CN111506661B

CN111506661B - Content access management method, device and storage medium

Info

Publication number: CN111506661B
Application number: CN202010324310.4A
Authority: CN
Inventors: 周宇超; 康斌
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd
Priority date: 2020-04-22
Filing date: 2020-04-22
Publication date: 2021-09-28
Anticipated expiration: 2040-04-22
Also published as: CN111506661A

Abstract

The embodiment of the application discloses a content access management method, a content access management device and a storage medium, wherein the content access management method, the content access management device and the storage medium can receive a content access request from a terminal, and the content access request indicates target content needing to be accessed; acquiring retrieval information corresponding to the target content from a target database, wherein the retrieval information comprises storage position information of the target information in a block chain, and the target database is a database outside the block chain; according to the storage position information, retrieving current compliance state information corresponding to target content from the block chain as the target information; verifying the current compliance state of the target content according to the current compliance state information; and if the current compliance state passes the verification, returning the target content to the terminal. The scheme can access the content more safely, credibly and conveniently.

Description

Content access management method, device and storage medium

Technical Field

The present application relates to the field of communications technologies, and in particular, to a content access management method, apparatus, and storage medium.

Background

In recent years, with the rise of media, more and more users distribute and share content on a platform, the content is generally stored in a database system, when a user accesses the content on the platform, compliance verification needs to be performed according to current compliance state information of target content to be accessed, when the verification is passed, but in the existing content access method, the current compliance state information is generally stored in a database together with the target content, such as a relational database MYSQL, a non-relational database HBASE and the like. Although the change of the compliance state can be recorded by methods such as an operation log, the operation log can still be deleted manually, and the compliance state can be changed by directly calling an interface, reserving a back door and the like, so that the current compliance state information has the risk of being maliciously tampered by an unconscious person. Therefore, the conventional content access method cannot obtain reliable compliance state information when performing content access, and thus cannot perform content access safely and reliably.

Disclosure of Invention

In view of this, embodiments of the present application provide a content access management method, apparatus, and storage medium, which can perform content access safely, trustfully, and conveniently.

In a first aspect, an embodiment of the present application provides a content access method, including:

receiving a content access request from a terminal, wherein the content access request indicates target content needing to be accessed;

acquiring retrieval information corresponding to the target content from a target database, wherein the retrieval information comprises storage position information of the target information in a block chain, and the target database is a database outside the block chain;

according to the storage position information, retrieving current compliance state information corresponding to target content from the block chain as target information;

verifying the current compliance state of the target content according to the current compliance state information;

and if the current compliance state passes the verification, returning the target content to the terminal.

In some embodiments, before said receiving the access request from the terminal, further comprising:

generating current compliance state information according to a compliance state updating request uploaded by a terminal;

storing the current compliance state information into a block chain, and enabling nodes in the block chain to achieve consensus based on the current compliance state information based on a consensus mechanism of the block chain;

acquiring storage position information of the current compliance state information in a block chain;

generating retrieval information according to the storage position information;

and storing the retrieval information into the preset database.

In some embodiments, the generating retrieval information according to the storage location information includes:

and combining the storage position information with the current compliance state information to obtain retrieval information.

In some embodiments, said verifying the current compliance status of the target content according to the current compliance status information comprises:

performing consistency verification on the current compliance state information in the block chain and the current compliance state information in the retrieval information to obtain a verification result;

when the verification result is consistent, verifying the current compliance state of the target content according to the current compliance state information;

and when the verification result is inconsistent, verifying the current compliance state of the target content according to the current compliance state information in the block chain, and returning the verification result to the terminal.

In some embodiments, the generating current compliance status information according to the compliance status update request uploaded by the terminal includes:

acquiring user identification information, identification information of target content and a current compliance state from the compliance state updating request;

performing state updating authority verification according to the user identification information;

when the verification is passed, combining the current compliance state with the user identification information to obtain current compliance state updating information;

generating a correlation information pair according to the identification information of the target content and the current compliance state updating information;

and taking the association information pair as the current compliance state information.

In some embodiments, the storing the current compliance state information into a blockchain comprises:

generating verification information according to the current compliance state information, wherein the verification information comprises the current compliance state information and signature information of a current node;

broadcasting the check information to other nodes in the block chain;

and when the check information passes the check, the node of the block chain stores the current compliance state information into the block data chain corresponding to the target content.

In some embodiments, the obtaining current compliance state information of the retrieval target content from the blockchain according to the storage location information as target information includes:

determining a block data chain corresponding to the target content;

and acquiring the current compliance state information from a block data chain corresponding to the target content according to the storage position information.

In some embodiments, further comprising:

receiving a compliance state updating record viewing request uploaded by a terminal, wherein the compliance state updating record viewing request carries user identification information and identification information of the target content;

performing update record viewing authority verification according to the user identification information;

when the verification is passed, determining a block data chain corresponding to the target content;

generating a compliance state update record of the target content according to the block data chain;

and returning the compliance state updating record to the terminal.

In a second aspect, an embodiment of the present application provides a content access apparatus, including:

a receiving unit, configured to receive a content access request from a terminal, where the content access request carries a target content indicating that access is required;

the retrieval unit is used for acquiring retrieval information corresponding to the target content from a preset target database, wherein the retrieval information comprises storage position information of the target information in a block chain, and the preset target database is a database outside the block chain;

an obtaining unit, configured to obtain, as target information, current compliance state information of a retrieval target content from the block chain according to the storage location information;

a verification unit, configured to verify a current compliance status of the target content according to the current compliance status information;

and the access unit is used for acquiring the target content and returning the target content to the terminal if the current compliance state is verified.

In a third aspect, a computer device provided in an embodiment of the present application includes a processor and a memory, where the memory stores a plurality of instructions; the processor loads instructions from the memory to perform the steps of the content access method described above.

In a fourth aspect, embodiments of the present application provide a storage medium having a computer program stored thereon, which, when run on a computer, causes the computer to perform a content access management method as provided in any of the embodiments of the present application.

The method and the device for accessing the content can receive a content access request from a terminal, wherein the content access request indicates target content needing to be accessed; acquiring retrieval information corresponding to the target content from a target database, wherein the retrieval information comprises storage position information of the target information in a block chain, and the target database is a database outside the block chain; retrieving current compliance state information of the target content from the blockchain according to the storage location information; verifying the current compliance state of the target content according to the current compliance state information; and if the current compliance state passes the verification, returning the target content to the terminal. According to the scheme, the target database is used for assisting in retrieving the information in the block chain, the safety credibility of the retrieved current compliance state information can be improved by using a block chain technology, and the disadvantage that a block chain record type storage structure is inconvenient to retrieve can be overcome, so that content access can be safely, reliably and conveniently carried out.

Drawings

In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the description of the embodiments will be briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.

Fig. 1 is a schematic view of a scenario of a content access management system according to an embodiment of the present invention;

fig. 2a is a first flowchart of a content access management method according to an embodiment of the present invention;

fig. 2b is a schematic flow chart of a content access management method according to an embodiment of the present invention;

fig. 3a is a schematic diagram of a first structure of a content access management apparatus according to an embodiment of the present invention;

fig. 3b is a schematic diagram of a second structure of a content access management device according to an embodiment of the present invention;

FIG. 4 is a schematic structural diagram of a computer device provided by an embodiment of the present invention;

FIG. 5a is a diagram illustrating relationships between users and nodes in a block chain according to an embodiment of the present invention;

FIG. 5b is a schematic diagram of a retrieval process provided by an embodiment of the present invention;

FIG. 5c is a schematic diagram of a compliance status record provided by an embodiment of the present invention;

FIG. 5d is a diagram illustrating an embodiment of retrieving information in a blockchain;

FIG. 5e is a diagram illustrating storage of compliance status information according to an embodiment of the present invention;

FIG. 6a is a block data chain structure according to an embodiment of the present invention;

fig. 6b is a schematic flow chart illustrating block generation in the block data chain according to an embodiment of the present invention.

Detailed Description

The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.

Before explaining the embodiments of the present application in detail, some terms related to the embodiments of the present application will be explained.

Content access management refers to: when accessing content, the current compliance status information of the target content to be accessed needs to be subjected to compliance verification, and when the verification passes, the target content can be accessed.

Block chains: the block chain technique is a low-level technique of bit currency, which is a decentralized distributed account book database. The blockchain itself is a series of data blocks (i.e., block data) associated with each other by using a cryptographic algorithm, and each block data includes information for verifying validity of a plurality of blockchain network transactions. Based on the above, the data on the blockchain cannot be tampered to cheat, and the data on any blockchain can be ensured to be public and transparent, so that the security of the data is ensured. In the following description, in order to clarify a block chain system and a chain of block data components, the block chain system including a plurality of node apparatuses may be referred to as a block chain, and a chain of data components stored in the block chain may be referred to as a block data chain.

Block chains can be classified as public, private, or federation chains. The federation chain is between the public chain and the private chain, and several organizations cooperate to maintain a blockchain, the use of the blockchain must be managed with authority, and related information can be protected, such as a financial organization. To summarize, a blockchain is a distributed database system participated by nodes, or may also be referred to as a distributed public ledger based on P2P (peer-to-peer) network, and is characterized by being unalterable, and can also be understood as an ledger system.

Node of blockchain: the device participating in building the blockchain, for example, the computer devices of each content vendor participating in building the blockchain, may be a single computer device such as a single server of a certain content vendor, or may be a computer device cluster of a certain content vendor such as a server cluster. The nodes of the block chain may be execution subjects of information processing, and the interaction between the nodes may implement services such as transactions. A node in a blockchain maintains one or more associated blockchain data, which includes at least one piece of blockdata, e.g., which may include compliance status information, etc.

Next, a content access management method, a content access management apparatus, and a storage medium provided in embodiments of the present application will be described.

The embodiment of the application provides a content access management method, a content access management device and a storage medium. The content access management apparatus may be specifically integrated in a computer device, where the computer device may be a computer device, a server, or a terminal; the terminal may include a mobile phone, a tablet Computer, a notebook Computer, a Personal Computer (PC), and other devices, and the server may be a single server or a server cluster formed by multiple servers.

For example, referring to fig. 1, an embodiment of the present application provides a content access management system, which may implement services such as content access management. The system can comprise at least one block chain node and a terminal such as a mobile phone and a computer, wherein the nodes are connected through a network, and the nodes and the terminal are also connected through the network. For convenience of description, in the following description, the content access management system may be simply referred to as a system.

According to the scheme, through the mode of cross retrieval authentication of the block chain and the database, the safety credibility of the retrieved current compliance state information can be improved by using the block chain technology, and the disadvantage that a block chain record type storage structure is inconvenient to retrieve can be overcome, so that content access can be safely, reliably and conveniently carried out.

The following are detailed below. The order of the following examples is not intended to limit the preferred order of the examples.

Example one

Firstly, building a block chain:

firstly, a blockchain needs to be constructed, the blockchain is cooperatively maintained by a plurality of devices, and the alliance chain is constructed by the devices of a plurality of users according to the convention. The blockchain may comprise a plurality of nodes, which may correspond to different users, or the blockchain may be implemented by a single node serving terminals of all users in the blockchain. The nodes are implemented by servers or clusters of servers. The node corresponds to a block data chain, the block data chain comprises block data, and the block data comprises compliance state information of the content.

The building of the blockchain also involves Cloud technology, wherein Cloud technology refers to a hosting technology for unifying series resources such as hardware, software, network and the like in a wide area network or a local area network to realize calculation, storage, processing and sharing of data. Cloud technology (Cloud technology) is based on a general term of network technology, information technology, integration technology, management platform technology, application technology and the like applied in a Cloud computing business model, can form a resource pool, is used as required, and is flexible and convenient. Cloud computing technology will become an important support. Background services of the technical network system require a large amount of computing and storage resources, such as video websites, picture-like websites and more web portals. With the high development and application of the internet industry, each article may have its own identification mark and needs to be transmitted to a background system for logic processing, data in different levels are processed separately, and various industrial data need strong system background support and can only be realized through cloud computing. The distributed cloud storage system (hereinafter referred to as a storage system) refers to a storage system which integrates a large number of storage devices (storage devices are also referred to as storage nodes) of various types in a network through functions of cluster application, grid technology, distributed storage file system and the like to cooperatively work through application software or application interfaces and provides data storage and service access functions to the outside.

The building of the blockchain will be described in detail below in connection with cloud technology.

Referring to fig. 5b, the technical implementation of the content access management system can be divided into the following 3 layers: the system comprises an infrastructure layer, a core component layer and a business platform layer.

The infrastructure layer is responsible for data storage, cluster management, network communication and network security of the whole content access management system. Specifically, a plurality of Infrastructure as a Service (Infrastructure as a Service) Infrastructure components of IaaS may be constructed based on cloud technology. Wherein the base component includes a data storage component, a cluster management component, a network communication component, and a network security component. The IaaS refers to a service mode in which IT infrastructure is provided as a service through a network and charging is performed according to the actual usage amount or occupancy amount of resources by a user.

The data storage component can be constructed based on SSD disk resources, and the deployed MYSQL database and the block chain shared account book can be guaranteed to have excellent access performance.

In one embodiment, the data storage component may be built using a MYSQL database that may store compliance status information for content, and a search engine. The retrieval engine is responsible for meeting the relevant requirements of the compliance state information retrieval service and provides a uniform retrieval entry of data on the block chain.

The Database (Database) can be regarded as an electronic file cabinet, i.e., a place for storing electronic files, and a user can add, query, update, delete, etc. to the data in the files. A "database" is a collection of data that is stored together in a manner that can be shared by multiple users, has as little redundancy as possible, and is independent of the application. The database may be provided in a server of the search engine and may be shared to clients of a plurality of search engines.

The cluster management component is responsible for monitoring the node state in the block chain, and can monitor the node running state by adopting zookeeper (a distributed application program coordination service), maintain the connection between the living nodes (namely, the nodes which are not failed) in the block chain and automatically eliminate the connection between the failed nodes.

According to the method and the device, the block chain network layer is built based on the preset gateway equipment and the network private line, the network is guaranteed to be in communication connection through the multiple private lines, and the risk of network connection failure of the main node in the block chain is reduced.

The establishment of the network layer relates to Cloud Security, wherein Cloud Security (Cloud Security) refers to a general name of Security software, hardware, users, mechanisms and Security Cloud platforms applied based on a Cloud computing business model. The cloud security integrates emerging technologies and concepts such as parallel processing, grid computing and unknown virus behavior judgment, abnormal monitoring of software behaviors in the network is achieved through a large number of meshed clients, the latest information of trojans and malicious programs in the internet is obtained and sent to the server for automatic analysis and processing, and then the virus and trojan solution is distributed to each client.

The application can also use a network security firewall supported by the gateway equipment to ensure the data security in the content access management system.

The core component layer comprises service units supporting business logic and can be decomposed into a block chain service module and a state access service module.

The block chain core is built based on the consensus mechanism of the block chains, and the block chain core has the advantages of being high in safety and rapid in deployment. The blockchain service maintains functions of data encryption, a consensus mechanism, P2P network connection, authority management, shared accounts, compliance status information access and the like.

The state access service module comprises a compliance state retrieval service, a compliance state updating service, a compliance state database and a role authority management database. The retrieval service responds to the target content state query request, queries the compliance state database, and returns the storage location information. The compliance status update service responds to the compliance status update request, calculates the compliance status record field and updates the compliance status database. In one embodiment, the compliance status database may be constructed using a MYSQL database, and accordingly, the search engine may select InNODB.

Referring to fig. 5a, the users of the content access management system may include four different identities of accessing users, auditors, content editing users, and content processing users, and the different identities are determined according to tasks and executable operations of the users, and the users with different identities have different participation rights. Of course, a user may have different identities, and users with different identities may also have one or several of the same rights.

The terminals used by users with different identities can have different display interfaces, so that the users can perform different forms of information interaction with the nodes in the block chain through operation on the terminal interfaces. Such as retrieval services, alteration services, rights verification and access verification.

Referring to fig. 5b, the service platform layer of the content access management system may provide the content access management system access portal for different identity users, and provide the information interaction capability of corresponding rights, and the access portal may be represented as a control on the terminal display interface.

With reference to fig. 5a and 5b, the nodes in the block chain may write the updated compliance state record into the block chain according to the compliance state change request submitted by the auditor. The Content editing user is a user who issues Content, in this embodiment, the Content issued by the user is stored in a CMS (Content Management System, self-media teletext System), the CMS is associated with the compliance status information access service, when compliance verification is passed, the target Content can be obtained from the CMS, and of course, the Content editing user can also access the Content issued by the user by accessing the identity of the user. When the access user accesses the link of the target content, the current compliance state information or the compliance state update record is acquired from the compliance state information access service. An auditor or an automated audit program may perform a security audit on the articles in the CMS and update compliance status information based on the results of the audit. The content processing user is a user who performs operations such as article classification, label labeling, abstract generation and the like, certainly, the content processing can be automatically performed by a preset program, and only when compliance verification is passed, the target content can be acquired from the CMS and processed. The alliance chain management system is a system for a system administrator to execute content access management system chain building, node adding or deleting, node user authority management and content access management system operation monitoring.

Secondly, after the block chain is constructed, the block chain can be adopted to carry out content access management:

in an embodiment of the present application, in order to clarify an access flow of the compliance state information, a node of the blockchain may be divided into a first node and a second node, where the first node is configured to store the compliance state information in the blockchain, and is related to an information update service and an information update permission verification, and the second node is configured to obtain the compliance state information from the blockchain, and is related to a retrieval service, an access verification, and a read permission verification service. The first node may be any node in the blockchain, and the second node may also be any node in the blockchain. The first node and the second node may be the same node or may be different nodes. That is, the block chain may include only one node or may include a plurality of nodes. That is, the same node may store compliance status information or may use compliance status information, and different nodes in the same content access management system may share compliance status information maintained in the blockchain.

The node may be represented as a server, the node and the terminal are connected through a network, and the block chain may include only one node or a plurality of nodes. The terminal is used for displaying the page so as to show the target content to the user. The content access management system comprises a first content access management device and a second content access management device which are respectively integrated in a first node and a second node.

In this embodiment, the content access request of the present application will be described from the perspective of a device, wherein the first content access management device may be specifically integrated in the first node of the blockchain. Referring to fig. 2a, the flow of the content access request is as follows:

101. receiving a content access request from a terminal, wherein the content access request indicates target content needing to be accessed.

In the content access scenario, the target content refers to content that needs to be accessed.

In an embodiment, the content access request may be sent to the first node in the blockchain based on an operation of the access user on the terminal, for example, when the access user inputs a link or a keyword of the target content on the terminal interface for retrieval, or the user clicks an instruction interface on the terminal interface, the terminal may receive an instruction triggered by the user, and send the content access request to the first node in the blockchain according to the instruction.

In an embodiment, the content processing user or the content processing module may also send an access request to a node in the block chain, and the specific process refers to a process in which the access user sends the access request, which is not described herein again.

The method for indicating the target content by the content access request includes multiple methods, for example, the content access request may carry indication information such as a link of the target content, an id, a title or a keyword of the target content, and the target content to be accessed is indicated by the indication information.

In an embodiment, a node receiving a content access request may obtain an id of a target content according to a link of the target content, and for convenience of description, in this embodiment and the following embodiments, the node may obtain the id of the target content.

In an embodiment, a terminal interface (such as a terminal interface of an administrator or an auditor in a blockchain) may further be provided with a control for viewing current compliance state information and/or compliance state update records corresponding to target content, and a user may trigger sending a viewing request to a node by clicking the control, where the viewing request indicates the target content. The request may carry indication information such as a link of the target content, an id, a title, or a keyword of the target content, and the target content is indicated by the indication information. In this embodiment, the target content refers to content corresponding to information that needs to be viewed.

102. And acquiring retrieval information corresponding to the target content from a target database, wherein the retrieval information comprises storage position information of the target information in the block chain.

The target database is used for storing retrieval information, the target database is a database outside the block chain, and contents stored in the target database are not shared with other nodes in the form of the block data chain.

In an embodiment, the retrieval information may further include current compliance state information (may be referred to as first current compliance state information) of the target content, the first current compliance state information may perform consistency verification with current compliance state information (may be referred to as second current compliance state information) retrieved in the blockchain, when the first current compliance state information and the second current compliance state information are consistent, the compliance verification is performed based on the current compliance state information, and when the first current compliance state information and the second current compliance state information are not consistent, the compliance verification is performed based on the second current compliance state information, and the feedback may be sent to a manager in the blockchain, so that the manager may repair the vulnerability of the target database in time.

The current compliance state information is information indicating whether or not the target content is compliant at the current time. Compliance may specifically refer to compliance with relevant laws and regulations and with relevant provisions of the content access platform.

In an embodiment, the storage location information may be represented as a hash value of a storage location of the target information in the block chain, for a specific explanation, refer to embodiment two, and details are not described here.

The retrieval information stored in the target database may further include information indicating target content, information of an audit user uploading the current compliance state information, and the like.

Specifically, the retrieval information may be represented as a combination of the current compliance state record and the storage location information, wherein, referring to fig. 5c, the current compliance state record may include the current compliance state information, the identification information of the target content, and the identification information of the auditing user.

103. And retrieving current compliance state information corresponding to the target content from the block chain as target information according to the storage position information.

In an embodiment, the compliance status update request carries identification information of a target content, and the step may specifically include:

determining a block data chain corresponding to the target content according to the identification information of the target content;

In an embodiment, a control for checking the current compliance state is arranged in the terminal, and when content access is not performed, the user can trigger the control to check the current compliance state of the target content. The process of obtaining the current compliance status information refers to the process of accessing the content, which is not described in detail.

In an embodiment, referring to fig. 5d, the above process may be described by taking the target content as an article as an example, based on a trigger operation of the user on the terminal, the article status retrieval request is sent to the node, where the request carries an article id, and the status access service may obtain current compliance status information and storage location information (such as a record hash) of the article from a target database (i.e., the article compliance status DB in fig. 5 d), and then obtain a record on the blockchain, i.e., the current compliance status information of the article, from the blockchain according to the record hash.

In this application, the terminal is further provided with a control for viewing the compliance status update record, and the user may further trigger the control to view the compliance status update record, and before obtaining the compliance status update record from the block chain, the method further includes the steps of:

receiving a compliance state updating record viewing request uploaded by the terminal, wherein the compliance state updating record viewing request carries user identification information and identification information of the target content;

and generating a compliance state updating record of the target content according to the block data chain.

The compliance status update record refers to all compliance status records recorded in the block data chain corresponding to the target content, and is usually displayed according to the time sequence.

104. And verifying the current compliance state of the target content according to the current compliance state information.

In an embodiment, the cross validation may be performed based on a target database, and the step may specifically include:

105. And if the current compliance state passes the verification, returning the target content to the terminal.

In one embodiment, if the current compliance status verifies, the node may retrieve the targeted content from the CMS and return the targeted content to the terminal. And if the current compliance state verification is not passed, generating a corresponding message and returning the message to the terminal. Specifically, the message may appear as "error, 404" or "content you visit does not exist", or the like.

As can be seen from the above, the embodiment of the present application may receive a content access request from a terminal, where the content access request indicates a target content that needs to be accessed; acquiring retrieval information corresponding to the target content from a target database, wherein the retrieval information comprises storage position information of the target information in a block chain, and the target database is a database outside the block chain; retrieving current compliance state information of the target content from the blockchain according to the storage location information; verifying the current compliance state of the target content according to the current compliance state information; and if the current compliance state passes the verification, returning the target content to the terminal. According to the scheme, by means of cross retrieval authentication of the block chain and the database, the credibility of the retrieved current compliance state information can be improved by using a block chain technology, and the disadvantage that a block chain record type storage structure is inconvenient to retrieve can be overcome, so that content access can be safely, reliably and conveniently carried out.

As shown in fig. 2b, a content access management method is applicable to a second node in a blockchain, where the second node is any node in the blockchain, and a specific process may be as follows:

201. and acquiring current compliance state information according to the compliance state updating request uploaded by the terminal.

In an embodiment, the compliance state update request may be sent to a first node in the block chain based on an operation of the auditor on the terminal, for example, when the auditor clicks an instruction interface for confirming the change on a terminal interface, the terminal may receive an instruction triggered by a user, and send the compliance state update request to the first node in the block chain according to the instruction.

An automatic auditing module in an auditor or terminal can acquire contents to be audited from a CMS, and when the audits are not approved, a compliance state updating request is sent to a node in a block chain, wherein the compliance state updating request can carry user identification information, identification information of target contents, and an updated current compliance state.

In an embodiment, the step "generating current compliance state information according to a compliance state update request uploaded by a terminal" may specifically include:

when the verification is passed, combining the current compliance state information, the identification information of the target content and the user identification information to obtain a current compliance state record;

and generating a correlation information pair according to the identification information of the target content and the current compliance state record.

The associated information pair is a combination mode of associated information, and may be specifically represented in a key-value (key value pair) form, where the node may generate a key element in the key value pair according to the identification information of the target content, generate a value element in the key value pair according to the current compliance state record, and associate the key element and the value element. The current compliance state information is stored in the blockchain in the form of the above-mentioned association information pairs.

202. Storing the current compliance state information into a block chain, and enabling nodes in the block chain to achieve consensus based on the current compliance state information based on a consensus mechanism of the block chain.

In an embodiment, the step of storing the current compliance state information in the block chain may specifically include the following steps:

generating verification information according to the current compliance state record, wherein the verification information comprises the current compliance state record and signature information of a current node;

broadcasting the check information to other nodes in the block chain;

and when the check information passes the check, the node of the block chain stores the current compliance state record into the block data chain corresponding to the target content.

The signature information is a digital string which can be generated only by the sender of the information and cannot be forged by others, and the digital string is also a valid proof of the authenticity of the information sent by the sender of the information.

In one embodiment, the hash signature may be encrypted using HTTPS (hypertext Transfer Protocol over secure socket Layer) network transport Protocol. When the first node and the second node join the block chain, the first node and the second node negotiate to obtain a symmetric key through the interaction of handshake messages, and HTTPS communication is established. The encryption and decryption in the symmetric encryption algorithm use the same key, that is, the symmetric key, and when the first node transmits the current compliance state record to the second node, the symmetric key is used for signing, and the specific steps may include: the first node performs Hash operation on the current compliance state record to obtain a Hash value 1, then performs encryption operation on the Hash value by using a symmetric key of the first node to generate signature information, and then broadcasts the current compliance state record and the signature information to a second node in the block chain. And the second node decrypts the signature information through the symmetric key corresponding to the first node to obtain a hash value 1, and proves that the signature information belongs to the first node. And then carrying out hash operation on the current compliance state record to obtain a hash value 2, wherein if the hash value 1 is consistent with the hash value 2, the current compliance state record is not changed in the transmission process from the first node to the second node.

In one embodiment, the terminal may also go through the above-described verification process when transmitting the current compliance status record to the node.

In this embodiment of the application, a plurality of block data chains may be maintained in the node, and the node may determine the block data chain corresponding to the target content according to the identification information of the target content, and store the current compliance state information corresponding to the target content in the block data chain corresponding to the target content. Therefore, subsequent information retrieval can be facilitated.

Referring to fig. 6a, the block data chain is composed of a plurality of blocks, the starting block includes a block header and a block main body, the block header stores an input information characteristic value, a version number, a timestamp and a difficulty value, and the block main body stores input information; the next block of the starting block takes the starting block as a parent block, the next block also comprises a block head and a block main body, the block head stores the input information characteristic value of the current block, the block head characteristic value of the parent block, the version number, the timestamp and the difficulty value, and the like, so that the blocks stored in each block in the block chain are associated with the blocks stored in the parent block, and the safety of the input information in the blocks is ensured.

When each block in the block chain is generated, referring to fig. 6b, when the server of the second network platform receives the input information, the server verifies the input information according to the verification information, stores the input information into the local memory pool after the verification is completed, and updates the hash tree for recording the input information; and then, updating the updating time stamp to the time when the input information is received, trying different random numbers, and calculating the characteristic value for multiple times, so that the calculated characteristic value can meet the following formula:

SHA256(SHA256(version+prev_hash+merkle_root+ntime+nbits+x))＜TARGET

wherein, SHA256 is a characteristic value algorithm used for calculating a characteristic value; version is version information of the relevant block protocol in the block chain; prev _ hash is a block head characteristic value of a parent block of the current block; merkle _ root is a characteristic value of the input information; ntime is the update time of the update timestamp; nbits is the current difficulty, is a fixed value within a period of time, and is determined again after exceeding a fixed time period; x is a random number; TARGET is a feature threshold, which can be determined from nbits.

Therefore, when the random number meeting the formula is obtained through calculation, the information can be correspondingly stored, and the block head and the block main body are generated to obtain the current block.

In one embodiment, the node in the blockchain may be made to agree on the current compliance state record according to a consensus mechanism of the blockchain. Specifically, when the blockchain types are different, the consensus mechanism adopted by the nodes may be different. For example, for a federation chain, a node may employ a Practical Byzantine Fault Tolerance (PBFT) consensus mechanism, for a private chain, a node may employ a Raft consensus mechanism, and for a public chain, a node may employ a Proof of work (PoW) consensus mechanism.

For ease of understanding, the following is illustrated with an example of consistency verification based on the PBFT algorithm.

In this example, the blockchain network has 3f +1 nodes, where f is a positive integer, and each node in the network maintains a blockchain data chain that has a common record of the current compliance state of the target content, the PBFT algorithm effectively corresponds to a protocol that includes three phases, namely pre-preparation, preparation and confirmation nodes, wherein the pre-preparation and preparation phases are such that all normal nodes are guaranteed to perform all valid user requests in the same order.

The 3f +1 nodes can be divided into 1 main node and 3f backup nodes, a server of the first network platform generates a request message according to the current compliance state information, the user identification information and the identification information of the target content, the request message is sent to the main node and used for requesting to record the user identification information of the current compliance state information and the identification information of the target content in the block chain, the main node receives the request message and multicasts the request message to the block chain network, then the main node enters a pre-preparation stage to generate a composite message < m > and multicasts the composite message in the block chain network, the backup node receives the composite message and enters a preparation stage after passing the verification to generate a preparation message and multicasts the preparation message, meanwhile, the nodes store the pre-preparation message and the preparation message, after the nodes receive the preparation message and pass the verification, storing a prepare message, when a certain node is ready for Prepared (m, v, n, i), that is, for a request m, if a node i stores the request message, the prepare message and 2f +1 prepare messages, the node is called that the node i is ready for m, the node generates an acknowledge message and multicasts the acknowledge message, and simultaneously enters an acknowledge stage, the node stores the acknowledge message after receiving and verifying the acknowledge message, if a certain node locally acknowledges (m, v, n, i)) and all requests with sequence numbers smaller than n are processed, the node executes the operation in the request m and unicasts the result to a first network platform server, when the first network platform server receives f +1 identical results from different replication nodes, at least one of the f +1 nodes is valid because the PBFT algorithm allows f nodes to be invalid at most, thus, it can be ensured that the above result is valid, and each node in the blockchain network can write the current compliance state information of the target content in the blockchain in a manner of adding a new block.

The block chain adopts a one-way hash algorithm, each newly generated block is strictly advanced according to a time linear sequence, and the irreversibility and irrevocability of time cause that any behavior of trying to invade and tamper data information in the block chain is easy to trace, so that the data information is rejected by other nodes, the counterfeiting cost is extremely high, and the information can be prevented from being tampered.

203. And acquiring the storage position information of the current compliance state information in a block chain.

The storage location information may be represented as a characteristic value in the block header of the current block according to the description of step 202.

204. And generating retrieval information according to the storage position information, and storing the retrieval information into the preset database.

Optionally, the step of "generating the retrieval information according to the storage location information" may specifically include: and combining the storage position information with the current compliance state record to obtain retrieval information.

In summary, referring to fig. 5e, taking the target content as an example, the updating of the compliance status information may specifically include the following steps:

and triggering the change of the article compliance state by an auditor, calculating a current compliance state record field by the terminal, and recording data including the ID of target content, the current compliance state, the ID of an operator, a state change reason, state change time and the like. The data is written to a compliance status record blockchain that stores the characteristic value (e.g., hash value) returned by the blockchain. The current compliance state information is assembled with the hash value in the blockchain, and the compliance state update service writes the assembled information into a target database (i.e., the article compliance state DB in fig. 5 e), supporting retrieval using the target content ID as a keyword.

In order to better implement the above method, correspondingly, the embodiment of the present application further provides a first content access management device, which may be integrated in a first node of the blockchain, where the first node may be a single server or a server cluster.

For example, as shown in fig. 3a, the first content access management apparatus may include a receiving unit 301, a retrieving unit 302, an obtaining unit 303, an authenticating unit 304, and an accessing unit 305, as follows:

(1) a receiving unit 301;

an obtaining unit 301, configured to receive a content access request from a terminal, where the content access request carries a target content that indicates that access is needed.

For example, the receiving unit 301 may receive a content access request sent by an accessing user or an article processing user through a terminal.

In an embodiment, the receiving unit 301 may further be configured to receive a compliance status update record viewing request uploaded by the terminal.

And the compliance state updating record viewing request carries user identification information and the identification information of the target content.

(2) A retrieval unit 302;

a retrieving unit 302, configured to obtain, from a target database, retrieval information corresponding to the target content.

The retrieval information comprises storage position information of target information in a block chain, and the target database is a database outside the block chain.

(3) An acquisition unit 303;

an obtaining unit 303, configured to retrieve, according to the storage location information, current compliance status information of the target content from the block chain as target information.

In an embodiment, the obtaining unit 303 may specifically be configured to:

determining a block data chain corresponding to the target content;

In an embodiment, before the obtaining unit 303, verification of an update record viewing permission according to the user identification information is further included, and the obtaining unit 303 may further specifically be configured to:

when the verification of the updating record viewing authority passes, determining a block data chain corresponding to the target content;

(4) A verification unit 304;

a verifying unit 304, configured to verify a current compliance status of the target content according to the current compliance status information.

Optionally, in some embodiments, the verification unit 304 may specifically be configured to:

(5) An access unit 305;

an accessing unit 305, configured to return the target content to the terminal if the current compliance status is verified.

Wherein the accessing unit 305 may be further configured to obtain the target content.

Optionally, the access unit 305 may be further configured to generate a prompt message if the current compliance status verification fails, and return the prompt message to the terminal.

Correspondingly, the embodiment of the present application further provides a second content access management device, where the second content access management device may be integrated in a second node of the blockchain, and the second node may be a single server or a server cluster.

For example, as shown in fig. 3b, the first content access management apparatus may include a generation unit 401, a first storage unit 402, a data acquisition unit 403, and a push unit 404, as follows:

(1) a generating unit 401, configured to generate current compliance status information according to the compliance status update request uploaded by the terminal.

(2) A first storage unit 402, configured to store the current compliance state information into a block chain, and enable nodes in the block chain to achieve consensus based on the current compliance state information based on a consensus mechanism of the block chain.

In an embodiment, the first storage unit 402 may specifically be configured to:

broadcasting the check information to other nodes in the block chain;

(3) An obtaining unit 403, configured to obtain storage location information of the current compliance status information in a block chain.

(4) And a second storage unit 404, configured to generate retrieval information according to the storage location information, and store the retrieval information in the preset database.

In an embodiment, the second storage unit 404 may specifically be further configured to:

Optionally, the second content access management apparatus further includes a right verification unit 405 for:

and when the verification is passed, generating a current compliance state record according to the current compliance state, the user identification information and the identification information of the target content.

In a specific implementation, the above units may be implemented as independent entities, or may be combined arbitrarily to be implemented as the same or several entities, and the specific implementation of the above units may refer to the foregoing method embodiments, which are not described herein again.

Therefore, according to the scheme, by means of the cross retrieval authentication of the block chain and the database, the block chain technology can be used for improving the security credibility of the retrieved current compliance state information, and the disadvantage that a block chain record type storage structure is inconvenient to retrieve can be overcome, so that content access can be safely, reliably and conveniently carried out.

In addition, the embodiment of the application also provides a computer device, and the computer device is used as a node in the block chain. Fig. 4 is a schematic diagram showing a structure of a computer device according to an embodiment of the present application, specifically:

the computer device may include components such as a processor 501 of one or more processing cores, memory 502 of one or more computer-readable storage media, a power supply 503, and an input unit 504. Those skilled in the art will appreciate that the computer device configuration illustrated in FIG. 4 does not constitute a limitation of computer devices, and may include more or fewer components than those illustrated, or some components may be combined, or a different arrangement of components. Wherein:

the processor 501 is a control center of the computer device, connects various parts of the entire computer device by using various interfaces and lines, and performs various functions of the computer device and processes data by running or executing software programs and/or modules stored in the memory 502 and calling data stored in the memory 502, thereby monitoring the computer device as a whole. Optionally, processor 501 may include one or more processing cores; preferably, the processor 501 may integrate an application processor, which mainly handles operating systems, user interfaces, application programs, etc., and a modem processor, which mainly handles wireless communications. It will be appreciated that the modem processor described above may not be integrated into the processor 501.

The memory 502 may be used to store software programs and modules, and the processor 501 executes various functional applications and data processing by operating the software programs and modules stored in the memory 502. The memory 502 may mainly include a program storage area and a data storage area, wherein the program storage area may store an operating system, an application program required by at least one function (such as a sound playing function, an image playing function, etc.), and the like; the storage data area may store data created according to use of the computer device, and the like. Further, the memory 502 may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device. Accordingly, the memory 502 may also include a memory controller to provide the processor 501 with access to the memory 502.

The computer device further comprises a power supply 503 for supplying power to the various components, and preferably, the power supply 503 may be logically connected to the processor 501 through a power management system, so that functions of managing charging, discharging, power consumption, and the like are realized through the power management system. The power supply 503 may also include any component of one or more dc or ac power sources, recharging systems, power failure detection circuitry, power converters or inverters, power status indicators, and the like.

The computer device may also include an input unit 504, and the input unit 504 may be used to receive input numeric or character information and generate keyboard, mouse, joystick, optical or trackball signal inputs related to user settings and function control.

Although not shown, the computer device may further include a display unit and the like, which are not described in detail herein. Specifically, in this embodiment, the processor 501 in the computer device loads the executable file corresponding to the process of one or more application programs into the memory 502 according to the following instructions, and the processor 501 runs the application programs stored in the memory 502, so as to implement various functions as follows:

according to the storage position information, retrieving a current compliance state record corresponding to target content from the block chain as the target information;

verifying the current compliance state of the target content according to the current compliance state record;

The above operations can be implemented in the foregoing embodiments, and are not described in detail herein.

Therefore, according to the scheme, the target database is used for assisting in retrieving the information in the block chain, the safety credibility of the retrieved current compliance state information can be improved by using the block chain technology, and the disadvantage that a block chain record type storage structure is inconvenient to retrieve can be overcome, so that content access can be safely, reliably and conveniently carried out.

It will be understood by those skilled in the art that all or part of the steps of the methods of the above embodiments may be performed by instructions or by associated hardware controlled by the instructions, which may be stored in a computer readable storage medium and loaded and executed by a processor.

To this end, embodiments of the present application further provide a computer-readable storage medium, in which a plurality of instructions are stored, where the instructions can be loaded by a processor to execute the steps in any content access management method provided in the embodiments of the present application. For example, the instructions may perform the steps of:

Wherein the computer-readable storage medium may include: read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and the like.

Since the instructions stored in the computer-readable storage medium can execute the steps in any content access management method provided in the embodiments of the present application, beneficial effects that can be achieved by any content access management method provided in the embodiments of the present application can be achieved, for details, see the foregoing embodiments, and are not described herein again.

The content access management method, device and storage medium provided by the embodiments of the present application are described in detail above, and the principles and embodiments of the present application are explained herein by applying specific examples, and the description of the above embodiments is only used to help understand the method and core ideas of the present application; meanwhile, for those skilled in the art, according to the idea of the present application, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present application.

Claims

1. A content access management method applied to a node in a block chain, comprising:

retrieving a current compliance state record corresponding to the target content from the block chain according to the storage position information, wherein the current compliance state record is used as the target information, and the current compliance state information is used for indicating whether the target content is compliant at the current moment;

2. The content access management method according to claim 1, further comprising, before said receiving a content access request from a terminal:

generating current compliance state information according to the compliance state updating request uploaded by the terminal;

storing the current compliance state information into the blockchain, and enabling nodes in the blockchain to achieve consensus based on the current compliance state information based on a consensus mechanism of the blockchain;

and generating retrieval information according to the storage position information, and storing the retrieval information into the target database.

3. The content access management method according to claim 2, wherein the generating retrieval information based on the storage location information includes:

4. The content access management method according to claim 3, wherein the verifying the current compliance state of the target content based on the current compliance state information comprises:

5. The content access management method according to claim 2, wherein the generating current compliance status information according to the compliance status update request uploaded by the terminal comprises:

acquiring user identification information, identification information of target content and current compliance state information from the compliance state updating request;

when the verification is passed, generating a current compliance state record by using the current compliance state information, the user identification information and the identification information of the target content;

the storing the current compliance state information into the blockchain includes:

storing the current compliance state record into the blockchain.

6. The content access management method according to claim 5, wherein said storing the current compliance state record into a blockchain comprises:

broadcasting the check information to other nodes in the block chain;

7. The content access management method according to claim 1, wherein the acquiring current compliance state information corresponding to the retrieval target content from the block chain according to the storage location information as target information includes:

determining a block data chain corresponding to the target content;

8. The content access management method according to claim 1, further comprising:

and returning the compliance state updating record to the terminal.

9. A content access management apparatus, comprising:

an obtaining unit, configured to obtain, as target information, current compliance state information of a retrieval target content from the block chain according to the storage location information, where the current compliance state information is used to indicate whether the target content is compliant at a current time;

and the access unit is used for returning the target content to the terminal if the current compliance state is verified.

10. A storage medium having stored thereon a computer program, characterized in that, when the computer program is run on a computer, it causes the computer to execute the method according to any one of claims 1 to 8.