an IPFS protocol.
In step S104, a second time of the link-down connection is used to establish a link-down micropayment channel for performing the inquiry transaction, and the signature of the last transaction content is submitted to the whole network for authentication.
As shown in fig. 6-8, in one embodiment of the present invention, the micro payment channel establishment process is as follows:
(1) suppose User-A locks N.gamma to storage contract account ADDstoreAs a query fee PGcheck
(2) When the first query is made, User-A locks the gamma query fee to Server-B (the query fee is recorded as gamma)1) The Server-B sends a copy of data to the User-A. Obtaining PG at Server-BstoreOn the premise that Server-B can obtain gamma1Otherwise at TstoreThen the cost is returned to User-A;
(3) in each subsequent inquiry, User-A signs the accumulated transfer fee gamma to Server-B, the rest is transferred to the transaction of User-A, after the transaction with legal signature is received, Server-B sends a copy of data to User-A. For example, in the 2 nd query, the transaction signature is transmitted to the Server-B after the gamma is converted to the Server-B and the (N-2) gamma is converted to the User-A; in the 3 rd query, the Server-B is transferred with the 2 gamma and the User-A transaction signature is transferred with the (N-3) gamma, and then the signature is sent to the Server-B … … to be carried out in sequence;
(4) after the query operation is completed, the Server-B signs the last transaction and sends the transaction containing the double signatures to the whole network;
(5) the miners verify the transaction signature, if the transaction signature passes, the transaction is accepted, and the fund transfer process is completed;
(6) when User-A pays money and Server-B does not return a data block, User-A submits storage challenge transaction for Server-B to whole network, requiring Server-B to give storage certificate for the data block (including contents of data block and its to R)MSee fig. 7). If Server-B can not be in TcerSubmitting effective storage proof to miners in the whole network when waiting for TstoreGamma after arrival1Transferring to User-A; if the Server-B has no dishonest storage behavior discovered by the User-A, waiting for TstoreGamma after arrival1Transferred to User-A.
After a link-down micro-payment channel is established and inquiry transaction is carried out, data updating is carried out, and the specific flow is as follows:
(1) under the chain, the User-A sends the information (index, new data block) needed by the updated data and the operation instruction (insertion, deletion, update) to the data to the Server-B, calculates the new root value of the Mercker tree, and sends the value signature to the Server-B;
(2) the Server-B correspondingly updates the storage structure to calculate a new Mercker tree root, compares the Mercker tree root with a value provided by the User-A, and doubly signs and returns the value if the Mercker tree root is equal to the value provided by the User-A;
(3) the User-A verifies the correctness of the signature returned by the Server-B;
(4) User-A generates an update transaction and submits the new Mercker tree root value, the double signature and the timestamp to the whole network miners;
(5) the miner takes the transaction as the input of the corresponding storage contract after the verification is passed so as to modify the root value of the Mercker tree of the storage contract.
In addition, in the embodiment of the present invention, the above schemes are all specific embodiments that adopt one-to-one, and other embodiments of the present invention may also satisfy the cases of one-to-many, many-to-one, and many-to-many.
One to many: that is, data of one user is stored in a plurality of storage users, and in order to enhance the robustness of the data, the user may use two ways to implement a one-to-many scheme, including multiple storage of the whole data or placing data blocks in different storage user spaces, specifically:
the first method is as follows: establishing connection between a user and a plurality of storers; and corresponding to different storage persons, the user uses different symmetric encryption keys to encrypt the same data slice, and then sends the encrypted data to the storage persons.
The second method comprises the following steps: establishing connection between a user and a plurality of storers; a user codes the data in an Erasure code mode; the user encrypts the encoded data blocks by using a symmetric encryption mode and dispersedly sends the data blocks to different storages.
Many-to-one: that is, a plurality of users correspond to the same stored data, and the plurality of users can inquire and update the stored data. This approach is in fact data sharing in the usual sense. The user completes the storage transaction with the storage person, and then the contact way, the private key of the user, the hash and index of the data, the decryption way of the data and the like of the storage person are shared to other users trusted by the user in a linked manner.
Many-to-many: the above-mentioned many-to-one and one-to-many embodiments are combined and will not be described herein.
According to the block chain-based publicly arbitrated distributed cloud storage method, the storage contract containing the storage deposit is submitted to the whole network miners, so that the local storage space of the whole network nodes is effectively utilized, the standardized under-link micro-payment channel is established for transaction and query, and the method has the advantages that the whole network service can be intelligently agreed by the contract without auditing operation of a trusted third party, and the fairness in the storage and query processes is guaranteed.
Next, a block chain-based publicly arbitrated distributed cloud storage system proposed according to an embodiment of the present invention is described with reference to the drawings.
Fig. 9 is a schematic structural diagram of a block chain-based publicly arbitrated distributed cloud storage system according to an embodiment of the present invention.
As shown in fig. 9, the block chain-based publicly arbitrated distributed cloud storage system 10 includes: a first match module 100, a store contract creation module 200, a second match module 300, and a micropayment channel creation module 400.
The first matching module 100 is configured to make a service contract and perform first user matching to establish a first downlink connection between a user and a storage service provider. The storage contract establishing module 200 is used to establish a storage contract containing a storage deposit and a storage service fee through a first down-link connection. The second matching module 300 is configured to perform data storage according to a storage contract issued to the whole network, and perform second user matching according to a storage record, so as to establish a second downlink connection between the user and the storage service provider. The micropayment channel establishing module 400 is configured to establish a downlink micropayment channel through a second downlink connection to perform an inquiry transaction, and submit a signature of a last transaction content to the whole network for authentication. The system has the advantages that the whole network service can be standardized by the intelligent contract without auditing operation of a trusted third party, and the fairness of the storage and query processes is ensured.
It should be noted that the foregoing explanation on the embodiment of the block chain-based public arbitration distributed cloud storage method is also applicable to the block chain-based public arbitration distributed cloud storage system of this embodiment, and details are not described here.
Further, in an embodiment of the present invention, the first matching module 100 is further configured to: making a service contract, and converting a storage deposit into a service contract account address and declaring the storage time set by a storage service provider; and establishing a first-time down-link connection between the user and the storage service provider according to the required service inquired by the user on the block chain.
Further, in an embodiment of the present invention, the storage contract establishing module 200 is further configured to: partitioning the data M to be stored into k data blocks { M1, M2 … and Mk } with the same size by a partitioning algorithm, encrypting each block of data to obtain { C1, C2 … and Ck }, and reserving Hash { Hash (C1), Hash (C2) …, Hash (Ck) } and corresponding indexes of the encrypted data blocks; sending all the blocks containing the index and any random challenge value c (c belongs to [1, k ]) to a storage service provider, and returning a valid storage certificate to the user by the storage service provider; and if the user passes the verification, the storage contract C is achieved according to the storage deposit and the storage service fee, the negotiated storage amount and storage time are declared, and the storage contract is issued to the whole network.
Further, in an embodiment of the present invention, the following micro payment channel establishing process further includes: suppose a user locks N · γ to a store contract account as a query fee; when inquiring for the first time, recording the inquiry fee as gamma according to the gamma inquiry fee locked by the user to the storage service provider1Sending the data to the user; the storage service provider obtains a query fee gamma on the premise that the storage service provider obtains a total storage deposit to be transferred to the storage contract1(ii) a In each inquiry, the user signs the accumulated transfer fee gamma to a storage service provider, the rest transfers the transaction to the user, and after the transaction with legal signature is received, the data is sent to the user; after the query operation is completed, signing the transaction, and sending the transaction containing the double signatures to the whole network; and (4) verifying the transaction signature of the miners, and if the transaction signature passes, accepting the transaction and finishing the fund transfer process.
Further, in an embodiment of the present invention, the data transmission under the link uses http protocol or IPFS protocol.
The block chain-based publicly arbitrated distributed cloud storage system effectively utilizes the local storage space of the nodes of the whole network by submitting a storage contract containing a storage deposit to the miners in the whole network, establishes a standard under-link micro-payment channel for transaction and query, and has the advantages that the service of the whole network can be intelligently agreed by the contract without auditing operation of a trusted third party, and the fairness of the storage and query processes is ensured.
Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one such feature. In the description of the present invention, "a plurality" means at least two, e.g., two, three, etc., unless specifically limited otherwise.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above are not necessarily intended to refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, various embodiments or examples and features of different embodiments or examples described in this specification can be combined and combined by one skilled in the art without contradiction.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made to the above embodiments by those of ordinary skill in the art within the scope of the present invention.

Claims (8)

1. A block chain-based publicly arbitrated distributed cloud storage method is characterized by comprising the following steps:
establishing a service contract and performing first user matching to establish first downlink connection between a user and a storage service provider;
establishing a storage contract containing a storage deposit and a storage service fee through the first downlink connection and issuing the storage contract to the whole network;
performing data storage according to the storage contract issued to the whole network, and performing second user matching according to a storage record to establish second downlink connection between the user and the storage service provider; and
establishing a down-link micro-payment channel through the second down-link connection to perform inquiry transaction, and submitting the last transaction content signature to the whole network for authentication, wherein the process of establishing the down-link micro-payment channel further comprises: assuming that the user locks N · γ to the storage contract account as a query fee; when the user inquires for the first time, recording the inquiry fee as gamma according to the gamma inquiry fee locked to the storage service provider by the user1Sending data to the user; the storage service provider obtains the query fee gamma on the premise that the storage service provider obtains a total storage deposit to be transferred to a storage contract1(ii) a In each inquiry, the user signs accumulated transfer fee gamma to the storage service provider, the rest transfers to the transaction of the user, and after the transaction with legal signature is received, data is sent to the user; after the query operation is completed, signing the last transaction, and sending the transaction containing the double signatures to the whole network; and (4) the miners verify the transaction signature, and if the transaction signature passes, the transaction is accepted, and the fund transfer process is completed.
2. The blockchain-based publicly arbitrated distributed cloud storage method of claim 1, wherein the formulating a service contract and performing a first user match to establish a first down-link connection between a user and a storage service provider, further comprises:
making the service contract, and converting the storage deposit into a service contract account address and declaring the storage time set by the storage service provider;
and establishing the first-time downlink connection between the user and the storage service provider according to the required service inquired by the user on the block chain.
3. The method according to claim 2, wherein the establishing a storage contract containing a storage deposit and a storage service fee through the first down-link connection and issuing the storage contract to the whole network further comprises:
partitioning the data M to be stored into k data blocks { M1, M2 … and Mk } with the same size by a partitioning algorithm, encrypting each block of data to obtain { C1, C2 … and Ck }, and reserving Hash { Hash (C1), Hash (C2) …, Hash (Ck) } and corresponding indexes of the encrypted data blocks;
sending all the partitions containing the index and any random challenge value c (c e [1, k ]) to the storage service provider, and the storage service provider returning a valid storage certificate to the user;
and if the user passes the verification, the storage contract C is achieved according to the storage deposit and the storage service fee, the negotiated storage amount and storage time are declared, and the storage contract is issued to the whole network.
4. The blockchain-based publicly arbitrated distributed cloud storage method according to any one of claims 1 to 3, wherein the data transmission under the chain employs an http protocol or an IPFS protocol.
5. A block chain based publicly arbitrated distributed cloud storage system, comprising:
the first matching module is used for making a service contract and carrying out first user matching so as to establish first downlink connection between a user and a storage service provider;
the storage contract establishing module is used for establishing a storage contract containing a storage deposit and a storage service fee through the first downlink connection and issuing the storage contract to the whole network;
the second matching module is used for storing data according to the storage contract issued to the whole network and performing second user matching according to the storage record so as to establish second downlink connection between the user and the storage service provider; and
a micropayment channel establishing module, configured to establish a downlink micropayment channel through the second downlink connection, so as to perform inquiry transaction, and submit a signature of a last transaction content to the whole network for authentication, where the establishment of the downlink micropayment channel process further includes: assuming that the user locks N · γ to the storage contract account as a query fee; upon a first query, gamma lookup based on the user's lock to the storage service providerInquiring fee, recording the fee as gamma1Sending data to the user; the storage service provider obtains the query fee gamma on the premise that the storage service provider obtains a total storage deposit to be transferred to a storage contract1(ii) a In each inquiry, the user signs accumulated transfer fee gamma to the storage service provider, the rest transfers to the transaction of the user, and after the transaction with legal signature is received, data is sent to the user; after the query operation is completed, signing the last transaction, and sending the transaction containing the double signatures to the whole network; and (4) the miners verify the transaction signature, and if the transaction signature passes, the transaction is accepted, and the fund transfer process is completed.
6. The blockchain-based publicly arbitrated distributed cloud storage system of claim 5, wherein the first matching module is further configured to:
making the service contract, and converting the storage deposit into a service contract account address and declaring the storage time set by the storage service provider;
and establishing the first-time downlink connection between the user and the storage service provider according to the required service inquired by the user on the block chain.
7. The blockchain-based publicly arbitrated distributed cloud storage system of claim 6, wherein the storage contract establishing module is further configured to:
partitioning the data M to be stored into k data blocks { M1, M2 … and Mk } with the same size by a partitioning algorithm, encrypting each block of data to obtain { C1, C2 … and Ck }, and reserving Hash { Hash (C1), Hash (C2) …, Hash (Ck) } and corresponding indexes of the encrypted data blocks;
sending all the partitions containing the index and any random challenge value c (c e [1, k ]) to the storage service provider, and the storage service provider returning a valid storage certificate to the user;
and if the user passes the verification, the storage contract C is achieved according to the storage deposit and the storage service fee, the negotiated storage amount and storage time are declared, and the storage contract is issued to the whole network.
8. The blockchain-based publicly arbitrated distributed cloud storage system according to claim 5, wherein the data transfer down the chain employs an http protocol or an IPFS protocol.
CN201810579654.2A 2018-06-07 2018-06-07 Public arbitration distributed cloud storage method and system based on block chain Active CN108924092B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810579654.2A CN108924092B (en) 2018-06-07 2018-06-07 Public arbitration distributed cloud storage method and system based on block chain

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810579654.2A CN108924092B (en) 2018-06-07 2018-06-07 Public arbitration distributed cloud storage method and system based on block chain

Publications (2)

Publication Number Publication Date
CN108924092A CN108924092A (en) 2018-11-30
CN108924092B true CN108924092B (en) 2020-11-20

Family

ID=64418946

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810579654.2A Active CN108924092B (en) 2018-06-07 2018-06-07 Public arbitration distributed cloud storage method and system based on block chain

Country Status (1)

Country Link
CN (1) CN108924092B (en)

Families Citing this family (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109598616B (en) * 2018-12-09 2023-08-22 大连飞创信息技术有限公司 Method for protecting privacy of blockchain data by introducing arbitration mechanism
CN109729074B (en) * 2018-12-11 2021-10-01 深圳市汇星数字技术有限公司 Audio data encryption and peer-to-peer storage method and system
CN113302636A (en) * 2019-01-03 2021-08-24 华为技术有限公司 Data processing method, device and medium based on block chain
CN109886812B (en) * 2019-02-15 2021-04-20 航天恒星科技有限公司 Data transaction system and method based on block chain
CN109918925A (en) * 2019-02-19 2019-06-21 上海泉坤信息科技有限公司 Date storage method, back end and storage medium
CN109872142B (en) * 2019-02-21 2023-04-11 派欧云计算(上海)有限公司 Digital asset transaction method based on trusted third party and storage medium thereof
CN111612453A (en) * 2019-02-22 2020-09-01 北京趣块远扬科技有限公司 Decentralized transaction method and device based on block chain and electronic equipment
CN110278076B (en) * 2019-05-29 2022-06-03 电子科技大学 Block chain-based transparent data integrity auditing and transparent encrypted data duplicate removal method
CN110288445B (en) * 2019-06-28 2024-03-05 杭州复杂美科技有限公司 Decentralised storage method, device and storage medium
CN110288346A (en) * 2019-06-28 2019-09-27 杭州复杂美科技有限公司 Block chain distributed storage method for down loading, equipment and storage medium
CN110428254B (en) * 2019-07-04 2022-03-04 杭州复杂美科技有限公司 Decentralized storage downloading method and arbitration method, equipment and storage medium
CN115398857A (en) 2019-08-12 2022-11-25 创新先进技术有限公司 Block chain based dispute resolution
US11516147B2 (en) 2019-10-02 2022-11-29 Red Hat, Inc. Blockchain-based dynamic storage provisioner
CN111461683A (en) * 2020-03-24 2020-07-28 国网河北省电力有限公司雄安新区供电公司 Cross-cloud interconnection-oriented block chain accounting method and system
CN112508572A (en) * 2020-06-24 2021-03-16 杨刘琴 Information flow analysis method and system based on block chain and mobile internet
CN112054897B (en) * 2020-08-13 2021-08-03 武汉大学 Outsourcing Internet of things data for protecting privacy based on block chain and integrity verification method for backup of outsourcing Internet of things data
CN112152797B (en) * 2020-08-26 2021-09-17 西安电子科技大学 Block chain remote data auditing and monitoring method and system, computer equipment and terminal
CN112039927B (en) * 2020-11-04 2021-01-26 南京云信安网络科技有限公司 Management method of network security vulnerability response platform based on block chain technology
CN112488682B (en) * 2020-12-08 2021-08-31 深圳前海微众银行股份有限公司 Three-party transfer method and device for block chain
CN112907252B (en) * 2021-02-02 2023-10-31 中国科学院计算技术研究所 Block chain transaction method and system based on multi-person chain lower channel
CN113220640B (en) * 2021-05-07 2023-03-24 支付宝(杭州)信息技术有限公司 Arbitration method and device based on block chain
CN114594911B (en) * 2022-03-13 2024-03-29 西安电子科技大学 Block chain data storage system and method based on under-chain erasure code distributed storage

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106504091A (en) * 2016-10-27 2017-03-15 上海亿账通区块链科技有限公司 The method and device that concludes the business on block chain
CN106559211A (en) * 2016-11-22 2017-04-05 中国电子科技集团公司第三十研究所 Secret protection intelligence contract method in a kind of block chain
CN106992990A (en) * 2017-05-19 2017-07-28 北京牛链科技有限公司 Data sharing method and system and block catenary system and computing device
CN107464118A (en) * 2017-08-16 2017-12-12 济南浪潮高新科技投资发展有限公司 A kind of data trade method based on block chain intelligence contract

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150379510A1 (en) * 2012-07-10 2015-12-31 Stanley Benjamin Smith Method and system to use a block chain infrastructure and Smart Contracts to monetize data transactions involving changes to data included into a data supply chain.

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106504091A (en) * 2016-10-27 2017-03-15 上海亿账通区块链科技有限公司 The method and device that concludes the business on block chain
CN106559211A (en) * 2016-11-22 2017-04-05 中国电子科技集团公司第三十研究所 Secret protection intelligence contract method in a kind of block chain
CN106992990A (en) * 2017-05-19 2017-07-28 北京牛链科技有限公司 Data sharing method and system and block catenary system and computing device
CN107464118A (en) * 2017-08-16 2017-12-12 济南浪潮高新科技投资发展有限公司 A kind of data trade method based on block chain intelligence contract

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
Sia: Simple Decentralized Storage;David Vorick et al;;《sia.tech》;20141229;全文 *
Storj:A Peer-to-Peer Cloud Storage Network;Shawn Wilkinson et al;;《storj.io》;20161215;全文 *
The Bitcoin Lightning Network: Scalable Off-Chain Instant Payments;Joseph Poon et al;;《lightning.network》;20160114;全文 *

Also Published As

Publication number Publication date
CN108924092A (en) 2018-11-30

Similar Documents

Publication Publication Date Title
CN108924092B (en) Public arbitration distributed cloud storage method and system based on block chain
TWI749583B (en) Chain structure data storage, verification, realization method, system, device and media
CN109937557B (en) System and method for information protection
CN110089069B (en) System and method for information protection
CN108781161B (en) Method for controlling and distributing blockchain implementation of digital content
CN108833081B (en) Block chain-based equipment networking authentication method
US11127002B2 (en) System and method for information protection
US20200193432A1 (en) Method and system for settling a blockchain transaction
US20200127813A1 (en) Method and system for creating a user identity
Jin et al. Dynamic and public auditing with fair arbitration for cloud data
US10819505B2 (en) System and method for information protection
CN110569675A (en) Multi-Agent transaction information protection method based on block chain technology
CN110730963B (en) System and method for information protection
US20190295069A1 (en) Systems and methods for integrating cryptocurrency wallet identifiers with digital certificates
CN109146479B (en) Data encryption method based on block chain
CN112470423A (en) Computer-implemented system and method for asset blending
CN112567706A (en) Accumulator protocol based computer implemented system and method for task allocation across a computer network
CN109146684B (en) Decentralized transaction verification method
Harishankar et al. Plasma Go: A Scalable Sidechain Protocol for Flexible Payment Mechanisms in Blockchain-based Marketplaces
CN114511317A (en) Block chain public account processing system and method for accounting records
Ibor et al. A conceptual framework for augmenting the security of digitized academic records in Nigerian tertiary institutions using blockchain technology
AU2019101590A4 (en) System and method for information protection
CN117196624A (en) Block chain-based Internet of things data transaction method and system
CN112465504A (en) Block chain based order settlement method, system and storage medium
CN117376366A (en) Block chain transaction processing method, device, medium and electronic equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant