CN110233828A - Mobile office method and apparatus based on block chain - Google Patents

Mobile office method and apparatus based on block chain Download PDF

Info

Publication number
CN110233828A
CN110233828A CN201910399652.XA CN201910399652A CN110233828A CN 110233828 A CN110233828 A CN 110233828A CN 201910399652 A CN201910399652 A CN 201910399652A CN 110233828 A CN110233828 A CN 110233828A
Authority
CN
China
Prior art keywords
information
mobile terminal
geographical location
file
location information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910399652.XA
Other languages
Chinese (zh)
Other versions
CN110233828B (en
Inventor
袁晖
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Comexe Ikang Science And Technology Co Ltd
Original Assignee
Shenzhen Comexe Ikang Science And Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Comexe Ikang Science And Technology Co Ltd filed Critical Shenzhen Comexe Ikang Science And Technology Co Ltd
Priority to CN201910399652.XA priority Critical patent/CN110233828B/en
Publication of CN110233828A publication Critical patent/CN110233828A/en
Application granted granted Critical
Publication of CN110233828B publication Critical patent/CN110233828B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0866Generation of secret information including derivation or calculation of cryptographic keys or passwords involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Storage Device Security (AREA)

Abstract

The invention discloses a kind of mobile office method and apparatus based on block chain, the mobile office method includes: the user information for obtaining mobile terminal and sending, and it receives mobile terminal and triggers the temporal information uploaded when default editor's movement and/or geographical location information, and corresponding creation process block in file editing process;The file that mobile terminal uploads is received, if file includes additional information, extracting time information and/or geographical location information from additional information;The temporal information and/or geographical location information that include in the temporal information saved in process block and/or geographical location information and additional information are compared;If the temporal information and/or geographical location information that include in the temporal information and/or geographical location information and additional information that save in process block are consistent, corresponding memory block is created to save file.This invention ensures that the property as true as a die of the file stored by cloud server, improves the confidence level of block data.

Description

Mobile office method and apparatus based on block chain
Technical field
The present invention relates to mobile office technical fields, and in particular to a kind of mobile office method and dress based on block chain It sets.
Background technique
Mobile office is a kind of modish office mode, and office worker can pass through mobile phone at any time and any place, put down The IT application in enterprises software installed in the terminals such as plate handles affairs relevant to business, gets rid of the progress of fixed-site fixed equipment The limitation of office provides great convenience for office worker especially company manager and business people.Since mobile office needs Intranet and information radio transmission in the sky are accessed by open wireless network, therefore mobile office primarily exists The problem of be its safety.
In the prior art, user is directly accessed backstage cloud disk by terminal networking, when networking, from the background can to user identity into Row verifying is still confirmed without to the generated file in office process, therefore from the background with the permission for confirming user It is difficult to ensure the authenticity for the file that mobile terminal is uploaded.
Summary of the invention
The main object of the present invention is to propose a kind of mobile office method based on block chain, it is intended to be solved in the prior art The problem of authenticity for the file that mobile terminal is uploaded is difficult to ensure during mobile office.
To achieve the above object, the present invention proposes a kind of mobile office method based on block chain, this method comprises:
The user information that mobile terminal is sent is obtained, and judges whether the mobile terminal has according to the user information The mobile terminal is accessed mobile office system if having access authority by access authority;
It receives mobile terminal and triggers the temporal information uploaded when default editor's movement and/or geography in file editing process Location information, and create process block corresponding with the temporal information and/or geographical location information;
The file that mobile terminal uploads is received, and judges whether the file includes additional information;
If the file includes additional information, touched from the file is extracted in the additional information in by editing process Send out the temporal information generated when default editor's movement and/or geographical location information;
To include in the temporal information that saved in the process block and/or geographical location information and the additional information Temporal information and/or geographical location information compare;
If including in the temporal information and/or geographical location information that are saved in the process block and the additional information Temporal information and/or geographical location information are consistent, then create corresponding memory block to save the file.
Preferably, the user information sent according to mobile terminal judges whether the mobile terminal has access authority Include:
Being encrypted using the identity of cloud server as public key for the mobile terminal transmission is received, and with the shifting The user information that the private key of dynamic terminal is signed, wherein the private key of the mobile terminal by the mobile terminal identity mark Know encryption to generate;
The signature is verified using the identity of the mobile terminal as public key;
The user information is decrypted with the private key that the cloud server itself stores, wherein the cloud clothes The private key of business device is encrypted by the identity of the cloud server and is generated;
According to the user information and the authority setting condition that prestores of the cloud server after decryption, judge it is described it is mobile eventually The access authority at end.
Preferably, the mobile terminal that receives triggers the time letter uploaded when default editor's movement in file editing process Breath and/or geographical location information, and create in process block corresponding with the temporal information and/or geographical location information, institute Stating default editor's movement includes: to open file, content of edit, save file and close file.
Preferably, the mobile terminal that receives triggers the time letter uploaded when default editor's movement in file editing process Breath and/or geographical location information, and create process block corresponding with the temporal information and/or geographical location information and include:
Receive when the mobile terminal triggers default editor's movement in file editing process by internet upload when Between information and/or geographical location information;And/or
It receives when the mobile terminal triggers default editor's movement in file editing process through big-dipper satellite short message The temporal information and/or geographical location information of transmission.
Preferably, described that default editor's movement is being triggered in editing process from extracting the file in the additional information The temporal information and/or geographical location information of Shi Shengcheng include:
It receives and reads the mobile terminal and encrypted with the public key that cloud server provides and be embedded in the file In additional information;
The additional information is decrypted with the private key matched with the public key;
Generation when default editor acts is triggered in by editing process from the file is extracted in the additional information after decryption Temporal information and/or geographical location information.
The present invention also proposes that a kind of Mobile office device based on block chain, the device include:
Permission determination module for obtaining the user information of mobile terminal transmission, and judges institute according to the user information It states whether mobile terminal has access authority, if having access authority, the mobile terminal is accessed into mobile office system;
Process block creation module, when triggering default editor's movement for receiving mobile terminal in file editing process The temporal information and/or geographical location information of biography, and create process corresponding with the temporal information and/or geographical location information Block;
Information acquisition module for receiving the file of mobile terminal upload, and judges whether the file includes additional letter Breath;
Information extraction modules, it is mobile whole for being extracted from the additional information when the file includes additional information It holds and triggers the temporal information saved when default editor's movement and/or geographical location information in file editing process;
Information comparison module, temporal information and/or geographical location information and institute for will be saved in the process block It states the temporal information for including in additional information and/or geographical location information compares;
Memory block creation module, for when the temporal information and/or geographical location information saved in the process block When with the temporal information and/or consistent geographical location information for including in the additional information, corresponding memory block is created to protect Deposit the file.
Preferably, the permission determination module includes:
User information receiving unit, for receiving the identity with cloud server that the mobile terminal is sent as public affairs Key is encrypted, and the user information signed with the private key of the mobile terminal, wherein the private key of the mobile terminal by The identity of the mobile terminal, which encrypts, to be generated;
Signature verification unit, for being verified using the identity of the mobile terminal as public key to the signature;
User information decryption unit, the private key for being stored with the cloud server itself carry out the user information Decryption, wherein the private key of the cloud server is encrypted by the identity of the cloud server and generated;
Permission judging unit, for according to the user information and the authority setting item that prestores of the cloud server after decryption Part judges the access authority of the mobile terminal.
Preferably, the process block creation module includes:
It is dynamic to trigger default editor for receiving the mobile terminal in file editing process for internet information receiving unit Pass through the temporal information and/or geographical location information of internet upload when making;
It is dynamic to trigger default editor for receiving the mobile terminal in file editing process for short message information receiving unit The temporal information and/or geographical location information sent when making by big-dipper satellite short message.
Preferably, the information extraction modules include:
Additional information receiving unit is carried out for receiving and reading the mobile terminal with the public key that cloud server provides The additional information for encrypting and being embedded in the file;
Additional information decryption unit, for the additional information to be decrypted with the private key matched with the public key;
Information extraction unit, for pre- from file triggering in by editing process is extracted in the additional information after decryption If temporal information and/or geographical location information that editor generates when acting.
In the embodiment of technical solution provided by the present invention, first verify that mobile terminal to the access right of cloud server Limit, on this basis, also mobile terminal trigger in file editing process the temporal information that is uploaded when default editor's movement with/ Or geographical location information is sentenced with the temporal information in the file received compared with geographical location information pair according to comparison result The authenticity of the fixed file decides whether to receive and store the text that mobile terminal is uploaded by the double verification means Part ensure that the property as true as a die of the file stored by cloud server, improve the confidence level of block data.
Detailed description of the invention
Fig. 1 is that the present invention is based on the flow diagrams of one embodiment of mobile office method of block chain;
Fig. 2 be the present invention is based on step in the mobile office method of block chain " obtain mobile terminal send user information, And judge whether mobile terminal has access authority according to user information " flow diagram of implementation procedure preferred embodiment;
Fig. 3 is that " extraction document is being compiled from additional information the present invention is based on step in the mobile office method of block chain The temporal information generated when default editor's movement and/or geographical location information are triggered during volume " implementation procedure preferred embodiment Flow diagram;
Fig. 4 is that the present invention is based on the functional block diagrams of the Mobile office device of block chain;
Fig. 5 is that the present invention is based on the functional block diagrams of permission determination module in the Mobile office device of block chain;
Fig. 6 is that the present invention is based on the functional block diagrams of process block creation module in the Mobile office device of block chain:
Fig. 7 is that the present invention is based on the functional block diagrams of information extraction modules in the Mobile office device of block chain.
Specific embodiment
The embodiment of the present invention is described more fully below, the example of embodiment is shown in the accompanying drawings, wherein phase from beginning to end Identical element or element with the same function are indicated with label.Embodiment below with reference to attached drawing description is exemplary , it is intended to it is used to explain the present invention, and is not considered as limiting the invention, based on the embodiments of the present invention, this field Those of ordinary skill's every other embodiment obtained without making creative work, belongs to protection of the present invention Range.
The present invention proposes a kind of mobile office method based on block chain, as shown in Figure 1, the mobile office method includes:
Step S10: the user information that mobile terminal is sent is obtained, and the mobile terminal is judged according to the user information Whether there is access authority, if having access authority, mobile terminal is accessed into mobile office system.
Block chain technology is that algorithm of knowing together with storing data, using distributed node is verified using block linked data structure Guarantee the safety of data transmission and access with more new data, in the way of cryptography, using by automatized script generation to generate The intelligent contract of code composition programs the completely new distributed basis framework and calculation of one kind with operation data.This programme Implementer is the cloud server applied in block platform chain.Mobile terminal is mobile phone used by a user under line, computer, plate The Intelligent mobile equipments such as computer.Mobile office system is installed on cloud server, it can between cloud server and mobile terminal The cloud server user information that is uploaded to mobile terminal is veritified by way of account number cipher, or as described above Mode confirms whether the mobile terminal has access authority, the latter specifically: mobile terminal sends its use to cloud server Family information, cloud server judge its access authority according to the condition set after reading the user information, if should The user information of mobile terminal meets the condition set, then determines that the mobile terminal has access authority, and the movement is whole End accesses in mobile office system.
Step S20: it receives mobile terminal and triggers the temporal information uploaded when default editor's movement in file editing process And/or geographical location information, and create process block corresponding with the temporal information and/or geographical location information.
In the files such as existing word, generally in key operations, when such as reactive power optimization, record can be actively generated, is formed in The file for the time point cache that the behavior occurs, the file of the caching then have " time " additional information.It is mobile whole in this step End is preset with default editor's movement, such as any time node or file volume in closing of a file, starting or file editing process Predetermined interval node etc. during volume can accordingly generate recording time information when this, which presets editor's movement, is triggered And/or the control instruction of geographical location information, mobile terminal synchronize after the temporal information and/or geographical location information generate Cloud server is reached, cloud server can then determine default editor's movement according to the temporal information and/or geographical location information Time point for being triggered and/or the at the time point geographical location where mobile terminal.
Step S30: the file that mobile terminal uploads is received, and judges whether this document includes additional information;
Step S40: if file includes additional information, from extraction document in additional information, triggering is pre- in by editing process If temporal information and/or geographical location information that editor generates when acting;.
Cloud server is previously provided with designated program, in receiving the file processes that mobile terminal uploads, by wrapping in file Contain particular additional triggering starting, the specific additional information can be it is a variety of, such as encryption insertion file content in Text, coding, watermark etc..Do not include if the program is not triggered after completing file reception, in supporting paper specific additional Information, this document Feasible degree need to be investigated, and cloud server should correspondingly be refused to store this document.When the designated program is triggered When, i.e., cloud server judges to contain specific additional information in this document, then extracts the time from the additional information again Information and/or geographical location information, the temporal information and/or geographical location information are by file because being performed in by editing process Default editor acts and triggers generation.
From from the perspective of mobile terminal ----mobile terminal will be triggered when default editor acts in file editing process and be protected As additional information in temporal information and/or geographical location information the write-in file deposited, then this document is uploaded to cloud service Device, if this document does not trigger the designated program in cloud server, this document uploads failure.
Step S50: will include in the temporal information that saved in process block and/or geographical location information and additional information Temporal information and/or geographical location information compare;
Step S60: if including in the temporal information and/or geographical location information that are saved in process block and additional information Temporal information and/or geographical location information are consistent, then create corresponding memory block to save file.
The mobile terminal that cloud server receives triggered in file editing process saved when default editor's movement when Between information and/or geographical location information, show time point of the mobile terminal when triggering default editor's movement, geographical location, Show user at the time point, geographical location performs the default editor to file and acts.And cloud server connects from it It read certain temporal information and/or geographical location information in the file that the mobile terminal received uploads, then again show that this article Part has been performed default editor's movement in certain time point, geographical location.Cloud server is by the temporal information and/or ground in file It manages purpose of the location information compared with temporal information and/or geographical location information that cloud server uploads pair to be, judges it Received file be performed the time of default editor movement, geographical location whether with mobile terminal in uplink time, geographical location When the file edited it is whether consistent.If the temporal information and/or geographical location information and additional information that are saved in process block In include temporal information and/or geographical location information it is consistent, then illustrate the file that mobile terminal is uploaded, the exactly movement is whole The file edited when end uplink time information and/or geographical location information, this document authenticity are reliable;If inconsistent, say Bright this document, and the file edited when immobile terminal uplink time information and/or geographical location information, genuineness of document are deposited In problem, this document may should be rejected and stored for misinformation, cloud server.
In the embodiment of the present invention, cloud server first verify that mobile terminal to the access authority of cloud server, herein On the basis of, mobile terminal is also triggered to the temporal information uploaded when default editor's movement and/or geography in file editing process Location information, in the file received temporal information, compared with geographical location information pair, this document is determined according to comparison result Authenticity, decide whether to receive and store the file that is uploaded of mobile terminal by the double verification means, ensure that cloud The property as true as a die for holding the file stored by server, improves the confidence level of block data.
In a preferred embodiment, as shown in Fig. 2, step S10 includes:
Step S11: being encrypted using the identity of cloud server as public key for mobile terminal transmission is received, and to move The user information that the private key of dynamic terminal is signed, wherein the private key of mobile terminal encrypts life by the identity of mobile terminal At;
Step S12: signature is verified using the identity of mobile terminal as public key;
Step S13: user information is decrypted with the private key that cloud server itself stores, wherein cloud server Private key by cloud server identity encrypt generate;
Step S14: according to the user information and the authority setting condition that prestores of cloud server after decryption, judge it is mobile eventually The access authority at end.
It is rivest, shamir, adelman used by the present embodiment, mobile terminal and cloud server respectively store a pair of non-right Claim public and private key, the public key of cloud server is made of the identity of cloud server, and private key is generated by the public key encryption;It is mobile The public key of terminal is made of the identity of mobile terminal, and private key is generated by the public key encryption;Can also using other information as Public key.
When mobile terminal sends identity information to cloud server, first with the public key of cloud server to the identity information It is encrypted, then is signed with identity information of the own private key to the encryption;Cloud server receives the body of mobile terminal When part information, first signature is verified with the public key of mobile terminal, after being verified, is believed with identity of the own private key to encryption Breath is decrypted, thus the identity information of the mobile terminal after being decrypted, further according to preset authority setting condition (such as whether Whether the account that prestores for cloud server can unlock preset encryption information of cloud server etc. as key), judgement Whether the mobile terminal has the access authority to cloud server.
The present invention is applied on block platform chain, and used this encryption method allows mobile terminal in any cloud Identity information is sent cloud server by overlay area, and the cloud server of block platform chain can recognize that the identity is believed Breath, and complete the judgement to mobile terminal accessing permission.In addition, after the present embodiment encrypts the identity information of mobile terminal It uploads again, its object is to prevent the identity information leakage of mobile terminal, has ensured account number safety, the cloud service of mobile terminal The safety of data in device.
In a preferred embodiment, in step S20, default editor's movement includes: to open file, content of edit, preservation File and closing file.
Default editor's movement can be any one preset movement in file editing process, for example be edited into specified quantity Byte, can also be any point-in-time in editing process, for example at editor five minutes, the present embodiment is to open file, editor Content saves file and closes file as triggering generation temporal information and/or geographical location information in file editing process Default editor's movement, its advantage is that: the time of Document Editing and process may be very long, record unlatching behavior, can trace and beat The timing node of open file and position, in conjunction with file others editing process node, can track entire editing process (can make For the retention of Document Editing evidence).The record of this edit action can also be extended in fact and be accustomed to as to editing files people Judgement, and then judge human editor identity.
In a preferred embodiment, step S20 includes:
It receives and is believed when mobile terminal triggers default editor's movement in file editing process by the time that internet uploads Breath and/or geographical location information;And/or
It receives when mobile terminal triggers default editor's movement in file editing process and is sent by big-dipper satellite short message Temporal information and/or geographical location information.
Under normal circumstances, it is communicated between mobile terminal and cloud server by internet realization, but mobile office The case where suspension can occur once in a while in Cheng Zhong, mobile terminal, thus for be further ensured that mobile terminal temporal information collected and/ Or geographical location information is timely and is successfully uploaded to cloud server, prevents temporal information, geographical location information that can not be synchronized to The case where cloud server, occurs, and the present embodiment also uses the technology of big-dipper satellite short message, and a mobile terminal is compiled in file The temporal information acquired when default editor's movement is triggered during volume and/or geographical location information is played by short message technology, Cloud server receives the short message, to obtain the temporal information and/or geographical location information in time, the present embodiment is solved The mobile office of dependence during to(for) network.
In a preferred embodiment, as shown in figure 3, step S40 includes:
Step S41:, which receiving, and reads mobile terminal is encrypted with the public key that cloud server provides and is embedded in file In additional information;
Step S42: additional information to be decrypted with the private key that public key matches;
Step S43: when triggering default editor's movement in by editing process from extraction document in the additional information after decryption The temporal information and/or geographical location information of generation.
The purpose of the present embodiment is that encrypted additional information is transmitted to cloud server, cloud service by mobile terminal The encrypted additional information is decrypted in device, and extracting time information and/or geographical position from the additional information after decryption Confidence breath.The purpose of additional information encryption is the problem of preventing additional information from being directly read and falsely used by other people.
It is compiled by additional information that mobile terminal is encrypted with public key provided by cloud server by mobile terminal embedding Enter in file, form can refer to digital watermark in the prior art, which corresponds to encrypted additional information, will add Information is embedded into the detailed process in file are as follows: acquisition for mobile terminal file metadata, when receiving office document metadata, and wound A target interface is built, which is task object, can carry out subsequent processing to additional information;Pass through target interface Invocation target function, handles additional information, to obtain treated target address information;File metadata is added and is saved Point is written in the node of file metadata after target address information is divided logical block, or section is written in a manner of byte stream In point and save.
The present invention also proposes a kind of Mobile office device based on block chain, as shown in figure 4, the Mobile office device packet It includes:
Permission determination module 1, for obtaining the user information of mobile terminal transmission, and according to user information judgement Whether mobile terminal has access authority, if having access authority, mobile terminal is accessed mobile office system;
Process block creation module 2, when triggering default editor's movement for receiving mobile terminal in file editing process The temporal information and/or geographical location information of upload, and create process corresponding with the temporal information and/or geographical location information Block;
Information acquisition module 3 for receiving the file of mobile terminal upload, and judges whether this document includes additional letter Breath;
Information extraction modules 4, for when file includes additional information, extraction document to be edited from additional information The temporal information generated when default editor's movement and/or geographical location information are triggered in journey;
Information comparison module 5, for believing the temporal information saved in process block and/or geographical location information with additional The temporal information and/or geographical location information for including in breath compare;
Memory block creation module 6, temporal information and/or geographical location information for saving in the process block with it is attached When adding the temporal information for including in information and/or consistent geographical location information, corresponding memory block is created to save file.
In the present embodiment, permission determination module determines the access right of the mobile terminal according to the user information of mobile terminal Limit, when the mobile terminal accessing cloud server for being judged to having access authority, process block creation module is according to the movement Temporal information and geographical location information the creation process block that terminal uploads are to store the temporal information and geographical location information;When When information acquisition module receives the file of mobile terminal upload, first determine whether this document includes additional information;Work as this document When comprising additional information, information extraction modules trigger default volume from mobile terminal is extracted in additional information in file editing process Collect the temporal information saved when movement and/or geographical location information;And by information comparison module by saved in process block when Between include in information and/or geographical location information and the additional information temporal information and/or geographical location information compare, If comparison result be it is inconsistent, illustrate that this document authenticity waits investigating;If comparison result is consistent, memory block creation Module creates corresponding memory block to save the file.
In a preferred embodiment, as shown in figure 5, permission determination module 1 includes:
User information receiving unit 11, for receive mobile terminal transmission using the identity of cloud server as public key The user information for being encrypted, and being signed with the private key of mobile terminal, wherein the private key of mobile terminal is by mobile terminal Identity encryption generates;
Signature verification unit 12, for being verified using the identity of mobile terminal as public key to signature;
User information is decrypted in user information decryption unit 13, the private key for being stored with cloud server itself, Wherein, the private key of cloud server is encrypted by the identity of cloud server and is generated;
Permission judging unit 14, for according to the user information and the authority setting item that prestores of cloud server after decryption Part judges the access authority of mobile terminal.
In the present embodiment, user information receiving unit receives the user through asymmetric encryption and signature that mobile terminal uploads Information, signature verification unit verify the signature, and user information decryption unit is to this through being used by the encryption of signature verification Family information is decrypted, and permission judging unit is then sentenced according to the user information after decryption with preset authority setting condition mobile whole The access authority at end.The present embodiment encrypts the user information of mobile terminal, can prevent user information from revealing, herein On the basis of to encrypted information carry out signature verification, further ensure that the communication between mobile terminal and cloud server Safety.
In a preferred embodiment, as shown in fig. 6, process block creation module 2 includes:
Internet information receiving unit 21 triggers default editor's movement for receiving mobile terminal in file editing process When by internet upload temporal information and/or geographical location information;
Short message information receiving unit 22 triggers default editor's movement for receiving mobile terminal in file editing process When the temporal information that is sent by big-dipper satellite short message and/or geographical location information.
In a preferred embodiment, as shown in fig. 7, information extraction modules 4 include:
Additional information receiving unit 41 is added for receiving and reading mobile terminal with the public key that cloud server provides It is close and be embedded in the additional information in file;
Additional information decryption unit 42, for additional information to be decrypted with the private key that public key matches;
Information extraction unit 43, for triggering to be default in by editing process from extraction document in the additional information after decryption The temporal information and/or geographical location information that editor generates when acting.
In the present embodiment, additional information receiving unit receives the file that mobile terminal is uploaded, and additional information decryption is single Member is decrypted the additional information by the corresponding decryption method of the method encrypted with mobile terminal to additional information, believes Breath extraction unit is then triggered when default editor acts in by editing process from extraction document in the additional information after decryption and is generated Temporal information and/or geographical location information.Encryption method described in the present embodiment and decryption method are preferably asymmetric close Key encryption method.
Above is only part or preferred embodiment of the invention, therefore either text or attached drawing cannot all limit this The range of protection is invented to be made under all designs with an entirety of the invention using description of the invention and accompanying drawing content Equivalent structure transformation, or directly/be used in other related technical areas indirectly and be included in the scope of protection of the invention.

Claims (9)

1. a kind of mobile office method based on block chain characterized by comprising
The user information that mobile terminal is sent is obtained, and judges whether the mobile terminal has access according to the user information The mobile terminal is accessed mobile office system if having access authority by permission;
It receives mobile terminal and triggers the temporal information uploaded when default editor's movement and/or geographical location in file editing process Information, and create process block corresponding with the temporal information and the geographical location information;
The file that mobile terminal uploads is received, and judges whether the file includes additional information;
If the file includes additional information, from extracting in the additional information, file triggering in by editing process is pre- If temporal information and/or geographical location information that editor generates when acting;
The time that will include in the temporal information that saved in the process block and/or geographical location information and the additional information Information and/or geographical location information compare;
If the temporal information and/or geographical location information that are saved in the process block and the time for including in the additional information Information and/or geographical location information are consistent, then create corresponding memory block to save the file.
2. the mobile office method according to claim 1 based on block chain, which is characterized in that the acquisition mobile terminal The user information of transmission, and according to the user information judge the mobile terminal whether with access authority include:
Being encrypted using the identity of cloud server as public key for the mobile terminal transmission is received, and with described mobile whole The user information that the private key at end is signed, wherein the private key of the mobile terminal is added by the identity of the mobile terminal It is dense at;
The signature is verified using the identity of the mobile terminal as public key;
The user information is decrypted with the private key that the cloud server itself stores, wherein the cloud server Private key by the cloud server identity encrypt generate;
According to the user information and the authority setting condition that prestores of the cloud server after decryption, the mobile terminal is judged Access authority.
3. the mobile office method according to claim 1 based on block chain, which is characterized in that the reception mobile terminal The temporal information uploaded when default editor's movement and/or geographical location information, and creation and institute are triggered in file editing process It states in temporal information and/or the corresponding process block of geographical location information, default editor's movement includes: to open file, compile Content is collected, file is saved and closes file.
4. the mobile office method according to claim 3 based on block chain, which is characterized in that the reception mobile terminal The temporal information uploaded when default editor's movement and/or geographical location information, and creation and institute are triggered in file editing process It states temporal information and/or the corresponding process block of geographical location information includes:
It receives and is believed when the mobile terminal triggers default editor's movement in file editing process by the time that internet uploads Breath and/or geographical location information;And/or
It receives when the mobile terminal triggers default editor's movement in file editing process and is sent by big-dipper satellite short message Temporal information and/or geographical location information.
5. the mobile office method according to claim 1 based on block chain, which is characterized in that described from the additional letter The file is extracted in breath, and the temporal information generated when default editor acts and/or geographical location letter are triggered in by editing process Breath includes:
It receives and reads the mobile terminal and encrypted and be embedded in the file with the public key that cloud server provides Additional information;
The additional information is decrypted with the private key matched with the public key;
From extracted in the additional information after decryption the file by trigger in editing process generated when default editor acts when Between information and/or geographical location information.
6. a kind of Mobile office device based on block chain characterized by comprising
Permission determination module for obtaining the user information of mobile terminal transmission, and judges the shifting according to the user information Whether dynamic terminal has access authority, if having access authority, the mobile terminal is accessed mobile office system;
Process block creation module uploads when triggering default editor's movement in file editing process for receiving mobile terminal Temporal information and/or geographical location information, and create process area corresponding with the temporal information and/or geographical location information Block;
Information acquisition module for receiving the file of mobile terminal upload, and judges whether the file includes additional information;
Information extraction modules, for extracting mobile terminal from the additional information and existing when the file includes additional information The temporal information saved when default editor's movement and/or geographical location information are triggered in file editing process;
Information comparison module, temporal information and/or geographical location information for will be saved in the process block with it is described attached The temporal information for including in information and/or geographical location information is added to compare;
Memory block creation module, for when the temporal information and/or geographical location information that are saved in the process block and institute When stating the temporal information for including in additional information and/or consistent geographical location information, corresponding memory block is created to save State file.
7. Mobile office device according to claim 6, which is characterized in that the permission determination module includes:
User information receiving unit, for receive that the mobile terminal sends using the identity of cloud server as public key into Row encryption, and the user information signed with the private key of the mobile terminal, wherein the private key of the mobile terminal is by described The identity of mobile terminal, which encrypts, to be generated;
Signature verification unit, for being verified using the identity of the mobile terminal as public key to the signature;
User information decryption unit, the private key for being stored with the cloud server itself solve the user information It is close, wherein the private key of the cloud server is encrypted by the identity of the cloud server and generated;
Permission judging unit, for according to the user information and the authority setting condition that prestores of the cloud server after decryption, Judge the access authority of the mobile terminal.
8. Mobile office device according to claim 6, which is characterized in that the process block creation module includes:
Internet information receiving unit, when triggering default editor's movement for receiving the mobile terminal in file editing process The temporal information and/or geographical location information uploaded by internet;
Short message information receiving unit, when triggering default editor's movement for receiving the mobile terminal in file editing process The temporal information and/or geographical location information sent by big-dipper satellite short message.
9. the Mobile office device according to claim 6 based on block chain, which is characterized in that the information extraction modules Include:
Additional information receiving unit is encrypted for receiving and reading the mobile terminal with the public key that cloud server provides And it is embedded in the additional information in the file;
Additional information decryption unit, for the additional information to be decrypted with the private key matched with the public key;
Information extraction unit, for being compiled by triggering in editing process is default from extracting the file in the additional information after decryption Collect the temporal information generated when movement and/or geographical location information.
CN201910399652.XA 2019-05-14 2019-05-14 Mobile office method and device based on block chain Active CN110233828B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910399652.XA CN110233828B (en) 2019-05-14 2019-05-14 Mobile office method and device based on block chain

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910399652.XA CN110233828B (en) 2019-05-14 2019-05-14 Mobile office method and device based on block chain

Publications (2)

Publication Number Publication Date
CN110233828A true CN110233828A (en) 2019-09-13
CN110233828B CN110233828B (en) 2022-01-04

Family

ID=67861290

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910399652.XA Active CN110233828B (en) 2019-05-14 2019-05-14 Mobile office method and device based on block chain

Country Status (1)

Country Link
CN (1) CN110233828B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112929178A (en) * 2020-12-29 2021-06-08 合肥达朴汇联科技有限公司 Block chain audit source tracing method and system applied to first terminal and electronic equipment
CN115166186A (en) * 2022-08-08 2022-10-11 广东长天思源环保科技股份有限公司 Online automatic monitoring system for water quality of water inlet of sewage treatment enterprise

Citations (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107196934A (en) * 2017-05-18 2017-09-22 电子科技大学 A kind of cloud data managing method based on block chain
CN107483498A (en) * 2017-09-22 2017-12-15 中国联合网络通信集团有限公司 Academic authentication method and system based on block chain
CN107580196A (en) * 2017-07-28 2018-01-12 国创科视科技股份有限公司 A kind of video data shared system and method
CN107994991A (en) * 2017-10-31 2018-05-04 深圳市轱辘车联数据技术有限公司 A kind of data processing method, data processing server and storage medium
WO2018112946A1 (en) * 2016-12-23 2018-06-28 深圳前海达闼云端智能科技有限公司 Registration and authorization method, device and system
CN108492119A (en) * 2018-04-03 2018-09-04 李艾哲 Information anti-fake authentication method, device, equipment and medium based on block chain
CN108540459A (en) * 2018-03-22 2018-09-14 北京京东尚科信息技术有限公司 Data storage method, device, system, electronic equipment and computer-readable medium
CN108632381A (en) * 2018-05-14 2018-10-09 济南浪潮高新科技投资发展有限公司 A kind of environment measure of supervision and system based on block chain
CN109088871A (en) * 2018-08-14 2018-12-25 深圳市人民政府金融发展服务办公室 Datagram delivery method and system based on block chain technology
CN109326337A (en) * 2018-09-06 2019-02-12 西安电子科技大学 Electronic medical record storage and shared model and method based on block chain
CN109359478A (en) * 2018-12-03 2019-02-19 北京中科晶上科技股份有限公司 Authorization method and system based on encrypted permission file
CN109379360A (en) * 2018-10-19 2019-02-22 平安科技(深圳)有限公司 Auditing method, electronic device and computer readable storage medium
CN109559136A (en) * 2018-11-28 2019-04-02 中国医学科学院药用植物研究所 Information management system and method
CN109685534A (en) * 2019-01-22 2019-04-26 江苏哩咕信息科技有限公司 It is a kind of to encrypt anti-tamper Product quality and safety traceability system and method based on block chain

Patent Citations (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018112946A1 (en) * 2016-12-23 2018-06-28 深圳前海达闼云端智能科技有限公司 Registration and authorization method, device and system
CN107196934A (en) * 2017-05-18 2017-09-22 电子科技大学 A kind of cloud data managing method based on block chain
CN107580196A (en) * 2017-07-28 2018-01-12 国创科视科技股份有限公司 A kind of video data shared system and method
CN107483498A (en) * 2017-09-22 2017-12-15 中国联合网络通信集团有限公司 Academic authentication method and system based on block chain
CN107994991A (en) * 2017-10-31 2018-05-04 深圳市轱辘车联数据技术有限公司 A kind of data processing method, data processing server and storage medium
CN108540459A (en) * 2018-03-22 2018-09-14 北京京东尚科信息技术有限公司 Data storage method, device, system, electronic equipment and computer-readable medium
CN108492119A (en) * 2018-04-03 2018-09-04 李艾哲 Information anti-fake authentication method, device, equipment and medium based on block chain
CN108632381A (en) * 2018-05-14 2018-10-09 济南浪潮高新科技投资发展有限公司 A kind of environment measure of supervision and system based on block chain
CN109088871A (en) * 2018-08-14 2018-12-25 深圳市人民政府金融发展服务办公室 Datagram delivery method and system based on block chain technology
CN109326337A (en) * 2018-09-06 2019-02-12 西安电子科技大学 Electronic medical record storage and shared model and method based on block chain
CN109379360A (en) * 2018-10-19 2019-02-22 平安科技(深圳)有限公司 Auditing method, electronic device and computer readable storage medium
CN109559136A (en) * 2018-11-28 2019-04-02 中国医学科学院药用植物研究所 Information management system and method
CN109359478A (en) * 2018-12-03 2019-02-19 北京中科晶上科技股份有限公司 Authorization method and system based on encrypted permission file
CN109685534A (en) * 2019-01-22 2019-04-26 江苏哩咕信息科技有限公司 It is a kind of to encrypt anti-tamper Product quality and safety traceability system and method based on block chain

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112929178A (en) * 2020-12-29 2021-06-08 合肥达朴汇联科技有限公司 Block chain audit source tracing method and system applied to first terminal and electronic equipment
CN112929178B (en) * 2020-12-29 2024-05-24 合肥达朴汇联科技有限公司 Block chain audit tracing method and system applied to first terminal and electronic equipment
CN115166186A (en) * 2022-08-08 2022-10-11 广东长天思源环保科技股份有限公司 Online automatic monitoring system for water quality of water inlet of sewage treatment enterprise

Also Published As

Publication number Publication date
CN110233828B (en) 2022-01-04

Similar Documents

Publication Publication Date Title
CN102325139B (en) Electronic document processing method, processing system and verification system
CN110086608A (en) User authen method, device, computer equipment and computer readable storage medium
CN104199654B (en) The call method and device of open platform
CN104852925A (en) Method for leakproof, secure storage and backup of data of mobile smart terminal
CN110719203B (en) Operation control method, device and equipment of intelligent household equipment and storage medium
CN102624699A (en) Method and system for protecting data
CN101573936A (en) Digital rights management using trusted processing techniques
CN101552669A (en) Method and system of data transmission
CN105024986A (en) Account login method, device and system
CN111159651A (en) Block chain online evidence storage method and system
CN102915263A (en) Data backup method, system and equipment
CN108234442A (en) Obtain method, system and the readable storage medium storing program for executing of contract
CN111209558A (en) Internet of things equipment identity authentication method and system based on block chain
CN104424676A (en) Identity information sending method, identity information sending device, access control card reader and access control system
CN113495920A (en) Content auditing system, method and device based on block chain and storage medium
CN107426223A (en) Cloud file encryption and decryption method, encryption and decryption device and processing system
CN109388952A (en) A kind of method and apparatus of confidential document and security level identification binding
CN103714017B (en) A kind of authentication method, authentication device and authenticating device
CN109951563A (en) A kind of smart card update method and its more new system working method
CN110233828A (en) Mobile office method and apparatus based on block chain
CN104104650B (en) data file access method and terminal device
CN102611574A (en) Automatic configuration system and configuration method for VPN (Virtual Private Network)
CN105224262A (en) Data processing method
CN105183402A (en) Data storage method
CN107888548A (en) A kind of Information Authentication method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant