CN111800262B - Digital asset processing method and device and electronic equipment - Google Patents
Digital asset processing method and device and electronic equipment Download PDFInfo
- Publication number
- CN111800262B CN111800262B CN202010629257.9A CN202010629257A CN111800262B CN 111800262 B CN111800262 B CN 111800262B CN 202010629257 A CN202010629257 A CN 202010629257A CN 111800262 B CN111800262 B CN 111800262B
- Authority
- CN
- China
- Prior art keywords
- key
- asset
- management server
- block chain
- signature
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/0825—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0863—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0872—Generation of secret information including derivation or calculation of cryptographic keys or passwords using geo-location information, e.g. location data, time, relative position or proximity to other entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
Abstract
The invention provides a method and a device for processing digital assets and electronic equipment, which are used for receiving an asset signature request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; generating a signature private key of the target asset according to the sub-key corresponding to the block chain; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server. In the method, a key for encrypting the digital asset is stored in an isolated manner with the digital asset by using a key management server, and meanwhile, when the digital asset needs to be signed, a signature private key is generated in real time so as to sign the digital asset; the method can improve the security of the key, can also effectively ensure the security of the key and the digital assets, and improves the security of a service system.
Description
Technical Field
The present invention relates to the field of digital asset technologies, and in particular, to a method and an apparatus for processing a digital asset, and an electronic device.
Background
The digital assets in the business system are encrypted by a key. The storage system of the secret key usually shares storage resources and subnet resources with the service system, and the storage system of the secret key directly stores a private key original text of the secret key; if the business system or the storage medium is attacked, the key is at risk of being stolen or destroyed, and further the digital assets are also transferred or destroyed, and the safety of the business system is low.
Disclosure of Invention
In view of this, the present invention provides a method and an apparatus for processing digital assets, and an electronic device, so as to improve the security of a business system.
In a first aspect, an embodiment of the present invention provides a method for processing a digital asset, where the method is applied to a key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the method comprises the following steps: receiving an asset signing request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; generating a signature private key of the target asset according to the sub-key corresponding to the block chain; signing the target asset through a signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
Further, the sub-key corresponding to each block chain is generated by the following method: acquiring a pre-generated root key; the root key comprises a public key seed file and a root private key; generating a sub public key corresponding to each block chain according to the public key seed file in the root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
Further, a user address of each user in the block chain is stored in the key management server; the user address of each user in the block chain is generated by the following method: and aiming at each block chain, generating a user address of each user in the block chain according to the sub public key corresponding to the block chain.
Further, the root key is generated by the following method: if a mnemonic word acquisition instruction from the client is received, generating a mnemonic word; returning the generated mnemonic words to the client side so as to set starting passwords corresponding to the mnemonic words through the client side; if the start-up password is received, a root key is generated according to the mnemonic words.
Further, the asset signature request also comprises the user of the target asset; the key management server also stores the user number of each user; generating a signature private key of the target asset according to the sub-key corresponding to the block chain, wherein the step comprises the following steps: and generating a signature private key of the target asset according to the sub-key corresponding to the block chain and the user number corresponding to the user of the target asset.
In a second aspect, an embodiment of the present invention provides a method for processing a digital asset, where the method is applied to a digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the method comprises the following steps: if an asset processing request of a target asset is received, generating an asset signature request of the target asset; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; sending the asset signing request to a key management server so as to generate a signing private key of the target asset according to a sub-key corresponding to the block chain to which the asset signing request belongs through the key management server; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server; and sending the asset processing request and the signature result to the belonging block chain of the target asset so as to process the target asset through the belonging block chain.
In a third aspect, an embodiment of the present invention provides a method for processing a digital asset, where the method is applied to a terminal device; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the method comprises the following steps: sending a mnemonic word acquisition instruction to a key management server to generate a mnemonic word through the key management server and returning the mnemonic word to the terminal equipment; setting a starting password corresponding to the mnemonic word; sending the starting password to a key management server so as to generate a root key according to the mnemonic words through the key management server; wherein the root key is used to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, a key management server generates a signature private key of the target asset according to a sub-key corresponding to a block chain to which the target asset belongs; signing the target asset through a signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
Further, the root key comprises a public key seed file and a root private key; after the step of sending the start password to the key management server to generate the root key according to the mnemonic word by the key management server, the method further includes: sending a sub-key generation request and a starting password to a key management server so as to generate a sub-public key corresponding to each block chain through the key management server according to a public key seed file in a root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
In a fourth aspect, an embodiment of the present invention provides a device for processing a digital asset, where the device is disposed in a key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the device comprises: a receiving module for receiving an asset signing request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; the generation module is used for generating a signature private key of the target asset according to the sub-key corresponding to the block chain to which the target asset belongs; the signature module is used for signing the target asset through a signature private key to obtain a signature result; and the processing module is used for returning the signature result to the digital asset management server so as to process the target asset through the digital asset management server based on the signature result.
In a fifth aspect, an embodiment of the present invention provides a digital asset processing apparatus, where the apparatus is disposed in a digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the device comprises: the request generating module is used for generating an asset signature request of the target asset if an asset processing request of the target asset is received; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; the request sending module is used for sending the asset signature request to the key management server so as to generate a signature private key of the target asset according to the sub-key corresponding to the block chain to which the key management server belongs; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server; and the asset processing module is used for sending the asset processing request and the signature result to the block chain to which the target asset belongs so as to process the target asset through the block chain to which the target asset belongs.
In a sixth aspect, an embodiment of the present invention provides a digital asset processing apparatus, where the apparatus is disposed in a terminal device; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the device comprises: the instruction sending module is used for sending a mnemonic word acquisition instruction to the key management server so as to generate a mnemonic word through the key management server and return the mnemonic word to the terminal equipment; the password setting module is used for setting a starting password corresponding to the mnemonic word; the password sending module is used for sending the starting password to the key management server so as to generate a root key according to the mnemonic words through the key management server; wherein the root key is used to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, a key management server generates a signature private key of the target asset according to a sub-key corresponding to a block chain to which the target asset belongs; signing the target asset through a signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
In a seventh aspect, an embodiment of the present invention provides an electronic device, which includes a processor and a memory, where the memory stores machine executable instructions capable of being executed by the processor, and the processor executes the machine executable instructions to implement the method for processing the digital asset in any one of the first aspect, the second aspect, or the third aspect.
In an eighth aspect, the present invention provides a machine-readable storage medium storing machine-executable instructions, which when called and executed by a processor, cause the processor to implement the method for processing the digital asset of any one of the first, second or third aspects.
The embodiment of the invention brings the following beneficial effects:
the embodiment of the invention provides a method and a device for processing digital assets and electronic equipment, which are used for receiving an asset signature request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; generating a signature private key of the target asset according to the sub-key corresponding to the block chain; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server. In the method, a key for encrypting the digital asset is stored in an isolated manner with the digital asset by using a key management server, and meanwhile, when the digital asset needs to be signed, a signature private key is generated in real time so as to sign the digital asset; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
Additional features and advantages of the invention will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by the practice of the invention. The objectives and other advantages of the invention will be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.
In order to make the aforementioned and other objects, features and advantages of the present invention comprehensible, preferred embodiments accompanied with figures are described in detail below.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the embodiments or the prior art descriptions will be briefly described below, it is obvious that the drawings in the following description are some embodiments of the present invention, and other drawings can be obtained by those skilled in the art without creative efforts.
FIG. 1 is a flow chart of a method for processing digital assets according to an embodiment of the invention;
fig. 2 is a flowchart of a root key generation method according to an embodiment of the present invention;
fig. 3 is a flowchart of a method for processing digital assets according to an embodiment of the present invention;
FIG. 4 is a flow chart of a method for processing digital assets according to an embodiment of the invention;
FIG. 5 is a schematic diagram of a digital asset processing device according to an embodiment of the present invention;
FIG. 6 is a schematic diagram of a digital asset processing device according to an embodiment of the present invention;
FIG. 7 is a schematic diagram of a digital asset processing device according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
To make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions of the present invention will be clearly and completely described below with reference to the accompanying drawings, and it is apparent that the described embodiments are some, but not all embodiments of the present invention. All other embodiments, which can be obtained by a person skilled in the art without making any creative effort based on the embodiments in the present invention, belong to the protection scope of the present invention.
In the related art, a storage system of a secret key usually shares storage resources and subnet resources with a service system, and a private key original text of the secret key is directly stored in the storage system of the secret key; if the service system or the storage medium is attacked, the risks of key loss, key theft, storage medium damage, key recovery and the like exist. At present, based on this, the technology may be applied to a cloud server or an entity server with digital asset management, and first, to facilitate understanding of this embodiment, a detailed description is given to a method for processing a digital asset disclosed in this embodiment of the present invention.
Firstly, the embodiment of the invention provides a method for processing digital assets, which is applied to a key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server. The execution subject of the method is a key management server; as shown in fig. 1, the method comprises the steps of:
step S102, receiving an asset signature request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
the asset signing request is typically referred to as an RPC (Remote Procedure Call) request, using which a service may be requested from another node in the network. In addition, since it includes the target asset to be signed and the belonging blockchain of the target asset, the blockchain information of the target asset can be provided to the key management server. The digital asset management server may include a hot wallet for storing digital assets, accessing a blockchain; the block chain may include a public chain or a federation chain.
In actual implementation, when a user needs to process a target asset in a blockchain, first, an asset processing request may be initiated through a terminal device, for example, a mobile phone, a computer, or other devices; when the digital asset management server receives an asset processing request of a target asset, an asset signature request of the target asset can be generated; and the digital asset management server sends the generated asset signature request of the target asset to the key management server so as to perform signature operation on the asset signature request of the target asset according to the subkey stored in the key management server.
Step S104, generating a signature private key of the target asset according to the sub-key corresponding to the block chain to which the target asset belongs;
the sub-key generally comprises a sub-public key and a sub-private key; each block chain corresponds to a sub public key; there may be user addresses for multiple users on each blockchain. During actual implementation, the key management server acquires a subkey corresponding to a block chain to which a target asset belongs from stored subkeys corresponding to each block chain according to the block chain to which the target asset to be signed belongs included in a received asset signature request; the signature private key of the target asset is generated by a hierarchical deterministic derivation method using the sub public key and the sub private key in the obtained sub key, for example, BIP32 (Bitcoin Improvement offers 32), BIP44 (Bitcoin Improvement offers 44), etc., and an encryption Algorithm, for example, HMAC-SHA512 (Hash-based Message Authentication Code Secure Hash Algorithm 512, hash Message Authentication Code Secure Hash Algorithm 512), with a specific rule.
It should be noted that the generated signature private key is obtained by real-time calculation, and is not stored, and is usually stored in the memory of the key management server for only several seconds, even several milliseconds; usually, the calculation is performed only when the signature is needed, and a signature private key of the corresponding target asset is generated. The secret key leakage caused by the fact that the storage medium is broken is avoided; the security of the storage of the signature private key is ensured.
Step S106, signing the target asset through the signature private key to obtain a signature result;
in actual implementation, a Signature is performed on a target asset in an asset Signature request through a Signature private key and a Signature Algorithm, for example, a secp256k1 (elliptic curve Algorithm parameter) Algorithm, a Digital Signature Algorithm (DSA), and the like; the signature process occupies less broadband and storage resources, the length of the key is short, the calculated amount is small, the processing speed is high, and meanwhile, the signature process has high safety. And finally, signing the target asset by the method to obtain a signature result.
And step S108, returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
The key management server sends the signature result to the digital asset management server; after receiving the signature result, the digital asset management server can send the signature result to the corresponding block chain according to the block chain to which the target asset belongs, so as to process the target asset through the block chain to which the target asset belongs; specifically, the block chain to which the target asset belongs can verify the signature result to ensure whether the private key signature is correct; if verified, the target asset may be processed according to the asset processing request, such as cashing out the user's digital asset, recording the transaction process on a blockchain, etc.
The embodiment of the invention provides a digital asset processing method, wherein the execution subject of the method is a key management server, and an asset signature request from the digital asset management server is received; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; generating a signature private key of the target asset according to the sub-key corresponding to the block chain; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server. In the method, a key for encrypting the digital assets and the digital assets are stored in an isolated mode by using a key management server, and meanwhile, when the digital assets need to be signed, a signature private key is generated in real time so as to sign the digital assets; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
The subkey corresponding to each block chain is generated in the following way:
step A1, acquiring a pre-generated root key; the root key comprises a public key seed file and a root private key;
the pre-generated root key may be generated by the key management server in an offline state according to a key generation tool, for example, a mnemonic word, an offline plug-in, or other tools; the public key seed file in the root key and the root private key are typically stored in a storage area of the key management server.
Step A2, generating a sub public key corresponding to each block chain according to a public key seed file in the root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
During actual implementation, a user can formally start a digital asset management system in a password management server according to a start password, and the system generates a plurality of sub-keys based on a root key in a layered determination mode according to BIP32 and BIP 44; the number of the sub-keys can be determined according to the number of the block chains; generally, the digital asset management system in the password management server generates a corresponding number of sub-keys according to the root key according to the number of block chains in the service system; specifically, a sub public key corresponding to each block chain is generated according to a public key seed file in the root key; different blockchains correspond to different sub-public keys. And generating a sub private key corresponding to each block chain according to the root private key in the root private key.
Note that, the password management server persistently stores the generated sub public key to a Database, for example, KRDS (Relational Database); the generated sub private key is not stored persistently and can be loaded into a memory of a server, so that a signature private key can be generated according to the sub private key when signature is carried out subsequently.
The key management server also stores the user address of each user in the block chain; the user address of each user in the block chain is generated by the following method: and aiming at each block chain, generating a user address of each user in the block chain according to the sub public key corresponding to the block chain.
Generally, each block chain can include user addresses of a plurality of users, wherein the block chain address corresponds to the sub public key; the user address of each user in the block chain may correspond to a grandchild public key. In actual implementation, for each block chain, according to the sub public key corresponding to the block chain, through the BIP32 and the BIP44, a hierarchical determination method is adopted to generate a plurality of grandchild public keys corresponding to the sub public key, that is, a user address of each user in the block chain. And the number of the grandchild public keys is the same as the number of the corresponding user addresses on each block chain. In addition, one user can have a corresponding user address on different block chains; there may also be multiple user addresses on a block chain.
It should be noted that the user address of each user in the block chain, i.e., the grandchild public key, is the same as the generation and storage of the child private key; after a digital asset management system of the key management server is started, generating a child public key according to the public key seed file, and then generating a grandchild public key according to the child public key; meanwhile, the generated child public key and grandchild public key are persistently stored in a Database, for example, KRDS (Relational Database).
In summary, in the conventional key storage method, the private key is directly stored without being subsequently processed, which results in that the storage medium is broken and the original text of the private key can be directly obtained, thereby causing the risk of asset loss. In this embodiment, a hierarchical determination manner is adopted, and the security of key storage can be ensured by storing the child public key, the grandchild public key, and the child private key in different manners.
Referring to fig. 2, the method for generating the root key includes the following steps:
step S202, if a mnemonic word acquisition instruction from a client is received, a mnemonic word is generated;
during actual implementation, a user can send a mnemonic word acquisition instruction to the key management server according to terminal equipment such as a mobile phone, a computer and the like so as to generate a mnemonic word through the key management server; for example, the digital asset management system in the key management server generates a plurality of mnemonics by using a mnemonic generation tool such as BIP 39; saving the mnemonic words; the number of the mnemonic words can be 12 or 24.
Step S204, returning the generated mnemonic words to the client so as to set a starting password corresponding to the mnemonic words through the client;
specifically, the generated mnemonics can be sent to the client through the key management server; or the client can acquire the generated mnemonics through an offline plug-in of a digital asset management system in the key management server; the client may store the mnemonic word, for example, by means of backup or paper.
The client can set a starting password of the mnemonic word through the offline plug-in and carry out password salting on the starting password, wherein the password salting comprises a random value and an encryption mode; the random value is generated randomly by the client and mixed in the original password in a random mode, and then a string of character strings is generated in an encryption mode and stored in the server. In other words, since the encryption scheme is one-way, the client does not know the original password, and even if the client knows the encryption scheme, the character string before encryption, which is reversely derived, is a result of mixing the true password with the random value, and thus the true password cannot be analyzed. In addition, after the password salting operation is performed on the start password, the start password may be encrypted according to an encryption Algorithm, for example, SHA256 (Secure Hash Algorithm 256 ), and the like; the start password after the password is salted and encrypted is stored, and the start password can be stored in the client or the key management server.
In step S206, if the starting password is received, a root key is generated according to the mnemonic words.
If the Key management server receives the starting Password sent by the client ticket, the Key management server converts the mnemonic word into a root Key through an encryption algorithm, such as algorithms of PBKDF2 (Password-Based Key Derivation Function 2 ), bcrypt (file encryption tool) and the like, according to the generated mnemonic word, wherein the algorithms comprise a public Key seed file and a root private Key file. The key management server may store the generated root key, and usually stores the root key in a storage area of the key management server.
It should be noted that, when the device is damaged by an attack, the client may also restore the root key through the recorded mnemonic word in an offline condition.
The asset signing request in step S102 further includes the user to which the target asset belongs; the key management server also stores a user number of each user. Generating a signature private key of the target asset according to the sub-key corresponding to the block chain, wherein the step comprises the following steps: and generating a signature private key of the target asset according to the sub-key corresponding to the block chain and the user number corresponding to the user of the target asset.
The system can automatically allocate corresponding user numbers according to user addresses, and each user number has a corresponding user address; when a target asset is usually signed, a user address can be obtained only through a user number; the user address cannot be obtained by the grandchild public key.
In actual implementation, after the key management server receives an asset signature request of the digital asset management server, a corresponding sub public key and a corresponding sub private key can be obtained according to a block chain to which a target asset belongs; because the user address needs to be obtained in the process of calculating the signature private key according to the sub private key, the user address corresponding to the target asset can be obtained according to the user number corresponding to the user of the target asset; according to the obtained sub-private key and the user address, a signature private key of the target asset is generated by a hierarchical deterministic derivation mode, such as BIP32 (Bitcoin Improvement Proposals 32 ), BIP44 (Bitcoin Improvement Proposals 44, bitcoin Improvement Proposals 44) and the like, and an encryption Algorithm, such as HMAC-SHA512 (Hash-based Message Authentication Code Secure Hash Algorithm 512, hash Message Authentication Code Secure Hash Algorithm 512), with a specific rule.
It should be noted that if someone invades the service system, the address of a payee is to be changed, and the user address in the changed address column shows the user address not on the block chain, but the user number automatically allocated by the system; at the moment, the intruder can not change the payee according to own will, and the safety of the digital assets is ensured at the level of a service system.
In this embodiment, the key management server separately stores the root key, the child key, and the grandchild public key, which are not only separated from the service system on the system architecture level, but also separated from the service system, the subnet and medium for storing the key, and the deployment mode. With separated is meant isolated on the network and not visible on the network. Under the deployment environment of the subnet planned under the cloud environment such as private cloud or public cloud, the private cloud or public cloud completely breaks away from the normal peripheral network, has an independent private domain and can prevent intrusion.
The embodiment of the invention provides a digital asset processing method, which is applied to a digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the execution subject of the method is a digital asset management server; as shown in fig. 3, the method comprises the steps of:
step S302, if an asset processing request of a target asset is received, an asset signature request of the target asset is generated; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
in actual implementation, when a user needs to process a target asset in a blockchain, first, an asset processing request may be sent to a digital asset management server through a terminal device, for example, a mobile phone, a computer, or other devices; after receiving an asset processing request of a target asset, a digital asset management server assembles the request according to a block chain to which the target asset belongs to generate an asset signature request of the target asset; such that the asset signing request includes the target asset to be signed, and the blockchain to which the target asset belongs.
Step S304, the asset signature request is sent to a key management server, so that a signature private key of the target asset is generated through the key management server according to the sub-key corresponding to the block chain to which the asset signature request belongs; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server;
and step S306, sending the asset processing request and the signature result to the block chain to which the target asset belongs so as to process the target asset through the block chain to which the target asset belongs.
The embodiment of the invention provides a processing method of digital assets, wherein the execution subject of the method is a digital asset management server, and if an asset processing request of a target asset is received, an asset signature request of the target asset is generated; sending the asset signing request to a key management server so as to generate a signing private key of the target asset through the key management server according to the sub-key corresponding to the block chain to which the key management server belongs; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server; and sending the asset processing request and the signature result to the belonging block chain of the target asset so as to process the target asset through the belonging block chain. In the method, a key for encrypting the digital assets and the digital assets are stored in an isolated mode by using a key management server, and meanwhile, when the digital assets need to be signed, a signature private key is generated in real time so as to sign the digital assets; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
The digital asset processing method provided by the embodiment of the invention has the same technical characteristics as the digital asset processing method provided by the embodiment, so that the same technical problems can be solved, and the same technical effects are achieved.
The embodiment of the invention provides a method for processing digital assets, which is applied to terminal equipment; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the execution main body of the method is terminal equipment; as shown in fig. 4, the method includes the steps of:
step S402, sending a mnemonic word acquisition instruction to a key management server to generate a mnemonic word through the key management server and returning the mnemonic word to the terminal equipment;
step S404, setting a starting password corresponding to the mnemonic word;
step S406, sending the starting password to a key management server so as to generate a root key according to the mnemonic words through the key management server;
wherein the root key is used to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, a key management server generates a signature private key of the target asset according to a sub-key corresponding to a block chain to which the target asset belongs; signing the target asset through a signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
The embodiment of the invention provides a method for processing digital assets, wherein the execution main body of the method is terminal equipment, and a mnemonic word acquisition instruction is sent to a key management server so as to generate a mnemonic word through the key management server and return the mnemonic word to the terminal equipment; setting a starting password corresponding to the mnemonic word; and sending the starting password to a key management server so as to generate a root key according to the mnemonic words through the key management server. In the method, a key for encrypting the digital asset is stored in an isolated manner with the digital asset by using a key management server, and meanwhile, when the digital asset needs to be signed, a signature private key is generated in real time so as to sign the digital asset; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
Further, the root key includes a public key seed file and a root private key; after the step of sending the start password to the key management server to generate the root key from the mnemonic word by the key management server, the method further comprises:
sending a sub-key generation request and a starting password to a key management server so as to generate a sub-public key corresponding to each block chain through the key management server according to a public key seed file in the root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
The digital asset processing method provided by the embodiment of the invention has the same technical characteristics as the digital asset processing method provided by the embodiment, so that the same technical problems can be solved, and the same technical effects are achieved.
Corresponding to the above embodiment of the processing method of the digital asset, the embodiment of the present invention further provides a schematic structural diagram of a processing apparatus of the digital asset, the apparatus is disposed in the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; as shown in fig. 5, the apparatus includes:
a receiving module 51, configured to receive an asset signing request from a digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
the generating module 52 is configured to generate a private signature key of the target asset according to the sub-key corresponding to the block chain to which the target asset belongs;
the signature module 53 is configured to sign the target asset through the signature private key to obtain a signature result;
and a processing module 54, configured to return the signature result to the digital asset management server, so as to process the target asset based on the signature result through the digital asset management server.
The embodiment of the invention provides a digital asset processing device, which is applied to a key management server and used for receiving an asset signature request from the digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs; generating a signature private key of the target asset according to the sub-key corresponding to the block chain; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server. In the method, a key for encrypting the digital assets and the digital assets are stored in an isolated mode by using a key management server, and meanwhile, when the digital assets need to be signed, a signature private key is generated in real time so as to sign the digital assets; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
Further, the sub-key corresponding to each block chain is generated as follows: acquiring a pre-generated root key; the root key comprises a public key seed file and a root private key; generating a sub public key corresponding to each block chain according to the public key seed file in the root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
Further, the key management server also stores a user address of each user in the block chain; the user address of each user in the block chain is generated by the following method: and aiming at each block chain, generating a user address of each user in the block chain according to the sub public key corresponding to the block chain.
Further, the root key is generated by: if a mnemonic word acquisition instruction from a client is received, generating a mnemonic word; returning the generated mnemonics to the client to set a starting password corresponding to the mnemonics through the client; if the start-up password is received, a root key is generated according to the mnemonic words.
Further, the asset signing request further comprises a user to which the target asset belongs; the key management server also stores the user number of each user; the generation module is to: and generating a signature private key of the target asset according to the sub-key corresponding to the block chain and the user number corresponding to the user to which the target asset belongs.
The digital asset processing device provided by the embodiment of the invention has the same technical characteristics as the digital asset processing method provided by the embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
Corresponding to the above embodiment of the processing method of the digital assets, the embodiment of the invention also provides a structural schematic diagram of a processing device of the digital assets, wherein the device is arranged on the digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; as shown in fig. 6, the apparatus includes:
a request generation module 61, configured to generate an asset signature request of a target asset if an asset processing request of the target asset is received; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
a request sending module 62, configured to send an asset signature request to the key management server, so as to generate, by the key management server, a signature private key of the target asset according to the sub-key corresponding to the belonging block chain; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server;
and the asset processing module 63 is configured to send the asset processing request and the signature result to the belonging block chain of the target asset, so as to process the target asset through the belonging block chain.
The embodiment of the invention provides a digital asset processing device, which is applied to a digital asset management server, and generates an asset signature request of a target asset if an asset processing request of the target asset is received; sending the asset signing request to a key management server so as to generate a signing private key of the target asset through the key management server according to the sub-key corresponding to the block chain to which the key management server belongs; signing the target asset through a signature private key to obtain a signature result; returning the signature result to the digital asset management server; and sending the asset processing request and the signature result to the belonging block chain of the target asset so as to process the target asset through the belonging block chain. In the method, a key for encrypting the digital asset is stored in an isolated manner with the digital asset by using a key management server, and meanwhile, when the digital asset needs to be signed, a signature private key is generated in real time so as to sign the digital asset; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
The digital asset processing device provided by the embodiment of the invention has the same technical characteristics as the digital asset processing method provided by the embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
Corresponding to the above embodiment of the processing method of the digital assets, the embodiment of the invention provides a processing device of the digital assets, which is arranged on a terminal device; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; as shown in fig. 7, the apparatus includes:
an instruction sending module 71, configured to send a mnemonic word obtaining instruction to the key management server, so as to generate a mnemonic word through the key management server, and return the mnemonic word to the terminal device;
the password setting module 72 is used for setting a starting password corresponding to the mnemonic word;
a password sending module 73, configured to send the start password to the key management server, so as to generate a root key according to the mnemonic word through the key management server;
wherein the root key is used to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, a key management server generates a signature private key of the target asset according to a sub-key corresponding to a block chain to which the target asset belongs; signing the target asset through a signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
The embodiment of the invention provides a digital asset processing device, which is applied to terminal equipment and used for sending a mnemonic word acquisition instruction to a key management server so as to generate a mnemonic word through the key management server and return the mnemonic word to the terminal equipment; setting a starting password corresponding to the mnemonic word; and sending the starting password to a key management server so as to generate a root key according to the mnemonic words through the key management server. In the method, a key for encrypting the digital asset is stored in an isolated manner with the digital asset by using a key management server, and meanwhile, when the digital asset needs to be signed, a signature private key is generated in real time so as to sign the digital asset; the method can improve the security of the key, can effectively ensure the security of the key and the digital assets even if the service system or the storage medium is attacked, and improves the security of the service system.
Further, the root key includes a public key seed file and a root private key; the above-mentioned device still includes: the request module is used for sending a sub-key generation request and a starting password to the key management server so as to generate a sub-public key corresponding to each block chain through the key management server according to the public key seed file in the root key; and generating a sub private key corresponding to each block chain according to the root private key in the root private key.
The digital asset processing device provided by the embodiment of the invention has the same technical characteristics as the digital asset processing method provided by the embodiment, so that the same technical problems can be solved, and the same technical effects can be achieved.
An embodiment of the present invention further provides an electronic device, as shown in fig. 8, the electronic device includes a processor 80 and a memory 81, the memory 81 stores machine executable instructions capable of being executed by the processor 80, and the processor 80 executes the machine executable instructions to implement the above-mentioned processing method for the digital assets.
Further, the electronic device shown in fig. 8 further includes a bus 82 and a communication interface 83, and the processor 80, the communication interface 83, and the memory 81 are connected through the bus 82.
The Memory 81 may include a high-speed Random Access Memory (RAM) and may also include a non-volatile Memory (non-volatile Memory), such as at least one disk Memory. The communication connection between the network element of the system and at least one other network element is realized through at least one communication interface 83 (which may be wired or wireless), and the internet, a wide area network, a local network, a metropolitan area network, and the like may be used. Bus 82 may be an ISA bus, PCI bus, EISA bus, or the like. The bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one double-headed arrow is shown in FIG. 8, but that does not indicate only one bus or one type of bus.
The processor 80 may be an integrated circuit chip having signal processing capabilities. In implementation, the steps of the above method may be performed by instructions in the form of hardware integrated logic circuits or software in the processor 80. The Processor 80 may be a general-purpose Processor, and includes a Central Processing Unit (CPU), a Network Processor (NP), and the like; the Integrated Circuit may also be a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other Programmable logic device, discrete Gate or transistor logic device, or discrete hardware components. The various methods, steps, and logic blocks disclosed in the embodiments of the present invention may be implemented or performed. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. The steps of the method disclosed in connection with the embodiments of the present invention may be directly implemented by a hardware decoding processor, or implemented by a combination of hardware and software modules in the decoding processor. The software module may be located in ram, flash memory, rom, prom, or eprom, registers, etc. storage media as is well known in the art. The storage medium is located in a memory 81, and the processor 80 reads information in the memory 81 and performs the steps of the method of the previous embodiment in combination with hardware thereof.
An embodiment of the present invention further provides a machine-readable storage medium, where the machine-readable storage medium stores machine-executable instructions, and when the machine-executable instructions are called and executed by a processor, the machine-executable instructions cause the processor to implement the method for processing the digital asset, and specific implementation may refer to method embodiments, which are not described herein again.
The digital asset processing method, apparatus, and computer program product of an electronic device provided in the embodiments of the present invention include a computer-readable storage medium storing a program code, where instructions included in the program code may be used to execute the method described in the foregoing method embodiments, and specific implementations may refer to the method embodiments and are not described herein again.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the system and the apparatus described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In addition, in the description of the embodiments of the present invention, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, e.g., as being fixedly connected, detachably connected, or integrally connected; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meaning of the above terms in the present invention can be understood in specific cases for those skilled in the art.
The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk, and various media capable of storing program codes.
In the description of the present invention, it should be noted that the terms "center", "upper", "lower", "left", "right", "vertical", "horizontal", "inner", "outer", etc. indicate orientations or positional relationships based on the orientations or positional relationships shown in the drawings, and are only for convenience of description and simplification of description, but do not indicate or imply that the device or element referred to must have a specific orientation, be constructed and operated in a specific orientation, and thus, should not be construed as limiting the present invention. Furthermore, the terms "first," "second," and "third" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance.
Finally, it should be noted that: although the present invention has been described in detail with reference to the foregoing embodiments, those skilled in the art will understand that the following embodiments are merely illustrative of the present invention, and not restrictive, and the scope of the present invention is not limited thereto: any person skilled in the art can modify or easily conceive the technical solutions described in the foregoing embodiments or equivalent substitutes for some technical features within the technical scope of the present disclosure; such modifications, changes or substitutions do not depart from the spirit and scope of the embodiments of the present invention, and they should be construed as being included therein. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (13)
1. A method for handling digital assets, characterized in that said method is applied to a key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the method comprises the following steps:
receiving an asset signing request from the digital asset management server; wherein the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
generating a signature private key of the target asset according to the sub-key corresponding to the block chain to which the target asset belongs;
signing the target asset through the signature private key to obtain a signature result;
and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
2. The method according to claim 1, wherein the subkey corresponding to each block chain is generated by:
acquiring a pre-generated root key; the root key comprises a public key seed file and a root private key;
generating a sub public key corresponding to each block chain according to a public key seed file in the root key; and generating a sub private key corresponding to each block chain according to a root private key in the root private key.
3. The method according to claim 2, wherein the key management server further stores therein a user address of each user in the blockchain;
the user address of each user in the block chain is generated by the following method:
and aiming at each block chain, generating a user address of each user in the block chain according to the sub public key corresponding to the block chain.
4. The method of claim 2, wherein the root key is generated by:
if a mnemonic word acquisition instruction from the client is received, generating a mnemonic word;
returning the generated mnemonic words to the client to set a starting password corresponding to the mnemonic words through the client;
and if the starting password is received, generating the root key according to the mnemonic words.
5. The method of claim 1, wherein the asset signing request further comprises a user to whom the target asset belongs; the key management server also stores the user number of each user;
the step of generating a signature private key of the target asset according to the sub-key corresponding to the belonging block chain comprises the following steps:
and generating a signature private key of the target asset according to the sub-key corresponding to the block chain and the user number corresponding to the user of the target asset.
6. A digital asset processing method is characterized in that the method is applied to a digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the method comprises the following steps:
if an asset processing request of a target asset is received, generating an asset signature request of the target asset; wherein the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
sending the asset signing request to the key management server so as to generate a signing private key of the target asset through the key management server according to the sub-key corresponding to the block chain to which the asset signing request belongs; signing the target asset through the signature private key to obtain a signature result; returning the signature result to the digital asset management server;
and sending the asset processing request and the signature result to the belonging block chain of the target asset so as to process the target asset through the belonging block chain.
7. A method for processing digital assets is characterized in that the method is applied to terminal equipment; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the method comprises the following steps:
sending a mnemonic word acquisition instruction to the key management server so as to generate a mnemonic word through the key management server and return the mnemonic word to the terminal equipment;
setting a starting password corresponding to the mnemonic word;
sending the starting password to the key management server so as to generate a root key through the key management server according to the mnemonic words;
wherein the root key is to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, the key management server generates a signature private key of the target asset according to a sub key corresponding to a block chain to which the target asset belongs; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
8. The method of claim 7, wherein the root key comprises a public key seed file and a root private key;
after the step of sending the start password to the key management server to generate the root key according to the mnemonic word by the key management server, the method further includes:
sending a sub-key generation request and the starting password to the key management server so as to generate a sub-public key corresponding to each block chain through the key management server according to a public key seed file in the root key; and generating a sub private key corresponding to each block chain according to a root private key in the root private key.
9. A digital asset processing apparatus, wherein the apparatus is provided in a key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the device comprises:
a receiving module for receiving an asset signing request from the digital asset management server; the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
the generation module is used for generating a signature private key of the target asset according to the sub-key corresponding to the block chain to which the target asset belongs;
the signature module is used for signing the target asset through the signature private key to obtain a signature result;
and the processing module is used for returning the signature result to the digital asset management server so as to process the target asset through the digital asset management server based on the signature result.
10. The device for processing the digital assets is characterized in that the device is arranged on a digital asset management server; the digital asset management server is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the device comprises:
the request generation module is used for generating an asset signature request of a target asset if an asset processing request of the target asset is received; wherein the asset signing request comprises a target asset to be signed and a block chain to which the target asset belongs;
the request sending module is used for sending the asset signature request to the key management server so as to generate a signature private key of the target asset according to the sub-key corresponding to the block chain to which the asset signature request belongs through the key management server; signing the target asset through the signature private key to obtain a signature result; returning the signature result to the digital asset management server;
and the asset processing module is used for sending the asset processing request and the signature result to the block chain to which the target asset belongs so as to process the target asset through the block chain to which the target asset belongs.
11. The device for processing the digital assets is characterized in that the device is arranged on terminal equipment; the terminal equipment is in communication connection with the key management server; the key management server stores a sub-key corresponding to each block chain; the key management server is in communication connection with the digital asset management server; the device comprises:
the instruction sending module is used for sending a mnemonic word acquisition instruction to the key management server so as to generate a mnemonic word through the key management server and return the mnemonic word to the terminal equipment;
the password setting module is used for setting a starting password corresponding to the mnemonic word;
the password sending module is used for sending the starting password to the key management server so as to generate a root key according to the mnemonic words through the key management server;
wherein the root key is to: the key management server generates a sub key corresponding to each block chain; after receiving an asset signature request of a target asset, the key management server generates a signature private key of the target asset according to a sub-key corresponding to a block chain to which the target asset belongs; signing the target asset through the signature private key to obtain a signature result; and returning the signature result to the digital asset management server so as to process the target asset based on the signature result through the digital asset management server.
12. An electronic device comprising a processor and a memory, the memory storing machine executable instructions executable by the processor, the processor executing the machine executable instructions to implement the method of processing a digital asset of any of claims 1 to 5 or 6 or 7 to 8.
13. A machine-readable storage medium having stored thereon machine-executable instructions which, when invoked and executed by a processor, cause the processor to implement the method of processing a digital asset of any of claims 1 to 8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010629257.9A CN111800262B (en) | 2020-07-01 | 2020-07-01 | Digital asset processing method and device and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010629257.9A CN111800262B (en) | 2020-07-01 | 2020-07-01 | Digital asset processing method and device and electronic equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111800262A CN111800262A (en) | 2020-10-20 |
| CN111800262B true CN111800262B (en) | 2022-10-14 |
Family
ID=72810121
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010629257.9A Active CN111800262B (en) | 2020-07-01 | 2020-07-01 | Digital asset processing method and device and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111800262B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112001717A (en) * | 2020-10-27 | 2020-11-27 | 四川泰立科技股份有限公司 | Method, system and storage medium for calculating encryption currency of digital television |
| CN112712357A (en) * | 2020-12-30 | 2021-04-27 | 普华云创科技(北京)有限公司 | Multi-mechanism multi-chain multi-currency multi-account private key management method and system |
| CN116340897A (en) * | 2021-04-19 | 2023-06-27 | 支付宝(杭州)信息技术有限公司 | Digital asset processing method and device based on blockchain |
| CN114022259B (en) * | 2021-11-11 | 2023-08-25 | 陕西华春网络科技股份有限公司 | Bidding method and device based on public key assignment and identity verification |
| CN117034325B (en) * | 2023-10-07 | 2024-01-30 | 菁音核创科技(厦门)有限公司 | Flash data content encryption method, device, equipment and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108960821A (en) * | 2018-06-15 | 2018-12-07 | 张磊 | A kind of system and method for the block chain digital asset management based on mobile portable phone card |
| CN109508564A (en) * | 2018-12-20 | 2019-03-22 | 姚前 | A kind of digital asset storage system and method based on block chain |
| CN110969431A (en) * | 2019-11-27 | 2020-04-07 | 北京贵泽系统技术有限公司 | Safe trusteeship method, equipment and system of block chain digital currency private key |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10700861B2 (en) * | 2016-07-29 | 2020-06-30 | Workday, Inc. | System and method for generating a recovery key and managing credentials using a smart blockchain contract |
-
2020
- 2020-07-01 CN CN202010629257.9A patent/CN111800262B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108960821A (en) * | 2018-06-15 | 2018-12-07 | 张磊 | A kind of system and method for the block chain digital asset management based on mobile portable phone card |
| CN109508564A (en) * | 2018-12-20 | 2019-03-22 | 姚前 | A kind of digital asset storage system and method based on block chain |
| CN110969431A (en) * | 2019-11-27 | 2020-04-07 | 北京贵泽系统技术有限公司 | Safe trusteeship method, equipment and system of block chain digital currency private key |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111800262A (en) | 2020-10-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111800262B (en) | Digital asset processing method and device and electronic equipment | |
| US7596704B2 (en) | Partition and recovery of a verifiable digital secret | |
| CN104753674B (en) | A kind of verification method and equipment of application identity | |
| CN109981562B (en) | Software development kit authorization method and device | |
| CN108243176B (en) | Data transmission method and device | |
| CN107920052B (en) | Encryption method and intelligent device | |
| CN112989426B (en) | Authorization authentication method and device, and resource access token acquisition method | |
| CN110113355B (en) | Internet of things cloud access method and device | |
| CN105812334B (en) | A kind of method for network authorization | |
| CN111130798B (en) | Request authentication method and related equipment | |
| EP4024311A1 (en) | Method and apparatus for authenticating biometric payment device, computer device and storage medium | |
| CN112615834B (en) | Security authentication method and system | |
| CN112688773A (en) | Token generation and verification method and device | |
| CN110719172B (en) | Signature method, signature system and related equipment in block chain system | |
| CN112559991A (en) | System secure login method, device, equipment and storage medium | |
| CN110493177B (en) | Method and system for quantum communication service station AKA key negotiation based on asymmetric key pool pair and serial number | |
| CN101090321A (en) | Device and method for discovering emulated clients | |
| CN111371555A (en) | Signature authentication method and system | |
| CN109302442B (en) | Data storage proving method and related equipment | |
| CN111628985A (en) | Security access control method, security access control device, computer equipment and storage medium | |
| CN109688158B (en) | Financial execution chain authentication method, electronic device and storage medium | |
| CN113572717B (en) | Communication connection establishment method, washing and protecting equipment and server | |
| CN109561093B (en) | Unauthorized behavior detection method and device, computer equipment and storage medium | |
| CN108833449B (en) | Web communication encryption transmission method, device and system based on RAS algorithm | |
| CN109005037B (en) | Password authentication system and method based on identity |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |