CN109768983B - Block chain-based multi-dimensional dynamic identity recognition method, device and system - Google Patents
Block chain-based multi-dimensional dynamic identity recognition method, device and system Download PDFInfo
- Publication number
- CN109768983B CN109768983B CN201910066499.9A CN201910066499A CN109768983B CN 109768983 B CN109768983 B CN 109768983B CN 201910066499 A CN201910066499 A CN 201910066499A CN 109768983 B CN109768983 B CN 109768983B
- Authority
- CN
- China
- Prior art keywords
- information
- user
- service
- block chain
- biological characteristic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The application provides a multidimensional dynamic identity recognition method, a multidimensional dynamic identity recognition device and a multidimensional dynamic identity recognition system based on a block chain, wherein the recognition method comprises the following steps: receiving registration information and personal basic information; calling user biological characteristic information and service related requirement information in a database of a public trust department; receiving an identity authentication request through the block chain; generating a service number and an asymmetrically encrypted public key; reading the encrypted scene application rule and the biological characteristic information currently provided by the user through the block chain, and decrypting; calling an intelligent contract provided with rules and algorithms for cross comparison from the block chain; performing cross validation on the user biological characteristic information and service related requirement information in a database of a public trust department and the biological characteristic information currently provided by the user to obtain an identification result; and receiving an instruction that the record information hash identification and the identification result ciphertext are recorded on the block chain, and sending a notification that the identification service is completed. The method and the device can perform multi-dimensional dynamic identity recognition, and the recognition result is more reliable.
Description
Technical Field
The application belongs to the technical field of information security, and particularly relates to a multidimensional dynamic identity recognition method, device and system based on a block chain.
Background
With the increasing shift of social activities and economic activities from offline to online, the identification problem becomes more prominent and becomes a bottleneck problem in the development of internet technology. Due to the characteristic of internet technology virtualization, people can easily hide the real identity of the people on the internet, so that the internet brings great convenience to people and brings huge hidden dangers. At present, the network real-name system, the mobile phone real-name system and various biological authentication technologies can not solve the above pain problem of internet identity recognition. Although the existing internet identification products can meet part of the requirements and have a few practical applications, so far, no breakthrough progress in a real sense has been found for the reasons mentioned above.
At present, all internet-based identification technologies in the world have no characteristics of 'non-repudiation' and 'non-tampering', so that the block chain technology cannot be supported to establish a mutually trusted internet world. "non-repudiation" and "non-tampering" are the core and essence of the block chain technique, and therefore the identification technology corresponding thereto must also have the characteristics of "non-repudiation" and "non-tampering". Otherwise, it is not possible to establish a mutual trust relationship in the internet world.
In the prior art, the mode of manual inspection and automatic identification instrument is often adopted for identity identification. Manual verification is typically performed by a business clerk manually verifying the user's credentials to verify their identity. Fingerprint identification, face identification, iris identification and the like are commonly used in automatic identification instruments. In the prior art, a user is required to carry strong identity authentication information such as an identity card, a passport and the like when transacting business; meanwhile, the accuracy of authentication can be guaranteed only by matching with manual secondary verification of an automatic identification instrument. In practical applications, users who do not satisfy the authentication conditions pass identity verification due to negligence of transactants or illegal operations. At the same time, static information checks may lead to identification errors due to untimely updates of the user information by the clerk or by the institution. For example, a car rental company can check the driving license of a user when renting a car to the user, but cannot conveniently check information such as an accident record and a violation condition of driving of the user.
In the prior art, the algorithm for checking the user information is also not uniform and ambiguous, so that the identity authentication result performed in a certain mechanism cannot be approved by other mechanisms, and the user needs to continuously and repeatedly perform identity authentication work; meanwhile, the identity recognition result cannot be documented and verified, and the possibility of repudiation also exists during verification.
Disclosure of Invention
In order to overcome the problems in the related art at least to a certain extent, the application provides a block chain-based multi-dimensional dynamic identity recognition method, device and system.
According to a first aspect of embodiments of the present application, there is provided a block chain-based multi-dimensional dynamic identity recognition method, including the following steps:
receiving registration information and personal basic information for identity recognition sent by a user terminal;
according to the received registration information and the personal basic information, user biological characteristic information and business related requirement information recorded in a database of a public trust department are called;
receiving an identity authentication request sent by an application server when a user terminal transacts corresponding services through a block link;
generating a service number and an asymmetrically encrypted public key according to the received identity authentication request, and sending the generated service number and the asymmetrically encrypted public key to the application server;
reading a scene application rule encrypted by using an asymmetrically encrypted public key in an application server and the biological characteristic information currently provided by a user through a block chain, and decrypting;
calling an intelligent contract from the block chain, wherein the intelligent contract is provided with a cross comparison rule and algorithm;
based on the service number and the service scene rule, performing cross validation on the user biological characteristic information and service related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm to obtain an identification result, and sending the biological characteristic information currently provided by the user, the user biological characteristic information recorded in the database of the public trust department and the identification result to a record information server;
and receiving an instruction that the record information server records the record information hash identifier and the identification result ciphertext on the block chain, and sending a notification that the identification service is completed to the application server and the user terminal.
Further, in the step of receiving, by the blockchain, an identity authentication request sent by the application server when the user terminal transacts the corresponding service, before the application server sends the identity authentication request, the user terminal is required to authorize the application server to authenticate the identity of the user terminal according to the service requirement, and meanwhile, the user terminal is also required to provide current biometric information to the application server.
Further, the step of cross-verifying the user biological characteristic information and the service-related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm based on the service number and the service scene rule comprises the following steps:
verifying the identity of the user; comparing the biological characteristic information currently provided by the user with the biological characteristic information of the user recorded in a database of a public trust department, and if the biological characteristic information and the biological characteristic information of the user are consistent, indicating that the identity information of the user is real and reliable;
verifying whether the user meets the service handling condition; and comparing the service requirement of the user with the service related requirement information recorded in the database of the public letter department, wherein the service requirement of the user is true and reliable, and if the service requirement of the user meets the service handling condition, the user is indicated to have the condition for handling the current service.
Further, the step of receiving the instruction that the docketing information server has recorded the docketing information hash identifier and the recognition result ciphertext on the blockchain, the docketing information server performs the following operations:
performing hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result to obtain a record information hash identifier;
encrypting the identification result to obtain an identification result ciphertext;
and recording the record information hash identification and the identification result ciphertext on the block chain.
Further, after the step of sending the notification identifying that the service is completed to the application server and the user terminal, the method further comprises the following steps: and sending the identification result to the application server and the user terminal through the block chain.
Further, the multidimensional dynamic identity recognition method based on the block chain further comprises the following steps:
establishing a checking device;
the examination device calls the recorded data in the recorded information server and reads the recorded hash identification of the recorded on the block chain and the identification result ciphertext; the record data specifically comprises the biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result;
the examination device compares the recorded information hash mark recorded in the recorded information server with the recorded information hash mark recorded on the block chain, and compares the recognition result ciphertext recorded in the recorded information server with the recognition result ciphertext recorded on the block chain;
the examination device calls a cross comparison rule and algorithm set in the intelligent contract to cross compare the biological characteristic information of the user and the relevant service requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user to obtain an examination result; and comparing the examination result with the identification result.
According to a second aspect of the embodiments of the present application, the present application further provides a block chain-based multidimensional dynamic identity recognition apparatus, which includes a first receiving module, a calling module, a second receiving module, a generating module, a decrypting module, a calling module, a verifying module, and a third receiving module;
the first receiving module is used for receiving the registration information and the personal basic information sent by the user terminal;
the calling module is used for calling the user biological characteristic information and the service related requirement information recorded in a database of the public and trusted department according to the registration information and the personal basic information;
the second receiving module is used for receiving an identity authentication request sent by the application server when the user terminal handles the corresponding service through the block link;
the generating module is used for generating a service number and an asymmetrically encrypted public key according to the identity authentication request and sending the generated service number and the asymmetrically encrypted public key to the application server;
the decryption module is used for reading the scene application rule encrypted by the asymmetric encrypted public key in the application server and the biological characteristic information currently provided by the user through the block chain and then decrypting the scene application rule and the biological characteristic information;
the calling module is used for calling the intelligent contract from the block chain, wherein the intelligent contract is provided with cross comparison rules and algorithms;
the verification module is used for performing cross verification on the user biological characteristic information and service related requirement information recorded in a database of a public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm in an intelligent contract according to the service number and a service scene rule to obtain an identification result;
and the third receiving module is used for receiving an instruction that the record information server records the record information hash identifier and the identification result ciphertext on the block chain, and sending a notification that the identification service is completed to the application server and the user terminal.
Further, the docketing information server is configured to perform a hash operation on the biometric information currently provided by the user, the biometric information of the user recorded in the database of the public trust department, and the recognition result to obtain a docketing information hash identifier; and the method is also used for encrypting the identification result to obtain an identification result ciphertext.
According to a third aspect of the embodiments of the present application, the present application further provides a block chain-based multidimensional dynamic identity recognition system, which includes a recognition device, a user terminal, an application server, a record information server, and a database of a public trust department;
the user terminal is used for sending registration information and personal basic information for identity identification to the identification device; the user terminal is also used for sending a service handling request to the application server according to service requirements;
the application server is used for sending an identity authentication request to the identification device through the block chain;
the identification device is used for receiving an identity authentication request from the block chain, generating a service number and an asymmetric encrypted public key, and sending the service number and the asymmetric encrypted public key to the application server;
the application server is used for encrypting the scene application rule and the biological characteristic information currently provided by the user through a public key and transmitting the encrypted scene application rule and the biological characteristic information to the block chain;
the identification device is used for reading the encrypted scene application rule and the biological characteristic information currently provided by the user from the block chain and decrypting the encrypted scene application rule and the biological characteristic information; the identification device is also used for calling the biological characteristic information of the user and the service-related requirement information from a database of a public trust department according to the registration information and the personal basic information of the user; the identification device calls an intelligent contract from the block chain, obtains a cross comparison rule and algorithm, performs cross comparison on user biological characteristic information and service related requirement information recorded in a database of a public trust department and biological characteristic information currently provided by a user by using the cross comparison rule and algorithm based on a service number and a service scene rule to obtain an identification result, and sends the identification result to the record information server;
the record information server is used for carrying out Hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result to obtain a record information Hash mark; the device is also used for encrypting the identification result to obtain an identification result ciphertext; and publishing the record information hash mark and the recognition result ciphertext on the block chain;
the identification device is used for feeding back a notice that the identification service is completed to the application server;
and the application server and the user terminal acquire the identification result from the block chain.
Furthermore, the multidimensional dynamic identity recognition system based on the block chain is also provided with an examination device, the examination device calls the filing data from the filing information server, reads the filing information hash identification and the recognition result ciphertext recorded on the block chain, and verifies whether the filing information hash identification and the recognition result ciphertext are correct; meanwhile, cross recognition rules and algorithms in the intelligent contract are called to verify whether the recognition result recorded in the filing information server is consistent with the recognition result recorded on the block chain.
According to the above embodiments of the present application, at least the following advantages are obtained: according to the method, the biological characteristic information provided by the user at present is taken as the basis, strong identity authentication identification data such as the biological characteristic information of the user, service related requirement information and the like provided by a public trust department are taken as the basis, the identity identification data of the same user, behavior data and scene data of the identity identification data are adopted, multi-dimensional data cross verification is carried out, and the reliability of identity identification can be ensured; and identity recognition is carried out by adopting the real-time updated behavior data and scene data, so that the validity of user identity recognition can be ensured. The identity recognition method and the system give full play to the non-falsification and non-repudiation of the block chain storage, real-time, comprehensive, accurate and reliable data are adopted in the identity recognition process, the generated identity recognition conclusion is more reliable, and the main information interaction of the whole process is completed through the block chain, so that the identity information and the recognition conclusion are more credible. According to the method, the advantage that the blockchain cannot be tampered and the advantage that the storage capacity of centralized storage is strong are combined, only the hash value is stored on the public blockchain, and personal privacy cannot be exposed; and searching information in the record information database according to the hash value on the block chain, so that the information in the record information database cannot be easily modified.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the scope of the invention, as claimed.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of the specification of the application, illustrate embodiments of the application and together with the description, serve to explain the principles of the application.
Fig. 1 is a flowchart of a block chain-based multidimensional dynamic identity recognition method according to an embodiment of the present application.
Fig. 2 is an interaction sequence diagram of a block chain-based multi-dimensional dynamic identity recognition method according to an embodiment of the present application.
Fig. 3 is a schematic structural diagram of a block chain-based multi-dimensional dynamic identity recognition apparatus according to an embodiment of the present application.
Detailed Description
For the purpose of promoting a clear understanding of the objects, aspects and advantages of the embodiments of the present application, reference will now be made to the accompanying drawings and detailed description, wherein like reference numerals refer to like elements throughout.
The illustrative embodiments and descriptions of the present application are provided to explain the present application and not to limit the present application. Additionally, the same or similar numbered elements/components used in the drawings and the embodiments are used to represent the same or similar parts.
As used herein, "first," "second," …, etc., are not specifically intended to mean in a sequential or chronological order, nor are they intended to limit the application, but merely to distinguish between elements or operations described in the same technical language.
With respect to directional terminology used herein, for example: up, down, left, right, front or rear, etc., are simply directions with reference to the drawings. Accordingly, the directional terminology used is intended to be illustrative and is not intended to be limiting of the present teachings.
As used herein, the terms "comprising," "including," "having," "containing," and the like are open-ended terms that mean including, but not limited to.
As used herein, "and/or" includes any and all combinations of the described items.
References to "plurality" herein include "two" and "more than two"; reference to "multiple sets" herein includes "two sets" and "more than two sets".
As used herein, the terms "substantially", "about" and the like are used to modify any slight variation in quantity or error that does not alter the nature of the variation. In general, the range of slight variations or errors that such terms modify may be 20% in some embodiments, 10% in some embodiments, 5% in some embodiments, or other values. It should be understood by those skilled in the art that the aforementioned values can be adjusted according to actual needs, and are not limited thereto.
Certain words used to describe the present application are discussed below or elsewhere in this specification to provide additional guidance to those skilled in the art in describing the present application.
Fig. 1 is a flowchart of a block chain-based multidimensional dynamic identity recognition method according to an embodiment of the present application. As shown in fig. 1, the multidimensional dynamic identity recognition method based on the block chain includes the following steps:
and S1, receiving the registration information sent by the user terminal and the personal basic information for identity identification. The personal basic information for identity recognition comprises information such as a user name, an identification card number and a mobile phone number. The registration information includes, but is not limited to, a blockchain account or username of the user terminal.
And S2, according to the received registration information and the personal basic information, calling the user biological characteristic information and the service-related requirement information recorded in the database of the public and trusted department.
For example, the biometric information of the user recorded in the database of the public trust department may be biometric information of a fingerprint, a face, a voiceprint, or an iris of the user recorded in the database of the public security department. The service-related requirement information may be information about whether a user has a crime record when the airport is closed, information about whether the user participates in a hospital settlement, information about whether the credit rating of the user reaches a preset standard when the user stays in a hotel, or the like.
And S3, receiving an identity authentication request sent by the application server when the user terminal transacts the corresponding service through the block link.
Wherein, the application server handles corresponding service for the user terminal. When handling business, the user terminal needs to authorize the application server to authenticate the identity of the user terminal according to business requirements, and meanwhile, the user terminal also needs to provide current biological characteristic information such as fingerprints, faces, irises and the like for the application server.
S4, generating a service number and an asymmetric encrypted public key according to the received identity authentication request, and sending the generated service number and the asymmetric encrypted public key to the application server.
In this embodiment, the service number is used to distinguish different times of service. And generating a public key and a private key by adopting an asymmetric encryption algorithm. The commonly used asymmetric encryption algorithms mainly include RSA, DSA, ECC, Elgamal algorithm, knapsack algorithm and the like.
And S5, reading the scene application rule encrypted by the public key of the asymmetric encryption and the biometric information currently provided by the user in the application server through the block chain, and decrypting the scene application rule and the biometric information.
And S6, calling an intelligent contract from the block chain, wherein the intelligent contract is provided with cross-comparison rules and algorithms.
In this embodiment, the block chain includes two parts, which are a data part and an intelligent contract part, respectively, where the data part includes backup information such as a record information hash identifier, a recognition result ciphertext, a timestamp, a service number, and the intelligent contract part includes rules and algorithms for cross-comparison.
An intelligent contract refers to a set of commitments defined in digital form, including agreements on which contract participants can enforce the commitments. Where commitment refers to the rights and obligations (often mutual) agreed to by the contract participants. These commitments define the nature and purpose of the contract. The digital form indicates the rights and obligations established by the intelligent contract and is executed by a computer or computer network. The blockchain technology is a bottom-layer technology of the bitcoin, is a distributed database book in essence, and records all transaction records. The block chain is a series of data blocks which are associated by using a cryptographic method, and each data block contains information of one bitcoin network transaction, so that the validity of the information is verified and the next block is generated. The technology is also gradually paid attention to the banking and financial industries due to the characteristics of safety and convenience. More and more fields try to solve the existing problems and deficiencies using blockchain technology.
Accordingly, an intelligent contract associated with a blockchain is a set of code and data that is deployed to run on a blockchain network. Meanwhile, the intelligent contract has a block chain account of the intelligent contract, and can automatically execute some functions under the drive of time or events, for example, information can be transmitted among the intelligent contracts, and the state of the block chain, such as account information and the like, can be modified. The biggest feature of intelligent contracts combined with block chains is the fact that they are well-understood and can completely simulate all things a computer can do.
S7, based on the service number and the service scene rule, cross-verifying the user biological characteristic information and the service related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm to obtain an identification result, and sending the biological characteristic information currently provided by the user, the user biological characteristic information and the identification result recorded in the database of the public trust department to a filing information server, which specifically comprises:
s71, verifying the user identity;
and comparing the biological characteristic information currently provided by the user with the biological characteristic information of the user recorded in the database of the public trust department, and if the biological characteristic information and the biological characteristic information of the user are consistent, indicating that the identity information of the user is real and reliable.
S72, verifying whether the user meets the service handling condition;
and comparing the service requirement of the user with the service related requirement information recorded in the database of the public letter department, wherein the service requirement of the user is true and reliable, and if the service requirement of the user meets the service handling condition, the user is indicated to have the condition for handling the current service.
And S8, receiving an instruction that the record information server records the record information hash identifier and the identification result ciphertext on the blockchain, and sending a notification that the identification service is completed to the application server and the user terminal.
The record information server performs hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in the database of the public and trusted department and the identification result to obtain a record information hash identifier. And the record information server encrypts the identification result to obtain an identification result ciphertext. And the record information server records the record information hash identification and the identification result ciphertext on the block chain.
And the application server and the user terminal acquire the identification result from the block chain according to the received notification.
According to the multidimensional dynamic identity recognition method based on the block chain, on the first hand, multidimensional dynamic identity recognition can be carried out; the information used for identification comprises registration information of the user, personal basic information, scene application rules, biological characteristic information currently provided by the user, biological characteristic information of the user called from a database of a public trust department and service-related requirement information; the service-related requirement information is not invariable and needs to be dynamically modified and authenticated; the reliability of the verification information can be ensured by calling the information in the database of the public trust department in real time, and the real-time updating of the information can also be ensured. In the second aspect, the recognition result is more reliable; the method can give full play to the non-falsification and non-repudiation of the block chain storage, and the generated identity recognition conclusion is more reliable by adopting real-time, comprehensive, accurate and reliable data in the identity recognition process; moreover, during subsequent verification, the record is more convincing; in addition, the identification algorithm is open, cannot be tampered and is more convincing; the main information interaction of the whole process is completed through the block chain, so that the identity information and the identification conclusion are more credible. In a third aspect, the storage capacity is stronger; although the block chain has non-tamper-ability, its storage capacity is low; the centralized storage is not safe, but has strong storage capacity; the technical scheme of the application is more feasible by combining the advantages of the two; only the hash value is stored in the public block chain, so that the personal privacy is not exposed; and searching information in the record information server according to the hash value on the block chain, so that the information in the record information server cannot be easily modified, otherwise, the information is inconsistent with the information recorded on the block chain and is found.
The multidimensional dynamic identity recognition method based on the block chain further comprises the following steps:
and establishing an examination device, wherein the examination device calls the record data in the record information server and reads the record information hash identification and the identification result ciphertext recorded on the block chain. The recorded data specifically includes the biometric information currently provided by the user, the biometric information of the user recorded in the database of the public trust department, and the identification result.
The examination device compares the recorded information hash mark recorded in the recorded information server with the recorded information hash mark recorded on the blockchain, and if the two recorded information hash marks are not consistent, the examination device indicates that the recorded information hash mark recorded in the recorded information server is tampered. Similarly, the identification result ciphertext recorded in the docketing information server is compared with the identification result ciphertext recorded in the block chain, and if the identification result ciphertext recorded in the docketing information server is inconsistent with the identification result ciphertext recorded in the block chain, the identification result ciphertext recorded in the docketing information server is tampered.
The examination device calls a cross comparison rule and algorithm set in the intelligent contract to cross compare the user biological characteristic information and the service related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user to obtain an examination result, compares the examination result with the identification result, and rechecks the identification result if the examination result is inconsistent with the identification result.
For the convenience of understanding the present application, specific implementation details of the block chain based multidimensional dynamic identity recognition method are further described in detail below with reference to a flow interaction diagram. Fig. 2 is an interaction sequence diagram of the block chain-based multidimensional dynamic identity recognition method according to the embodiment of the present application, where an execution main body of the block chain-based multidimensional dynamic identity recognition method includes an identification device, an application server, a user terminal, and a docketing information server. The identification device may be an identification server or a piece of code running on the blockchain. As shown in fig. 2, the specific interaction flow between the execution entities in the block chain-based multidimensional dynamic identity recognition method is as follows:
s11, the user terminal sends the registration information and the basic personal information for identification to the identification device. The registration information may be block chain account information or user name information of the user terminal.
S22, the user terminal sends service transaction request to the application server, and the application server responds to the service transaction request of the user terminal.
And S33, the user terminal sends the identity authentication authorization and the fingerprint, facial image, iris and other biological characteristic information currently provided by the user to the application server.
And S44, the application server sends an identity authentication request to the identification device through the block chain.
S55, the identification device receives the identity authentication request from the block chain, generates the service number and the public key of the asymmetric encryption, and sends the generated service number and the public key of the asymmetric encryption to the application server through the block chain.
And S66, the application server encrypts the scene application rule and the biological feature information currently provided by the user through a public key and then sends the encrypted information to the block chain.
S77, the identification device reads the encrypted scene application rule and the biological characteristic information currently provided by the user from the block chain and decrypts the information; the identification device retrieves the biological characteristic information of the user and the service-related requirement information from the database of the public trust department according to the registration information and the personal basic information of the user.
S88, the recognition device calls the intelligent contract from the block chain, obtains the cross comparison rule and algorithm, cross compares the user biological characteristic information and the service related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using the cross comparison rule and algorithm based on the service number and the service scene rule, obtains the recognition result, and sends the recognition result to the filing information server.
The identification result comprises whether the identity information of the user is real and reliable; whether the user meets the requirements for handling the current service. For example, if the user is found to be a evasion in the database of the police department, the user does not meet the requirements of normal clearance of the airport and is not allowed to clear. For another example, if the user is not social security checked in the database of the hospital, the user does not satisfy the requirement of medical expense reduction and cannot be reimbursed in real time.
And S99, the recorded information server performs hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in the database of the public letter department and the identification result to obtain the recorded information hash identification. And the record information server encrypts the identification result to obtain an identification result ciphertext. And the record information server records the record information hash identification and the identification result ciphertext on the block chain.
S100, the identification device sends an identification service completion notification to the application server.
And S111, the application server and the user terminal acquire the identification result from the block chain.
As shown in fig. 3, an embodiment of the present application further provides a multidimensional dynamic identity recognition apparatus based on a block chain, which includes a first receiving module 11, a calling module 12, a second receiving module 13, a generating module 14, a decrypting module 15, a calling module 16, a verifying module 17, and a third receiving module 18.
The first receiving module 11 is configured to receive the registration information and the personal basic information sent by the user terminal. The registration information includes, but is not limited to, a blockchain account or a user name of the user terminal. The personal basic information is used for identity recognition and comprises information such as the name, the identification card number and the mobile phone number of the user.
And the calling module 12 is used for calling the user biological characteristic information and the service-related requirement information recorded in the database of the public and trusted department according to the registration information and the personal basic information.
In this embodiment, the retrieving module 12 retrieves biometric information of a user, such as a fingerprint, a face, a voiceprint or an iris, recorded in a database of a public telecommunication department, and service-related requirement information according to information of a block chain account or a user name of a user terminal and information of a name, an identity card number or a mobile phone number of the user. For example, when a user transacts an airport closing business, the information whether the user has a crime record or not needs to be called from a database of a public security department; when a user transacts services such as registration, hospitalization or settlement in a hospital, information whether the user participates in the social security is required to be called from a database of the social security.
And a second receiving module 13, configured to receive, through the blockchain, an identity authentication request sent by the application server when the user terminal transacts the corresponding service.
In the present embodiment, the second receiving module 13 receives only the authentication request of the user terminal that has transmitted the authentication authorization and provided the biometric information to the application server.
And the generating module 14 is configured to generate a service number and an asymmetrically encrypted public key according to the identity authentication request, and send the generated service number and the asymmetrically encrypted public key to the application server.
And the decryption module 15 is configured to decrypt the scene application rule and the biometric information currently provided by the user, which are encrypted by using the asymmetric encrypted public key in the application server, by using the blockchain.
And the invoking module 16 is configured to invoke an intelligent contract from the block chain, where the intelligent contract is provided with rules and algorithms for cross comparison.
And the verification module 17 is configured to perform cross verification on the user biological characteristic information and the service-related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm in the intelligent contract according to the service number and the service scene rule to obtain an identification result.
In this embodiment, the intelligent contract itself is a program that can run automatically, and information in the contract can be automatically verified according to the input parameters, and the verification structure is simpler and more efficient by using the intelligent contract to verify the identity information of the user and whether the service condition information is satisfied.
Based on the biological characteristic information currently provided by the user, strong identity authentication identification data such as the biological characteristic information of the user, service related requirement information and the like provided by a public trust department are used as references, and multi-dimensional data cross verification is performed by adopting the identity identification data of the same user, behavior data and scene data thereof, so that the reliability of identity identification can be ensured; the identity recognition is carried out by adopting the real-time updated behavior data and scene data, so that the validity of the identity recognition of the user can be ensured; and the personalized identity identification requirements of different service providers can be met by adopting the most comprehensive identity information.
A third receiving module 18, configured to receive an instruction that the filing information server has recorded the hash identifier of the filing information and the recognition result ciphertext on the blockchain, and send a notification that the recognition service is completed to the application server and the user terminal.
In this embodiment, the docketing information server performs hash operation on the biometric information currently provided by the user, the biometric information of the user recorded in the database of the public trust department, and the recognition result to obtain a docketing information hash identifier. And the record information server encrypts the identification result to obtain an identification result ciphertext. The record information server records the hash identifier of the record information and the recognition result ciphertext on the block chain, and sends the recorded instruction to the third receiving module 18. The third receiving module 18 receives the instruction and sends a notification to the application server and the user terminal that the identification service is completed. And acquiring the identification result from the block chain to the application server and the user terminal.
The multidimensional dynamic identity recognition device based on the block chain performs dynamic identity recognition by utilizing the characteristics of non-tampering and non-repudiation of the block chain technology. The one-way characteristic of the hash function is utilized to protect the public block chain from exposing the personal privacy of the user, and meanwhile, the follow-up checking of the identity recognition result is facilitated. The identity recognition service requirements under various occasions are matched through different recognition rules under multiple application scenes. The dynamic authentication information enables each participant to verify the latest personal identity information of the user in time.
The embodiment of the application also provides a multidimensional dynamic identity recognition system based on the block chain, which comprises a recognition device, a user terminal, an application server, a record information server and a database of a public trust department. The identification device may be a separate identification server on the configured blockchain, or may be a piece of code running on the blockchain.
The user terminal is used for sending registration information and personal basic information for identity identification to the identification device. And the user terminal is also used for sending a service handling request to the application server according to the service requirement.
The application server is used for sending an identity authentication request to the identification device through the block chain.
The identification device is used for receiving the identity authentication request from the block chain, generating a service number and an asymmetric encrypted public key, and sending the service number and the asymmetric encrypted public key to the application server.
The application server is used for encrypting the scene application rule and the biological characteristic information currently provided by the user through a public key and then transmitting the encrypted scene application rule and the biological characteristic information to the block chain.
The identification device is used for reading the encrypted scene application rule and the biometric information currently provided by the user from the block chain and decrypting the encrypted scene application rule and the biometric information. The identification device is also used for retrieving the biological characteristic information of the user and the service-related requirement information from a database of a public trust department according to the registration information and the personal basic information of the user.
The identification device calls an intelligent contract from the block chain, obtains a cross comparison rule and an algorithm, and cross compares the user biological characteristic information and the service related requirement information recorded in a database of the public trust department and the biological characteristic information currently provided by the user by using the cross comparison rule and the algorithm based on the service number and the service scene rule to obtain an identification result, and sends the identification result to the record information server.
The record information server is used for carrying out Hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of the public letter department and the identification result to obtain a record information Hash mark; the device is also used for encrypting the identification result to obtain an identification result ciphertext; and publishing the record information hash mark and the recognition result ciphertext on the block chain.
The recognition device is used for feeding back the notice that the recognition service is completed to the application server.
And the application server and the user terminal acquire the identification result from the block chain.
In this embodiment, the multidimensional dynamic identity recognition system based on the blockchain further includes an examination device, where the examination device retrieves the docketing data from the docketing information server, reads the docketing information hash identifier and the recognition result ciphertext recorded on the blockchain, and verifies whether the docketing information hash identifier and the recognition result ciphertext are correct; meanwhile, cross recognition rules and algorithms in the intelligent contract are called to verify whether the recognition result recorded in the filing information server is consistent with the recognition result recorded on the block chain.
Once the identification information in the application is used, the identification information is recorded through a block chain, and a certificate is stored for data audit in the future, so that a foundation is established for personal reputation evaluation. The record information server provides a centralized database for recording the user identification result and reserving the basis for future inspection. The disclosed blockchain is used for recording the hash value of the user record information, so that the user privacy is not exposed, and the record information can be prevented from being tampered.
The foregoing is merely an illustrative embodiment of the present application, and any equivalent changes and modifications made by those skilled in the art without departing from the spirit and principles of the present application shall fall within the protection scope of the present application.
Claims (10)
1. A multidimensional dynamic identity recognition method based on a block chain is characterized by comprising the following steps:
receiving registration information and personal basic information for identity recognition sent by a user terminal;
according to the received registration information and the personal basic information, user biological characteristic information and business related requirement information recorded in a database of a public trust department are called;
receiving an identity authentication request sent by an application server when a user terminal transacts corresponding services through a block link;
generating a service number and an asymmetrically encrypted public key according to the received identity authentication request, and sending the generated service number and the asymmetrically encrypted public key to the application server;
reading a scene application rule encrypted by using an asymmetrically encrypted public key in an application server and the biological characteristic information currently provided by a user through a block chain, and decrypting;
calling an intelligent contract from the block chain, wherein the intelligent contract is provided with a cross comparison rule and algorithm;
based on the service number and the service scene rule, performing cross validation on the user biological characteristic information and service related requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm to obtain an identification result, and sending the biological characteristic information currently provided by the user, the user biological characteristic information recorded in the database of the public trust department and the identification result to a record information server;
and receiving an instruction that the record information server records the record information hash identifier and the identification result ciphertext on the block chain, and sending a notification that the identification service is completed to the application server and the user terminal.
2. The method according to claim 1, wherein in the step of receiving an identity authentication request sent by the application server through the blockchain when the user terminal transacts the corresponding service, before the application server sends the identity authentication request, the user terminal is required to authorize the application server to authenticate the identity of the user terminal according to the service requirement, and simultaneously, the user terminal is required to provide current biometric information to the application server.
3. The method for multidimensional dynamic identity recognition based on block chains according to claim 1, wherein the step of cross-verifying the user biological feature information and service-related requirement information recorded in the database of the public trust department and the biological feature information currently provided by the user by using a cross-comparison rule and an algorithm based on the service number and the service scenario rule comprises the following steps:
verifying the identity of the user; comparing the biological characteristic information currently provided by the user with the biological characteristic information of the user recorded in a database of a public trust department, and if the biological characteristic information and the biological characteristic information of the user are consistent, indicating that the identity information of the user is real and reliable;
verifying whether the user meets the service handling condition; and comparing the service requirement of the user with the service related requirement information recorded in the database of the public letter department, wherein the service requirement of the user is true and reliable, and if the service requirement of the user meets the service handling condition, the user is indicated to have the condition for handling the current service.
4. The blockchain-based multidimensional dynamic identity recognition method according to claim 1, wherein the step of receiving the instruction that the docketing information server has recorded the docketing information hash id and the recognition result ciphertext on the blockchain, the docketing information server performs the following operations:
performing hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result to obtain a record information hash identifier;
encrypting the identification result to obtain an identification result ciphertext;
and recording the record information hash identification and the identification result ciphertext on the block chain.
5. The method of claim 1, wherein after the step of sending the notification that the identification service is completed to the application server and the user terminal, the method further comprises the following steps: and sending the identification result to the application server and the user terminal through the block chain.
6. The blockchain-based multidimensional dynamic identification method according to claim 1, wherein the blockchain-based multidimensional dynamic identification method further comprises the steps of:
establishing a checking device;
the examination device calls the recorded data in the recorded information server and reads the recorded hash identification of the recorded on the block chain and the identification result ciphertext; the record data specifically comprises the biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result;
the examination device compares the recorded information hash mark recorded in the recorded information server with the recorded information hash mark recorded on the block chain, and compares the recognition result ciphertext recorded in the recorded information server with the recognition result ciphertext recorded on the block chain;
the examination device calls a cross comparison rule and algorithm set in the intelligent contract to cross compare the biological characteristic information of the user and the relevant service requirement information recorded in the database of the public trust department and the biological characteristic information currently provided by the user to obtain an examination result; and comparing the examination result with the identification result.
7. A multidimensional dynamic identity recognition device based on a block chain is characterized by comprising a first receiving module, a calling module, a second receiving module, a generating module, a decrypting module, a calling module, a verifying module and a third receiving module;
the first receiving module is used for receiving the registration information and the personal basic information sent by the user terminal;
the calling module is used for calling the user biological characteristic information and the service related requirement information recorded in a database of the public and trusted department according to the registration information and the personal basic information;
the second receiving module is used for receiving an identity authentication request sent by the application server when the user terminal handles the corresponding service through the block link;
the generating module is used for generating a service number and an asymmetrically encrypted public key according to the identity authentication request and sending the generated service number and the asymmetrically encrypted public key to the application server;
the decryption module is used for reading the scene application rule encrypted by the asymmetric encrypted public key in the application server and the biological characteristic information currently provided by the user through the block chain and then decrypting the scene application rule and the biological characteristic information;
the calling module is used for calling the intelligent contract from the block chain, wherein the intelligent contract is provided with cross comparison rules and algorithms;
the verification module is used for performing cross verification on the user biological characteristic information and service related requirement information recorded in a database of a public trust department and the biological characteristic information currently provided by the user by using a cross comparison rule and an algorithm in an intelligent contract according to the service number and a service scene rule to obtain an identification result;
and the third receiving module is used for receiving an instruction that the record information server records the record information hash identifier and the identification result ciphertext on the block chain, and sending a notification that the identification service is completed to the application server and the user terminal.
8. The device according to claim 7, wherein the docket information server is configured to perform a hash operation on the biometric information currently provided by the user, the biometric information of the user recorded in the database of the public trust department, and the recognition result to obtain a docket information hash identifier; and the method is also used for encrypting the identification result to obtain an identification result ciphertext.
9. A multidimensional dynamic identity recognition system based on a block chain is characterized by comprising a recognition device, a user terminal, an application server, a record information server and a database of a public trust department;
the user terminal is used for sending registration information and personal basic information for identity identification to the identification device; the user terminal is also used for sending a service handling request to the application server according to service requirements;
the application server is used for sending an identity authentication request to the identification device through the block chain;
the identification device is used for receiving an identity authentication request from the block chain, generating a service number and an asymmetric encrypted public key, and sending the service number and the asymmetric encrypted public key to the application server;
the application server is used for encrypting the scene application rule and the biological characteristic information currently provided by the user through a public key and transmitting the encrypted scene application rule and the biological characteristic information to the block chain;
the identification device is used for reading the encrypted scene application rule and the biological characteristic information currently provided by the user from the block chain and decrypting the encrypted scene application rule and the biological characteristic information; the identification device is also used for calling the biological characteristic information of the user and the service-related requirement information from a database of a public trust department according to the registration information and the personal basic information of the user; the identification device calls an intelligent contract from the block chain, obtains a cross comparison rule and algorithm, performs cross comparison on user biological characteristic information and service related requirement information recorded in a database of a public trust department and biological characteristic information currently provided by a user by using the cross comparison rule and algorithm based on a service number and a service scene rule to obtain an identification result, and sends the identification result to the record information server;
the record information server is used for carrying out Hash operation on the received biological characteristic information currently provided by the user, the user biological characteristic information recorded in a database of a public trust department and an identification result to obtain a record information Hash mark; the device is also used for encrypting the identification result to obtain an identification result ciphertext; and publishing the record information hash mark and the recognition result ciphertext on the block chain;
the identification device is used for feeding back a notice that the identification service is completed to the application server;
and the application server and the user terminal acquire the identification result from the block chain.
10. The multidimensional dynamic identity recognition system based on the block chain as claimed in claim 9, wherein the multidimensional dynamic identity recognition system based on the block chain is further provided with an examination device, the examination device retrieves the docketing data from the docketing information server, reads the docketing information hash identifier and the recognition result ciphertext recorded on the block chain, and verifies whether the docketing information hash identifier and the recognition result ciphertext are correct; meanwhile, cross recognition rules and algorithms in the intelligent contract are called to verify whether the recognition result recorded in the filing information server is consistent with the recognition result recorded on the block chain.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910066499.9A CN109768983B (en) | 2019-01-24 | 2019-01-24 | Block chain-based multi-dimensional dynamic identity recognition method, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910066499.9A CN109768983B (en) | 2019-01-24 | 2019-01-24 | Block chain-based multi-dimensional dynamic identity recognition method, device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109768983A CN109768983A (en) | 2019-05-17 |
| CN109768983B true CN109768983B (en) | 2021-07-27 |
Family
ID=66455172
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910066499.9A Active CN109768983B (en) | 2019-01-24 | 2019-01-24 | Block chain-based multi-dimensional dynamic identity recognition method, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109768983B (en) |
Families Citing this family (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110336797B (en) * | 2019-06-18 | 2020-09-15 | 阿里巴巴集团控股有限公司 | Enterprise authentication and authentication tracing method, device and equipment based on block chain |
| CN111859347A (en) * | 2019-08-01 | 2020-10-30 | 创新先进技术有限公司 | Identity verification method, device and equipment based on block chain |
| CN111355781B (en) * | 2020-02-18 | 2021-06-08 | 腾讯科技(深圳)有限公司 | Voice information communication management method, device and storage medium |
| CN111368330B (en) * | 2020-03-03 | 2022-08-05 | 泰华智慧产业集团股份有限公司 | Ethernet intelligent contract auditing system and method based on block chain |
| CN113743914A (en) * | 2020-05-27 | 2021-12-03 | 北京金山云网络技术有限公司 | Client identity authentication method, device, equipment and storage medium |
| CN112671782B (en) * | 2020-12-28 | 2023-03-14 | 福建网龙计算机网络信息技术有限公司 | File encryption method and terminal |
| CN112925846A (en) * | 2021-01-18 | 2021-06-08 | 迅鳐成都科技有限公司 | Historical operation tracing method and system based on block chain and identity authentication |
| CN113190815A (en) * | 2021-04-27 | 2021-07-30 | 安徽中科晶格技术有限公司 | Identity authentication system and method based on safe deposit box |
| CN113344578A (en) * | 2021-06-21 | 2021-09-03 | 支付宝(杭州)信息技术有限公司 | Object processing method and device based on block chain |
| CN116662963B (en) * | 2023-07-20 | 2024-04-05 | 山邮数字科技(山东)有限公司 | Intelligent government affair information management method based on block chain |
| CN117494092B (en) * | 2023-11-14 | 2024-06-04 | 深圳市策城软件有限公司 | Scenic spot ticket non-inductive verification method, system and medium based on living organism identification |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107257340A (en) * | 2017-06-19 | 2017-10-17 | 阿里巴巴集团控股有限公司 | A kind of authentication method, authentication data processing method and equipment based on block chain |
| CN107391944A (en) * | 2017-07-27 | 2017-11-24 | 北京太云科技有限公司 | A kind of electronic health record shared system based on block chain |
| CN108234515A (en) * | 2018-01-25 | 2018-06-29 | 中国科学院合肥物质科学研究院 | A kind of Self-certified digital identity management system and its method based on intelligent contract |
| CN109102285A (en) * | 2018-07-30 | 2018-12-28 | 上海淳麒金融信息服务有限公司 | Supply chain finance implementation method and its control system based on block chain duplex structure |
| CN109147946A (en) * | 2018-08-14 | 2019-01-04 | 广东博云公共平台网络科技有限公司 | A kind of method and data collection system acquiring health data by intelligent water dispenser |
-
2019
- 2019-01-24 CN CN201910066499.9A patent/CN109768983B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107257340A (en) * | 2017-06-19 | 2017-10-17 | 阿里巴巴集团控股有限公司 | A kind of authentication method, authentication data processing method and equipment based on block chain |
| CN107391944A (en) * | 2017-07-27 | 2017-11-24 | 北京太云科技有限公司 | A kind of electronic health record shared system based on block chain |
| CN108234515A (en) * | 2018-01-25 | 2018-06-29 | 中国科学院合肥物质科学研究院 | A kind of Self-certified digital identity management system and its method based on intelligent contract |
| CN109102285A (en) * | 2018-07-30 | 2018-12-28 | 上海淳麒金融信息服务有限公司 | Supply chain finance implementation method and its control system based on block chain duplex structure |
| CN109147946A (en) * | 2018-08-14 | 2019-01-04 | 广东博云公共平台网络科技有限公司 | A kind of method and data collection system acquiring health data by intelligent water dispenser |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109768983A (en) | 2019-05-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109768983B (en) | Block chain-based multi-dimensional dynamic identity recognition method, device and system | |
| EP3721578B1 (en) | Methods and systems for recovering data using dynamic passwords | |
| US20180343120A1 (en) | Systems and methods for providing a universal decentralized solution for verification of users with cross-verification features | |
| US20180248699A1 (en) | Systems and methods for providing a universal decentralized solution for verification of users with cross-verification features | |
| US20220052852A1 (en) | Secure biometric authentication using electronic identity | |
| US10887098B2 (en) | System for digital identity authentication and methods of use | |
| US20200211002A1 (en) | System and method for authorization token generation and transaction validation | |
| US20210385219A1 (en) | Method and system for data security within independent computer systems and digital networks | |
| CN117150581A (en) | Secure identity and profile management system | |
| US11736291B2 (en) | Digital notarization using a biometric identification service | |
| CN111897879B (en) | Transaction record sharing method and device based on blockchain network and electronic equipment | |
| CN112700250B (en) | Identity authentication method, device and system in financial scene | |
| EP3997856A1 (en) | Risk mitigation for a cryptoasset custodial system using a hardware security key | |
| CN114761952A (en) | Techniques to provide secure federated machine learning | |
| KR20210058608A (en) | History management method, apparatus and program for preventing fake using blockchain | |
| US20230050280A1 (en) | Computer-implemented user identity verification method | |
| WO2019209291A1 (en) | Systems and methods for providing a universal decentralized solution for verification of users with cross-verification features | |
| CN116195231A (en) | Token fault protection system and method | |
| WO2019209286A1 (en) | Systems and methods for providing a universal decentralized solution for verification of users with cross-verification features | |
| KR20210058092A (en) | Blockchain-based transaction history management method with transactor authentication using eid | |
| KR20210058091A (en) | Method for providing history management system by assigning authentication mark and blockchain-based fake prevention | |
| US20240104521A1 (en) | System and method for compliance-enabled digitally represented assets | |
| US20230267426A1 (en) | Payment system, coin register, participant unit, transaction register, monitoring register and method for payment with electronic coin data sets | |
| CN110914821B (en) | System and method for identity atomization and use | |
| WO2020117735A1 (en) | Data protection system including cryptographic key retrieval |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |