CN110147684A - For realizing the method and apparatus of block chain data-privacy protection - Google Patents
For realizing the method and apparatus of block chain data-privacy protection Download PDFInfo
- Publication number
- CN110147684A CN110147684A CN201910437644.XA CN201910437644A CN110147684A CN 110147684 A CN110147684 A CN 110147684A CN 201910437644 A CN201910437644 A CN 201910437644A CN 110147684 A CN110147684 A CN 110147684A
- Authority
- CN
- China
- Prior art keywords
- transaction
- node
- block
- home zone
- privacy
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/04—Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Accounting & Taxation (AREA)
- Finance (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- Marketing (AREA)
- Databases & Information Systems (AREA)
- Technology Law (AREA)
- Strategic Management (AREA)
- Economics (AREA)
- Development Economics (AREA)
- Medical Informatics (AREA)
- General Business, Economics & Management (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The method and equipment that present disclosure discloses for realizing the protection of block chain data-privacy, which comprises receive the first transaction, the first transaction includes at least source account address, purpose account address and transaction remarks;Whether the first transaction of verifying is privacy transaction, and privacy transaction at least further includes the public key that two or more private informations participate in node, and two or more private informations participate in node and belong to the same home zone;In the case where the transaction of verifying first is privacy trading situation, determine whether to execute the first transaction;In the case where being determined to execute the first transaction, the first transaction is broadcasted in home zone;In the case where a part and region block that the first transaction is packaged as region block are achieved common recognition, receiving area block;Execute the first transaction in the block of region.The disclosure only realizes the broadcast traded to privacy in the home zone of block chain, common recognition, goes out block and execution, realizes the protection to block chain private data.
Description
Technical field
Present disclosure belong to block chain technical field more particularly to it is a kind of for realizing block chain data-privacy protection
Method and a kind of equipment for realizing the protection of block chain data-privacy.
Background technique
Block chain (Blockchain) is that algorithm is known together using distributed node to generate and the distributed account of more new data
This, is concatenated using cryptography and content is protected not to be tampered, and to transaction record of contacting, (also known as block allows multiple transaction to produce
A raw block).Each block contains cryptographic Hash, corresponding time stab and the transaction data of previous block.This
The design of sample is so that block content has the characteristic being difficult to tamper with.It can be allowed with the distributed account book that block chain is concatenated multi-party effective
Record transaction, and can permanently check this transaction.
Block chain is generally divided into publicly-owned chain, alliance's chain and privately owned chain according to access authority.Wherein, publicly-owned chain refers to anyone
The block chain of common recognition can be accessed and participated according to agreement;Alliance's chain refers to what its common recognition process was controlled by preselected node
Block chain;During privately owned chain refers to that all permissions are all organized at one, and by the block chain of any control of the tissue.
The realization assets digitlization that block chain can be convenient, the cross-platform circulation of assets.Open and clear data the whole network is area
One of most important characteristic of block chain.But under certain business application scenes such as alliance's chain, the data of user, which are divided into, to be disclosed
Data and private data, can public data can be transparent with the whole network, private data only data owner can just check.But now
Many block chain networks are due to that can not protect data-privacy, the data that are not able to satisfy under certain business application scenes such as alliance's chain
It is required that.
Data-privacy protection refers to the measure that data owning side protects data, and sensitive data is avoided maliciously to be stolen
It takes.Existing data-privacy protection, which can choose using database allocation methods, to be realized.And the basic thought of database fragment
One database will be cut into multiple portions to be put on different databases, so that the performance for alleviating centralized database is asked
Topic.There are two types of modes: vertical cutting and horizontal cutting;Wherein, vertical cutting is the number close relation (such as same module)
It is placed on a database according to cutting out, data of the horizontal cutting suitable for total data and few but every tables of data are very
More scenes is sliced into the data in tables of data on multiple databases by certain rule (for example hashing by ID).
Summary of the invention
Since the data in block chain network currently on the market are that whole network is open and clear, it is easy to appear a large amount of transaction
Cause network congestion, transactions velocity compared with slow, the higher problem of transaction cost, simultaneously because each block chain node can be read
All block chain data, so that the carrying cost of block chain node is very high.
In view of the above-mentioned problems, the first aspect of present disclosure proposes one kind for realizing the protection of block chain data-privacy
Method, which comprises
Receive the first transaction, wherein first transaction includes at least source account address, purpose account address and transaction
Remarks;
Verify whether first transaction is privacy transaction, wherein the privacy transaction at least further includes two or more
A private information participates in the public key of node, and the two or more private informations participate in node and belong to the same privately owned area
Domain;
In the case where verifying first transaction is privacy transaction, determine whether to execute first transaction;
It is in the case where being determined to execute the described first transaction, first transaction is wide in the home zone
It broadcasts;
It is described first transaction be packaged as region block a part and the region block be achieved common recognition
In the case of, receive the region block, wherein the region block is broadcasted in the home zone, and the area
ID of the domain block including at least the Transaction Information and the home zone for including in block height, block Hash, block;And
Execute first transaction in the region block.
In the embodiment according to the first aspect of present disclosure, verify it is described first transaction whether be privacy trade into
One step includes:
Verify it is described first transaction in whether further include two or more private informations participate in node public key;And
In the case where further including the public key that the two or more private informations participate in node in first transaction,
Determine that first transaction is privacy transaction.
In the embodiment according to the first aspect of present disclosure, it is determined whether be able to carry out described first and trade into one
Step includes:
Whether the node that determination will execute first transaction is any node for belonging to the home zone;
In the case where determining the node is the node in the home zone, it is determined to execute first friendship
Easily;
In the case where determining the node not is the node in the home zone, determination can not execute described first
Transaction.
In the embodiment according to the first aspect of present disclosure, the feelings of first transaction can not be executed in determination
Under condition, the method further includes:
Return to error message;Or
First transaction is forwarded to the two or more private informations and participates in one or more of node.
In the embodiment according to the first aspect of present disclosure, trade in the home zone by described first
After broadcast, the method further includes:
When reaching the condition of formation zone block, region corresponding with home zone block is generated, and only
The region block through knowing together is broadcasted in the home zone, wherein the region block includes at least block height, block
The ID of the Transaction Information and the home zone that include in Hash, block.
In the embodiment according to the first aspect of present disclosure, handed in described first executed in the region block
After easily, the method further includes:
It at least saves information relevant to the first performed transaction, received region block and executes the area
Status data caused by the block of domain.
In view of the above-mentioned problems, the second aspect of present disclosure proposes one kind for realizing the protection of block chain data-privacy
Method, which comprises
It is the privacy of a home zone in the multiple home zones for belong to block chain based on the first transaction to be initiated
The public key that all private informations corresponding with the home zone participate in node is inquired in transaction;And
First transaction is initiated to the node of the block chain, wherein first transaction is including at least source account
Location, purpose account address, transaction remarks and all private informations participate in two or more private informations in node
Participate in the public key of node.
In view of the above-mentioned problems, the third aspect of present disclosure proposes one kind for realizing the protection of block chain data-privacy
Equipment, the equipment includes:
Processor;And
Memory makes the processor execute following operation when described instruction executes for storing instruction:
Receive the first transaction, wherein first transaction includes at least source account address, purpose account address and transaction
Remarks;
Verify whether first transaction is privacy transaction, wherein the privacy transaction at least further includes two or more
A private information participates in the public key of node, and the two or more private informations participate in node and belong to the same privately owned area
Domain;
In the case where verifying first transaction is privacy transaction, determine whether to execute first transaction;
It is in the case where being determined to execute the described first transaction, first transaction is wide in the home zone
It broadcasts;
It is described first transaction be packaged as region block a part and the region block be achieved common recognition
In the case of, receive the region block, wherein the region block is broadcasted in the home zone, and the area
ID of the domain block including at least the Transaction Information and the home zone for including in block height, block Hash, block;And
Execute first transaction in the region block.
In the embodiment according to the third aspect of present disclosure, verify it is described first transaction whether be privacy trade into
One step includes:
Verify it is described first transaction in whether further include two or more private informations participate in node public key;And
In the case where further including the public key that the two or more private informations participate in node in first transaction,
Determine that first transaction is privacy transaction.
In the embodiment according to the third aspect of present disclosure, it is determined whether be able to carry out described first and trade into one
Step includes:
Whether the node that determination will execute first transaction is any node for belonging to the home zone;
In the case where determining the node is the node in the home zone, it is determined to execute first friendship
Easily;
In the case where determining the node not is the node in the home zone, determination can not execute described first
Transaction.
In the embodiment according to the third aspect of present disclosure, the feelings of first transaction can not be executed in determination
Under condition, the processor is made further to execute following operation when described instruction executes:
Return to error message;Or
First transaction is forwarded to the two or more private informations and participates in one or more of node.
In the embodiment according to the third aspect of present disclosure, trade in the home zone by described first
After broadcast, the processor is made further to execute following operation when described instruction executes:
When reaching the condition of formation zone block, region corresponding with home zone block is generated, and only
The region block through knowing together is broadcasted in the home zone, wherein the region block includes at least block height, block
The ID of the Transaction Information and the home zone that include in Hash, block.
In the embodiment according to the third aspect of present disclosure, handed in described first executed in the region block
After easily, the processor is made further to execute following operation when described instruction executes:
It at least saves information relevant to the first performed transaction, received region block and executes the area
Status data caused by the block of domain.
In view of the above-mentioned problems, the fourth aspect of present disclosure proposes one kind for realizing the protection of block chain data-privacy
Equipment, the equipment includes:
Processor;And
Memory makes the processor execute following operation when described instruction executes for storing instruction:
It is the privacy of a home zone in the multiple home zones for belong to block chain based on the first transaction to be initiated
The public key that all private informations corresponding with the home zone participate in node is inquired in transaction;And
First transaction is initiated to the node of the block chain, wherein first transaction is including at least source account
Location, purpose account address, transaction remarks and all private informations participate in two or more private informations in node
Participate in the public key of node.
The method and apparatus for realizing the protection of block chain data-privacy according to present disclosure can be to block chain number
According to being isolated, so that privately owned status data only can be by Partial Block chain node encrypting storing, and then in same block chain node
On realize the logic isolation of privately owned status data Yu publicly-owned status data, while for the privately owned areas of difference in block catenary system
Domain realizes the physical isolation of data, to meet to the business demand for requiring to carry out data-privacy protection, and reduces
Block chain node carrying cost, while network communication data can also be reduced, thus improve the performance of block chain network.
Detailed description of the invention
It refers to the following detailed description in conjunction with the accompanying drawings, the feature, advantage and other aspects of the presently disclosed embodiments will become
Must be more obvious, show several embodiments of the disclosure by way of example rather than limitation herein, in the accompanying drawings:
Fig. 1 is the showing for realizing one of the embodiment of method of block chain data-privacy protection according to present disclosure
Example property flow chart;
Fig. 2 is showing for the two of the embodiment of the method for realizing the protection of block chain data-privacy according to present disclosure
It is intended to;
Fig. 3 a-3b is the various numbers for the method for realizing the protection of block chain data-privacy according to present disclosure
According to schematic diagram;
Fig. 4 be according to present disclosure for realizing the method for block chain data-privacy protection embodiment two the
One exemplary process diagram;
Fig. 5 be according to present disclosure for realizing the method for block chain data-privacy protection embodiment two the
Two exemplary process diagrams;And
Fig. 6 is the schematic diagram of the equipment 600 for realizing the protection of block chain data-privacy according to present disclosure.
Specific embodiment
Below with reference to each exemplary embodiment of the attached drawing detailed description disclosure.Flow chart and block diagram in attached drawing are shown
The architecture, function and operation in the cards of method and system according to various embodiments of the present disclosure.It should be noted that
Each box in flowchart or block diagram can represent a part of a module, program segment or code, the module, program
Section or a part of code may include one or more holding for realizing the logic function of defined in each embodiment
Row instruction.It should also be noted that in some alternative implementations, function marked in the box can also be attached according to being different from
The sequence marked in figure occurs.For example, two boxes succeedingly indicated can actually be basically executed in parallel or it
Can also execute in a reverse order sometimes, this depend on related function.It should also be noted that flow chart
And/or the combination of each box in block diagram and the box in flowchart and or block diagram, function as defined in execution can be used
Can or the dedicated hardware based system of operation realize, or specialized hardware can be used and the combination of computer instruction comes
It realizes.
Technology, method and apparatus known to person of ordinary skill in the relevant may be not discussed in detail, but suitable
In the case of, the technology, method and apparatus should be considered as part of specification.For between each unit in attached drawing
Line, it is only for convenient for explanation, indicate that the unit at least line both ends is in communication with each other, it is not intended that limitation does not connect
It can not be communicated between the unit of line.
The embodiment of present disclosure is primarily upon following technical problem: how to make privately owned status data only by part area
Block chain node saves, and how to reduce the carrying cost of block chain data, and how to improve transactions velocity.
To solve the above-mentioned problems, present disclosure discloses the method for realizing the protection of block chain data-privacy and sets
It is standby, privacy transaction can be sent to any node in the home zone constructed in block chain, so that privacy transaction is only
It executes, and is only stored in the region block (zoneblock) broadcasted in the home zone on node in home zone,
The logic isolation for realizing privately owned status data Yu publicly-owned status data on same block chain node is realized, while being directed to area
Different home zones in block catenary system realize the physical isolation of data.
Embodiment 1
Fig. 1 shows the exemplary process diagram of the method for realizing the protection of block chain data-privacy.In the present embodiment,
Block chain node and client relevant to block chain communicate with each other to implement method shown in FIG. 1, specific as follows:
Step 110: client is based on one that the first transaction to be initiated is in the multiple home zones for belong to block chain
The privacy of home zone is traded, and the public key that all private informations corresponding with the home zone participate in node is inquired.
In this step, any home zone (zone) contains at least two privately owned transaction and participates in node, and the client is logical
It is the client of the node in some zone in normal situation, therefore, after the completion of zone building, client can be saved by it
Point inquires all privately owned transaction included by the zone and participates in the public key of node to specify privacy transaction to belong to above-mentioned zone.
Step 120: client initiates first transaction to the node of the block chain.
In this step, since the first transaction that the client is initiated is privacy transaction, first transaction is at least
Including two in source account address, purpose account address, transaction remarks and all private information participation nodes or more
Multiple private informations participate in the public key of node.
In this embodiment, it is preferred that by the public key of node (that is, private information participation node) all in the zone
It is written in the tables of data of privacy transaction;Or the affiliated private information of the client is at least participated in the public key and the zone of node
In another private information participate in node public key be written the privacy transaction tables of data in.
It as shown in Figure 3a, include following parameter in the tables of data of privacy transaction: affiliated block height, transaction Hash, source
Account address, purpose account address, intelligent contract address, transaction remarks, storing data and two or more private informations
Participate in the public key (also referred to as PrivateActor) of node.
Step 130: block chain node receives the first transaction.
In the present embodiment, block chain node both can receive general transaction, also can receive privacy transaction, wherein general
Logical transaction and privacy transaction all include at least source account address, purpose account address and transaction remarks.
Step 140: whether the first transaction described in block chain node verification is privacy transaction.
It can receive general transaction, privacy transaction in view of the block chain node, therefore, it is necessary to verify received transaction
It whether is privacy transaction.It at least further include the public affairs that two or more private informations participate in node in the tables of data of privacy transaction
Key, and the two or more private informations participate in node and belong to the same home zone, it is hidden in the home zone
Personal friendship easily can only share in the home zone.
In this step, firstly, whether further including two or more privates in the first transaction described in block chain node verification
There is information to participate in the public key of node.
Secondly, further including the feelings that the two or more private informations participate in the public key of nodes in trading described first
Under condition, block chain node determines that first transaction is privacy transaction.
Step 150: in the case where verifying first transaction is privacy transaction, block chain node determines whether to execute institute
State the first transaction.Block chain node is as follows to the concrete operations of this step:
First, determination to execute first transaction node (that is, block chain node itself) whether be belong to it is described
Any node of home zone;
Second, in the case where determining the node is the node in the home zone, it is determined to execute described
One transaction;Or
Third, in the case where determining the node not is the node in the home zone, determination can not execute institute
State the first transaction.
In the present embodiment, after any zone is formed, the public key informations of all nodes included by the zone can be by
All nodes being broadcast in the block chain therefore, being capable of basis when some block chain node receives the transaction of any privacy
The public key information that private information therein participates in node learns which zone privacy transaction belongs to, it is possible thereby to learn it certainly
Whether body has the right to execute privacy transaction.
In the present embodiment, when determination can not execute described first transaction when, the block chain node property of can choose into
The following operation of row:
Error message is returned to client, or first transaction is forwarded to the two or more private informations
Participate in one or more of node.
Step 160: in the case where being determined to execute the described first transaction, block chain node exists first transaction
Broadcast in the home zone.
Above-mentioned steps can guarantee that privacy transaction is only broadcasted in corresponding home zone, saved, to realize data
The purpose of secret protection.
Step 170: it is described first transaction be packaged as region block a part and the region block reached
In the case where at common recognition, the region block is received.
In this step, which is broadcasted in home zone, and the region block includes at least block
Highly, the ID of block Hash, the Transaction Information and the home zone that include in block.
In addition, before step 170, when reaching the condition of formation zone block (for example, reaching formation zone block
Time or the memory capacity for reaching region block, and just wheel flows to the duty that the block chain node implements formation zone block
Can), which can generate region corresponding with home zone block, and only by the area through knowing together
Domain block is broadcasted in the home zone.
In the present embodiment, block chain belonging to common recognition algorithm and the home zone employed in home zone uses
Algorithm of knowing together is different.
As shown in Figure 3b, include following parameter in the tables of data of region block: block height, block Hash include in block
The ID of Transaction Information and home zone.
Step 180: the node executes the first transaction in the region block;Finally the node saves and performed first
It trades and relevant information, received region block and executes status data caused by the region block.
On the one hand technical solution disclosed in the present embodiment can be realized privately owned status data (for example, executing privacy transaction
Generated data) it broadcast in the home zone that is only required in block chain, common recognition, executes, and forming region block is only protected
There are patrolling for privately owned status data and publicly-owned status data on the node of the home zone, is realized on same block chain node
Collect isolation.On the other hand, other nodes of block chain be can reduce (that is, node included by non-private region in block chain)
Data store pressure, reduce network communication data, improve the performance of block catenary system.
Embodiment 2
Fig. 2 is disclosed applied by the method for being disclosed herein for realizing the protection of block chain data-privacy with privately owned
The block chain network in region.The block chain network includes node A, B, C, D and E, home zone zone0 and zone1, wherein
Home zone zone0 includes that private information participates in node (also referred to as block chain node or node) A and B, and home zone zone1 includes
Private information participates in node C and D, and node E is as the full node in block chain network.
Below by according to Figure 4 and 5 come the creation, deletion of home zone zone0 in description block chain network and privately owned area
The addition and deletion of domain zone0 interior joint.
For example, the account working of block chain node A executes step shown in Fig. 4 to form and construct home zone zone0
Relevant transaction.
Step 410: deployment intelligent contract relevant with building home zone, to generate the contract of the intelligence contract
Location, wherein the intelligence contract includes at least creation home zone function, addition node function, deletion of node function and deletes
Except home zone function.
Specifically, the account working of block chain node A disposes corresponding intelligent contract for one in following purpose,
To generate the contract address of the intelligence contract: creation home zone zone0, added in having created home zone zone0 node,
Deletion of node and the already present home zone zone0 of deletion in having created home zone zone0.
Step 420: determining the transaction content of transaction relevant to building home zone.
Specifically, it when the transaction relevant to building home zone is creation home zone zone0 transaction, determines
Transaction content include: the contract address of above-mentioned intelligent contract, the function name that creates home zone function, including node A
First text information of network address (IP) and public key, the second text information of the IP including node B and public key, by node A's
Private key to the first text information carry out signature formation the first encryption information and by node B private key to the second text information into
The second encryption information that row signature is formed.In the present embodiment, home zone zone0 is created by node A and B.
When the transaction relevant to building home zone is to add the transaction of new node to home zone zone0,
Identified transaction content includes: the contract address of above-mentioned intelligent contract, the function name including third section for adding node function
The third text information of the IP of point (not shown in FIG. 2) and public key carries out third text information by the private key of node A or B
The ID for the third encryption information and home zone zone0 that are formed of signing.In the present embodiment, third node will be added to private
There is region zone0.
When the transaction relevant to building home zone is the transaction of deletion of node from home zone zone0, institute
Determining transaction content includes: the function name including fourth node of the contract address of above-mentioned intelligent contract, deletion of node function
4th text information of the IP of (not shown in FIG. 2) and public key signs the 4th text information by the private key of node A or B
The ID of the 4th encryption information and home zone zone0 that name is formed.In the present embodiment, fourth node will be from home zone
It is deleted in zone0.
Alternatively, when the friendship that the transaction relevant to building home zone is the deletion of node from home zone zone0
Yi Shi, identified transaction content include: the contract address of above-mentioned intelligent contract, deletion of node function function name including
4th text information of the IP of fourth node (not shown in FIG. 2) and public key, by the private of the 5th node (not shown in FIG. 2)
Key carries out the 4th encryption information of signature formation and the ID of home zone zone0 to the 4th text information.In the present embodiment,
5th node is node different from fourth node in home zone zone0.
When the transaction relevant to building home zone is to delete home zone zone0 transaction, identified transaction
The ID of content includes: the contract address of above-mentioned intelligent contract, deletes home zone function function name, home zone zone0,
5th encryption information of signature formation is carried out and by node B to home zone by ID of the node A to home zone zone0
The ID of zone0 carries out the 6th encryption information of signature formation.
Step 430: the account working of node A signs to above-mentioned transaction content using its private key, with formed it is described with
Construct the relevant transaction of home zone.
The account working of node A forms different transaction for different business demands, complete in order to subsequent block chain
Node (for example, node E) can realize creation, modification and the deletion of home zone zone0 in block chain network.
Such as block chain node E executes building of the step realization shown in fig. 5 to home zone zone0.
Step 510: receiving and the relevant transaction of building home zone, wherein the transaction be creation home zone trade,
The transaction of new node is added to home zone, from the friendship and deletion home zone transaction of deletion of node in home zone
Any one transaction, and the transaction relevant to building home zone includes at least intelligence relevant with building home zone and closes
Contract address about, corresponding function name.
Step 520: verifying the transaction.
Step 530: the case where a part and the block that the transaction is packaged as block are achieved common recognition
Under, receive the block.
Step 540: executing the transaction in the block.
Specifically, when the transaction is creation home zone zone0 transaction, it is specific as follows that node E executes the transaction:
First, creation home zone zone0 transaction is parsed to obtain corresponding transaction content;
Second, based on the function name of contract address, creation home zone function in transaction content, call creation privately owned
Function of region carries out sign test to the first text information and first encryption information, to obtain the first public key;
Third calls creation privately owned based on the function name of contract address, creation home zone function in transaction content
Function of region carries out sign test to the second text information and the second encryption information, to obtain the second public key;
4th, determine the first public key, the second public key whether respectively public key match with node A, B;
5th, in the case where determination matches, creates home zone zone0 and generate the ID of home zone zone0.
Alternatively, node E executes the transaction when the transaction is to add the transaction of new node to home zone zone0
It is specific as follows:
First, the transaction is parsed to obtain corresponding transaction content;
Second, the function name based on contract address, wound addition node function calls addition node function to third text
Information and third encryption information carry out sign test, to obtain third public key;
Third, determine third public key whether the public key match with node A or B;
4th, in the case where determination matches, the third node is added to home zone zone0.
In addition, node E executes transaction tool when the transaction is the transaction of deletion of node from home zone zone0
Body is as follows:
First, the transaction is parsed to obtain corresponding transaction content, which includes: above-mentioned contract address, deletes
The function name of node function, the 4th text information, the 4th encryption information and home zone zone0 ID;
Second, the function name based on the contract address, deletion of node function calls deletion of node function to the 4th text
Information and the 4th encryption information carry out sign test, to obtain the 4th public key;
Third, determine the 4th public key whether with the public key match of node A or B (when the 4th encryption information is by node A
Or the private key of B carries out signature formation);Alternatively, determine the 4th public key whether with the public key match of the 5th node (when
Four encryption information are to carry out signature formation by the private key of the 5th node (node different from fourth node in home zone zone0)
);
4th, in the case where determination matches, the fourth node is deleted from home zone zone0.
Alternatively, when the transaction is to delete home zone transaction, it is specific as follows that node E executes the transaction:
First, the transaction is parsed to obtain corresponding transaction content, which includes: above-mentioned contract address, deletes
The function name of home zone function, the 5th encryption information, the 6th encryption information and home zone zone0 ID;
Second, based on the contract address, the function name calling deletion of node function of home zone function is deleted to the 5th
Encryption information and the 6th encryption information carry out sign test, to obtain the 5th public key;
Third, determine the 5th public key whether the public key match with node B;
4th, based on the contract address, the function name calling deletion of node function of home zone function is deleted to privately owned
The ID of region zone0 and the 5th encryption information carry out sign test, to obtain the 6th public key;
5th, determine the 6th public key whether the public key match with node A;
6th, match and the public affairs of the 6th public key and node A in the public key for determining the 5th public key and node B
In the case that key matches, home zone zone0 is deleted from the block chain.
Step 550: the transaction execute complete in the case where, update node state data, and by the node state
Data are broadcasted in block chain.
For example, node E is by the IP of node A, B, public key and privately owned area when the transaction is creation home zone transaction
The ID of domain zone0 is saved as newly-increased node state data, and by the newly-increased node state data broadcasting to block
In chain network.
When the transaction is to add the transaction of new node to home zone, node E will be related to home zone zone0
The IP of the third node of connection, public key are saved as newly-increased node state data, and by the newly-increased node state data
It is broadcast in block chain network.
When the transaction is the transaction of deletion of node from home zone, node E will be associated with home zone zone0
IP, the public key of fourth node deleted from the status data of node E, and by updated node state data broadcasting to block
In chain network.
When the transaction is to delete home zone transaction, node E will information associated with home zone zone0 from section
It is deleted in the status data of point E, and will be in updated node state data broadcasting to block chain network.
Only the full node (for example, node E) in block chain network rather than create home zone node (for example, node A,
B, C, D) home zone zone0 creation, modification can be realized according to the above technical scheme and are deleted, and then construct shown in Fig. 2
Home zone zone0.
In the present embodiment, in Fig. 2 the building process of home zone zone1 and home zone zone0 building process phase
Seemingly, details are not described herein.
Embodiment 3
In block chain network shown in Fig. 2, when a certain client of node C initiates privacy transaction, particular transactions mistake
Journey is as follows:
The client of node C is traded based on to initiate the privacy that transaction is home zone zone1, inquiry and home zone
The corresponding all private informations of zone1 participate in the public key (for example, public key of node C, D) of node.
Client initiates privacy transaction to the node E of block chain network.
In this step, the privacy transaction includes at least source account address, purpose account address, transaction remarks and private
There is information to participate in the public key of node (namely node in home zone zone1) C and D.
Block chain node E receive the privacy transaction, and based on the privacy transaction in there are private information participate in node C and
The public key of D determines that privacy transaction is to belong to the privacy transaction of zone1.
In the case where verifying first transaction is privacy transaction, block chain node E determines whether to execute described first
Transaction.Block chain node E is as follows to the concrete operations of this step:
First, determine whether node E is any node for belonging to home zone zone1;
Third, as shown in Fig. 2, node E is not any node for belonging to home zone zone1, thus may determine that node E
Privacy transaction can not be executed.
In the present embodiment, when determination can not execute described first transaction when, the block chain node E property of can choose into
The following operation of row:
Error message is returned to the client of node C, alternatively, privacy transaction, which is forwarded to private information, participates in node C
And/or D.
When privacy transaction is forwarded to private information participation node C, node C is only broadcasted in home zone zone1
Privacy transaction.
In the present embodiment, when reach formation zone block condition when (for example, reach formation zone block time or
Reach the memory capacity of region block, and just wheel flows to the function that node C executes formation zone block), node C can give birth to
It is at region corresponding with home zone zone1 block, and only that the region block of common recognition is wide in home zone zone1
It broadcasts, wherein the region block is including at least the Transaction Information and home zone zone1 for including in block height, block Hash, block
ID.
Node C executes the transaction of the privacy in the region block;Final node C saves relevant to performed privacy transaction
Status data caused by information, received region block and the execution region block.
In the present embodiment, private information, which participates in node A, B, can either store the region area generated home zone zone0
Block (that is, region block that storage is formed by the privately owned status data in the home zone), also being capable of memory block chain network
In block (that is, storage formed by publicly-owned status data block);Private information participation node C, D can either store privately owned
Region zone1 region block generated, also being capable of block in memory block chain network;Full node E only being capable of memory block
Block in chain network.Therefore, storage burden, the carrying cost of full node E are substantially reduced, and then block link network can also be improved
The performance of network.
On the one hand it is more to can be realized creation, modification, deletion in block chain network for technical solution disclosed in the present embodiment
A home zone (for example, zone0, zone1), so that belonging to the privately owned status data of some home zone only in the home zone
Interior broadcast, forming region block, to realize privately owned status data and publicly-owned status data on same block chain node
Logic isolation.On the other hand, it enables to the privacy of any home zone to trade only to be executed by the node in the home zone, by
This reduces the network communication data amount of block chain network, promotes the overall performance of block chain network.
Fig. 6 shows showing for the equipment 600 that may be used as the function that node client realizes node client shown in FIG. 1
Meaning property block diagram.Wherein, equipment 600 shown in fig. 6 includes at least processor 610 and memory 620, and memory 620 is for depositing
Storage instruction, makes processor 610 execute the step 110-120 in Fig. 1 when the instruction execution.
In addition, Fig. 6 also shows the schematic of the equipment 600 that may be used as the function that node realizes node shown in FIG. 1
Block diagram.Wherein, equipment 600 shown in fig. 6 includes at least processor 610 and memory 620, and memory 620 refers to for storing
It enables, processor 610 is made to execute the step 130-180 in Fig. 1 when the instruction execution.
It is disclosed herein for realizing that the equipment 600 of block chain data-privacy protection can utilize allocation methods by block
Chain network is divided into several concurrent networks (for example, home zone), more efficiently extends to reach to entire block chain network,
Network congestion caused by a large amount of trade is avoided, transactions velocity is improved, reduces transaction cost.
The foregoing is merely embodiment of the disclosure alternative embodiments, are not limited to embodiment of the disclosure, for
For those skilled in the art, embodiment of the disclosure can have various modifications and variations.It is all in embodiment of the disclosure
Within spirit and principle, made any modification, equivalence replacement, improvement etc. should be included in the protection of embodiment of the disclosure
Within the scope of.
Although describing embodiment of the disclosure by reference to several specific embodiments, it should be appreciated that, the disclosure
Embodiment is not limited to disclosed specific embodiment.Embodiment of the disclosure be intended to cover appended claims spirit and
Included various modifications and equivalent arrangements in range.Scope of the following claims is to be accorded the broadest interpretation, thus comprising
All such modifications and equivalent structure and function.
Claims (14)
1. a kind of method for realizing the protection of block chain data-privacy, which comprises
Receive the first transaction, wherein it is standby that first transaction includes at least source account address, purpose account address and transaction
Note;
Verify whether first transaction is privacy transaction, wherein the privacy transaction at least further includes two or more privates
There is information to participate in the public key of node, and the two or more private informations participate in node and belong to the same home zone;
In the case where verifying first transaction is privacy transaction, determine whether to execute first transaction;
In the case where being determined to execute the described first transaction, first transaction is broadcasted in the home zone;
The case where a part and the region block that first transaction is packaged as region block are achieved common recognition
Under, receive the region block, wherein the region block is broadcasted in the home zone, and the region area
ID of the block including at least the Transaction Information and the home zone for including in block height, block Hash, block;And
Execute first transaction in the region block.
2. according to the method described in claim 1, wherein, verifying whether first transaction is that privacy transaction further comprises:
Verify it is described first transaction in whether further include two or more private informations participate in node public key;And
In the case where further including the public key that the two or more private informations participate in node in first transaction, determine
First transaction is privacy transaction.
3. according to the method described in claim 1, where it is determined whether be able to carry out it is described first transaction further comprise:
Whether the node that determination will execute first transaction is any node for belonging to the home zone;
In the case where determining the node is the node in the home zone, it is determined to execute first transaction;
In the case where determining the node not is the node in the home zone, determination can not execute described first and hand over
Easily.
4. described in the case where determination can not execute the described first transaction according to the method described in claim 3, wherein
Method further comprises:
Return to error message;Or
First transaction is forwarded to the two or more private informations and participates in one or more of node.
5. according to the method described in claim 1, wherein, after first transaction is broadcasted in the home zone,
The method further includes:
When reaching the condition of formation zone block, region corresponding with home zone block is generated, and only will be through
The region block of common recognition is broadcasted in the home zone, wherein the region block includes at least block height, block Hash, block
In include Transaction Information and the home zone ID.
6. according to the method described in claim 1, wherein, after executing first transaction in the region block, institute
The method of stating further comprises:
It at least saves information relevant to the first performed transaction, received region block and executes the region area
Status data caused by block.
7. a kind of method for realizing the protection of block chain data-privacy, which comprises
It is the privacy transaction of a home zone in the multiple home zones for belong to block chain based on the first transaction to be initiated,
Inquire the public key that all private informations corresponding with the home zone participate in node;And
First transaction is initiated to the node of the block chain, wherein first transaction includes at least source account address, mesh
Account address, transaction remarks and all private informations participate in two or more private informations in node and participate in section
The public key of point.
8. a kind of equipment for realizing the protection of block chain data-privacy, the equipment include:
Processor;And
Memory makes the processor execute following operation when described instruction executes for storing instruction:
Receive the first transaction, wherein it is standby that first transaction includes at least source account address, purpose account address and transaction
Note;
Verify whether first transaction is privacy transaction, wherein the privacy transaction at least further includes two or more privates
There is information to participate in the public key of node, and the two or more private informations participate in node and belong to the same home zone;
In the case where verifying first transaction is privacy transaction, determine whether to execute first transaction;
In the case where being determined to execute the described first transaction, first transaction is broadcasted in the home zone;
The case where a part and the region block that first transaction is packaged as region block are achieved common recognition
Under, receive the region block, wherein the region block is broadcasted in the home zone, and the region area
ID of the block including at least the Transaction Information and the home zone for including in block height, block Hash, block;And
Execute first transaction in the region block.
9. equipment according to claim 8, wherein whether verifying first transaction is that privacy transaction further comprises:
Verify it is described first transaction in whether further include two or more private informations participate in node public key;And
In the case where further including the public key that the two or more private informations participate in node in first transaction, determine
First transaction is privacy transaction.
10. equipment according to claim 8, wherein determine whether that being able to carry out first transaction further comprises:
Whether the node that determination will execute first transaction is any node for belonging to the home zone;
In the case where determining the node is the node in the home zone, it is determined to execute first transaction;
In the case where determining the node not is the node in the home zone, determination can not execute described first and hand over
Easily.
11. equipment according to claim 10, wherein in the case where determination can not execute the described first transaction, when
Described instruction makes the processor further execute following operation when executing:
Return to error message;Or
First transaction is forwarded to the two or more private informations and participates in one or more of node.
12. equipment according to claim 8, wherein after first transaction is broadcasted in the home zone,
The processor is made further to execute following operation when described instruction executes:
When reaching the condition of formation zone block, region corresponding with home zone block is generated, and only will be through
The region block of common recognition is broadcasted in the home zone, wherein the region block includes at least block height, block is breathed out
Uncommon, the Transaction Information and the home zone that include in block ID.
13. equipment according to claim 8, wherein after executing first transaction in the region block, when
Described instruction makes the processor further execute following operation when executing:
It at least saves information relevant to the first performed transaction, received region block and executes the region area
Status data caused by block.
14. a kind of equipment for realizing the protection of block chain data-privacy, the equipment include:
Processor;And
Memory makes the processor execute following operation when described instruction executes for storing instruction:
It is the privacy transaction of a home zone in the multiple home zones for belong to block chain based on the first transaction to be initiated,
Inquire the public key that all private informations corresponding with the home zone participate in node;And
First transaction is initiated to the node of the block chain, wherein first transaction includes at least source account address, mesh
Account address, transaction remarks and all private informations participate in two or more private informations in node and participate in section
The public key of point.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910437644.XA CN110147684B (en) | 2019-05-24 | 2019-05-24 | Method and device for realizing privacy protection of blockchain data |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910437644.XA CN110147684B (en) | 2019-05-24 | 2019-05-24 | Method and device for realizing privacy protection of blockchain data |
Publications (2)
Publication Number | Publication Date |
---|---|
CN110147684A true CN110147684A (en) | 2019-08-20 |
CN110147684B CN110147684B (en) | 2023-07-25 |
Family
ID=67593015
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910437644.XA Active CN110147684B (en) | 2019-05-24 | 2019-05-24 | Method and device for realizing privacy protection of blockchain data |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110147684B (en) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN110659903A (en) * | 2019-09-04 | 2020-01-07 | 华东江苏大数据交易中心股份有限公司 | Data transaction method based on block chain |
CN111475826A (en) * | 2020-05-07 | 2020-07-31 | 杭州烽顺科技信息服务有限公司 | Private data yielding method and device based on block chain technology |
CN111523895A (en) * | 2020-05-06 | 2020-08-11 | 杭州复杂美科技有限公司 | Data delay publishing method, device and storage medium |
US10762228B2 (en) | 2019-08-30 | 2020-09-01 | Alibaba Group Holding Limited | Transaction scheduling method and apparatus |
WO2021036191A1 (en) * | 2019-08-30 | 2021-03-04 | 创新先进技术有限公司 | Transaction scheduling method and apparatus |
CN112488680A (en) * | 2020-12-04 | 2021-03-12 | 深圳前海微众银行股份有限公司 | Block chain-based private transaction processing method and device |
CN112910648A (en) * | 2019-12-03 | 2021-06-04 | 北京百度网讯科技有限公司 | Consensus method and device for block chain privacy states |
CN113364771A (en) * | 2021-06-04 | 2021-09-07 | 永旗(北京)科技有限公司 | Internet of things data sharing method based on block chain |
CN116226137A (en) * | 2023-05-06 | 2023-06-06 | 山东浪潮科学研究院有限公司 | Data storage method, device, equipment and storage medium |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107579958A (en) * | 2017-08-15 | 2018-01-12 | 中国联合网络通信集团有限公司 | Data managing method, apparatus and system |
CN107766542A (en) * | 2017-10-30 | 2018-03-06 | 上海分布信息科技有限公司 | A kind of block chain network of subregion and its method for realizing subregion inquiry |
CN107911216A (en) * | 2017-10-26 | 2018-04-13 | 矩阵元技术(深圳)有限公司 | A kind of block chain transaction method for secret protection and system |
WO2018235845A1 (en) * | 2017-06-21 | 2018-12-27 | 日本電信電話株式会社 | Key exchange system and key exchange method |
CN109377221A (en) * | 2018-10-16 | 2019-02-22 | 杭州趣链科技有限公司 | A method of the privacy based on alliance's block chain, which is traded, to be protected |
CN109462587A (en) * | 2018-11-09 | 2019-03-12 | 四川虹微技术有限公司 | Block chain is layered common recognition method, block chain network system and block chain node |
CN109508982A (en) * | 2018-11-21 | 2019-03-22 | 北京蓝石环球区块链科技有限公司 | REPB common recognition based on the more subchains of block chain main chain adduction row |
-
2019
- 2019-05-24 CN CN201910437644.XA patent/CN110147684B/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2018235845A1 (en) * | 2017-06-21 | 2018-12-27 | 日本電信電話株式会社 | Key exchange system and key exchange method |
CN107579958A (en) * | 2017-08-15 | 2018-01-12 | 中国联合网络通信集团有限公司 | Data managing method, apparatus and system |
CN107911216A (en) * | 2017-10-26 | 2018-04-13 | 矩阵元技术(深圳)有限公司 | A kind of block chain transaction method for secret protection and system |
CN107766542A (en) * | 2017-10-30 | 2018-03-06 | 上海分布信息科技有限公司 | A kind of block chain network of subregion and its method for realizing subregion inquiry |
CN109377221A (en) * | 2018-10-16 | 2019-02-22 | 杭州趣链科技有限公司 | A method of the privacy based on alliance's block chain, which is traded, to be protected |
CN109462587A (en) * | 2018-11-09 | 2019-03-12 | 四川虹微技术有限公司 | Block chain is layered common recognition method, block chain network system and block chain node |
CN109508982A (en) * | 2018-11-21 | 2019-03-22 | 北京蓝石环球区块链科技有限公司 | REPB common recognition based on the more subchains of block chain main chain adduction row |
Cited By (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10762228B2 (en) | 2019-08-30 | 2020-09-01 | Alibaba Group Holding Limited | Transaction scheduling method and apparatus |
WO2021036191A1 (en) * | 2019-08-30 | 2021-03-04 | 创新先进技术有限公司 | Transaction scheduling method and apparatus |
CN110659903A (en) * | 2019-09-04 | 2020-01-07 | 华东江苏大数据交易中心股份有限公司 | Data transaction method based on block chain |
CN112910648A (en) * | 2019-12-03 | 2021-06-04 | 北京百度网讯科技有限公司 | Consensus method and device for block chain privacy states |
CN112910648B (en) * | 2019-12-03 | 2023-04-07 | 北京百度网讯科技有限公司 | Consensus method and device for privacy states of block chain |
CN111523895A (en) * | 2020-05-06 | 2020-08-11 | 杭州复杂美科技有限公司 | Data delay publishing method, device and storage medium |
CN111475826A (en) * | 2020-05-07 | 2020-07-31 | 杭州烽顺科技信息服务有限公司 | Private data yielding method and device based on block chain technology |
CN111475826B (en) * | 2020-05-07 | 2023-08-08 | 杭州烽顺科技信息服务有限公司 | Private data yielding method and device based on blockchain technology |
CN112488680A (en) * | 2020-12-04 | 2021-03-12 | 深圳前海微众银行股份有限公司 | Block chain-based private transaction processing method and device |
CN112488680B (en) * | 2020-12-04 | 2024-02-20 | 深圳前海微众银行股份有限公司 | Private transaction processing method and device based on blockchain |
CN113364771A (en) * | 2021-06-04 | 2021-09-07 | 永旗(北京)科技有限公司 | Internet of things data sharing method based on block chain |
CN113364771B (en) * | 2021-06-04 | 2023-08-11 | 佳乔(深圳)投资有限公司 | Block chain-based data sharing method for Internet of things |
CN116226137A (en) * | 2023-05-06 | 2023-06-06 | 山东浪潮科学研究院有限公司 | Data storage method, device, equipment and storage medium |
Also Published As
Publication number | Publication date |
---|---|
CN110147684B (en) | 2023-07-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110147684A (en) | For realizing the method and apparatus of block chain data-privacy protection | |
Rathee et al. | A secure communicating things network framework for industrial IoT using blockchain technology | |
CN107766542B (en) | Partitioned block chain network and method for realizing partitioned query thereof | |
CN106991334A (en) | A kind of method, system and device of data access | |
CN107203344A (en) | A kind of date storage method and data-storage system | |
CN107025409A (en) | A kind of data safety storaging platform | |
CN110535833A (en) | A kind of data sharing control method based on block chain | |
US11423473B2 (en) | Blockchain-based leasing | |
CN108446976B (en) | A kind of common reserve fund transfer method, computer readable storage medium and terminal device | |
CN110149335A (en) | Establish the method and apparatus of the home zone for the protection of block chain data-privacy | |
CN108881252A (en) | Identification authentication data processing method, device, computer equipment and storage medium | |
CN109547488A (en) | A kind of trust data calculating and exchange system based on alliance's block chain | |
CN110489996A (en) | A kind of database data method for managing security and system | |
CN109063138A (en) | For in block chain, that is, service platform search data method, equipment and storage medium | |
CN114363352B (en) | Cross-chain interaction method of Internet of things system based on block chain | |
CN110019103B (en) | Cross-chain system and cross-chain implementation method based on block chain | |
Yang et al. | Publicly verifiable data transfer and deletion scheme for cloud storage | |
CN109508564A (en) | A kind of digital asset storage system and method based on block chain | |
CN110929229A (en) | Block chain-based office document credibility verification method and system | |
CN110555318A (en) | privacy data protection method based on block chain | |
CN111614777B (en) | Cross-organization account mobile phone number sharing method based on Ether house block chain | |
Tang et al. | A Trust‐Based Model for Security Cooperating in Vehicular Cloud Computing | |
CN112651001A (en) | Access request authentication method, device, equipment and readable storage medium | |
CN110162274A (en) | A kind of data processing method based on block chain, device and equipment | |
CN113269563A (en) | Enterprise credit investigation data sharing system based on block chain |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |