CN111586068B - Method and system for solving DPOS consensus node rights and interests potential safety hazard - Google Patents

Method and system for solving DPOS consensus node rights and interests potential safety hazard Download PDF

Info

Publication number
CN111586068B
CN111586068B CN202010407189.1A CN202010407189A CN111586068B CN 111586068 B CN111586068 B CN 111586068B CN 202010407189 A CN202010407189 A CN 202010407189A CN 111586068 B CN111586068 B CN 111586068B
Authority
CN
China
Prior art keywords
node
address
block
account
dpos
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010407189.1A
Other languages
Chinese (zh)
Other versions
CN111586068A (en
Inventor
丁有振
杨春福
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Jiansu Network Technology Co ltd
Original Assignee
Shanghai Jiansu Network Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Jiansu Network Technology Co ltd filed Critical Shanghai Jiansu Network Technology Co ltd
Priority to CN202010407189.1A priority Critical patent/CN111586068B/en
Publication of CN111586068A publication Critical patent/CN111586068A/en
Application granted granted Critical
Publication of CN111586068B publication Critical patent/CN111586068B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/04Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5076Update or notification mechanisms, e.g. DynDNS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles

Abstract

The invention relates to the technical field of DPOS consensus node rights and interests safety, and provides a method and a system for solving the potential safety hazards of DPOS consensus node rights and interests, wherein the method comprises the following steps: receiving a request for modifying a node address sent by an account address, wherein the request comprises a newly deployed update node address; checking and signing the account address, finding a node address mapped with the account address in a node mapping table according to the account address after the account address passes the checking and signing, and replacing the node address with the updated node address, wherein the node mapping table is a corresponding relation between the node address and the account address preset in DPOS consensus; and the DPOS consensus selects a block outlet node of the block, and when the account address is selected by the DPOS consensus, the block outlet is carried out through the replaced node address. The method solves the problems that the private key of the node participating in the consensus is easy to steal, and the security of the node participating in the consensus, the obtained pledge right and the security of the block reward are in the state of internal defense or no defense for related participants.

Description

Method and system for solving DPOS consensus node rights and interests potential safety hazard
Technical Field
The invention relates to the technical field of DPOS (distributed data processing system) consensus node rights and interests safety, in particular to a method and a system for solving the hidden danger of DPOS consensus node rights and interests safety.
Background
In the DPOS consensus algorithm, a node wants to participate in the blockchain consensus and gain revenue therefrom, and a pledge of interest must be used as a guarantee to prevent the node from doing ill in the consensus. The more interest a node pledge participates in consensus, the higher the probability of block-out.
Currently, there are many node holders that delegate nodes to a special authority for hosting or place nodes on a cloud server for convenience. Even if the physical nodes are operated autonomously, many of the nodes are organized, for example, all the nodes of the EOS are operated by the organization. The above situations bring the rights and interests safety problems to the consensus nodes.
The nodes must use the private key in the process of participating in the consensus, because the communication messages in the consensus process need the signature of the private key to verify the identity, otherwise, other nodes cannot verify the authenticity and the safety of the messages. Therefore, the private key must be configured in the node. Therefore, the agent, the cloud service provider or the operation and maintenance personnel of the agent have the opportunity to steal the private key in the node, so that the pledge right and the block reward of the node are obtained. Rights in the node are almost unprotected to these relevant participants, either internally or to the relevant participants.
In patent application CN109714404A — block chain consensus method and apparatus based on the Raft algorithm, it is disclosed that: "provide a block chain consensus method based on Raft algorithm, the block chain includes the consensus node that is set up in advance, the state of the consensus node includes: the system comprises a leader, a follower and candidates, and is characterized in that a supervisor node for acquiring node information of a consensus node is further arranged in a block chain, and the method comprises the following steps: after determining that the consensus nodes are converted from the follower state to the candidate state to enter the election process, acquiring node information of all consensus nodes in the election process through the supervisor node; the node information includes: block height, online duration and average voting times; selecting a consensus node of the leader state based on a Raft algorithm, wherein the consensus node of the leader state is used for recording a transaction event and generating a new block; when the consensus node in the leader state is determined to be finished, the node information of each consensus node is sent to the consensus node in the leader state through the supervisor node; determining at most one recommendation candidate consensus node through the consensus nodes in the leader state according to the block height, the online time and the average voting number of the consensus nodes; broadcasting a recommendation candidate consensus node through the consensus node of the leader state; and when the state of the recommendation candidate consensus node is determined to be converted into the candidate state, entering a next optional election process. In the above patent application, a supervisor node is set, and the block height, the online duration and the average voting times of each consensus node are tracked and updated by the supervisor node, so as to further determine at most one recommendation candidate consensus node and broadcast the recommendation candidate consensus node, and the state of the recommendation candidate consensus node is converted into a candidate state, and a next optional election process is performed. The security of the node to be candidate can be monitored only, the node which is selected to participate in the block chain consensus cannot be monitored, and after the node is elected to participate in the block chain consensus, if the private key of the node is stolen, no method can be used for monitoring. And there is no way to supervise the pledge to the node and the reward of the block. Once the private key is stolen, it poses a serious threat to the security of the entire blockchain network, as well as to the ownership of the node holder's assets. The way the supervisor node is set at the same time is also contrary to the core value of decentralization of the blockchain.
A consensus method according to the practical byzantine algorithm on block chains and its system are disclosed in patent application CN 110891064A: "a first aspect of the present application discloses a consensus method on a blockchain according to a practical byzantine algorithm, the blockchain system comprising a plurality of blockchain nodes, the group of out-blockchain nodes comprising a predetermined number of blockchain nodes, the method comprising: the block node group identifies the first block through a practical Byzantine algorithm; a first block link point selects a second block link point to verify the first block in a mode of verifiable random function, wherein the first block link node is any one of the out-block node groups, and the second block link node is a block link node except the out-block node group; and after the second block link node successfully verifies the first block, sending a response of successful verification to the first block link node so that the block outlet node group links the first block. In one possible embodiment, the predetermined number is 3M +1, M being a positive integer. In one possible embodiment, the first block link point packs the transaction into a first block; and after the first block link point verifies the first block, sending a result of passing verification to other block outlet nodes in the block outlet node group for consensus. In one possible embodiment, M ═ 1. In the above patent application, double verification is performed on a newly generated block, so as to ensure the security of a block chain and prevent the block chain node from doing malicious work. Similarly, the security supervision on the nodes elected to participate in the block chain consensus cannot be performed, and the potential safety hazard of the rights and interests of the consensus nodes participating in the block chain cannot be solved.
In summary, in the prior art, the private key of the node participating in the consensus is easy to be stolen, and the security of the node participating in the consensus and the security of the obtained pledge and the block reward are in a state of no defense for the relevant participants. However, there is no good solution to the above problems in the prior art.
Disclosure of Invention
In view of the above problems, an object of the present invention is to provide a method and a system for solving the potential safety hazard of rights and interests of a DPOS consensus node, which can ensure that the node participates in consensus safely, and at the same time, effectively prevent the rights and interests of the consensus node in the DPOS algorithm for pledge and block awards from being stolen by an agent, a cloud service provider or an operation and maintenance person inside the agent, and also can timely reverse the situation when the node cannot be effectively controlled, thereby preventing the loss from being continuously expanded.
The above object of the present invention is achieved by the following technical solutions:
a method for solving potential safety hazards of rights and interests of DPOS (dual port operating system) consensus nodes comprises the following steps:
receiving a request for modifying a node address sent by an account address, wherein the request comprises a newly deployed update node address;
checking and signing the account address, finding a node address mapped with the account address in a node mapping table according to the account address after the account address passes the checking and signing, and replacing the node address with the updated node address, wherein the node mapping table is a corresponding relation between the node address and the account address preset in DPOS consensus;
and the DPOS consensus selects a block outlet node of the block, and when the account address is selected by the DPOS consensus, the block outlet is carried out through the replaced node address.
Further, the checking and signing the account address specifically includes:
before sending a request for modifying a node address through the account address, applying a private key of the account address to carry out signature;
and after receiving a request for modifying the node address sent by the account address, the DPOS consensus verifies whether the account address is included in the node mapping table, and meanwhile, a public key of the account address preset in the DPOS consensus is applied to verify the account address.
Further, before receiving a request sent by the account address to modify the node address, the method further includes:
encrypting the private key of the node address, and writing the encrypted private key of the node address into a node configuration file so that the egress node participates in the communication commonly recognized by the DPOS;
and the private key of the account address is saved by the holder of the block-out node, so that the block-out node modifies the node address through the account address.
Further, the DPOS co-identifies the block output node of the selected block, and specifically includes the steps of:
reading all the account addresses and the states of the account addresses in the node mapping table;
selecting the account address of the block according to the pledge right of the account address;
reading the corresponding node address from the node mapping table according to the selected account address;
the DPOS consensus broadcasts the node address to a block chain global network.
Further, after the DPOS commonly identifies the block-out node of the selected block, the method further includes the steps of:
receiving the broadcasted node address in the whole block chain network, and comparing the broadcasted node address with the local node address;
if not, the out-block node does not do any operation and waits for synchronizing the block from other out-block nodes; if the two blocks are the same, the block outlet node generates a new block and broadcasts the block to the whole block chain network;
and after the block is confirmed, reading the corresponding account address in the node mapping table according to the node address, transferring the block reward into the account address, and finishing block reward outlet.
A kind of out piece node, including out piece module and account module;
the block output module is used for establishing and storing a node address, participating in DPOS consensus through the node address, and outputting a block through the node address after being selected by the DPOS;
the account module is used for establishing and storing an account address, sending a request for modifying the node address through the account address, and storing block rewards obtained by block drawing in the account address.
Further, the block outlet module further comprises: the processing submodule and the storage submodule;
the processing submodule further includes:
a private key encryption storage unit, configured to encrypt a private key of the node address, and write the encrypted private key of the node address into a node configuration file, so that the egress node participates in communication commonly recognized by the DPOS;
the block generation unit is used for comparing the broadcasted node address with the local node address after receiving the broadcasted node address in the whole block chain network; if not, the block generating unit does not do any operation and waits for synchronizing the blocks from other block outlet nodes; if the same, the block generation unit generates a new block and broadcasts the block to the whole block chain network;
the storage submodule further comprises:
and the configuration file storage unit is used for storing a node configuration file, wherein the node configuration file is used for encrypting the private key of the node address and writing the encrypted private key of the node address into the node configuration file so that the egress node participates in the communication commonly recognized by the DPOS.
Further, the account module further comprises: the processing submodule and the storage submodule;
the processing submodule further includes:
a node address modification request unit, configured to send a request for modifying a node address corresponding to an account address in the DPOS consensus, where the request includes a newly deployed updated node address;
the storage submodule further comprises:
and the asset storage unit is used for storing the block reward obtained by the block.
A DPOS consensus comprises a processing module and a storage module;
the processing module further comprises:
an account address verification unit, configured to verify whether the node mapping table includes the account address after receiving a request sent by the account address to modify the node address, and meanwhile, verify the account address by applying a public key of the account address preset in the DPOS consensus;
a node address modifying unit, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the account address verification and replace the node address with the updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the replaced node address when the block output node of a block is selected by the DPOS consensus;
a DPOS common identification block unit, configured to read all the account addresses and states of the account addresses in the node mapping table; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
the block confirmation unit is used for confirming the generated block, reading the corresponding account address in the node mapping table according to the node address, transferring block reward into the account address and finishing block reward outlet;
the storage module further comprises:
and the node mapping storage unit is used for storing a node mapping table, and when the block-out node participates in the DPOS consensus, the node address and the account address are provided at the same time, and the node address and the account address are written into the node mapping table in a one-to-one correspondence manner.
A system for solving DPOS consensus node equity security potential comprises:
the DPOS common knowledge comprises a plurality of block-out nodes participating in the DPOS common knowledge;
the DPOS consensus further comprises:
an account address verification unit, configured to verify whether the node mapping table includes the account address after receiving a request sent by the account address to modify the node address, and meanwhile, verify the account address by applying a public key of the account address preset in the DPOS consensus;
a node address modifying unit, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the account address verification and replace the node address with the updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the replaced node address when the block output node of a block is selected by the DPOS consensus;
a DPOS common identification block unit, configured to read all the account addresses and states of the account addresses in the node mapping table; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
the block confirmation unit is used for confirming the generated block, reading the corresponding account address in the node mapping table according to the node address, transferring block reward into the account address and finishing block reward outlet;
the block output node further includes:
the block output module is used for establishing and storing a node address, participating in DPOS consensus through the node address, and outputting a block through the node address after being selected by the DPOS;
the account module is used for establishing and storing an account address, sending a request for modifying the node address through the account address, and storing block rewards obtained by block drawing in the account address.
Compared with the prior art, the invention has at least one of the following beneficial effects:
(1) by the method for solving the potential safety hazard of the DPOS common-identification node rights and interests, when the condition that the block node cannot be effectively controlled is found, such as the condition that the block node fails to be repaired and restarted, the remote node is disconnected and lost, the cloud service is broken down, the node is hijacked by a hacker, and the like. And redeploying a node to join the blockchain network, and sending a request for modifying the node address to the blockchain network through the account address, wherein the request comprises the newly deployed updated node address. After the blockchain network receives the request, the signature of the account address is verified. And after the verification is passed, finding the original node address in the node mapping table through the account address, and replacing the original node address with the updated node address. And reading a new node address to perform block extraction when the DPOS recognizes and selects the block node next time. The method avoids the loss of rights in the node, such as the pledge rights and the block reward, when the private key of the node address is stolen.
(2) By establishing the scheme of separating the node address from the account address, after the private key of the node address is stolen, a new node address is replaced by the account address, the rights and interests in the node are protected, the block exit safety of the node is ensured, the operations of randomly performing block exit, exiting block election and the like by a stealer are avoided, and the safety of the whole block chain network is further maintained.
(3) Before a request for modifying the node address is sent through the account address, a private key of the account address is applied for signing, after the DPOS consensus receives the request sent by the account address, whether the account address is included in the node mapping table is verified, and meanwhile, a public key of the account address preset in the DPOS consensus is applied to verify the account address. It is ensured that the request to modify the node address is issued for the node holder and that the node holder is a node holder that has participated in the DPOS consensus.
Drawings
FIG. 1 is a flowchart illustrating an overall process of a method for solving the security risk of DPOS consensus node rights and interests according to the present invention;
FIG. 2 is an overall structure diagram of a block node according to the present invention;
FIG. 3 is a block-out module structure diagram of a block-out node according to the present invention;
FIG. 4 is a block diagram of an account module in a egress node according to the present invention;
FIG. 5 is a block diagram of a DPOS consensus of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present application clearer, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are some embodiments of the present application, but not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
As used herein, the singular forms "a", "an", "the" and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms "comprises" and/or "comprising," when used in this specification, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
The block chain network is a network consisting of a plurality of block chain nodes, is a public account book and a public database, and is also a point-to-point cooperative network. The cooperative parties (nodes in the blockchain) maintain data together, each node has a complete data backup, the data contents of all the nodes are completely consistent, each node can search a transaction record locally, and each node can add a transaction locally. To accomplish this, a center must be present to direct and coordinate, and a consensus mechanism must be present in the blockchain network, which must solve two basic problems. 1. Who has the right to add blocks-only one node is blocked at a time; 2. how the other nodes synchronize the data.
The invention mainly aims at the problem of potential safety hazard of rights and interests of nodes in a DPOS (distributed data processing system) consensus mechanism. DPOS (delayed Proof of trust) is developed on the basis of POW (Proof of workload) and POS (Proof of trust), and is a consensus algorithm based on voting, wherein a coin holder selects a plurality of representative nodes to operate a network, and a network server which is operated professionally is used to ensure the safety and performance of a block chain network. In the DPOS mechanism, a currency holder selects who the block-out node is without calculating to solve a mathematical problem, and if the block-out node is not qualified, the block-out node can be voted out at any time. For convenience, a node holder of a current block node generally delegates the block node to a special organization to take over the block node, or places the block node on a cloud server. Even if the physical nodes are operated autonomously, many of the nodes are organized, for example, all the nodes of the EOS are operated by the organization. The above situations bring the rights and interests safety problems to the consensus nodes. When the private key in the node is stolen, the rights and interests in the node will be almost in a state of no defense to the relevant parties.
Based on the application scenarios, the core thought of the invention is as follows: for a block output node used for outputting a block, when the node participates in DPOS consensus (node election), a node address and an account address are provided at the same time, and a node mapping table is set in the DPOS consensus to store the node address and the account address in the node mapping table correspondingly. The node address is only used for performing block output operation, and can be entrusted to a special organization or put on a cloud server for hosting. The rights including the pledge right amount and the block reward amount of the node are all stored in an account address, and the account address is kept by the node holder. When the private key of the node address is stolen, the account address can be immediately redeployed with a new updated node address, a request for modifying the node address is sent to the DPOS, the DPOS finds the node address corresponding to the account address in the node mapping table after the account address is verified, the node address is replaced by the updated node address, the new node address is used for operation after the DPOS selects the node address, and the original old node address cannot be operated.
The invention has the following remarkable characteristics: the block output node participates in the DPOS consensus in a form of separating a node address and an account address, the node address is only used for block output operation, and all important contents related to node rights and interests are stored in the account address and are kept by a node holder. And when the private key of the node address is stolen, the account address can be immediately deployed with a new node address to replace the original old node address, the subsequent block output operation is carried out by using the new node address, the old node address cannot be operated, and the actual control right of the block output node is mastered in the own hand of the node holder.
First embodiment
Fig. 1 is a specific flowchart of a method for solving the security risk of DPOS consensus node rights and interests according to the present invention, which includes:
s1: and receiving a request for modifying the node address sent by an account address, wherein the request comprises a newly deployed updating node address.
Specifically, in the present embodiment, the block output node participates in the DPOS consensus in a form in which the node address and the account address are separated, the node address is used only for the block output operation, and all important contents related to the node interest are stored in the account address and are kept by the node holder himself. When the private key corresponding to the node address for outputting the block is monitored to be stolen, a new updating node address needs to be redeployed, a request for modifying the node address is sent to the DPOS through the account address in a consensus mode, and the updating node address is sent to the DPOS while the request is sent.
As a simple example, a block output node deploys a node address on the cloud server, and when the node address is selected as a current block output node by the DPOS, block output operation is automatically performed by the cloud server. Correspondingly, in order to prevent the node rights from being stolen, an account address is deployed at the same time, and a private key corresponding to the account address is stored by the node holder. The contents related to the node rights, such as the amount of the pledge right and the block reward obtained by block output, are stored in the account address, and the control right of the node rights is mastered in the node holder. And the DPOS identifies a block output node to be output according to the total credit amount of the pledge in the account address, and performs block output operation through the node address after the block output node is selected. However, when the node address is out of block, the node address will not be exposed to the benefit of the out-of-block acquisition, and the DPOS will transfer the block award to the corresponding account address. When a node holder finds that the cloud server where the node address is located is not connected, the original node address can be directly abandoned, a new node address is re-deployed, a request for modifying the node address is sent to the DPOS in a consensus mode, and after the node address is modified successfully, block discharging operation is carried out through the new node address. The influence of stealing of any original node address on the node rights and interests is not worried about, and even if the original node address cannot be used, a new node address is redeployed. Under the condition of ensuring the node rights and interests safety, the operation is extremely simple, the node holder can operate the node, the auxiliary operation of the manager node or other nodes is not needed, the time is saved, and the cost for modifying the node address is saved.
Furthermore, the scheme of modifying the node address of the present invention can also be applied to the situation that the private key of the node address is lost, after the private key is lost, a new node address is redeployed, the request for modifying the node address is sent through the account address, the DPOS recognizes and receives the request, and after the node address is replaced in the node mapping table, the out-block node can perform the out-block operation through the new node address.
In order to make the block-out node block-out through the node address more secure and simple, and the rights and interests in the block-out node are easier to be controlled by the node holder, before receiving a request sent by the account address for modifying the node address, the method further comprises the following steps: encrypting the private key of the node address, and writing the encrypted private key of the node address into a node configuration file so that the egress node participates in the communication commonly recognized by the DPOS; and the private key of the account address is saved by the holder of the block-out node, so that the block-out node modifies the node address through the account address.
Specifically, in this embodiment, the node address and the account address both correspond to a single private key, the node address performs operations including block ejection through the private key of the node address, and the account address performs operations including node address modification and node interest processing through the private key of the account address. For the private key of the node address, preferably, an encryption algorithm may be established in advance to encrypt the private key corresponding to the node address, and a node configuration file is established, and the encrypted private key of the node address is stored in the node configuration file. The encryption algorithm of the private key is not limited at all, and can be algorithms including an AES algorithm, a HASH algorithm, an HMAC algorithm and a DES algorithm. However, in order to master the control right including the node interest in the hands, the private key of the account address is generally stored by the holder of the node, so that when the private key of the node address is stolen or lost, the node holder can quickly modify the node address through the account address, and the loss of the node interest is avoided.
S2: and checking and signing the account address, finding a node address mapped with the account address in a node mapping table according to the account address after the account address passes the checking and signing, and replacing the node address with the updated node address, wherein the node mapping table is a corresponding relation between the node address and the account address preset in the DPOS consensus.
Specifically, in this embodiment, after receiving a request for modifying a node address sent by an account address, the DPOS needs to check the account address to verify the identity of the account address, and after the check of the account address is passed, the DPOS can modify the node address.
The specific steps of checking the account address are as follows:
firstly, before a request for modifying the node address is sent through the account address, a private key of the account address is applied for signature.
Specifically, in order to verify the identity of the account address, before sending the request for modifying the node address, the request needs to be signed by the private key of the user corresponding to the account address, and the signed request is sent to the DPOS consensus.
Secondly, after receiving a request sent by the account address for modifying the node address, the DPOS consensus verifies whether the node mapping table includes the account address, and meanwhile, applies a public key of the account address preset in the DPOS consensus to verify the account address.
Specifically, after receiving a request for modifying a node address sent by an account address, the DPOS recognizes that what is needed to do first is to look up in a node mapping table whether the account address of the current request is included. If the account address is not in the node mapping table, no action is performed to prevent malicious actions from being performed by nodes that are not involved in the current DPOS consensus. And when the account address exists in the node mapping table, further applying a public key corresponding to the account address pre-stored in the DPOS consensus to check the account address, verifying the identity of the account address, and performing subsequent operation of modifying the node address only after the check passes.
After the account address is checked and signed, the node address is modified, specifically:
and searching the node mapping table, finding a record corresponding to the current account address, replacing the record with an updated node address, and after updating, applying the new node address to the block-out operation.
The node mapping table is a corresponding relation between a node address and an account address preset in the DPOS consensus, and the storage format of the corresponding relation is not limited by the invention. And may be in any form including table, json, object. For example, the storage may be performed in a form of "key-value", and since the account address is unique and generally does not change, the account address may be directly set as a key, the node address may be set as a value, the value of the key may be directly searched for as a record of the corresponding account address when the node is updated, and the value of the key may be updated. For another example, the storage may be performed in a json object form, an array of json objects is set, each record in the array is a json object of a correspondence between an account address and a node address, and a specific format may be "[ { account address: account address 1; and (3) node address: node address 1}, { account address: account address 2; and (3) node address: node address 2} ] ".
Further, since an account address or a node address corresponds to a unique public key and both participate in the blockchain network or the DPOS through the public key, in the node mapping table, we can use the public key for storage. Or any other unique field that can be used to distinguish between different account addresses or node addresses. The invention does not limit the content actually stored in the node mapping table, and only needs to be able to clearly express the corresponding relation between the account address and the node address.
S3: and the DPOS consensus selects a block outlet node of the block, and when the account address is selected by the DPOS consensus, the block outlet is carried out through the replaced node address.
Specifically, in this embodiment, when the DPOS consensus requires a block, the corresponding block node is selected to perform block discovery through the pledge interest total stored in the account address, and generally, the DPOS consensus selects the block node with the largest pledge interest total to perform block discovery, but the rule of block discovery is not unique, and the specific block discovery rule is specified by the DPOS consensus. And after the specific block output node is selected as the block output node by the DPOS, searching the node mapping table, finding out the node address corresponding to the account address, and outputting the block through the node address. If the node address is not modified, the block outputting operation is carried out through the original node address, and if the node address is modified, the block outputting operation is carried out through the latest node address. The number of modifications of the node address is not limited at all, and the address for the out-block is always the most recently modified one.
Further, the DPOS co-identifies the block output node of the selected block, and specifically includes the steps of:
s311: and reading all the account addresses and the states of the account addresses in the node mapping table.
Specifically, in this embodiment, when the DPOS recognizes that a block-out node of a block needs to be selected, first, the node mapping table needs to be read, and account addresses whose states of all account addresses are "pledge" are screened out according to the states of the account addresses in the node mapping table.
S312: and selecting the account address of the block according to the pledge right of the account address.
Specifically, in this embodiment, after all account addresses capable of performing a block-out operation are screened out, a pledge interest amount in all account addresses requiring a block-out operation needs to be acquired, and generally, a form is set in each account address to maintain the pledge interest amount of the account address and the content related to the assets such as node interest amount. After the pledge interest amount in each account address is acquired, the account address corresponding to the block is selected according to the rule of electing the block set in the DPOS consensus, wherein the rule of electing the block is set by the DPOS consensus according to the actual situation of the consensus, the block node with the highest pledge interest amount is elected, or other factors including credit, block output quality and the like are fused, and the optimal block output node for block output is comprehensively considered. Any other rule is also possible, and the present invention is not limited in any way.
S313: and reading the corresponding node address from the node mapping table according to the selected account address.
Specifically, in this embodiment, after the account address for block ejection is selected by the above rule for block ejection, since the operation for block ejection is finally performed by the node address, it is necessary to find the node address corresponding to the account address. At this time, we need to access the node mapping table again, find the node address corresponding to the account address of the selected block from the node mapping table, and then perform the block-out operation through the node address.
The block chain system can set a system account, and allow competition nodes participating in block competition to transfer accounts to the system account, wherein the amount of the transfer accounts is the credit right amount, the program records the credit right amount of each node, and then selects the block nodes from the credit right amount, but only account addresses are selected, so that the corresponding node addresses are found from the node mapping table according to the account addresses, and the block competition nodes are allowed to perform block competition.
S314: the DPOS consensus broadcasts the node address to a block chain global network.
Specifically, in this embodiment, after finding the node address corresponding to the account address from the node mapping table, the node address of the block needs to be broadcasted to the whole network of the block chain, and only after the node address is broadcasted to the whole network of the block chain, the node address can synchronize the node address of the block to know whether the node address can perform the block output operation, or wait for other block output nodes to perform block output and then synchronize the block.
Further, after the DPOS commonly identifies the block-out node of the selected block, the method further includes the steps of:
s321: receiving the broadcasted node address in the whole block chain network, and comparing the broadcasted node address with the local node address; if not, the out-block node does not do any operation and waits for synchronizing the block from other out-block nodes; and if the two blocks are the same, the block outlet node generates a new block and broadcasts the block to the whole block chain network.
Specifically, in this embodiment, after broadcasting the node address of the selected block to the blockchain entire network, any node in the blockchain entire network can synchronize to the node address information of the selected block. And when the outgoing block participating in the DPOS election receives the node address selected by the DPOS, comparing the node address with the node address broadcasted in the whole block chain network by using the node address of the outgoing block. And only when the broadcasted node address is consistent with the node address of the user, subsequent block outputting operation can be carried out, otherwise, the block information can be synchronized only after other selected node addresses are subjected to the block outputting operation.
S322: and after the block is confirmed, reading the corresponding account address in the node mapping table according to the node address, transferring the block reward into the account address, and finishing block reward outlet.
Specifically, in this embodiment, after comparing the own node address with the broadcasted node address, if the two addresses are the same, it can be determined that the own node address is the node address selected to perform the chunking. And after the data is selected, the data is blocked through the node address, the data is sent to the DPOS consensus after the data is blocked, the DPOS consensus can block the blocked data, and the data can be considered to be successfully blocked only when the blocked data is qualified. Furthermore, after the block is successfully output, the DPOS recognizes the node mapping table again, finds the account address corresponding to the node address of the block, transfers the block reward of the block to the account address, and is distributed by the node holder, so that the node address does not contact the node interest in the whole block output process.
Second embodiment
As shown in fig. 2, a structure diagram of a block output node 1 of the present invention specifically includes a block output module 11 and an account module 12;
a block output module 11, configured to establish and store a node address, participate in DPOS consensus through the node address, and output a block through the node address after being selected by the DPOS;
the account module 12 is configured to establish and store an account address, send a request for modifying a node address through the account address, and store a block reward obtained by drawing a block in the account address.
Further, as shown in fig. 3, the block output module 11 further includes: a processing sub-module 111 and a storage sub-module 112;
the processing sub-module 111 further includes:
a private key encryption storage unit 1111, configured to encrypt a private key of the node address, and write the encrypted private key of the node address into a node configuration file, so that the egress node participates in communication commonly recognized by the DPOS;
a block generating unit 1112, configured to compare the broadcasted node address with the local node address after receiving the broadcasted node address in the blockchain full network; if not, the block generating unit does not do any operation and waits for synchronizing the blocks from other block outlet nodes; if the same, the block generation unit generates a new block and broadcasts the block to the whole block chain network;
the storage sub-module 112 further includes:
a configuration file storage unit 1121 configured to store a node configuration file, where the node configuration file is configured to encrypt a private key of the node address, and write the encrypted private key of the node address into the node configuration file, so that the egress node participates in the communication commonly recognized by the DPOS.
Further, as shown in fig. 4, the account module 12 further includes: a processing sub-module 121 and a storage sub-module 122;
the processing sub-module 121 further includes:
a node address modification request unit 1211, configured to send a request for modifying a node address corresponding to an account address in the DPOS consensus, where the request includes a newly deployed updated node address;
the storage sub-module 122 further includes:
asset storage unit 1221, for storing the block prize obtained by the block.
Third embodiment
As shown in fig. 5, a structure diagram of a DPOS consensus 2 of the present invention specifically includes a processing module 21 and a storage module 22;
the processing module 21 further includes:
an account address verification unit 211, configured to verify whether the node mapping table includes the account address after receiving the request for modifying the node address sent by the account address, and meanwhile, verify the account address by applying a public key of the account address preset in the DPOS consensus;
a node address modifying unit 212, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the account address verification, and replace the node address with the updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the replaced node address when the block output node of the block is selected by the DPOS consensus;
a DPOS common identification block unit 213, configured to read all the account addresses in the node mapping table and the statuses of the account addresses; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
a block confirmation unit 214, configured to confirm the generated block, read the corresponding account address in the node mapping table according to the node address, transfer a block reward to the account address, and complete a block reward;
the storage module 22 further includes:
a node mapping storage unit 221, configured to store a node mapping table, when the chunking node participates in the DPOS consensus, provide the node address and the account address at the same time, and write the node address and the account address into the node mapping table in a one-to-one correspondence.
Fourth embodiment
The invention also provides a system for solving the potential safety hazard of the rights and interests of the DPOS consensus node, which is characterized by comprising the following steps:
a DPOS consensus 2, a plurality of block-out nodes 1 participating in the DPOS consensus;
the DPOS consensus 2, further comprising:
an account address verification unit 211, configured to verify whether the node mapping table includes the account address after receiving the request for modifying the node address sent by the account address, and meanwhile, verify the account address by applying a public key of the account address preset in the DPOS consensus;
a node address modifying unit 212, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the account address verification, and replace the node address with the updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the replaced node address when the block output node of the block is selected by the DPOS consensus;
a DPOS common identification block unit 213, configured to read all the account addresses in the node mapping table and the statuses of the account addresses; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
a block confirmation unit 214, configured to confirm the generated block, read the corresponding account address in the node mapping table according to the node address, transfer a block reward to the account address, and complete a block reward;
the block output node 1 further includes:
the block output module 11 is configured to establish and store a node address, participate in DPOS consensus through the node address, and output a block through the node address after being selected by the DPOS;
the account module 12 is configured to establish and store an account address, send a request for modifying a node address through the account address, and store a block reward obtained by block drawing in the account address.
A computer readable storage medium storing computer code which, when executed, performs the method as described above. Those skilled in the art will appreciate that all or part of the steps in the methods of the above embodiments may be implemented by associated hardware instructed by a program, which may be stored in a computer-readable storage medium, and the storage medium may include: read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and the like.
The above description is only a preferred embodiment of the present invention, and the protection scope of the present invention is not limited to the above embodiments, and all technical solutions belonging to the idea of the present invention belong to the protection scope of the present invention. It should be noted that modifications and embellishments within the scope of the invention may occur to those skilled in the art without departing from the principle of the invention, and are considered to be within the scope of the invention.
The technical features of the embodiments described above may be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the embodiments described above are not described, but should be considered as being within the scope of the present specification as long as there is no contradiction between the combinations of the technical features.
It should be noted that the above embodiments can be freely combined as necessary. The foregoing is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, various modifications and decorations can be made without departing from the principle of the present invention, and these modifications and decorations should also be regarded as the protection scope of the present invention.
The software program of the present invention can be executed by a processor to implement the steps or functions described above. Also, the software programs (including associated data structures) of the present invention can be stored in a computer readable recording medium, such as RAM memory, magnetic or optical drive or diskette and the like. Additionally, some of the steps or functionality of the present invention may be implemented in hardware, for example, as circuitry that cooperates with the processor to perform various functions or steps. The method disclosed by the embodiment shown in the embodiment of the present specification can be applied to or realized by a processor. The processor may be an integrated circuit chip having signal processing capabilities. In implementation, the steps of the above method may be performed by integrated logic circuits of hardware in a processor or instructions in the form of software. The Processor may be a general-purpose Processor, including a Central Processing Unit (CPU), a Network Processor (NP), and the like; but also Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete Gate or transistor logic devices, discrete hardware components. The various methods, steps and logic blocks disclosed in the embodiments of the present specification may be implemented or performed. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. The steps of a method disclosed in connection with the embodiments of the present specification may be embodied directly in a hardware decoding processor, or in a combination of hardware and software modules in the decoding processor. The software module may be located in ram, flash memory, rom, prom, or eprom, registers, etc. storage media as is well known in the art. The storage medium is located in a memory, and a processor reads information in the memory and completes the steps of the method in combination with hardware of the processor.
Embodiments also provide a computer readable storage medium storing one or more programs that, when executed by an electronic system including a plurality of application programs, cause the electronic system to perform the method of embodiment one. And will not be described in detail herein.
Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.
The systems, devices, modules or units illustrated in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. One typical implementation device is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smartphone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices. Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRA M), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), electrically erasable programmable read only memory (EEP ROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave. It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
In addition, some of the present invention can be applied as a computer program product, such as computer program instructions, which when executed by a computer, can invoke or provide the method and/or technical solution according to the present invention through the operation of the computer. Program instructions which invoke the methods of the present invention may be stored on a fixed or removable recording medium and/or transmitted via a data stream on a broadcast or other signal-bearing medium and/or stored within a working memory of a computer device operating in accordance with the program instructions. An embodiment according to the invention herein comprises an apparatus comprising a memory for storing computer program instructions and a processor for executing the program instructions, wherein the computer program instructions, when executed by the processor, trigger the apparatus to perform a method and/or solution according to embodiments of the invention as described above.

Claims (11)

1. A method for solving potential safety hazards of rights and interests of DPOS consensus nodes is characterized by comprising the following steps:
receiving a request for modifying a node address sent by an account address, wherein the request comprises a newly deployed update node address;
checking and signing the account address, finding a node address mapped with the account address in a node mapping table according to the account address after the account address passes the checking and signing, and replacing the node address with the updated node address, wherein the node mapping table is a corresponding relation between the node address and the account address preset in DPOS consensus;
and the DPOS consensus selects a block outlet node of the block, and when the account address is selected by the DPOS consensus, the block outlet is carried out through the replaced node address.
2. The method for solving the potential safety hazard of the rights and interests of the DPOS consensus node as claimed in claim 1, wherein the checking and signing of the account address specifically comprises:
before sending a request for modifying a node address through the account address, applying a private key of the account address to carry out signature;
and after receiving a request for modifying the node address sent by the account address, the DPOS consensus verifies whether the account address is included in the node mapping table, and meanwhile, a public key of the account address preset in the DPOS consensus is applied to verify the account address.
3. The method for solving the security risk of DPOS consensus node rights according to claim 1 or 2, further comprising, before receiving a request sent by the account address to modify the node address:
encrypting the private key of the node address, and writing the encrypted private key of the node address into a node configuration file so that the egress node participates in the communication commonly recognized by the DPOS;
and the private key of the account address is saved by the holder of the block-out node, so that the block-out node modifies the node address through the account address.
4. The method for solving the potential safety hazard of the rights and interests of the DPOS consensus node as claimed in claim 1 or 2, wherein the DPOS consensus selects the block exit node of a block, specifically comprising the steps of:
reading all the account addresses and the states of the account addresses in the node mapping table;
selecting the account address of the block according to the pledge right of the account address;
reading the corresponding node address from the node mapping table according to the selected account address;
the DPOS consensus broadcasts the node address to a block chain global network.
5. The method for solving the DPOS consensus node entitlement security risk of claim 4, further comprising, after the DPOS consensus selects the out-block node of a block, the steps of:
receiving the broadcasted node address in the whole block chain network, and comparing the broadcasted node address with the local node address;
if not, the out-block node does not do any operation and waits for synchronizing the block from other out-block nodes; if the two blocks are the same, the block outlet node generates a new block and broadcasts the block to the whole block chain network;
and after the block is confirmed, reading the corresponding account address in the node mapping table according to the node address, transferring the block reward into the account address, and finishing block reward outlet.
6. A block output node is characterized by comprising a block output module and an account module;
the block output module is used for establishing and storing a node address, participating in DPOS consensus through the node address, and outputting a block through the node address after being selected by the DPOS;
the account module is used for establishing and storing an account address, sending a request for modifying the node address through the account address, and storing block rewards obtained by block drawing in the account address.
7. The egress block node of claim 6, wherein the egress block module further comprises: the processing submodule and the storage submodule;
the processing submodule further includes:
a private key encryption storage unit, configured to encrypt a private key of the node address, and write the encrypted private key of the node address into a node configuration file, so that the egress node participates in communication commonly recognized by the DPOS;
the block generation unit is used for comparing the broadcasted node address with the local node address after receiving the broadcasted node address in the whole block chain network; if not, the block generating unit does not do any operation and waits for synchronizing the blocks from other block outlet nodes; if the same, the block generation unit generates a new block and broadcasts the block to the whole block chain network;
the storage submodule further comprises:
and the configuration file storage unit is used for storing a node configuration file, wherein the node configuration file is used for encrypting the private key of the node address and writing the encrypted private key of the node address into the node configuration file so that the egress node participates in the communication commonly recognized by the DPOS.
8. The egress node of claim 6 or 7, wherein the account module further comprises: the processing submodule and the storage submodule;
the processing submodule further includes:
a node address modification request unit, configured to send a request for modifying a node address corresponding to an account address in the DPOS consensus, where the request includes a newly deployed updated node address;
the storage submodule further comprises:
and the asset storage unit is used for storing the block reward obtained by the block.
9. A DPOS consensus device is characterized by comprising a processing module and a storage module;
the processing module further comprises:
the account address verification unit is used for verifying whether the account address is included in a node mapping table after receiving a request for modifying the node address sent by the account address, and meanwhile, applying a public key of the account address preset in the DPOS consensus to verify the account address;
a node address modifying unit, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the check and sign, and replace the node address with an updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the node address after replacement when a block output node of a block is selected by the DPOS consensus;
a DPOS common identification block unit, configured to read all the account addresses and states of the account addresses in the node mapping table; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
the block confirmation unit is used for confirming the generated block, reading the corresponding account address in the node mapping table according to the node address, transferring block reward into the account address and finishing block reward outlet;
the storage module further comprises:
and the node mapping storage unit is used for storing a node mapping table, and when the block-out node participates in the DPOS consensus, the node address and the account address are provided at the same time, and the node address and the account address are written into the node mapping table in a one-to-one correspondence manner.
10. A system for solving potential safety hazards of rights and interests of DPOS consensus nodes is characterized by comprising:
the DPOS consensus device comprises a plurality of block-out nodes participating in DPOS consensus;
the DPOS consensus device further includes:
the account address verification unit is used for verifying whether the account address is included in a node mapping table after receiving a request for modifying the node address sent by the account address, and meanwhile, applying a public key of the account address preset in the DPOS consensus to verify the account address;
a node address modifying unit, configured to find a node address mapped with the account address in a node mapping table according to the account address after the account address passes the account address verification and replace the node address with an updated node address, where the node mapping table is a corresponding relationship between the node address and the account address preset in a DPOS consensus, so as to facilitate the DPOS to perform block output by using the replaced node address when the block output node of a block is selected by the DPOS consensus;
a DPOS common identification block unit, configured to read all the account addresses and states of the account addresses in the node mapping table; selecting the account address of the block according to the pledge right of the account address; reading the corresponding node address from the node mapping table according to the selected account address; broadcasting the node address to a block chain full network;
the block confirmation unit is used for confirming the generated block, reading the corresponding account address in the node mapping table according to the node address, transferring block reward into the account address and finishing block reward outlet;
the block output node further includes:
the block output module is used for establishing and storing a node address, participating in DPOS consensus through the node address, and outputting a block through the node address after being selected by the DPOS;
and the account module is used for establishing and storing an account address, sending a request for modifying the node address through the account address, and storing the block reward obtained by block drawing in the account address.
11. A computer readable storage medium storing computer code which, when executed, performs the method of any of claims 1 to 5.
CN202010407189.1A 2020-05-14 2020-05-14 Method and system for solving DPOS consensus node rights and interests potential safety hazard Active CN111586068B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010407189.1A CN111586068B (en) 2020-05-14 2020-05-14 Method and system for solving DPOS consensus node rights and interests potential safety hazard

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010407189.1A CN111586068B (en) 2020-05-14 2020-05-14 Method and system for solving DPOS consensus node rights and interests potential safety hazard

Publications (2)

Publication Number Publication Date
CN111586068A CN111586068A (en) 2020-08-25
CN111586068B true CN111586068B (en) 2021-05-04

Family

ID=72124976

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010407189.1A Active CN111586068B (en) 2020-05-14 2020-05-14 Method and system for solving DPOS consensus node rights and interests potential safety hazard

Country Status (1)

Country Link
CN (1) CN111586068B (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106716421A (en) * 2016-12-30 2017-05-24 深圳前海达闼云端智能科技有限公司 Data query method, device and node apparatus
CN110910139A (en) * 2019-12-04 2020-03-24 北汽蓝谷信息技术有限公司 Trusted hardware based on block chain and high-performance decentralized anonymous encryption algorithm

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11341488B2 (en) * 2017-02-06 2022-05-24 Northern Trust Corporation Systems and methods for issuing and tracking digital tokens within distributed network nodes
CN109104289B (en) * 2018-08-20 2021-04-16 陕西优米数据技术有限公司 Method for proving network contribution proving consensus based on P2P block chain
CN110599165B (en) * 2019-09-04 2022-08-23 杭州时戳信息科技有限公司 Credit system construction method based on block chaining currency sky destruction
CN110851537A (en) * 2019-11-28 2020-02-28 蒋勇 Consensus method based on block chain fragmentation technology

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106716421A (en) * 2016-12-30 2017-05-24 深圳前海达闼云端智能科技有限公司 Data query method, device and node apparatus
CN110910139A (en) * 2019-12-04 2020-03-24 北汽蓝谷信息技术有限公司 Trusted hardware based on block chain and high-performance decentralized anonymous encryption algorithm

Also Published As

Publication number Publication date
CN111586068A (en) 2020-08-25

Similar Documents

Publication Publication Date Title
US11102185B2 (en) Blockchain-based service data encryption methods and apparatuses
CN108182581B (en) Accounting method and device for block chain
US11550935B2 (en) Method, apparatus, and electronic device for blockchain-based recordkeeping
US10958438B2 (en) Method, apparatus, and electronic device for blockchain-based recordkeeping
CN109584066B (en) Privacy transaction based on block chain and application method and device thereof
US11341490B2 (en) Carbon footprint blockchain network
CN107846278B (en) Intelligent contract processing method and device
CN113283905A (en) Data storage and acquisition method and device based on block chain
CN109614813B (en) Privacy transaction method and device based on block chain and application method and device thereof
US11423473B2 (en) Blockchain-based leasing
CN110009349B (en) Method and device for generating and verifying linkable ring signature in block chain
CN115632854A (en) Data processing method and device based on block chain
US20210314164A1 (en) Block content editing methods and apparatuses
US11861612B2 (en) Blockchain-based offline resource transfer method and apparatus
CN106233292B (en) Synthesize document access
US20210021412A1 (en) Method and apparatus for electing representative node device, computer device, and storage medium
CN112612856A (en) Data processing method and device based on block chain
CN113704775A (en) Service processing method based on distributed digital identity and related device
US20240078551A1 (en) Blockchain-based user element authorization methods and apparatuses
CN115296794A (en) Key management method and device based on block chain
WO2020019792A1 (en) Block release method and apparatus, and electronic device
CN114500119A (en) Block chain service calling method and device
CN111586068B (en) Method and system for solving DPOS consensus node rights and interests potential safety hazard
CN115118434A (en) Key management method and device based on block chain
US10726049B2 (en) Obtaining blockchain data in stages

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant