CN110378690A - Anonymous Secure payment channel method and device - Google Patents

Anonymous Secure payment channel method and device Download PDF

Info

Publication number
CN110378690A
CN110378690A CN201910512096.2A CN201910512096A CN110378690A CN 110378690 A CN110378690 A CN 110378690A CN 201910512096 A CN201910512096 A CN 201910512096A CN 110378690 A CN110378690 A CN 110378690A
Authority
CN
China
Prior art keywords
trade user
transaction
channel
trade
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910512096.2A
Other languages
Chinese (zh)
Other versions
CN110378690B (en
Inventor
刘建伟
张凯
张宗洋
关振宇
喻辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing University of Aeronautics and Astronautics
Original Assignee
Beijing University of Aeronautics and Astronautics
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing University of Aeronautics and Astronautics filed Critical Beijing University of Aeronautics and Astronautics
Priority to CN201910512096.2A priority Critical patent/CN110378690B/en
Publication of CN110378690A publication Critical patent/CN110378690A/en
Application granted granted Critical
Publication of CN110378690B publication Critical patent/CN110378690B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/389Keeping log of transactions for guaranteeing non-repudiation of a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/04Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange

Abstract

The invention discloses a kind of Anonymous Secure payment channel method and devices, wherein method includes: that both parties carry out communicating the wish for establishing transaction on the internet, and select path, it determines transaction intermediary, and is established with transaction intermediary dispose intelligent contract respectively, to establish channel;Proof is opened by transmitting virtual channel between both parties and transfer go-between;It trades between control both parties, and mutually sends transaction certificate;The final result of transaction is sent to transaction intermediary by the first trade user, it is calculated by transaction intermediary, confirm it is errorless after to the first trade user send for closes settle accounts Proxy Signature voucher, exchange the voucher of closing passage for the first trade user, and the first trade user goes the Proxy Signature voucher received after blinding processing to be transmitted to the second trade user for closing passage.Both sides' identity Unlinkability in process of exchange may be implemented in this method, and is suitable for most of block chain networks for supporting intelligent contract.

Description

Anonymous Secure payment channel method and device
Technical field
The present invention relates to computer technology applied technical field, in particular to a kind of Anonymous Secure payment channel method and dress It sets.
Background technique
The transaction of block chain needs not rely on third party's trust authority, in decentralization network by distributed account book technology In set up extensive trust, the various derivative secure payment systems based on block chain technology are increasingly becoming the following transaction New approaches.But block chain faces technical bottleneck, is mainly reflected in two aspects: scalability deficiency and shortage privacy Protection mechanism.
First, the poor expandability of block chain, it is lower to be embodied in trading efficiency, and block chain network handling capacity is insufficient. Such as bit coin, bottom-layer design only supports 7 transaction per second, much more slowly than traditional financial transaction mode.Based on about 10 minutes Generate the efficiency (bit coin) of a new block, the transaction of user needs to confirm for the first time for 10 minutes, it is recognized that be confirmed as pacifying for 6 times Entirely, that is, a transaction needs the about 60 minutes fully validated safety of ability.Such transaction handling capacity is unable to satisfy current number The demand of word payment.
Second, the transaction on block chain be all it is open and clear, with this ensure to trade can by network discovery, recognize.Area On block chain lack secret protection mechanism, the identity of user be in block chain network occur with wallet public key address, although The real identification of user is not corresponded to, but exposes privacy on the line of user to a certain extent, in a large amount of analyses of opponent and evil Under meaning behavior still can fund to user and identity security threaten.
Intelligent contract is that on block chain both sides or multi-party " execute contract item for a kind of agreement of digital asset transfer The computable trade agreement of money ", it is intended to realize the automation during block chain contract execution, essence is that distributed storage exists Program code on block chain.Code text can not be changed, and distributed storage is between each node, it is ensured that consistency;Its Specification is suitable for all nodes, and the audit of contract is made to become to be easy to;Contract is executed by code, eliminates contract execution mistake A possibility that;It provides figure spirit complete programming language (the Solidity language in such as ether mill) on block chain, allows users to It oneself writes, deployment contract.Intelligent contract largely enriches the mode traded on block chain.
Payment channel is block chain expansibility progress, promotes one of trading volume and the important directions of trading efficiency.It is former Reason is in the multiple transaction of both sides/multi-party, no longer all submits block chain to verify the result voucher traded each time and settles accounts, But total result is submitted after the completion of multiple transaction and is settled accounts, Trading parties retain the authority of its other party but do not mention in the process It hands over.Only there are two transaction to be submitted to block chain in this way, but user can carry out almost limitless transaction in the process, to subtract The small load of block chain network, and improve the efficiency of each transaction.Since the pilot process of payment channel occurs Under chain, the possibility in more modes of doing business is also provided, so that transaction is more flexible.It is mentioned in initial payment channel principle Out, and after can be used for micropayments scene, but occur a series of two-way, chains can Routing expansion, to establish multiple contracts logical Virtual channel etc. on road, these channels are for realizing higher performance or adapt to more complicated scene and make Sustained improvement.
Proxy Signature is used to hide user identity in signature, protects privacy.As shown in Figure 1, by blinding message content, It is sent to signer to sign, signer is signed in the case where that can not read message content and returns result to message Signature is gone to blind by producer, producer, so that it may obtain signer to the signature of message, and the signature can be with conventional label The mode of name is verified, and signer is not aware that the message content of its signature.Proxy Signature carries out blinding before authentication Operation, and maintain signature and hideing for agreement is generally used for provide Unlinkability to the validity of non-blind message In name link.
Partial Blind Signature had not only remained the characteristics of Proxy Signature blind property, but also solving can not be true for signature contents in Proxy Signature The shortcomings that recognizing, to effectively prevent signature abuse.As shown in Fig. 2, it is different from common Proxy Signature, in partial blind signature schemes, Provided with a signer and user, a common concerted public information, this public information can be embedded into before signing In signature, and it can not delete or modify (otherwise signature can not be failed by verifying).Partial Blind Signature can not in offer While link property, the pith blinded in information that signer signs oneself is known, and entirety is believed Breath still maintains the state of blinding.
Ring signatures are a kind of group signature scheme of simplification, it is advantageous that reducing the cooperation between ring members, and not Need manager.As shown in figure 3, each member of ring signatures has respective public key and private key, sender of the message uses the private of oneself After key is signed, the signature of generation can be used any one public key in ring and be verified, while can not determine that actually which is A ring members signature.It verifies and is only able to verify that and determines that information signature comes from some member in ring, but can not be true It is fixed which ring members come from actually.This signature scheme also provides engineering feasibility for the identity anonymous in secret protection.
Virtual payment channel is a kind of generalities channel built in existing intelligent contract payment channel, not structure At the element in contract channel, but represent between a kind of both parties that there are the visualization of Capital Flow relationship expressions.By Virtual channel is established on tripartite, two intelligent contract payment channels, the Capital Flow in internuncial situation may be implemented, lead to It crosses the digital asset between two contract payment channels and shifts the Capital Flow come between final two side of equivalent implementation real trade, Go-between functions only as fund transfer effect, and theoretically its digital asset sum will not change.
However, existing payment channel still respectively faces many problems.In traditional point-to-point payment channel model, with In the case that family is totally more, payment channel is established two-by-two and still results in biggish block chain transaction submission amount, block chain is negative Load is still very big.After introducing third party or go-between, such as virtual payment channel pattern, so that transaction company commander's degree increases Add, or even building payment channel network, spread more users, practical reduces the trading volume submitted on block chain;But Virtual payment channel is still without solving the problems, such as anonymity, and the real trade person identity of starting point and terminal is for intermediate node It is visible from the beginning to the end, has only hidden the details of wherein micro- transaction, this point is to prevent substantially without privacy for identity Shield.Based on this, it is thus proposed that combine intelligent contract to trade using Proxy Signature, by using internuncial Proxy Signature as " authority " goes to blind rear " authority " still effectively, holds this authority to go-between's redemption amount from collector, eliminate really in this way Both parties are only limitted to single transaction to the internuncial connectivity of third party, and protocol architecture is too simple, and pays Amount of money be permanent set, cannot change, cause practical application scene narrow, can only realize that quota single is transferred accounts, hardly It can be used for normal trading activity.
Summary of the invention
The application is to be made based on inventor to the understanding of following problems and discovery:
On the basis of background technique, therefore, it is necessary to a kind of payment channel schemes of block chain, can pass through contract first Virtual channel is established between channel (also making account book channel) and improves scalability, next ensures that Trading parties all will not be because other people Malicious act and the secured premise for losing fund, it is also necessary to support two-way, the frequent micropayment transactions under chain, while to user's Privacy is protected, and such as the connectivity of transaction amount and both sides' identity, can improve payment channel in the suitable of reality scene The property used.The present invention is based on Proxy Signature, ring signatures and payment channel technology aiming at the above target, building it is a kind of safely, hide The block chain payment channel scheme of name.
The present invention is directed to solve at least some of the technical problems in related technologies.
For this purpose, this method can protect an object of the present invention is to provide a kind of Anonymous Secure payment channel method It stays while trade efficient, two-way under payment channel chain, passes through combining cipher technology, effectively solve the fund in process of exchange Safety problem and Privacy Protection realize both sides' identity Unlinkability in process of exchange, and are suitable for most of branch Hold the block chain network of intelligent contract.
It is another object of the present invention to propose a kind of Anonymous Secure payment channel device.
In order to achieve the above objectives, one aspect of the present invention embodiment proposes a kind of Anonymous Secure payment channel method, comprising: The Path Setup stage: being communicated by the first trade user with the second trade user on the internet, is established both sides and is handed over Easy wish, and path is selected, determine transaction intermediary, and establish with the transaction intermediary dispose intelligent contract respectively, with Establish channel;Trade the initial stage: by first trade user, second trade user and the transfer go-between it Between transmitting virtual channel open proof;The process of exchange stage: control first trade user and second trade user it Between trade, and mutually send transaction certificate;Channel accounts settling phase: by first trade user by the most termination of transaction Fruit is sent to the transaction intermediary, is calculated by the transaction intermediary, confirms errorless backward first trade user The Proxy Signature voucher for closing clearing is sent, the first trade user of Xiang Suoshu exchanges the voucher of closing passage, and described first for Trade user, which goes the Proxy Signature voucher received blind after processing, is transmitted to second trade user for closing passage, Wherein, thus all clearing are closed for entire virtual channel and two intelligent contract channels under it, and Capital Flow is submitted to To block chain.
The Anonymous Secure payment channel method of the embodiment of the present invention, is paid by establishing payment channel, to hand under chain Easy mode reduces block chain burden, and characteristic that is two-way, repeatedly trading, realizes the promotion of efficiency and handling capacity;It is logical The mode that both parties establish contract channel with go-between respectively is crossed, the multiplexing to contract channel is realized, more conducively constitutes and hands over Easy network;Channel is set up by disposing intelligent contract, uses digital signature as the authority in transaction step, i.e., is closed using intelligence The non repudiation for about executing and signing automatically, it is ensured that transaction participates in the fund security of each side;By combining Proxy Signature and ring label Name is provided to wherein side anonymity and identity Unlinkability of both parties in process of exchange of trading;Lead under chain Believe that maturation is realized in the programming of each algorithm in part, contract is simple in rule on chain, and overall plan is easily programmed realization.
In addition, Anonymous Secure payment channel method according to the above embodiment of the present invention can also have following additional skill Art feature:
Further, in one embodiment of the invention, the Path Setup stage further comprises: step S1: institute It states the first trade user and second trade user confirms on the internet to carry out payment channel transaction, and in network Upper find provides the transaction intermediary of transfer service;Step S2: between first trade user and the transaction intermediary Intelligent contract is affixed one's name to, the first contract channel is established, the virtual of first trade user and the transaction intermediary is locked in channel Amount of currency, and set for the first contract effective time, and contract closedown condition and second trade user are set in contract Dispose intelligent contract between the transaction intermediary, establish the second contract channel, locked in channel the transaction intermediary and The ideal money amount of money of second trade user, and one is assigned to second contract channel by the transaction intermediary Unique sequence numbers;Step S3: n trade user of preset quantity is chosen, ring signatures group is collectively constituted.
Further, in one embodiment of the invention, the transaction initial stage includes: step S4: described second Proof is opened in the channel of corresponding group's identity to trade user and channel number is sent to first trade user;Step S5: will First trade user exchanges proof with the transaction intermediary, with the signature in the transaction intermediary to the two message It is verified, after confirmation signature is produced from first trade user and the group, the signature of the transaction intermediary It opens proof and is sent to first trade user in channel;Step S6: will be among the transaction by first trade user The signature of people is pass on to second trade user.
Further, in one embodiment of the invention, the process of exchange stage includes: step S7: according to application Scene carries out more, two-way payment, and overall net payment is no more than the ideal money amount of money prestored.
Further, in one embodiment of the invention, the channel accounts settling phase includes: step S8: by described The latest edition of transaction certificate is corresponded to signature scheme and is sent to the transaction intermediary by the first trade user;Step S9: logical It crosses the transaction intermediary to verify the latest edition, and phase results feed back to first friendship after confirmation is errorless Easy user is blinded with the process combination public information that blinds being used in Partial Blind Signature algorithm, is obtained part and is blinded Information, and the part is blinded into information and is sent to the transaction intermediary, obtain the voucher of final process;Step S10: pass through The voucher of the final process blind by first trade user, and is sent to second trade user, with root It is settled accounts according to the checkout result write exactly in the voucher, completes fund distribution, and be published to block chain;Step S11: described After the message that the successful clearing that first trade user receives second trade user are closed, second trade user is carried out Signature carries out verifying clearing to submit to the intelligent contract in channel, completes fund distribution, and be published to the block chain.
In order to achieve the above objectives, another aspect of the present invention embodiment proposes a kind of Anonymous Secure payment channel device, packet Include: path setup module establishes both sides for being communicated on the internet by the first trade user with the second trade user The wish traded, and path is selected, determine transaction intermediary, and establish deployment intelligence with the transaction intermediary respectively and close About, to establish channel;Transaction initial module, for passing through first trade user, second trade user and the shifting Transmitting virtual channel between go-between is handed over to open proof;Process of exchange module, for control first trade user with it is described It trades between second trade user, and mutually sends transaction certificate;Channel settlement module, for trading by described first The final result of transaction is sent to the transaction intermediary by user, is calculated by the transaction intermediary, after confirmation is errorless The Proxy Signature voucher for closing clearing is sent to first trade user, the first trade user of Xiang Suoshu exchanges closing passage for Voucher, and the Proxy Signature voucher received is gone to blind after processing and is transmitted to second transaction by first trade user User is used to closing passage, wherein and thus all clearing are closed for entire virtual channel and two intelligent contract channels under it, Capital Flow is submitted to block chain.
The Anonymous Secure payment channel device of the embodiment of the present invention, is paid by establishing payment channel, to hand under chain Easy mode reduces block chain burden, and characteristic that is two-way, repeatedly trading, realizes the promotion of efficiency and handling capacity;It is logical The mode that both parties establish contract channel with go-between respectively is crossed, the multiplexing to contract channel is realized, more conducively constitutes and hands over Easy network;Channel is set up by disposing intelligent contract, uses digital signature as the authority in transaction step, i.e., is closed using intelligence The non repudiation for about executing and signing automatically, it is ensured that transaction participates in the fund security of each side;By combining Proxy Signature and ring label Name is provided to wherein side anonymity and identity Unlinkability of both parties in process of exchange of trading;Lead under chain Believe that maturation is realized in the programming of each algorithm in part, contract is simple in rule on chain, and overall plan is easily programmed realization.
In addition, Anonymous Secure payment channel device according to the above embodiment of the present invention can also have following additional skill Art feature:
Further, in one embodiment of the invention, the path setup module is further used for first friendship Easy user and second trade user confirm on the internet will carry out payment channel transaction, and finds and mention on network For the transaction intermediary of transfer service;Intelligent contract is disposed between first trade user and the transaction intermediary, is established First contract channel locks first trade user and the ideal money amount of money of the transaction intermediary in channel, and sets First contract effective time, and set among contract closedown condition and second trade user and the transaction in contract Intelligent contract is disposed between people, establishes the second contract channel, and the transaction intermediary is locked in channel and second transaction is used The ideal money amount of money at family, and a unique sequence numbers are assigned to second contract channel by the transaction intermediary;Choosing N trade user for taking preset quantity, collectively constitutes ring signatures group.
Further, in one embodiment of the invention, the transaction initial module is further used for described second Proof is opened in the channel of corresponding group's identity to trade user and channel number is sent to first trade user;By described first Trade user exchanges proof with the transaction intermediary, to test in signature of the transaction intermediary to the two message Card opens the channel of the signature of the transaction intermediary after confirmation signature is produced from first trade user and the group Logical proof is sent to first trade user;By first trade user by the signature of the transaction intermediary pass on to Second trade user.
Further, in one embodiment of the invention, the process of exchange module is further used for according to applied field Scape carries out more, two-way payment, and overall net payment is no more than the ideal money amount of money prestored.
Further, in one embodiment of the invention, the channel settlement module is further used for by described The latest edition of transaction certificate is corresponded to signature scheme and is sent to the transaction intermediary by one trade user;Pass through the transaction Go-between verifies the latest edition, and phase results feed back to first trade user after confirmation is errorless, with The process combination public information that blinds being used in Partial Blind Signature algorithm is blinded, and is obtained part and is blinded information, and will The part blinds information and is sent to the transaction intermediary, obtains the voucher of final process;Pass through first trade user The voucher of the final process blind, and is sent to second trade user, to be write exactly according in the voucher Checkout result settled accounts, complete fund distribution, and be published to block chain;Described second is received in first trade user After the message that the successful clearing of trade user are closed, sign to second trade user, to submit to the intelligence in channel Contract carries out verifying clearing, completes fund distribution, and be published to the block chain.
The additional aspect of the present invention and advantage will be set forth in part in the description, and will partially become from the following description Obviously, or practice through the invention is recognized.
Detailed description of the invention
Above-mentioned and/or additional aspect and advantage of the invention will become from the following description of the accompanying drawings of embodiments Obviously and it is readily appreciated that, in which:
Fig. 1 is the ring signatures schematic diagram of the relevant technologies;
Fig. 2 is the Proxy Signature schematic diagram of the relevant technologies;
Fig. 3 is the Partial Blind Signature schematic diagram of the relevant technologies;
Fig. 4 is the flow chart according to the Anonymous Secure payment channel method of one embodiment of the invention;
Fig. 5 is the Path Setup schematic diagram according to one embodiment of the invention;
Fig. 6 is to settle accounts schematic diagram according to the channel of one embodiment of the invention;
Fig. 7 is to initialize schematic diagram according to the channel of one embodiment of the invention;
Fig. 8 is the process of exchange schematic diagram according to one embodiment of the invention;
Fig. 9 is the structural schematic diagram according to the Anonymous Secure payment channel device of one embodiment of the invention.
Specific embodiment
The embodiment of the present invention is described below in detail, examples of the embodiments are shown in the accompanying drawings, wherein from beginning to end Same or similar label indicates same or similar element or element with the same or similar functions.Below with reference to attached The embodiment of figure description is exemplary, it is intended to is used to explain the present invention, and is not considered as limiting the invention.
The Anonymous Secure payment channel method and device proposed according to embodiments of the present invention is described with reference to the accompanying drawings, first The Anonymous Secure payment channel method proposed according to embodiments of the present invention is described with reference to the accompanying drawings.
Fig. 4 is the flow chart of the Anonymous Secure payment channel method of one embodiment of the invention.
As shown in figure 4, the Anonymous Secure payment channel method the following steps are included:
In step S401, the Path Setup stage: by the first trade user and the second trade user on the internet into Row communication establishes the wish that both sides trade, and selects path, determines transaction intermediary, and build respectively with transaction intermediary It is vertical to dispose intelligent contract, to establish channel.
It should be noted that typical payment channel, comprising two sides or in many ways, under multi-party case, two sides trade in Between people carry out transfer of funds, substantive result is identical, but can carry out benefit to the intelligent contract channel that has been deployed on block chain With.The method of the embodiment of the present invention includes three entities (group): 1) the first trade user (Alice): needing to use with the second transaction The first trade user of multiple two-way trade is carried out between the Bob of family;2) go-between (Ingrid): possess more fund and block Many users establish intelligent contract channel on chain, provide transaction forwarding operation;3) trade user group (M): by being built with go-between The groups of users in vertical intelligence contract channel is at and constituting ring signatures, practical first trade user (Bob) is included in group.
It is understood that the method for the embodiment of the present invention can be divided into Path Setup, transaction initially according to the execution stage Change, process of exchange and channel settle accounts four-stage.The Path Setup stage includes S1 to S3, and Alice and Bob is carried out on the internet Communication establishes the wish that both sides trade, and selects path, determines transaction intermediary, and establish and dispose respectively at Ingrid Intelligent contract.The user that Bob and other and Ingrid establish contract collectively constitutes ring signatures group M.
Further, in one embodiment of the invention, the Path Setup stage further comprises: step S1: the first is handed over Easy user and the second trade user confirm on the internet will carry out payment channel transaction, and finds on network and provide transfer clothes The transaction intermediary of business;Intelligent contract is disposed between the S2: the first trade user of step and transaction intermediary, and it is logical to establish the first contract Road locks the first trade user and the ideal money amount of money of transaction intermediary in channel, and set for the first contract effective time, and Intelligent contract is disposed between contract closedown condition and the second trade user and transaction intermediary setting in contract, establishes second Contract channel, the ideal money amount of money of locked transaction go-between and the second trade user in channel, and given by transaction intermediary Second contract channel assigns a unique sequence numbers;Step S3: n trade user of preset quantity is chosen, ring label are collectively constituted Name group.
Wherein, transaction intermediary alternatively referred to as transaction intermediate node Ingrid, in step s 2,.
It is understood that step S1: establish transaction relationship: Alice and Bob confirms on the internet will carry out PayPal Road transaction, and found on network and the transaction intermediate node Ingrid of transfer service is provided.Step S2: intelligent contract is established: Intelligent contract is disposed between Alice and Ingrid, establishes contract channel βA, Alice ideal money amount of money x is locked in channelA, lock Determine Ingrid ideal money amount of money xP, the two amount of money should be set as can satisfy Alice and Bob forecasted transaction total amount, if Determine contract effective time tA, and set contract closedown condition in contract and (be responsible for actively from Ingrid to contract under normal circumstances Send (mβAA) closing passage βA).Intelligent contract is disposed between Bob and Ingrid, establishes contract channel βB, lock in channel Ingrid ideal money amount of money xA, lock Bob ideal money amount of money xP, Ingrid is to channel βBAssign a unique sequence numbers sn. S3: form ring signatures group M: in other " Bob " for concluding contract with Ingrid, (each channel " Bob " also has oneself unique Channel number, and in " βB" locking the amount of money it is all identical), choose n user of suitable quantity collectively constitute ring signatures group M.This Bob will be appeared in transaction in the form of M afterwards, rather than with the name of itself, so that identity is hidden in group M.
Specifically, step S1: both parties Alice and Bob establish transaction relationship on network, find and provide transfer clothes The intermediate node Ingrid of business.Specifically, there are the Alice and Bob of ideal money transactions demand to communicate on the internet, establish double The transaction wish of side.Ingrid then issues itself on network can provide transaction transfer, and support the information of this programme. Alice and Bob chooses Ingrid as transaction transfer side, has other users for also needing to carry out ideal money transaction at this time Intelligent contract is deployed with Ingrid, establishes contract payment channel, Bob knows that these users are also passing through by internet Ingrid trades.
Step S2:Alice and Ingrid disposes intelligent contract and establishes contract channel, and Bob and Ingrid dispose intelligent contract Contract channel is established, tripartite freezes ideal money respectively in the channel.Specifically, Alice is communicated with Ingrid, and confirmation needs to build Vertical payment channel.As shown in figure 5, Alice and Ingrid disposes intelligent contract on block chain, contract channel β is establishedA, in intelligence It programs and lays down a regulation in energy contract, agreement Alice locks ideal money amount of money x in intelligent contractA, Ingrid locks in the channel Determine ideal money amount of money xP, the runtime in channel is tA, validity period tA';Stipulated that channel βAClearing shut-off rule are as follows:
1. 2. 3. 4. 7. 8. (1) (normal condition) is as shown in fig. 6, relative operating sequence is.Any time, Ingrid is submitted (the m for thering is Alice signature to approveβAA') to intelligent contract, by x after intelligent contract verifying signatureA+xPAccording to mβAAmount of money xA', xP' Alice and Ingrid are distributed to, and it is uploaded to block chain network, the formal Capital Flow as on block chain, contract is extremely This is finished, channel βAIt closes.
Wherein (mβAA') format and its content it is as follows:
(“update channelβA balance to[xA'->Alice,xP'->Ingrid],close channel βA”,signed by Alice)
(2) (as Alice not active transmission mβAA') Ingrid is in runtime tA(block chain absolute time, i.e. block chain Network generates t again after foundationAWhen a block) after, validity period tA' before, it is different that Xiang Zhineng contract sends information table condition of understanding Often, and to intelligent contract m is submittedβM, intelligent contract pressure Alice is in time Δ to contract offer (mβAA'),Otherwise all funds of the fine and confiscation Alice in channel are to Ingrid.Alice provide it is above after, Ingrid with As public information pairPartial Blind Signature is carried out to obtainIngrid will(mβA, σA') hair Intelligent contract is given, contract channel is according to mβAClearing are closed.Alice will also be obtainedAnd it goes to be transmitted to after blinding Bob is to close.
(3) (when Ingrid does not actively close channel), validity period is tA' after arrival, channel is automatically closed, and gives back xAIt gives Alice, and the fund x of fine and confiscation IngridPTo Alice.
Bob is also communicated with Ingrid, is disposed intelligent contract and is established channel βB, Ingrid ideal money is locked in channel Amount of money xA, lock Bob ideal money amount of money xP, channel specifies unique passage sn, it is specified that channel validity period t to Ingrid thusB' (t need to be metB'>tA'), to ensure in above-mentioned βAThe authority closing passage that Bob has enough time to take under situation (2) is closed, Ensure that Ingrid can not deliberately wait β in situation (3)BAgain to β after expired fine and confiscation fundASubmit " showing situation exception " with normal Settle accounts βA, thus the fund of malice fine and confiscation Bob.βBClosedown condition it is as follows:
1. 2. 3. 4. 5. 6. (1) (normal condition) such as Fig. 6, relative operating sequence are.Bob is responsible for βBIntelligent contract mention Hand over (mβM, sn, σI), intelligent contract verifying signs and examines whether sn is this channel βBChannel number, it is errorless after according to mβMIn The fund distribution condition distribution of fund, and closing passage, are uploaded to block chain network.Wherein (mβM, sn, σI) format and its content are such as Under: (assuming that channel number sn is 1999)
(“update channel balance to[xA'->Ingrid,xP'->M],close channel”,“1999”, signed by Ingrid)
(2) (Bob does not close situation on time) is in channel validity period tB' exhaust after, give back xATo Ingrid, and fine and confiscation Bob institute There is fund xPTo Ingrid.
The user that step S3:Bob and other and Ingrid conclude intelligent contract collectively forms ring signatures group M, hide from Body identity is wherein.Specifically, as shown in figure 5, Bob finds n (each in the user for establishing contract channel with Ingrid Also there is oneself unique channel number in the channel " Bob ", and in " βB" locking the amount of money it is all identical), and obtain they announcement public key, Hereafter the generation of ring signatures will be related with the private key of these public keys and Bob oneself.
That is Bob passes through the private key p of oneselfBWith the public key { p of other users1,p2,p3,p4...pB...pnMessage m is carried out Signature obtains σM, which will be by { p1,p2,p3,p4...pB...pnIn any one code key verifying, so the body of Bob It part is hidden in the group M of these code keys user, other people only know that Bob but is specifically which user can not be appointed in M Who knows (Alice and Bob have direct communication, trade so knowing with Bob).
In step S402, trade the initial stage: by the first trade user, the second trade user and transfer go-between it Between transmitting virtual channel open proof.
It is understood that the transaction initiation stage: main between the parties in the process including step S4 to step S6 Transmitting virtual channel, which is opened, proves ocP, which, which is exactly one section, proves the message that A and M will trade, P represent tripartite it One, and the message is digitally signed by P.In this stage Bob with M identity activity, and generated directly not between Ingrid The communication connect.
Further, in one embodiment of the invention, the transaction initial stage includes: step S4: the second transaction is used Proof is opened in the channel of corresponding group's identity at family and channel number is sent to the first trade user;Step S5: the first transaction is used Family exchanges proof with transaction intermediary, and to verify in signature of the transaction intermediary to the two message, confirmation signature is generated From after the first trade user and group, the signature of transaction intermediary is sent to the first trade user;Step S6: it is handed over by first The channel of the signature of transaction intermediary is opened proof and pass on to the second trade user by easy user
Specifically, step S4:Bob is with group's M identity signature ocMAnd channel number sn sends jointly to Alice.Specifically Ground, 1. such as Fig. 7 operation, oneself is crossed the oc of name by Bob with group M identity labelMAnd channel number sn is sent to Alice.ocMContent It is as follows:
“open virtual channelγwith[yA->Alice,yM->M],signed by M”
Step S5:Alice, Bob and Ingrid, which is generated and intercoursed upper channel, opens voucher ocA, ocMAnd ocI.Tool Body, if 2. 3. Fig. 7 is operated, Alice uses the oc of oneself private key signatureAThe oc sent with BobMIt is sent to Ingrid, Ingrid Pass through the public key verifications oc of AliceA, oc is verified using the code key in MM.After the two is by verifying, Ingrid uses the private of oneself Key signature ocIAnd it is sent to Alice, Alice uses the public key verifications oc of IngridI, carried out in next step after errorless.
Step S6:Alice is by ocIIt is transmitted to Bob.Specifically, 4. such as Fig. 7 operation, Alice is by ocIIt is transmitted to Bob, so far Upper channel building between Alice and Bob finishes, and can start to trade, and pilot process of trading does not need the ginseng of Ingrid With.
In step S403, the process of exchange stage: trading between the first trade user of control and the second trade user, And mutually send transaction certificate.
It is understood that process of exchange calculates: including step S7, being handed between Alice and Bob in this course Easily and mutually send transaction certificate.
Further, in one embodiment of the invention, the process of exchange stage includes: step S7: according to application scenarios More, two-way payment are carried out, overall net payment is no more than the ideal money amount of money prestored.
It is understood that step S7:Alice and Bob trades, according to application scenarios, more, two-way branch can be carried out It pays, overall net payment is no more than the x prestoredAWith xP?.Both sides exchange the transaction certificate v of each stepA, vB, comprising this in voucher The signature (corresponding with subscript) of amount of money distribution and Alice or Bob of the both sides in virtual channel after secondary transaction, i.e., both sides exist The transaction certificate for holding other side's signature in each step transaction, indicates the approval that other side trades to this.
Specifically, trading under step S7:Alice and Bob chain, being generated after each step transaction and exchanging authority vA, vB.Tool Body, in channel runtime tAIt is interior, (may cause channel more than this time can not be closed by normal condition), as shown in figure 8, Alice and Bob trade under chain, and by internet communication, the payment of each transaction is all to send and hand over mutually by both party Change voucher vA, vMIt carries out.vA(or vM) format is as follows:
“update channelγbalance to[yA'->Alice,yM'->M],version numverω,signed By Alice (or M) "
Wherein ω represents the version number of this transaction, sends v every timeA(or vM), that is, think to have carried out new transaction, version This number ω is also required to add 1.New transaction meeting old after generating is considered possessing the v of maximum ω in vainA(or vM) be just considered as Effectively.
In step s 404, the final result of transaction channel accounts settling phase: is sent to by transaction by the first trade user Go-between is calculated by transaction intermediary, sends the Proxy Signature for closing clearing to the first trade user after confirmation is errorless Voucher exchanges the voucher of closing passage for the first trade user, and the Proxy Signature voucher received is gone to blind by the first trade user The second trade user is transmitted to after processing for closing passage, wherein entire virtual channel and two intelligent contracts under it Thus all clearing are closed in channel, and Capital Flow is submitted to block chain.
It is understood that channel accounts settling phase: sending out the final result of transaction including step S8 to step S11, Alice Ingrid is given, is calculated by Ingrid, is sent to Alice for closing clearing β after errorlessBProxy Signature voucher, to Alice, which is exchanged for, closes βAVoucher.Alice, which goes the Proxy Signature voucher received blind after processing, to be transmitted to Bob and is used to close βB。 Thus entire virtual channel and two intelligent contract channels under it are all settled accounts and are closed, Capital Flow is submitted to block Chain.
Further, in one embodiment of the invention, channel accounts settling phase includes: step S8: passing through the first transaction The latest edition of transaction certificate is sent to transaction intermediary to correspond to signature scheme by user;Step S9: pass through transaction intermediary Latest edition is verified, and phase results feed back to the first trade user after confirmation is errorless, to be used for meropia The process combination public information that blinds in signature algorithm is blinded, and is obtained part and is blinded information, and will partially blind information hair It send to transaction intermediary, obtains the voucher of final process;Step S10: by the first trade user by the voucher of final process into Row goes to blind, and is sent to the second trade user, to be settled accounts according to the checkout result write exactly in voucher, completes fund point Match, and is published to block chain;Step S11: in the message that the successful clearing that the first trade user receives the second trade user are closed Afterwards, it signs to the second trade user, carries out verifying clearing to submit to the intelligent contract in channel, complete fund distribution, and It is published to block chain.
It is understood that step S8:Alice submits transaction results: Alice is by the transaction of oneself and Bob (with M identity) The latest edition v of voucherA, vMIt is signed respectively by other side and forms (vAM) and (vMA), Alice is by (vAM), (vMA) send To Ingrid.
Step S9:Ingrid carries out the result verification: (v that Ingrid submits AliceAM), (vMA) signature carry out Verifying, the signature for being confirmed as Alice and (ring) of some user in M group are signed, and confirm vA, vMMiddle transaction results Fund distribution is consistent.Ingrid is according to vA, vMContract channel β will be calculatedACheckout result mβAAnd contract channel βM's Checkout result mβM, and by mβMIt is sent to Alice, Alice blinds process combination public information using in Partial Blind Signature algorithm mβM, blinded to obtain part to sn and blind informationAnd it sendsTo Ingrid, Ingrid is to mβAInto Row regular digital signature obtains (mβAI'), it is rightPartial Blind Signature is carried out to obtain(Ingrid is not Specifically which β knownB, only know it is some channel β established with oneselfM), then by (mβAI') andHair Give Alice.
Step S10:Alice is handled and is forwarded voucher: since Bob is for the requirement of anonymity, cannot be carried out with Ingrid It directly contacts, it is therefore desirable to which the voucher from Ingrid in step 9 is handled and forwarded by Alice.Receiving message one After the section time (forwarding clearing immediately will increase Alice and Bob identity contacts a possibility that being inferred), Alice first willIt goes to blind, obtainThen by (mβM, sn, σI) it is sent to Bob, Bob is to intelligence and about βBIt mentions Hand over (mβM, sn, σI), intelligent contract will verifying signature, it is errorless after according to mβMIn the checkout result write exactly settled accounts, complete The fund of Ingrid and Bob is distributed, and is published to block chain.Bob notifies Alice channel β after clearingBSafety shutdown.
Step S11: closing passage βA: Alice receives Bob channel βBAfter the message closed is settled accounts in success, before Ingrid (the m sentβAI') sign, form (mβAA'), it is sent to Ingrid.Ingrid is by (mβAA') submit to channel βAIntelligent contract carry out verifying clearing, complete the fund distribution of Ingrid and Alice, and be published to block chain.So far all Clearing are completed in transaction, and fund really generates flowing on block chain.
Specifically, step S8:Alice is by transaction results (vAM), (vMA) signing is sent to Ingrid.Specifically, As operated in Fig. 6 1., Alice by with Bob transaction generate latest edition vA, vMIt is signed respectively by other side, forms (vAM) With (vMA), Bob is represented to vAApproval and Alice to vMApproval.Alice is by (vAM), (vMA) be sent to Ingrid。
Step S9:Ingrid verifies transaction results, generates channel and closes voucher (mβAI'),And it sends To Alice.Specifically, as operated in Fig. 6 2., Ingrid verifies two signatures, and checks [yA'->Alice,yM' -> M] two Whether the content in a voucher is consistent.Ingrid is according to the result [y in virtual channel if consistentA'->Alice,yM'->M] It calculates and closes contract channel βA, βMResult [xA'->Alice,xP' -> Ingrid], [xA'->Ingrid,xP'->Bob].It calculates Process is as follows:
xA'=xA+(yA'-yA);xP'=xP+(yP'-yP);
Ingrid generates m according to result aboveβAWith mβM(format in such as step S2), as operated in Fig. 6 3., Ingrid By public information mβMIt is sent to Alice, Alice confirms mβMIn after the settlement amounts write exactly meet transaction results, by mβMAs portion Divide the public information in Proxy Signature algorithm, sn is as message, and the blinding factor factor generated using itself is to (mβM, sn) and it carries out Part blinds to obtainThen Alice willIt is sent to Ingrid, Ingrid pairsCarry out part Proxy Signature (wherein needs parameter mβM) obtainThen Ingrid is to mβAIt carries out regular digital signature and obtains (mβA, σI'), finally by (mβAI') andIt is sent to Alice.
Step S10:Alice processing and forwarding channel closing voucher (mβM, sn, σI) Bob is given, Bob is to closing passage βB。 Specifically, as operated in Fig. 6 5. 6., Alice use goes blinding factor factor ' willIt goes to blind to obtain (mβM, Sn, σI).Alice is by (mβM, sn, σI) it is sent to Bob, the case where Bob in step 2 according to arranging, to βBIntelligent contract is sent (mβM, sn, σI), intelligent contract verifying signature, and whether the channel number for verifying current channel is sn.Contract is according to m after errorlessβMKnot It calculates, thus closing passage βB.Bob learns (mβM, sn, σI) be verified after inform Alice, can be with closing passage βA
Step S11:Alice is by the m that Ingrid is sent in step S9βASignature forms (mβAA') and be sent to Ingrid, Ingrid is to closing passage βA.Specifically, it is operated in Fig. 6 7. 8., it, will be in step S9 after Alice learns the message of Bob (the m that Ingrid is sentβAI') signed to obtain (mβAA') it is sent to Ingrid, Ingrid is by (mβAA') submit to Channel βAIntelligent contract carry out verifying clearing, thus closing passage βA.So far entire transaction is completed, and also all clearing are closed in channel It closes.
The closing mode of (such as one party is mismatched) under other abnormal conditions, each pass when being concluded according to contract in step S2 Process is closed to be handled.
To sum up, the present invention is a kind of Anonymous Secure payment channel scheme based on Proxy Signature and ring signatures, in intelligent contract Proxy Signature and ring signatures technology are applied in the virtual payment channel established in payment channel, realization has the case where go-between's transaction Under, side's negotiator's identity is hidden, the Unlinkability of both parties' identity is provided;And before scheme itself is based on safety It mentions, prevents either party from monetary losses occur by strict logical design, with anonymity in process of exchange and higher Safety.
The Anonymous Secure payment channel method proposed according to embodiments of the present invention, is paid by establishing payment channel, Reduce block chain burden in a manner of trading under chain, and characteristic that is two-way, repeatedly trading realizes efficiency and handling capacity It is promoted;In such a way that both parties establish contract channel with go-between respectively, the multiplexing to contract channel is realized, more conducively Constitute trade network;Channel is set up by disposing intelligent contract, uses digital signature as the authority in transaction step, that is, utilizes The non repudiation that intelligent contract is executed and signed automatically, it is ensured that transaction participates in the fund security of each side;By combining Proxy Signature And ring signatures, it provides to wherein side anonymity and identity Unlinkability of both parties in process of exchange of trading; The programming of each algorithm of communications portion realizes mature that contract is simple in rule on chain, and overall plan is easily programmed realization under chain.
The Anonymous Secure payment channel device proposed according to embodiments of the present invention is described referring next to attached drawing.
Fig. 9 is the structural schematic diagram of the Anonymous Secure payment channel device of one embodiment of the invention.
As shown in figure 9, the Anonymous Secure payment channel device 10 includes: path setup module 100, transaction initial module 200, process of exchange module 300 and channel settlement module 400.
Wherein, path setup module 100 is used to carry out on the internet by the first trade user with the second trade user Communication establishes the wish that both sides trade, and selects path, determines transaction intermediary, and establishes respectively with transaction intermediary Intelligent contract is disposed, to establish channel.Initial module 200 of trading is used to pass through the first trade user, the second trade user and shifting Transmitting virtual channel between go-between is handed over to open proof.Process of exchange module 300 is handed over for controlling the first trade user and second It trades between easy user, and mutually sends transaction certificate.Channel settlement module 400 is used to hand over by the first trade user Easy final result is sent to transaction intermediary, is calculated by transaction intermediary, confirms errorless backward first trade user hair The Proxy Signature voucher for closing clearing is sent, exchanges the voucher of closing passage for the first trade user, and the first trade user will The Proxy Signature voucher received goes after blinding processing to be transmitted to the second trade user for closing passage, wherein entire virtual channel And two intelligent contract channels under it thus all close by clearing, Capital Flow is submitted to block chain.The present invention is real While applying the device 10 of example can trade efficient, two-way in the case where retaining payment channel chain, by combining cipher technology, effectively It solves the problems, such as the fund security and Privacy Protection in process of exchange, realizes both sides' identity un-linkable in process of exchange Property, and it is suitable for most of block chain networks for supporting intelligent contract.
Further, in one embodiment of the invention, path setup module 100 is further used for the first trade user Payment channel transaction will be carried out by confirming on the internet with the second trade user, and is found on network and provided the friendship of transfer service Easy go-between;Intelligent contract is disposed between first trade user and transaction intermediary, is established the first contract channel, is locked in channel The ideal money amount of money of first trade user and transaction intermediary, and set for the first contract effective time, and set in contract Intelligent contract is disposed between contract closedown condition and the second trade user and transaction intermediary, establishes the second contract channel, channel The ideal money amount of money of middle locked transaction go-between and the second trade user, and assigned by transaction intermediary to the second contract channel Give a unique sequence numbers;N trade user for choosing preset quantity, collectively constitutes ring signatures group.
Further, in one embodiment of the invention, transaction initial module 200 is further used for using the second transaction Proof is opened in the channel of corresponding group's identity at family and channel number is sent to the first trade user;By the first trade user and transaction Go-between, which exchanges, to be proved, to verify in signature of the transaction intermediary to the two message, confirmation signature is produced from the first friendship Easily after user and group, the signature of transaction intermediary is sent to the first trade user;It will be in transaction by the first trade user Between the channel of signature of people open proof and pass on to the second trade user.
Further, in one embodiment of the invention, process of exchange module 300 is further used for according to application scenarios More, two-way payment are carried out, overall net payment is no more than the ideal money amount of money prestored.
Further, in one embodiment of the invention, channel settlement module 400 is further used for through the first transaction The latest edition of transaction certificate is sent to transaction intermediary to correspond to signature scheme by user;By transaction intermediary to latest edition This is verified, and phase results feed back to the first trade user after confirmation is errorless, to be used for Partial Blind Signature algorithm In the process combination public information that blinds blinded, obtain part and blind information, and be sent to transaction for information is partially blinded Go-between obtains the voucher of final process;The voucher of final process blind by the first trade user, and is sent to Second trade user completes fund distribution, and be published to block chain to be settled accounts according to the checkout result write exactly in voucher; After the message that the successful clearing that the first trade user receives the second trade user are closed, sign to the second trade user, Verifying clearing are carried out to submit to the intelligent contract in channel, complete fund distribution, and be published to block chain.
It should be noted that the aforementioned explanation to Anonymous Secure payment channel embodiment of the method is also applied for the implementation The Anonymous Secure payment channel device of example, details are not described herein again.
The Anonymous Secure payment channel device proposed according to embodiments of the present invention, is paid by establishing payment channel, Reduce block chain burden in a manner of trading under chain, and characteristic that is two-way, repeatedly trading realizes efficiency and handling capacity It is promoted;In such a way that both parties establish contract channel with go-between respectively, the multiplexing to contract channel is realized, more conducively Constitute trade network;Channel is set up by disposing intelligent contract, uses digital signature as the authority in transaction step, that is, utilizes The non repudiation that intelligent contract is executed and signed automatically, it is ensured that transaction participates in the fund security of each side;By combining Proxy Signature And ring signatures, it provides to wherein side anonymity and identity Unlinkability of both parties in process of exchange of trading; The programming of each algorithm of communications portion realizes mature that contract is simple in rule on chain, and overall plan is easily programmed realization under chain.
In the description of the present invention, it is to be understood that, term " center ", " longitudinal direction ", " transverse direction ", " length ", " width ", " thickness ", "upper", "lower", "front", "rear", "left", "right", "vertical", "horizontal", "top", "bottom" "inner", "outside", " up time The orientation or positional relationship of the instructions such as needle ", " counterclockwise ", " axial direction ", " radial direction ", " circumferential direction " be orientation based on the figure or Positional relationship is merely for convenience of description of the present invention and simplification of the description, rather than the device or element of indication or suggestion meaning must There must be specific orientation, be constructed and operated in a specific orientation, therefore be not considered as limiting the invention.
In addition, term " first ", " second " are used for descriptive purposes only and cannot be understood as indicating or suggesting relative importance Or implicitly indicate the quantity of indicated technical characteristic.Define " first " as a result, the feature of " second " can be expressed or Implicitly include at least one this feature.In the description of the present invention, the meaning of " plurality " is at least two, such as two, three It is a etc., unless otherwise specifically defined.
In the present invention unless specifically defined or limited otherwise, term " installation ", " connected ", " connection ", " fixation " etc. Term shall be understood in a broad sense, for example, it may be being fixedly connected, may be a detachable connection, or integral;It can be mechanical connect It connects, is also possible to be electrically connected;It can be directly connected, can also can be in two elements indirectly connected through an intermediary The interaction relationship of the connection in portion or two elements, unless otherwise restricted clearly.For those of ordinary skill in the art For, the specific meanings of the above terms in the present invention can be understood according to specific conditions.
In the present invention unless specifically defined or limited otherwise, fisrt feature in the second feature " on " or " down " can be with It is that the first and second features directly contact or the first and second features pass through intermediary mediate contact.Moreover, fisrt feature exists Second feature " on ", " top " and " above " but fisrt feature be directly above or diagonally above the second feature, or be merely representative of First feature horizontal height is higher than second feature.Fisrt feature can be under the second feature " below ", " below " and " below " One feature is directly under or diagonally below the second feature, or is merely representative of first feature horizontal height less than second feature.
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specifically show The description of example " or " some examples " etc. means specific features, structure, material or spy described in conjunction with this embodiment or example Point is included at least one embodiment or example of the invention.In the present specification, schematic expression of the above terms are not It must be directed to identical embodiment or example.Moreover, particular features, structures, materials, or characteristics described can be in office It can be combined in any suitable manner in one or more embodiment or examples.In addition, without conflicting with each other, the skill of this field Art personnel can tie the feature of different embodiments or examples described in this specification and different embodiments or examples It closes and combines.
Although the embodiments of the present invention has been shown and described above, it is to be understood that above-described embodiment is example Property, it is not considered as limiting the invention, those skilled in the art within the scope of the invention can be to above-mentioned Embodiment is changed, modifies, replacement and variant.

Claims (10)

1. a kind of Anonymous Secure payment channel method characterized by comprising
The Path Setup stage: being communicated by the first trade user with the second trade user on the internet, establish both sides into The wish of row transaction, and path is selected, determine transaction intermediary, and establish deployment intelligence with the transaction intermediary respectively and close About, to establish channel;
It trades the initial stage: by being passed between first trade user, second trade user and the transfer go-between It passs virtual channel and opens proof;
The process of exchange stage: it controls and trades between first trade user and second trade user, and mutually send out Send transaction certificate;
Channel accounts settling phase: being sent to the transaction intermediary for the final result of transaction by first trade user, by The transaction intermediary calculates, confirm it is errorless after to first trade user send for closes settle accounts Proxy Signature with Card, the first trade user of Xiang Suoshu exchange the voucher of closing passage, and the Proxy Signature that first trade user will receive for Voucher is transmitted to second trade user after going to blind processing for closing passage, wherein entire virtual channel and its under Thus all clearing are closed in two intelligent contract channels, Capital Flow is submitted to block chain.
2. the method according to claim 1, wherein the Path Setup stage further comprises:
Step S1: first trade user confirms on the internet with second trade user will carry out payment channel Transaction, and found on network and the transaction intermediary of transfer service is provided;
Step S2: disposing intelligent contract, establish the first contract channel between first trade user and the transaction intermediary, Lock first trade user and the ideal money amount of money of the transaction intermediary in channel, and set the first contract it is effective when Between, and intelligence is disposed between contract closedown condition and second trade user and the transaction intermediary setting in contract Contract establishes the second contract channel, and the ideal money gold of the transaction intermediary and second trade user is locked in channel Volume, and a unique sequence numbers are assigned to second contract channel by the transaction intermediary;
Step S3: n trade user of preset quantity is chosen, ring signatures group is collectively constituted.
3. according to the method described in claim 2, it is characterized in that, the transaction initial stage include:
Step S4: proof is opened in the channel of corresponding group's identity to second trade user and channel number is sent to described first Trade user;
Step S5: exchanging proof with the transaction intermediary for first trade user, in the transaction intermediary to this The signature of two message is verified, after confirmation signature is produced from first trade user and the group, the transaction Internuncial signature is sent to first trade user;
Step S6: the channel of the signature of the transaction intermediary is opened by proof by first trade user and is pass on to described Second trade user.
4. according to the method described in claim 3, it is characterized in that, the process of exchange stage include:
Step S7: more, two-way payment are carried out according to application scenarios, overall net payment is no more than the ideal money amount of money prestored.
5. according to the method described in claim 4, it is characterized in that, the channel accounts settling phase includes:
Step S8: the latest edition of transaction certificate is corresponded to by first trade user by signature scheme and is sent to the friendship Easy go-between;
Step S9: verifying the latest edition by the transaction intermediary, and is confirming that errorless rear phase results are anti- Be fed to first trade user, be used in Partial Blind Signature algorithm blind process combination public information carry out it is blind Change, obtain part and blind information, and the part is blinded into information and is sent to the transaction intermediary, obtain final process with Card;
Step S10: blind by the voucher of the final process by first trade user, and is sent to described Two trade users complete fund distribution, and be published to block to be settled accounts according to the checkout result write exactly in the voucher Chain;
Step S11: after the message that the successful clearing that first trade user receives second trade user are closed, to institute It states the second trade user to sign, carries out verifying clearing to submit to the intelligent contract in channel, complete fund distribution, and announce To the block chain.
6. a kind of Anonymous Secure payment channel device characterized by comprising
Path setup module is established double for being communicated on the internet by the first trade user with the second trade user The wish of Fang Jinhang transaction, and path is selected, determine transaction intermediary, and establish deployment intelligence with the transaction intermediary respectively Contract, to establish channel;
Trade initial module, for by first trade user, second trade user and the transfer go-between it Between transmitting virtual channel open proof;
Process of exchange module is traded between first trade user and second trade user for controlling, and phase Mutually send transaction certificate;
Channel settlement module, for the final result of transaction to be sent among the transaction by first trade user People is calculated by the transaction intermediary, is sent to first trade user for closing the blind of clearing after confirmation is errorless It signs voucher, the first trade user of Xiang Suoshu exchanges the voucher of closing passage for, and described in first trade user will receive Proxy Signature voucher is transmitted to second trade user after going to blind processing for closing passage, wherein entire virtual channel with Two intelligent contract channels under and its thus all close by clearing, and Capital Flow is submitted to block chain.
7. device according to claim 6, which is characterized in that the path setup module is further used for described first and hands over Easy user and second trade user confirm on the internet will carry out payment channel transaction, and finds and mention on network For the transaction intermediary of transfer service;Intelligent contract is disposed between first trade user and the transaction intermediary, is established First contract channel locks first trade user and the ideal money amount of money of the transaction intermediary in channel, and sets First contract effective time, and set among contract closedown condition and second trade user and the transaction in contract Intelligent contract is disposed between people, establishes the second contract channel, and the transaction intermediary is locked in channel and second transaction is used The ideal money amount of money at family, and a unique sequence numbers are assigned to second contract channel by the transaction intermediary;Choosing N trade user for taking preset quantity, collectively constitutes ring signatures group.
8. device according to claim 7, which is characterized in that the transaction initial module is further used for described second Proof is opened in the channel of corresponding group's identity to trade user and channel number is sent to first trade user;By described first Trade user exchanges proof with the transaction intermediary, to test in signature of the transaction intermediary to the two message Card opens the channel of the signature of the transaction intermediary after confirmation signature is produced from first trade user and the group Logical proof is sent to first trade user;By first trade user by the signature of the transaction intermediary pass on to Second trade user.
9. device according to claim 8, which is characterized in that the process of exchange module is further used for according to applied field Scape carries out more, two-way payment, and overall net payment is no more than the ideal money amount of money prestored.
10. device according to claim 9, which is characterized in that the channel settlement module is further used for by described The latest edition of transaction certificate is corresponded to signature scheme and is sent to the transaction intermediary by the first trade user;Pass through the friendship Easy go-between verifies the latest edition, and phase results feed back to first trade user after confirmation is errorless, It is blinded with the process combination public information that blinds being used in Partial Blind Signature algorithm, obtains part and blind information, and The part is blinded into information and is sent to the transaction intermediary, obtains the voucher of final process;It is used by first transaction The voucher of the final process blind by family, and is sent to second trade user, to write according in the voucher Bright checkout result is settled accounts, and completes fund distribution, and be published to block chain;Described is received in first trade user After the message that the successful clearing of two trade users are closed, sign to second trade user, to submit to the intelligence in channel Energy contract carries out verifying clearing, completes fund distribution, and be published to the block chain.
CN201910512096.2A 2019-06-13 2019-06-13 Transaction method and device based on anonymous secure payment channel Active CN110378690B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910512096.2A CN110378690B (en) 2019-06-13 2019-06-13 Transaction method and device based on anonymous secure payment channel

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910512096.2A CN110378690B (en) 2019-06-13 2019-06-13 Transaction method and device based on anonymous secure payment channel

Publications (2)

Publication Number Publication Date
CN110378690A true CN110378690A (en) 2019-10-25
CN110378690B CN110378690B (en) 2022-05-27

Family

ID=68250333

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910512096.2A Active CN110378690B (en) 2019-06-13 2019-06-13 Transaction method and device based on anonymous secure payment channel

Country Status (1)

Country Link
CN (1) CN110378690B (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110852735A (en) * 2019-11-06 2020-02-28 杭州复杂美科技有限公司 Help seeking method, device and storage medium
CN110852748A (en) * 2019-11-06 2020-02-28 杭州复杂美科技有限公司 Group transaction method, device and storage medium
CN110942300A (en) * 2019-11-14 2020-03-31 杭州复杂美科技有限公司 Transfer certificate submitting method, device and storage medium
CN112217645A (en) * 2020-09-28 2021-01-12 电子科技大学 Anonymous communication system routing method based on block chain technology
CN112738280A (en) * 2021-03-30 2021-04-30 支付宝(杭州)信息技术有限公司 Method and device for communication between block chain and equipment under block chain
CN113191750A (en) * 2021-04-15 2021-07-30 福建工程学院 Block chain network secure transaction system and method
US20210334809A1 (en) * 2019-03-22 2021-10-28 Beijing Wodong Tianjun Information Technology Co., Ltd. Transaction method and apparatus based on blind signature
CN113923015A (en) * 2021-10-08 2022-01-11 浙江大学 Anonymous multi-hop data transmission method based on block chain payment channel

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080052227A1 (en) * 2004-05-18 2008-02-28 Sebastien Canard Anonymous and Secure Internet Payment Method and Mobile Devices
CN106779704A (en) * 2016-12-06 2017-05-31 杭州趣链科技有限公司 A kind of block chain anonymous deal method based on ring signatures
CN109274501A (en) * 2018-10-25 2019-01-25 广西师范大学 License block chain method for secret protection based on Proxy Signature

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080052227A1 (en) * 2004-05-18 2008-02-28 Sebastien Canard Anonymous and Secure Internet Payment Method and Mobile Devices
CN106779704A (en) * 2016-12-06 2017-05-31 杭州趣链科技有限公司 A kind of block chain anonymous deal method based on ring signatures
CN109274501A (en) * 2018-10-25 2019-01-25 广西师范大学 License block chain method for secret protection based on Proxy Signature

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
E. HEILMAN ET AL.: "Blindly Signed Contracts: Anonymous On-Blockchain and Off-Blockchain Bitcoin Transactions", 《INTERNATIONAL CONFERENCE ON FINANCIAL CRYPTOGRAPHY AND DATA SECURITY》 *
GREEN M, MIERS I: "Bolt: anonymous payment channels for decentralized currencies", 《ROCEEDINGS OF THE 2017 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY》 *
YUNCONG ZHANG: "Z-Channel:Scalable and efficient scheme in Zerocash", 《COMPUTERS & SECURITY》 *
王宗慧等: "区块链数据隐私保护研究", 《物联网学报》 *

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20210334809A1 (en) * 2019-03-22 2021-10-28 Beijing Wodong Tianjun Information Technology Co., Ltd. Transaction method and apparatus based on blind signature
CN110852735A (en) * 2019-11-06 2020-02-28 杭州复杂美科技有限公司 Help seeking method, device and storage medium
CN110852748A (en) * 2019-11-06 2020-02-28 杭州复杂美科技有限公司 Group transaction method, device and storage medium
CN110942300A (en) * 2019-11-14 2020-03-31 杭州复杂美科技有限公司 Transfer certificate submitting method, device and storage medium
CN110942300B (en) * 2019-11-14 2023-04-14 杭州复杂美科技有限公司 Transfer certificate submitting method, device and storage medium
CN112217645A (en) * 2020-09-28 2021-01-12 电子科技大学 Anonymous communication system routing method based on block chain technology
CN112217645B (en) * 2020-09-28 2021-10-26 电子科技大学 Anonymous communication system routing method based on block chain technology
CN112738280A (en) * 2021-03-30 2021-04-30 支付宝(杭州)信息技术有限公司 Method and device for communication between block chain and equipment under block chain
CN112738280B (en) * 2021-03-30 2021-07-23 支付宝(杭州)信息技术有限公司 Method and device for communication between block chain and equipment under block chain
CN113191750A (en) * 2021-04-15 2021-07-30 福建工程学院 Block chain network secure transaction system and method
CN113923015A (en) * 2021-10-08 2022-01-11 浙江大学 Anonymous multi-hop data transmission method based on block chain payment channel
CN113923015B (en) * 2021-10-08 2023-02-24 浙江大学 Anonymous multi-hop data transmission method based on block chain payment channel

Also Published As

Publication number Publication date
CN110378690B (en) 2022-05-27

Similar Documents

Publication Publication Date Title
CN110378690A (en) Anonymous Secure payment channel method and device
Jourenko et al. Sok: A taxonomy for layer-2 scalability related protocols for cryptocurrencies
Tian et al. Enabling cross-chain transactions: A decentralized cryptocurrency exchange protocol
WO2020059865A1 (en) Settlement system, settlement method, user device, and settlement program
Li et al. Secure balance planning of off-blockchain payment channel networks
CN109949033A (en) A kind of affaris safety trade system and method based on block chain
CN106982205A (en) Digital asset treating method and apparatus based on block chain
CN109858281A (en) A kind of block chain account model method for secret protection based on zero-knowledge proof
CN109274573A (en) A kind of immediate news systems, method and application for merging block chain technology
CN108475457A (en) Information trading infrastructure
JP2001500642A (en) Billing procedure and system for data transmission networks
Erdin et al. A Bitcoin payment network with reduced transaction fees and confirmation times
Nick et al. Liquid: A bitcoin sidechain
CN109583868A (en) Pay status channel network and its construction method and system, high frequency transaction system
JP2023099066A (en) System and method for transferring resources using block-chain
CN112581130A (en) Cross-chain transaction method based on multi-chain interconnection
CN113407977B (en) Cross-chain extension method and system based on aggregated signature
Ekbote et al. Blockchain based remittances and mining using CUDA
Khalil et al. FAKey: Fake hashed key attack on payment channel networks
Ranchal-Pedrosa et al. Platypus: Offchain protocol without synchrony
Yasusaka et al. Privacy-preserving pre-consensus protocol for blockchains
Kiayias et al. Elmo: Recursive virtual payment channels for bitcoin
CN110363513A (en) Payment unions method and apparatus based on block chain
Dai et al. A concurrent optimization consensus system based on blockchain
Agbezoutsi et al. Towards blockchain services for mobile money traceability and federation

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant