CN110060055B - Digital asset hosting method and device in block chain and electronic equipment - Google Patents
Digital asset hosting method and device in block chain and electronic equipment Download PDFInfo
- Publication number
- CN110060055B CN110060055B CN201910203356.8A CN201910203356A CN110060055B CN 110060055 B CN110060055 B CN 110060055B CN 201910203356 A CN201910203356 A CN 201910203356A CN 110060055 B CN110060055 B CN 110060055B
- Authority
- CN
- China
- Prior art keywords
- transaction
- digital asset
- signature
- client
- trustee
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 44
- 238000012545 processing Methods 0.000 claims abstract description 79
- 230000006870 function Effects 0.000 claims description 15
- 125000004122 cyclic group Chemical group 0.000 claims description 7
- 238000004590 computer program Methods 0.000 claims description 6
- 238000012795 verification Methods 0.000 claims description 4
- 230000005540 biological transmission Effects 0.000 claims description 3
- 230000008569 process Effects 0.000 description 13
- 238000010586 diagram Methods 0.000 description 9
- 230000007246 mechanism Effects 0.000 description 6
- 230000008520 organization Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 2
- 239000000654 additive Substances 0.000 description 1
- 230000000996 additive effect Effects 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000011022 operating instruction Methods 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1097—Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Computer Security & Cryptography (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The embodiment of the specification relates to a digital asset hosting method, a digital asset hosting device and an electronic device in a block chain, wherein the digital asset hosting method comprises the following steps: the client-side conducts blind processing on the transaction to be signed, and sends the transaction after blind processing to a preset number of digital asset trusteeship ends in all selected digital asset trusteeship ends; the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature, and sends the blinding processing transaction signature to the client; and the client receives the blinded transaction signature, and obtains the transaction signature of the client according to the blinded transaction signature of the selected digital asset trustee end. Through the scheme, the privacy of the user transaction information and the safety of the digital assets are improved.
Description
Technical Field
The embodiment of the specification relates to the technical field of networks, in particular to a digital asset hosting method and device in a block chain and electronic equipment.
Background
With the development of the blockchain technology, the problem of secure preservation of digital assets in the blockchain has received a lot of attention. In the blockchain, the digital asset of the user corresponds to the private key of the user, and the user spends the digital asset by signing the transaction with the private key, so that saving the private key is equivalent to saving the digital asset. However, many users choose to deposit assets at an exchange or a single asset escrow facility because private keys are typically a meaningless string of bits that are difficult to remember and difficult to retrieve once lost. However, this approach has two problems:
1. and (4) safety problems. A single centralized asset hosting facility is selected to store assets, and a problem with the hosting facility can result in significant asset loss. For example, Gerald Cotton, a chief executive officer and founder of the largest cryptocurrency exchange QuadrigaCX in 12 months, Canada, in 2018, was unexpectedly removed, resulting in the loss of 2.5 billion of dollars in assets among 115,000 customers, since only he holds the key for the digital asset.
2. Privacy concerns. When a user signs a transaction through an exchange or an asset escrow, these institutions will see the original information of the user's transaction, resulting in privacy exposure for the user.
Therefore, how to secure digital assets of the blockchain and protect user privacy is a problem to be solved.
Disclosure of Invention
The embodiment of the specification provides a digital asset hosting method and device in a block chain and electronic equipment, and aims to solve the problems that in the prior art, the safety of digital assets stored through an asset hosting mechanism and the privacy of user transaction are poor.
In order to solve the above technical problem, the embodiments of the present specification adopt the following technical solutions:
in a first aspect, a method for digital asset hosting in a blockchain is provided, the method comprising:
the client-side carries out blinding processing on the transaction to be signed;
the client sends the transaction after the blinding processing to the selected digital asset trusteeship end;
the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature; sending the blinded transaction signature to the client;
the client receives a blinded transaction signature sent by the digital asset trustee end;
and the client side obtains the transaction signature of the client side according to the blinding transaction signature of the selected digital asset management end.
In a second aspect, a client is provided, which is applied to digital asset hosting in a blockchain, and includes:
the blinding processing module is used for blinding the transaction to be signed;
the transmission module is used for transmitting the transaction after the blinding processing to the selected digital asset trusteeship end;
the receiving module is used for receiving the blinded transaction signature sent by the digital asset trustee end;
and the signature processing module is used for processing the transaction signature according to the blinding of the selected digital asset trustee end to obtain the transaction signature of the client.
In a third aspect, there is provided an apparatus for digital asset hosting in a blockchain, the apparatus comprising:
the receiving module is used for receiving the transaction after the blinding processing sent by the client;
the signature module is used for signing the transaction after the blinding processing to obtain a blinded transaction signature;
and the sending module is used for sending the blinded transaction signature to the client.
In a fourth aspect, an electronic device is provided, comprising a memory, a processor, and a computer program stored on the memory and executable on the processor, the computer program being executed by the processor to:
the client-side carries out blinding processing on the transaction to be signed;
the client sends the transaction after the blinding processing to the selected digital asset trusteeship end;
the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature; sending the blinded transaction signature to the client;
the client receives a blinded transaction signature sent by the digital asset trustee end;
and the client side obtains the transaction signature according to the blinded transaction signature of the selected digital asset trustee end.
In a fifth aspect, a computer-readable storage medium is provided that stores one or more programs which, when executed by an electronic device including a plurality of application programs, cause the electronic device to perform operations comprising:
the client-side carries out blinding processing on the transaction to be signed;
the client sends the transaction after the blinding processing to the selected digital asset trusteeship end;
the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature; sending the blinded transaction signature to the client;
the client receives a blinded transaction signature sent by the digital asset trustee end;
and the client side obtains the transaction signature according to the blinded transaction signature of the selected digital asset trustee end.
In a sixth aspect, there is provided a digital asset hosting system in a blockchain, the system comprising a client and a plurality of digital asset hosting pipes, wherein:
the client is used for conducting blind processing on the transaction to be signed; sending the transaction after the blinding processing to a preset number of digital asset trusteeship ends in all selected digital asset trusteeship ends; receiving a blinded transaction signature sent by the selected digital asset trustee end; obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset management end;
the digital asset trusteeship end is used for receiving the transaction after the blinding processing sent by the client; signing the transaction after the blinding processing by using a private key sent by the client to obtain a blinded transaction signature; and sending the blinded transaction signature to the client.
The embodiment of the specification adopts at least one technical scheme which can achieve the following beneficial effects:
according to the technical scheme, the transaction to be signed is blindly processed and then sent to the digital asset trustee end, the digital asset trustee end cannot know the transaction information of the client, privacy of the transaction information of a user is improved, and because only the preset number of digital asset trustee ends are arranged in all the digital asset trustee ends to carry out signature processing on the blindly processed transaction, when one digital asset trustee end fails, the blindly processed transaction can be signed by arranging other digital assets in all the digital asset trustee ends, asset loss caused by unreliability of the digital asset trustee end is prevented, and safety of the digital assets is improved.
Drawings
In order to more clearly illustrate the embodiments of the present specification or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, it is obvious that the drawings in the following description are only some embodiments described in the embodiments of the present specification, and for those skilled in the art, other drawings can be obtained according to the drawings without any creative efforts.
Fig. 1 is a schematic diagram illustrating steps of a digital asset hosting method in a blockchain according to an embodiment of the present specification;
fig. 2 is a schematic structural diagram of an electronic device provided in an embodiment of the present specification;
fig. 3 is a schematic structural diagram of a client applied to digital asset hosting in a blockchain according to an embodiment of the present specification;
FIG. 4 is a block diagram of a digital asset hosting device in a blockchain provided by embodiments of the present specification;
fig. 5 is a schematic structural diagram of a digital asset hosting system in a block chain according to an embodiment of the present specification.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present disclosure more clear, the technical solutions of the embodiments of the present disclosure will be clearly and completely described below with reference to the specific embodiments of the present disclosure and the accompanying drawings. It is to be understood that the embodiments described are only a few embodiments of the present disclosure, and not all embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments in the present specification without any creative effort belong to the protection scope of the embodiments in the present specification.
The technical solutions provided by the embodiments of the present description are described in detail below with reference to the accompanying drawings.
It should be noted that, in the embodiment of the present specification, the transaction to be signed is blindly processed and then sent to the digital asset trustee end, and the digital asset trustee end cannot know the transaction information of the client, so that privacy of the transaction information of the user is improved.
Example one
Referring to fig. 1, a schematic diagram of steps of a digital asset hosting method in a blockchain according to an embodiment of the present disclosure is provided. The embodiments of the present disclosure will be described in detail below with reference to the flow of steps shown in fig. 1.
Step 102: and the client performs blinding processing on the transaction to be signed.
In an embodiment of the present invention, when a user hosts a digital asset to a plurality of digital asset hosting organizations, it is first necessary to generate private key shares (a private key share refers to a private key in a key pair, but is generally referred to as a share in threshold cryptography) for the plurality of digital asset hosting organizations, and send the key pair to a corresponding digital asset hosting pipe. The communication mode in which the user sends the key pair using the client is also encrypted, and specifically, the sending mode in the prior art, for example, sending using a security protocol ssl (secure Sockets layer), may be used.
In the embodiment of the present invention, taking an example that a user hosts assets at three digital asset hosting organizations and uses signatures of two hosting parties to recover the signatures of the user, firstly, the user generates private keys for the three digital asset hosting organizations, and the specific manner is as follows:
let the private key of user be s ∈ Zp,ZpFor additive cyclic groups, the user public key is
User selection of a ZpThe first-order polynomial P above satisfies the condition that P (0) is s, and s is calculated1=P(1),s2=P(2),s3=P(3),
The key pairs of the three asset hosting organizations, namely the public and private key pairs are respectively: (s)1,v1),(s2,v2),(s3,v3). The user uses the client to manage the public and private of the organizationThe key pair is sent to the corresponding digital asset hosting facility.
Wherein the public parameter is (G)1,G2,GT,e,g1,g2P, h) in which G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2And e is a bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1。
If the user needs to sign the transaction Tx, the user blinds the transaction Tx, and the specific processing mode is as follows:
and carrying out hash operation on the transaction to be signed to obtain a hash value h (Tx) of the transaction to be signed, wherein h (·) represents a hash function.
And respectively carrying out exponential operation of the Lagrange coefficient of the selected digital asset trustee end on the hash value to obtain the transaction after the blinding processing.
Two digital asset hosting mechanisms 1 and 2, λ, may be selected among the three digital asset hosting mechanisms1And λ2Lagrangian coefficients for the selected two digital asset hosting facilities respectively,
mod represents the remainder, then the digital asset hosting facilities 1 and 2 are respectively for the blinded transactions
Step 104: and the client sends the transaction after the blinding processing to the digital asset management ends with preset quantity in all the selected digital asset management ends.
In the embodiment of the invention, a user hosts the digital assets to a plurality of hosting organizations, and when the transaction needs to be signed, a preset number of digital asset hosting organizations in all the digital asset hosting organizations can be selected to sign the transaction. For example, two hosting institutions are selected from three digital asset hosting institutions to sign the transaction.
The preset number can be flexibly set as required, and the preset number can be set to be smaller than the total number of the digital asset hosting mechanisms.
Step 106: and the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature.
In this step, the digital asset escrow end uses the private key sent by the client to sign the transaction after the blinding process.
The digital asset hosting organization 1 signs the transaction after the blinding process by using a private key, and the obtained transaction signature is as follows:
the digital asset hosting mechanism 2 signs the transaction after the blinding process by using a private key, and the obtained transaction signature is as follows:
step 108: the digital asset trustee end sends the blinded transaction signature to the client.
Step 110: the client receives the blinded transaction signature.
Step 112: and the client side obtains the transaction signature of the client side according to the blinding processing transaction signature of the selected digital asset management end.
In the embodiment of the invention, before the transaction signature is blinded according to the selected digital asset trusteeship end, the blinded transaction signature sent by the digital asset trusteeship end can be verified to determine whether the signature is correct, and the following formula is specifically adopted:
wherein Tx is the transaction to be signed, and m is the number of selected digital asset hosted ends;
and (4) confirming whether the left side and the right side of the equal sign of the above formula are equal or not, and if so, judging that the signature is correct.
When the signature is confirmed to be correct, the transaction signature of the user is determined by adopting the following formula:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiTo blindly process the transaction signature for the ith digital asset trustee end, i is 1,2, … n, n is a preset number of digital asset trustees ends.
And after determining the transaction signature, the user packs the transaction signature and the transaction content and sends the transaction signature and the transaction content to the blockchain.
In the embodiment of the invention, the private key s of the escrow mechanism i is selected for the description simplicityiTo P (i), a secret large number x may be chosen in practiceiTo calculate siP (i) as private key of escrow mechanism i, xiOnly the user knows, therefore, the hosting organization i cannot calculate the lambda of the hosting organization i, and therefore the privacy of the user is guaranteed.
In the above embodiment, if the hosting organization 1 of the digital asset hosting organizations 1 and 2 fails, the user can reselect the hosting organizations 2 and 3 to sign the transaction, thereby avoiding the security problem of the digital asset due to single point failure.
According to the embodiment of the invention, the transaction to be signed is blindly processed and then sent to the digital asset trustee end, the digital asset trustee end cannot acquire the transaction information of the client, so that the privacy of the transaction information of a user is improved, and because only a preset number of digital asset trustee ends are arranged in all the digital asset trustee ends to sign the blindly processed transaction, when one of the digital asset trustee ends fails, the blindly processed transaction can be signed by arranging other digital assets in all the digital asset trustee ends, so that the asset loss caused by unreliability of the digital asset trustee end is prevented, and the safety of the digital assets is improved.
Example two
The electronic apparatus of the embodiment of the present specification is described in detail below with reference to fig. 2. Referring to fig. 2, at a hardware level, the electronic device includes a processor, and optionally further includes an internal bus, a network interface, and a memory. The Memory may include a Memory, such as a Random-Access Memory (RAM), and may further include a Non-Volatile Memory (Non-Volatile Memory), such as at least 1 disk Memory. Of course, the electronic device may also include hardware required for other services.
The processor, the network interface, and the memory may be interconnected by an internal bus, which may be an Industry Standard Architecture (ISA) bus, a Peripheral Component Interconnect (PCI) bus, an Extended ISA (EISA) bus, or the like. The bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one double-headed arrow is shown in FIG. 2, but this does not indicate only one bus or one type of bus.
And the memory is used for storing programs. In particular, the program may include program code comprising computer operating instructions. The memory may include both memory and non-volatile storage and provides instructions and data to the processor.
The processor reads the corresponding computer program from the nonvolatile memory into the memory and then runs the computer program to form the content recommendation device on a logic level. And the processor is used for executing the program stored in the memory and is specifically used for executing the method operation executed when the server is taken as an execution main body.
The method disclosed in the embodiment of fig. 1 in the present specification may be applied to a processor, or may be implemented by a processor. The processor may be an integrated circuit chip having signal processing capabilities. In implementation, the steps of the above method may be performed by integrated logic circuits of hardware in a processor or instructions in the form of software. The Processor may be a general-purpose Processor, including a Central Processing Unit (CPU), a Network Processor (NP), and the like; but also Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete Gate or transistor logic devices, discrete hardware components. The various methods, steps and logic blocks disclosed in the embodiments of the present specification may be implemented or performed. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. The steps of a method disclosed in connection with the embodiments of the present specification may be embodied directly in a hardware decoding processor, or in a combination of hardware and software modules in the decoding processor. The software module may be located in ram, flash memory, rom, prom, or eprom, registers, etc. storage media as is well known in the art. The storage medium is located in a memory, and a processor reads information in the memory and completes the steps of the method in combination with hardware of the processor.
The electronic device may also execute the method of fig. 1, and implement the functions of the embodiment shown in fig. 1, which is applied to a client for digital asset hosting in a block chain, and the embodiments of this specification are not described herein again.
Of course, besides the software implementation, the electronic device of the embodiment of the present disclosure does not exclude other implementations, such as a logic device or a combination of software and hardware, and the like, that is, the execution subject of the following processing flow is not limited to each logic unit, and may also be hardware or a logic device.
EXAMPLE III
The present specification embodiments also provide a computer-readable storage medium storing one or more programs which, when executed by an electronic device including a plurality of application programs, cause the electronic device to perform the following:
the client-side carries out blinding processing on the transaction to be signed;
the client sends the transaction after the blinding processing to the selected digital asset trusteeship end;
the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature; sending the blinded transaction signature to the client;
the client receives a blinded transaction signature sent by the digital asset trustee end;
and the client side obtains the transaction signature according to the blinded transaction signature of the selected digital asset trustee end.
The computer-readable storage medium may be a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk.
Example four
Referring to fig. 3, a schematic structural diagram of a client, provided in this specification, for digital asset hosting in a blockchain, mainly includes:
a blinding processing module 302, configured to blindly process a transaction to be signed;
a sending module 304, configured to send the blinded transaction to a selected digital asset hosting end;
a receiving module 306, configured to receive a blinded transaction signature sent by the digital asset trustee;
and the signature processing module 308 is configured to obtain the transaction signature of the client according to the blinded transaction signature of the selected digital asset trustee end.
The blinding processing module is specifically configured to:
carrying out hash operation on the transaction to be signed to obtain a hash value of the transaction to be signed;
and respectively carrying out exponential operation of Lagrange coefficients of the selected digital asset trusteeship ends on the hash values to obtain the transaction after the blinding processing.
The sending module is further configured to send a private key, so that the digital asset trustee end uses the private key to sign the transaction after the blinding process to obtain a blinding process transaction signature.
The client further comprises:
the verification module 310 is configured to verify that the signature of the blinded transaction signature sent by the digital asset trustee is correct before obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset trustee.
The verification module 310 is specifically configured to determine whether the left and right of the equal sign of the following formula are equal:
where Tx is the transaction to be signed, m is the number of digital asset hosted ends selected, e is the bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1,G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2,δiFor blinding transaction signatures for ith digital asset hosted end, viReceiving the client's private key, λ, for the ith digital asset escrow endiLagrange coefficients for the stinger end of the ith selected digital asset;
and if the left side and the right side of the formula equal number are equal, the signature of the blinded transaction signature transmitted by the digital asset trustee end is confirmed to be correct.
The signature processing module is specifically configured to:
and determining the transaction signature of the client by adopting the following formula according to the blinded transaction signature of each digital asset trustee end:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiTo blindly process the transaction signature for the ith digital asset trustee end, i is 1,2, … n, n is a preset number of digital asset trustees ends.
EXAMPLE five
Referring to fig. 4, a schematic structural diagram of a digital asset hosting device in a blockchain provided for an embodiment of the present specification, the device includes:
a receiving module 402, configured to receive a transaction after blinding processing sent by a client;
a signature module 404, configured to sign the transaction after the blinding process, so as to obtain a blinded transaction signature;
a sending module 406, configured to send the blinded transaction signature to the client.
The signature module 404 is specifically configured to:
and signing the transaction after the blinding processing by using a private key sent by the client to obtain a blinded transaction signature.
EXAMPLE six
Referring to fig. 5, a schematic structural diagram of a digital asset hosting system in a block chain provided for an embodiment of the present specification includes a client 502 and a plurality of digital asset hosting ends 504, where:
the client 502 is configured to perform blind processing on a transaction to be signed; sending the transaction after the blinding processing to a preset number of digital asset trusteeship ends in all selected digital asset trusteeship ends; receiving a blinded transaction signature sent by the selected digital asset trustee end; processing the blinded transaction signature of the selected digital asset trustee end to obtain the transaction signature of the client;
the digital asset trustee end 504 is used for receiving the transaction after the blinding processing sent by the client; signing the transaction after the blinding processing by using a private key sent by the client to obtain a blinded transaction signature; and sending the blinded transaction signature to the client.
The client performs blind processing on the transaction to be signed, and specifically comprises the following steps: carrying out hash operation on the transaction to be signed to obtain a hash value of the transaction to be signed; and respectively carrying out exponential operation of Lagrange coefficients of the selected digital asset trusteeship ends on the hash values to obtain the transaction after the blinding processing.
The client obtains the transaction signature of the client according to the blinding transaction signature of the selected digital asset management end, and specifically comprises the following steps:
and determining the transaction signature of the client by adopting the following formula according to the blinded transaction signature of each digital asset trustee end:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiTo blindly process the transaction signature for the ith digital asset trustee end, i is 1,2, … n, n is a preset number of digital asset trustees ends.
According to the embodiment of the invention, the transaction to be signed is blindly processed and then sent to the digital asset trustee end, the digital asset trustee end cannot acquire the transaction information of the client, so that the privacy of the transaction information of a user is improved, and because only a preset number of digital asset trustee ends are arranged in all the digital asset trustee ends to sign the blindly processed transaction, when one of the digital asset trustee ends fails, the blindly processed transaction can be signed by arranging other digital assets in all the digital asset trustee ends, so that the asset loss caused by unreliability of the digital asset trustee end is prevented, and the safety of the digital assets is improved.
In short, the above description is only a preferred embodiment of the present disclosure, and is not intended to limit the scope of the present disclosure. Any modification, equivalent replacement, improvement and the like made within the spirit and principle of the embodiments of the present disclosure should be included in the protection scope of the embodiments of the present disclosure.
The systems, devices, modules or units illustrated in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. One typical implementation device is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smartphone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices.
Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
The embodiments in the present specification are all described in a progressive manner, and the same and similar parts among the embodiments can be referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the system embodiment, since it is substantially similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to the partial description of the method embodiment.
Claims (15)
1. A method of digital asset hosting in a blockchain, the method comprising:
the client-side carries out blinding processing on the transaction to be signed;
the client sends the transaction after the blinding processing to a preset number of digital asset trusteeship ends in all selected digital asset trusteeship ends;
the digital asset hosting end signs the transaction after the blinding processing to obtain a blinding processing transaction signature; sending the blinded transaction signature to the client;
the client receives the blinded transaction signature sent by the selected digital asset trustee end;
the client side obtains a transaction signature of the client side according to the blinding transaction signature of the selected digital asset trustee end;
before obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset trustee end, the method further comprises the following steps: verifying that the signature of the blinded transaction signature sent by the digital asset trustee end is correct;
the verifying that the signature of the blinded transaction signature sent by the digital asset trustee end is correct specifically comprises:
confirming whether the left side and the right side of the equal sign of the following formula are equal or not:
where Tx is the transaction to be signed, m is the number of digital asset hosted ends selected, e is the bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1,G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2,δiBlinding transaction signatures for ith digital asset hosted end, viReceiving the client's private key, λ, for the ith digital asset escrow endiLagrange coefficients for the stinger end of the ith selected digital asset;
and if the left side and the right side of the formula equal number are equal, the signature of the blinded transaction signature transmitted by the digital asset trustee end is confirmed to be correct.
2. The method according to claim 1, wherein the client blinds the transaction to be signed, and specifically comprises:
carrying out hash operation on the transaction to be signed to obtain a hash value of the transaction to be signed;
and respectively carrying out exponential operation of Lagrange coefficients of the selected digital asset trusteeship ends on the hash values to obtain the transaction after the blinding processing.
3. The method of claim 1, wherein the blinded transaction signature is obtained by the digital asset escrow end signing the blinded transaction using a private key sent by the client.
4. The method according to claim 1, wherein the obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset hosted end specifically comprises:
and determining the transaction signature of the client by adopting the following formula according to the blinded transaction signature of each digital asset trustee end:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiAnd (3) processing the transaction signature for the blinding of the ith digital asset trustee end, wherein i is 1,2, … n, and n is the preset number of the digital asset trustee end.
5. A client for digital asset hosting in a blockchain, the client comprising:
the blinding processing module is used for blinding the transaction to be signed;
the transmission module is used for transmitting the transaction after the blinding processing to the digital asset trusteeship ends with preset quantity in all the selected digital asset trusteeship ends;
the receiving module is used for receiving the blinded transaction signature sent by the selected digital asset trustee end;
the signature processing module is used for processing the transaction signature according to the blinding of the selected digital asset trustee end to obtain the transaction signature of the client;
the verification module is used for verifying that the signature of the blinded transaction signature sent by the digital asset trustee end is correct before the transaction signature of the client is obtained according to the blinded transaction signature of the selected digital asset trustee end;
the verification module is specifically configured to determine whether the left side and the right side of the equal sign of the following formula are equal:
where Tx is the transaction to be signed, m is the number of digital asset hosted ends selected, e is the bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1,G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2,δiBlinding transaction signatures for ith digital asset hosted end, viReceiving the client's private key, λ, for the ith digital asset escrow endiLagrange coefficients for the stinger end of the ith selected digital asset;
and if the left side and the right side of the formula equal number are equal, the signature of the blinded transaction signature transmitted by the digital asset trustee end is confirmed to be correct.
6. The client according to claim 5, wherein the blinding processing module is specifically configured to:
carrying out hash operation on the transaction to be signed to obtain a hash value of the transaction to be signed;
and respectively carrying out exponential operation of Lagrange coefficients of the selected digital asset trusteeship ends on the hash values to obtain the transaction after the blinding processing.
7. The client of claim 5, the sending module further to send a private key such that the digital asset escrow end signs the blinded transaction with the private key to obtain a blinded transaction signature.
8. The client according to claim 5, wherein the signature processing module is specifically configured to:
and determining the transaction signature of the client by adopting the following formula according to the blinded transaction signature of each digital asset trustee end:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiAnd (3) processing the transaction signature for the blinding of the ith digital asset trustee end, wherein i is 1,2, … n, and n is the preset number of the digital asset trustee end.
9. A digital asset hosting device in a blockchain, the device comprising:
the receiving module is used for receiving the transaction after the blinding processing sent by the client;
the signature module is used for signing the transaction after the blinding processing to obtain a blinded transaction signature;
a sending module, configured to send the blinded transaction signature to the client, where the client is configured to verify that a signature of the blinded transaction signature sent by the digital asset trustee end is correct, and the sending module specifically includes:
confirming whether the left side and the right side of the equal sign of the following formula are equal or not:
where Tx is the transaction to be signed, m is the number of digital asset hosted ends selected, e is the bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1,G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2,δiBlinding transaction signatures for ith digital asset hosted end, viReceiving the client's private key, λ, for the ith digital asset escrow endiLagrange coefficients for the stinger end of the ith selected digital asset;
and if the left side and the right side of the formula equal number are equal, the signature of the blinded transaction signature transmitted by the digital asset trustee end is confirmed to be correct.
10. The apparatus of claim 9, the signature module to be specifically configured to:
and signing the transaction after the blinding processing by using a private key sent by the client to obtain a blinded transaction signature.
11. An electronic device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the computer program being executable by the processor to perform the method according to any of claims 1-4.
12. A computer readable storage medium storing one or more programs which, when executed by an electronic device comprising a plurality of application programs, cause the electronic device to perform the method of any of claims 1-4.
13. A digital asset hosting system in a blockchain, the system comprising a client and a plurality of digital asset hosted ends, wherein:
the client is used for conducting blind processing on the transaction to be signed; sending the transaction after the blinding processing to a preset number of digital asset trusteeship ends in all selected digital asset trusteeship ends; receiving a blinded transaction signature sent by the selected digital asset trustee end; obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset management end;
the digital asset trusteeship end is used for receiving the transaction after the blinding processing sent by the client; signing the transaction after the blinding processing by using a private key sent by the client to obtain a blinded transaction signature; sending the blinded transaction signature to the client;
the client is further used for verifying that the signature of the blinded transaction signature sent by the digital asset trustee end is correct before obtaining the transaction signature of the client according to the blinded transaction signature of the selected digital asset trustee end;
the client is specifically configured to determine whether the left side and the right side of the equal sign of the following formula are equal:
where Tx is the transaction to be signed, m is the number of digital asset hosted ends selected, e is the bilinear map: g1*G2→GTH (-) is the hash function: {0,1}*→G1,G1,G2Is a multiplication cyclic group of order p, the generators are each g1、g2,δiBlinding transaction signatures for ith digital asset hosted end, viReceiving the client's private key, λ, for the ith digital asset escrow endiLagrange coefficients for the stinger end of the ith selected digital asset;
and if the left side and the right side of the formula equal number are equal, the signature of the blinded transaction signature transmitted by the digital asset trustee end is confirmed to be correct.
14. The system according to claim 13, wherein the client blinds the transaction to be signed, and specifically comprises: carrying out hash operation on the transaction to be signed to obtain a hash value of the transaction to be signed; and respectively carrying out exponential operation of Lagrange coefficients of the selected digital asset trusteeship ends on the hash values to obtain the transaction after the blinding processing.
15. The system according to claim 13, wherein the client obtains the transaction signature of the client according to the blinded transaction signature of the selected digital asset hosted end, and specifically comprises:
and determining the transaction signature of the client by adopting the following formula according to the blinded transaction signature of each digital asset trustee end:
δ=δ1δ2…δi=h(Tx)S;
where h (-) represents a hash function, Tx is the transaction to be signed, s is the private key, δiAnd (3) processing the transaction signature for the blinding of the ith digital asset trustee end, wherein i is 1,2, … n, and n is the preset number of the digital asset trustee end.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910203356.8A CN110060055B (en) | 2019-03-18 | 2019-03-18 | Digital asset hosting method and device in block chain and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910203356.8A CN110060055B (en) | 2019-03-18 | 2019-03-18 | Digital asset hosting method and device in block chain and electronic equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110060055A CN110060055A (en) | 2019-07-26 |
| CN110060055B true CN110060055B (en) | 2022-04-08 |
Family
ID=67316287
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910203356.8A Active CN110060055B (en) | 2019-03-18 | 2019-03-18 | Digital asset hosting method and device in block chain and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110060055B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110599143B (en) * | 2019-07-31 | 2021-05-28 | 腾讯科技(深圳)有限公司 | Data processing method, related device and medium |
| CN112488682B (en) * | 2020-12-08 | 2021-08-31 | 深圳前海微众银行股份有限公司 | Three-party transfer method and device for block chain |
| CN113947405B (en) * | 2021-09-13 | 2023-04-28 | 北京航空航天大学杭州创新研究院 | Digital asset management method based on block chain |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109308658A (en) * | 2018-09-11 | 2019-02-05 | 北京永恒纪元科技有限公司 | A kind of decentralization assets trustship clearance plateform system of highly effective and safe |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106454528A (en) * | 2015-08-07 | 2017-02-22 | 阿里巴巴集团控股有限公司 | Service processing method based on trusted execution environment and client side |
| CN108694668B (en) * | 2018-06-15 | 2023-07-14 | 腾讯科技(深圳)有限公司 | Digital asset transaction method, device, medium and equipment |
| CN109257182B (en) * | 2018-10-24 | 2021-06-25 | 杭州趣链科技有限公司 | Privacy protection method based on homomorphic cryptography commitment and zero knowledge range certification |
| CN109274501A (en) * | 2018-10-25 | 2019-01-25 | 广西师范大学 | License block chain method for secret protection based on Proxy Signature |
-
2019
- 2019-03-18 CN CN201910203356.8A patent/CN110060055B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109308658A (en) * | 2018-09-11 | 2019-02-05 | 北京永恒纪元科技有限公司 | A kind of decentralization assets trustship clearance plateform system of highly effective and safe |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110060055A (en) | 2019-07-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109101572B (en) | Block chain based evidence storing method and device, server and storage medium | |
| US11921706B2 (en) | Methods and systems for controlling access to, and integrity of, resources on a blockchain | |
| US10833871B2 (en) | System and method for deterministic signing of a message using a multi-party computation (MPC) process | |
| EP3091689B1 (en) | Method for generating a message signature from a signature token encrypted by means of an homomorphic encryption function | |
| Wang et al. | Privacy-preserving public auditing for data storage security in cloud computing | |
| CN113255005B (en) | Block chain-based data asset circulation method, device and equipment | |
| CN110060055B (en) | Digital asset hosting method and device in block chain and electronic equipment | |
| CN111783114A (en) | Block chain transaction method and device and electronic equipment | |
| US20180337781A1 (en) | Block Chain Encoding With Fair Delay For Distributed Network Devices | |
| CN116049626A (en) | Data statistics method, device, equipment and storage medium | |
| CN110324321B (en) | Data processing method and device | |
| CN115203749B (en) | Data transaction method and system based on block chain | |
| US10630471B1 (en) | System and method for enforcement of correctness for key derivation | |
| CN111404892B (en) | Data supervision method and device and server | |
| CN111241586B (en) | Anonymous processing method and system for block link address, terminal and storage medium | |
| CN113206746B (en) | Digital certificate management method and device | |
| CN115868141A (en) | Techniques for single-round multi-party computation of digital signatures | |
| CN113902440A (en) | Distributed key-based alliance chain cross-chain transaction method and device | |
| WO2020182233A2 (en) | Methods and devices for executing cross-chain anonymous multi-swap contracts | |
| CN111371785A (en) | Block chain privacy transaction method and device and electronic equipment | |
| CN111861462A (en) | Financial product transaction method and device based on block chain | |
| WO2021223653A1 (en) | Methods and devices for protecting and verifying state transition of record | |
| CN114641788B (en) | Method and apparatus for preventing denial of service attacks on blockchain systems | |
| CN112465642A (en) | Method and system for realizing block chain transaction based on state channel | |
| CN112202552B (en) | Method, device, medium and electronic equipment for monitoring quality of block chain data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20190726 Assignee: Hangzhou Xita Technology Co.,Ltd. Assignor: CRYPTAPE Co.,Ltd. Contract record no.: X2022330000450 Denomination of invention: A digital asset custody method, device and electronic device in a blockchain Granted publication date: 20220408 License type: Common License Record date: 20220824 |
|
| EE01 | Entry into force of recordation of patent licensing contract | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20231224 Address after: 10/F, Guotou Building, No. 398 Shaoxing Road, Gongshu District, Hangzhou City, Zhejiang Province, 310000 Patentee after: Hangzhou Xita Technology Co.,Ltd. Address before: Room 1301, block a, Huaxing Times Square, 478 Wensan Road, Xihu District, Hangzhou City, Zhejiang Province, 310013 Patentee before: CRYPTAPE Co.,Ltd. |
|
| TR01 | Transfer of patent right |