CN113497805B - Registration processing method, device, equipment and system - Google Patents

Registration processing method, device, equipment and system Download PDF

Info

Publication number
CN113497805B
CN113497805B CN202110374308.2A CN202110374308A CN113497805B CN 113497805 B CN113497805 B CN 113497805B CN 202110374308 A CN202110374308 A CN 202110374308A CN 113497805 B CN113497805 B CN 113497805B
Authority
CN
China
Prior art keywords
platform
registration
user
information
verifiable statement
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202110374308.2A
Other languages
Chinese (zh)
Other versions
CN113497805A (en
Inventor
杨仁慧
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Alipay Hangzhou Information Technology Co Ltd
Original Assignee
Alipay Hangzhou Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alipay Hangzhou Information Technology Co Ltd filed Critical Alipay Hangzhou Information Technology Co Ltd
Priority to CN202110374308.2A priority Critical patent/CN113497805B/en
Publication of CN113497805A publication Critical patent/CN113497805A/en
Application granted granted Critical
Publication of CN113497805B publication Critical patent/CN113497805B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Storage Device Security (AREA)

Abstract

The embodiment of the specification provides a registration processing method, a device, equipment and a system, wherein the method comprises the following steps: the first platform receives a first registration request sent by a user to be registered and receives a second verifiable statement sent by an issuing institution; if the verification of the first verifiable statement in the first registration request is passed, acquiring registration related information of the user to be registered from a second platform according to the second verifiable statement; performing registration processing according to the acquired registration related information, and sending registration processing result information to a user to be registered; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform.

Description

Registration processing method, device, equipment and system
This patent application is application number: 202010251415.1, filing date: the invention name of China patent application of registration processing method, device, equipment and system is divided into patent application of 2020, 4 and 1.
Technical Field
The present document relates to the field of computer technologies, and in particular, to a registration processing method, apparatus, device, and system.
Background
With the continuous development of technology, electronic commerce has become a current mainstream trend, and numerous merchants change off-line physical stores into on-line stores. Along with the continuous development of economy, the development of the technology gradually becomes the development appeal of a plurality of merchants internationally. However, in the current process of cross-border store registration, in order to avoid transmission of sensitive information and ensure accuracy and effectiveness of registration related information, the registration related information needs to be subjected to multi-level circulation audit, which not only requires a large amount of manpower, but also takes a long time, and the registration cost is high.
Disclosure of Invention
One or more embodiments of the present specification provide a registration processing method that includes receiving a first registration request sent by a first user to be registered with a first platform. Wherein the first registration request includes a first verifiable claim. The first verifiable statement is used to prove that the first user is successfully registered with a second platform. The first platform and the second platform are service platforms for providing business services for users. A second verifiable claim sent by the issuing authority is received. Wherein the second verifiable statement is used to prove that the first user grants the first platform permission to obtain registration-related information of the first user from the second platform. And if the first verifiable statement passes verification, acquiring registration related information of the first user from the second platform according to the second verifiable statement. And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
One or more embodiments of the present specification provide a registration processing method that includes receiving a second registration request sent by a first user to be registered with a second platform. Wherein the second registration request includes registration-related information to be registered. And if the registration processing is successful according to the registration related information, sending a first verifiable statement to the first user. The first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform. The first platform and the second platform are service platforms for providing business services for users. And when a registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request. The registration related information is used for the first platform to perform registration processing. The second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
One or more embodiments of the present specification provide a registration processing apparatus that includes a first receiving module that receives a first registration request sent by a first user to be registered with a first platform. Wherein the first registration request includes a first verifiable claim. The first verifiable statement is used to prove that the first user is successfully registered with a second platform. The first platform and the second platform are service platforms for providing business services for users. The apparatus also includes a second receiving module that receives a second verifiable claim sent by the issuing authority. Wherein the second verifiable statement is used to prove that the first user grants the first platform permission to obtain registration-related information of the first user from the second platform. The apparatus also includes a verification module that verifies the first verifiable claim. The device also comprises an acquisition module which acquires the registration related information of the first user from the second platform according to the second verifiable statement if the verification module verifies the first verifiable statement. The device also comprises a registration module which carries out registration processing according to the acquired registration related information and sends registration processing result information to the first user.
One or more embodiments of the present specification provide a registration processing apparatus that includes a receiving module that receives a second registration request sent by a first user to be registered with a second platform. Wherein the second registration request includes registration-related information to be registered. The device also comprises a registration module which sends a first verifiable statement to the first user if registration processing is successful according to the registration related information. The first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform. The first platform and the second platform are service platforms for providing business services for users. The device also comprises a sending module, when receiving the registration information acquisition request sent by the first platform, the sending module sends the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request. The registration related information is used for the first platform to perform registration processing. The second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
One or more embodiments of the present specification provide a registration system. The system includes a first terminal device of a first user, a first platform, a second platform, and an issuing authority. The first platform and the second platform are service platforms for providing business services for users. The first terminal device responds to a first registration operation of the first user, sends a second registration request to the second platform, and receives a first verifiable statement sent by the issuing authority. A first issuance request is sent to the issuing authority in response to a verifiable claim issuance operation by the first user. And in response to a second registration operation of the first user, sending a first registration request to the first platform according to the first verifiable claim. Wherein the first verifiable statement is used to prove that the first user is successfully registered with the second platform. The first platform receives the first registration request and a second verifiable statement sent by the issuing authority. And if the first verifiable statement in the first registration request passes verification, sending a registration information acquisition request to the second platform according to the second verifiable statement. And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first terminal equipment. Wherein the second verifiable statement is used to prove that the first user grants the first platform permission to obtain registration-related information of the first user from the second platform. And the second platform sends a third issuing request to the issuing mechanism after successful registration processing according to the registration related information included in the second registration request. And when the registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on the second verifiable statement in the registration information acquisition request. The issuing authority generates a first verifiable statement according to the third issuing request sent by the second platform. And sending the first verifiable statement to the first terminal device. And generating a second verifiable statement according to the first issuing request sent by the first terminal device. The second verifiable claim is sent to the first platform.
One or more embodiments of the present specification provide a registration processing apparatus. The apparatus includes a processor. The device further comprises a memory arranged to store computer executable instructions. The computer-executable instructions, when executed, cause the processor to receive a first registration request sent by a first user to be registered with a first platform. Wherein the first registration request includes a first verifiable claim. The first verifiable statement is used to prove that the first user is successfully registered with a second platform. The first platform and the second platform are service platforms for providing business services for users. A second verifiable claim sent by the issuing authority is received. Wherein the second verifiable statement is used to prove that the first user grants the first platform permission to obtain registration-related information of the first user from the second platform. And if the first verifiable statement passes verification, acquiring registration related information of the first user from the second platform according to the second verifiable statement. And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
One or more embodiments of the present specification provide a registration processing apparatus. The apparatus includes a processor. The device further comprises a memory arranged to store computer executable instructions. The computer-executable instructions, when executed, cause the processor to receive a second registration request sent by a first user to be registered with a second platform. Wherein the second registration request includes registration-related information to be registered. And if the registration processing is successful according to the registration related information, sending a first verifiable statement to the first user. The first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform. The first platform and the second platform are service platforms for providing business services for users. And when a registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request. The registration related information is used for the first platform to perform registration processing. The second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
One or more embodiments of the present specification provide a storage medium. The storage medium is for storing computer-executable instructions. The computer-executable instructions, when executed, receive a first registration request sent by a first user to be registered with a first platform. Wherein the first registration request includes a first verifiable claim. The first verifiable statement is used to prove that the first user is successfully registered with a second platform. The first platform and the second platform are service platforms for providing business services for users. A second verifiable claim sent by the issuing authority is received. Wherein the second verifiable statement is used to prove that the first user grants the first platform permission to obtain registration-related information of the first user from the second platform. And if the first verifiable statement passes verification, acquiring registration related information of the first user from the second platform according to the second verifiable statement. And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
One or more embodiments of the present specification provide a storage medium. The storage medium is for storing computer-executable instructions. The computer-executable instructions, when executed, receive a second registration request sent by a first user to be registered with a second platform. Wherein the second registration request includes registration-related information to be registered. And if the registration processing is successful according to the registration related information, sending a first verifiable statement to the first user. The first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform. The first platform and the second platform are service platforms for providing business services for users. And when a registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request. The registration related information is used for the first platform to perform registration processing. The second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
Drawings
For a clearer description of one or more embodiments of the present description or of the solutions of the prior art, the drawings that are necessary for the description of the embodiments or of the prior art will be briefly described, it being apparent that the drawings in the description that follow are only some of the embodiments described in the description, from which, for a person skilled in the art, other drawings can be obtained without inventive faculty.
Fig. 1 is a schematic diagram of a first scenario of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 2 is a schematic diagram of a second scenario of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 3 is a schematic diagram illustrating a first process of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 4 is a second flow diagram of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 5 is a third flow diagram of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 6 is a fourth flow diagram of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 7 is a fifth flow diagram of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 8 is a sixth flow diagram of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 9 is a schematic diagram of a seventh flowchart of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 10 is a schematic diagram illustrating an eighth flowchart of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 11 is a flowchart illustrating a registration processing method according to one or more embodiments of the present disclosure;
FIG. 12 is a schematic diagram illustrating a tenth process of a registration processing method according to one or more embodiments of the present disclosure;
FIG. 13 is a schematic diagram illustrating a first module configuration of a registration processing apparatus according to one or more embodiments of the present disclosure;
FIG. 14 is a schematic diagram illustrating a second module configuration of a registration processing apparatus according to one or more embodiments of the present disclosure;
FIG. 15 is a schematic diagram illustrating the composition of a registration processing system according to one or more embodiments of the present disclosure;
fig. 16 is a schematic structural diagram of a registration processing device according to one or more embodiments of the present disclosure.
Detailed Description
In order to enable a person skilled in the art to better understand the technical solutions in one or more embodiments of the present specification, the technical solutions in one or more embodiments of the present specification will be clearly and completely described below with reference to the drawings in one or more embodiments of the present specification, and it is obvious that the described embodiments are only some embodiments of the present specification, not all embodiments. All other embodiments, which can be made by one or more embodiments of the present disclosure without inventive faculty, are intended to be within the scope of the present disclosure.
Fig. 1 is a schematic application scenario of a registration processing method according to one or more embodiments of the present disclosure, where, as shown in fig. 1, the scenario includes: the system comprises a first terminal device of a user to be registered, a first platform, a second platform and an issuing mechanism; the first terminal equipment and the second platform are in the same national boundary, and the first platform and the second platform can be in the same national boundary or in different national boundaries; the first terminal device may be a mobile phone, tablet computer, desktop computer, portable notebook computer, etc. (only the mobile phone is shown in fig. 1).
Specifically, when a user to be registered registers in a second platform, operating first terminal equipment of the user to be registered, and the first terminal equipment responds to the first registration operation of the user to be registered and sends a second registration request to the second platform; the second platform sends a third issuing request to the issuing mechanism after the second platform performs registration processing successfully according to the registration related information included in the second registration request; the issuing organization generates a first verifiable statement (English full name: verifiable Credential, simply: VC) according to the third issuing request and sends the first verifiable statement to the first terminal equipment; the first terminal equipment receives a first verifiable statement sent by an issuing institution; wherein the first verifiable statement is used to prove that the user to be registered is successfully registered in the second platform. When a user to be registered registers on a first platform, first operating a first terminal device to issue a second verifiable statement for the first platform, and responding to the verifiable statement issuing operation of the user to be registered, the first terminal device issues a first issuing request to an issuing mechanism; the issuing authority generates a second verifiable statement according to the first issuing request and sends the second verifiable statement to the first platform; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the registration related information of the user to be registered from the second platform; when the first terminal equipment detects a second registration operation of a user to be registered, responding to the second registration operation, and sending a first registration request to a first platform according to a first verifiable statement; when the first verifiable statement in the first registration request passes verification, the first platform sends a registration information acquisition request to the second platform according to the received second verifiable statement sent by the issuing institution; when the second verifiable statement in the registration information acquisition request passes verification, the second platform sends the registration related information of the user to be registered in the second platform to the first platform; the first platform carries out registration processing according to the registration related information sent by the second platform and sends registration processing result information to the first terminal equipment.
Further, as shown in fig. 2, the application scenario may further include a blockchain, and the issuing authority saves the issuing record information of the first verifiable statement into the blockchain after generating the first verifiable statement; and after the second verifiable statement is generated, saving the issuing record information of the second verifiable statement into the blockchain to ensure the authenticity of the verifiable statement based on the characteristics of the blockchain, such as disclosure of the blockchain being searchable, non-tamperable, and the like. Accordingly, the first platform validates the first verifiable statement based on the record information stored in the blockchain and the second platform validates the second verifiable statement based on the record information stored in the blockchain.
After the second platform is successfully registered, the user to be registered issues a second verifiable statement to the first platform so as to grant the first platform permission to acquire the registration related information of the user to be registered from the second platform, so that the first platform can directly acquire the trusted and effective registration related information of the user to be registered from the second platform according to the second verifiable statement, and the registration processing is directly performed according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Based on the application scenario architecture, one or more embodiments of the present disclosure provide a registration processing method. Fig. 3 is a flowchart of a registration processing method according to one or more embodiments of the present disclosure, where the method in fig. 3 can be performed by the first platform in fig. 1, and as shown in fig. 3, the method includes the following steps:
step S102, a first registration request sent by a user to be registered is received; the first registration request comprises a first verifiable statement, and the first verifiable statement is used for proving that a user to be registered is successfully registered in the second platform;
specifically, before a user to be registered sends a first registration request to a first platform, firstly registering in a second platform, and after the second platform is successful in registering according to registration related information sent by the user to be registered, issuing a first verifiable statement to the user to be registered through an issuing mechanism so as to prove that the user to be registered is successful in registering in the second platform; the user to be registered sends a first registration request to the first platform based on the first verifiable statement. Taking on-line store registration as an example, the registration related information includes user information, business proving information, qualification information, etc., and the user information includes name, identity card number, contact information, home address, etc.
Step S104, receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is sent based on a first issuance request sent by the user to be registered; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the registration related information of the user to be registered from the second platform;
specifically, after the user to be registered is successfully registered in the second platform, a first issuing request is sent to an issuing mechanism so as to grant the first platform permission to acquire the registration related information of the user to be registered from the second platform; the issuing authority generates a second verifiable statement for proving the authority according to the first issuing request and sends the second verifiable statement to the first platform; the first platform receives a second verifiable claim sent by the issuing authority.
It should be noted that the execution sequence of step S102 and step S104 may be interchanged, or may be executed simultaneously.
Step S106, if the verification of the first verifiable statement is passed, acquiring registration related information of the user to be registered from a second platform according to the second verifiable statement;
specifically, the first platform verifies the first verifiable statement, if the verification is passed, the user to be registered is determined to be successfully registered in the second platform, and registration related information of the user to be registered is acquired from the second platform according to the second verifiable statement; further, if the verification fails, the registration failure information is sent to the user to be registered.
Step S108, carrying out registration processing according to the registration related information, and sending registration processing result information to the user to be registered.
In one or more embodiments of the present disclosure, when a first platform receives a first registration request sent by a user to be registered, the first platform first verifies a first verifiable statement in the first registration request, and determines that the user to be registered is successfully registered in a second platform when the verification passes; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. The first platform can directly acquire the trusted and effective registration related information of the user to be registered from the second platform according to the second verifiable statement, so that the registration processing can be directly performed according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Considering that the user to be registered can be logged off in the second platform after being successfully registered in the second platform; when the user logs out, in order to promote the storage space, the second platform generally does not retain the registration related information of the user, and in order to avoid other platforms from acquiring the registration related information of the user to be registered from the second platform at the moment, the second platform can log out the corresponding first verifiable statement through an issuing mechanism, namely, the first verifiable statement is set to be in an invalid state, and the corresponding log-out information is stored in the blockchain so as to prove that the user to be registered is in an unregistered state in the second platform. Correspondingly, when the first platform receives the first registration request, the first platform verifies the validity of the first verifiable statement in the first registration request. Specifically, as shown in fig. 4, step S106 includes:
Step S106-2, inquiring first target record information from the related record information of the verifiable statement stored in the blockchain according to the first statement identification in the first verifiable statement;
specifically, when the issuing organization receives a third issuing request sent by the second platform, determining a first statement identification of the first verifiable statement, and acquiring first signature data; the issuing mechanism generates a first verifiable statement according to the first statement identification, the first signature data, the first digital identity information of the second platform, the second digital identity information of the user to be registered, the authorization success information to be proved and the like, which are included in the third issuing request; and the first declaration identification, a validity field for representing that the first verifiable declaration is in a valid state and other associated records, the recorded information is determined to be the issuing record information of the first verifiable declaration, and the issuing record information is saved in the blockchain. When a user to be registered logs off in the second platform, the second platform sends a log-off request of the verifiable statement to an issuing mechanism according to the first statement identification, the issuing mechanism records the first statement identification, a validity field representing that the first verifiable statement is in an invalid state and other associated records, determines recorded information as log-off record information of the first verifiable statement, and stores the log-off record information into a blockchain. Wherein, the digital identity information is DID (English full name: decentralized Identifiers; chinese: decentralised identity or distributed identity).
Optionally, the private key of the user to be registered is kept by the user to be registered, and correspondingly, the obtaining the first signature data includes: the issuing mechanism sends a first signature request to the second platform according to the first appointed data, so that the second platform signs the first appointed data by adopting a private key corresponding to the first digital identity information of the second platform to obtain first signature data; and receiving first signature data sent by a first platform; or, the private key of the user to be registered is stored by the designated hosting mechanism, and correspondingly, the obtaining the first signature data includes: the issuing mechanism sends a signature request to the appointed hosting mechanism according to the second digital identity information and the first appointed data of the user to be registered, so that the hosting mechanism obtains a private key corresponding to the second digital identity information, and signs the first appointed data by adopting the obtained private key to obtain first signature data; first signature data sent by the hosting facility is received. The first specified data can be set according to the needs in practical application.
Correspondingly, step S106-2 includes: and inquiring the last record information associated with the first declaration identification from the blockchain according to the sequence of the preservation time from the record information to the blockchain, and determining the last record information as first target record information.
Further, when the first platform is a node in the blockchain, the first platform can query first target record information from related record information of verifiable statement stored in the blockchain according to the first statement identification by itself; when the first platform is not a node in the blockchain, the first platform may send a query request to a blockchain link node that accesses the blockchain according to the first declaration identification, such that the blockchain node queries the blockchain for the first target record information based on the query request.
Further, when the issuing authority is a node in the blockchain, the issuing authority can directly save the generated record information and the like into the blockchain; when the issuing authority is not a node in the blockchain, the issuing authority sends the record information to a blockchain node that accesses the blockchain so that the blockchain node saves the record information into the blockchain.
Step S106-4, determining whether the first verifiable statement is in a valid state according to the validity field in the first target record information;
specifically, a validity field is obtained from the first target record information, whether the validity field is a validity field representing that the validity field is in a valid state or not is determined, and if so, the first verifiable statement is determined to be in the valid state; if not, determining that the first verifiable statement is in an invalid state, namely that verification fails, and sending registration failure information to the user to be registered. The specific form of the validity field can be set according to the needs in practical application, for example, 00 is used for representing that the validity field is in a valid state, 11 is used for representing that the validity field is in an invalid state, and the like.
Step S106-6, obtaining a public key corresponding to the first digital identity information;
optionally, according to the first digital identity information, inquiring a corresponding document from the blockchain, and acquiring a public key corresponding to the first digital identity information from the inquired document; or sending a public key acquisition request to a designated security mechanism according to the first digital identity information, so that the security mechanism acquires an associated public key from the stored association relationship between the digital identity information of the user and the public key according to the first digital identity information, and sends the acquired public key to the first platform; the first platform receives the public key sent by the security mechanism.
Step S106-8, the obtained public key is adopted to verify the first signature data;
and step S106-10, if the first verifiable statement is determined to be in a valid state and the verification of the first signature data is passed, the verification of the first verifiable statement is determined to be passed, and the registration related information of the user to be registered is acquired from the second platform according to the second verifiable statement.
Thus, the authenticity and validity of the first verifiable statement are ensured for the first verifiable statement based on the record information held in the blockchain.
After the first verifiable statement passes verification, acquiring registration related information of the user to be registered from a second platform according to the second verifiable statement; specifically, as shown in fig. 5, step S106 includes:
Step S106-12, if the verification of the first verifiable statement is passed, a registration information acquisition request is sent to the second platform according to the second verifiable statement, so that the second platform returns registration related information of the user to be registered in the second platform based on the second verifiable statement;
and step S106-14, receiving registration related information returned by the second platform.
Further, in order to make the first platform determine the identity of the user to be registered, in one or more embodiments of the present disclosure, the first registration request further includes user information of the user to be registered, such as a name, an identity number, and the like; in response, as shown in fig. 6, step S108 includes:
step S108-2, if the user information in the registration related information is matched with the user information in the first registration request, performing registration processing according to the registration related information;
taking registration of an online shop as an example, the registration processing according to the registration related information includes: user identification is allocated for the user to be registered, a website is allocated, registration related information is saved, and the like. Because the second platform is used for auditing the registration related information, the first platform is not required to check the authenticity, the validity and the like of the registration related information, only the user information is required to be matched, the registration related information of the user to be registered is determined, and the registration efficiency is greatly improved.
It should be noted that, the registration processing method provided in the present specification may be applied to cross-border registration of an online store, or may be applied to registration within an online store, or may be applied to any other registration scenario, for example, account registration of an application program, registration of an entity industry, and so on.
Step S108-4, the registration processing result information is sent to the user to be registered.
In order to realize data intercommunication of users on different platforms, after the user to be registered is successfully registered on the first platform, a third verifiable statement can be issued to the first platform so as to grant the first platform permission to acquire the behavior related information of the user to be registered from the second platform; accordingly, as shown in fig. 7, if the registration processing is successful according to the acquired registration related information in step S108, the method may further include:
step S110, receiving a third verifiable statement sent by an issuing authority; wherein the third verifiable statement is sent based on a second issuance request sent by the user to be registered; the third verifiable statement is used for proving that the user to be registered grants permission for the first platform to acquire the behavior related information of the user to be registered from the second platform;
still, the registration of online shops is taken as an example, and behavior-related information such as sales performance, new time on goods, etc.
Step S112, according to the third verifiable statement, a behavior information acquisition request is sent to the second platform, so that the second platform returns the behavior related information of the user to be registered in the second platform based on the third verifiable statement;
step S114, receiving behavior-related information returned by the second platform.
By issuing a third verifiable statement to the first platform, the first platform can acquire behavior related information of the user to be registered from the second platform based on the third verifiable statement, so that information interconnection is realized.
In one or more embodiments of the present disclosure, when a first platform receives a first registration request sent by a user to be registered, the first platform first verifies a first verifiable statement in the first registration request, and determines that the user to be registered is successfully registered in a second platform when the verification passes; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. The first platform can directly acquire the trusted and effective registration related information of the user to be registered from the second platform according to the second verifiable statement, so that the registration processing can be directly performed according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Corresponding to the registration processing method described in fig. 3 to fig. 7, based on the same technical concept, one or more embodiments of the present disclosure further provide another registration processing method, and fig. 8 is a schematic flow diagram of another registration processing method provided in one or more embodiments of the present disclosure, where the method in fig. 8 can be performed by the second platform in fig. 1; as shown in fig. 8, the method includes the steps of:
step S202, receiving a second registration request sent by a user to be registered; wherein the second registration request includes registration-related information to be registered;
taking on-line store registration as an example, the registration related information includes user information, business proving information, qualification information, etc., and the user information includes name, identity card number, contact information, home address, etc.
Step S204, if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the user to be registered through a designated issuing mechanism, so that the user to be registered sends a first registration request to a first platform based on the first verifiable statement; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform;
Specifically, the registration related information is verified, and if the verification is not passed, registration failure information is sent to the user to be registered; if the verification is passed, user identification and website are allocated to the user to be registered, and the registration related information is saved to complete registration; and after the registration is successful, sending, by the designated issuing authority, a first verifiable claim to the user to be registered, so that the user to be registered sends a first registration request to the first platform based on the first verifiable claim.
Step S206, when a registration information acquisition request sent by the first platform is received, the registration related information is sent to the first platform based on a second verifiable statement included in the registration information acquisition request, so that the first platform performs registration processing according to the registration related information; wherein the second verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform.
In one or more embodiments of the present disclosure, after the second platform succeeds in the registration process according to the second registration request sent by the user to be registered, by issuing a first verifiable statement to the user to be registered, the user to be registered may register on the first platform based on the first verifiable statement; when the second platform receives the registration information sent by the first platform and obtains the registration related information of the user to be registered, the second platform can send the registration related information of the user to be registered to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered from the second platform, so that the registration processing can be directly carried out according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
To clarify the issuer and the recipient of the first verifiable claim, in one or more embodiments of the present specification, the first verifiable claim is generated based on the first digital identity information of the second platform and the second digital identity information of the user to be registered. Specifically, as shown in fig. 9, step S204 includes:
step S204-2, if the registration processing is successful according to the registration related information, obtaining the second digital identity information of the user to be registered;
wherein, obtaining the second digital identity information of the user to be registered includes: determining whether the second registration request comprises second digital identity information, if so, acquiring the second digital identity information of the user to be registered from the second registration request; if not, a digital identity information acquisition request is sent to the user to be registered, and second digital identity information sent by the user to be registered is received.
Step S204-4, according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, a third issuing request is sent to an issuing mechanism, so that the issuing mechanism generates a first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to a user to be registered;
Further, in order to prove that the first verifiable statement is issued to the user to be registered by the first platform through the issuing organization, the first verifiable statement further comprises first signature data obtained by signing the first appointed information by adopting a private key corresponding to the first digital identity information of the second platform. The private key corresponding to the first digital identity information may be stored in the second platform, or may be stored in a designated escrow organization. When the private key corresponding to the first digital identity information is kept by the second platform, as shown in fig. 10, step S204-4 may include: sending a third issuing request to an issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved;
correspondingly, S204-4 also comprises the following steps:
step S204-6, receiving a signature request sent by an issuing institution; wherein the signature request includes first specified data to be signed;
step S204-8, signing the first appointed data by adopting a private key corresponding to the first digital identity information to obtain first signature data;
step S204-10, the first signature data is sent to the issuing entity, so that the issuing entity generates a first verifiable statement according to the second digital identity information, the first digital identity information, the registration success information and the first signature data.
Thus, the first verifiable statement is generated based on the first digital identity information, the second digital identity information and the first signature data, so that the user to be registered can verify the authenticity and validity of the first verifiable statement when registering on the first platform based on the first verifiable statement.
Further, in order to avoid providing the illegal platform with the registration related information of the user to be registered, in one or more embodiments of the present disclosure, the second platform first verifies the second verifiable statement in the registration information acquisition request when receiving the registration information acquisition request. Specifically, as shown in fig. 11, step S206 includes:
in step S206', when a registration information acquisition request sent by the first platform is received, if verification of a second verifiable statement included in the registration information acquisition request is passed, registration related information of a user to be registered is sent to the first platform.
Specifically, the second verifiable claim comprises: the second signature data is obtained by signing the second specified data by adopting a private key corresponding to the second digital identity information; accordingly, the verification of the second verifiable statement included in the registration information acquisition request in step S206' includes:
Inquiring second target record information from related record information of the verifiable statement stored in the blockchain according to the second declaration identifier; determining whether the second verifiable statement is in a valid state according to the validity field in the second target record information; obtaining a public key corresponding to the second digital identity information; verifying the second signature data by adopting the obtained public key; if the second verifiable statement is determined to be in a valid state and the verification of the second signature data is passed, the verification of the second verifiable statement included in the registration information acquisition request is determined to be passed.
Further, if the verification is not passed, the request failure information is sent to the first platform.
The above-mentioned process for verifying the second verifiable statement is similar to the process for verifying the first verifiable statement, and reference is made to the above-mentioned related description, and will not be repeated here.
In order to enable the data of the user to be registered to be shared among different platforms, after the user to be registered is successfully registered by the first platform, a third verifiable statement can be issued to the first platform so as to grant the first platform permission to acquire the behavior related information of the user to be authorized from the second platform. In response, as shown in fig. 12, after step S204, the method further includes:
Step S205, recording behavior related information of a user to be registered in a second platform;
specifically, the behavior related information of the user to be registered is associated with the second digital identity information of the user to be registered, and recorded information is obtained.
In response, as shown in fig. 12, step S206 further includes:
step S208, a behavior information acquisition request sent by a first platform is received; wherein the behavioral information acquisition request includes a third verifiable claim; the third verifiable statement is sent to the first platform by the user to be registered through the issuing authority; the third verifiable statement is used for proving that the user to be registered grants permission for the first platform to acquire the behavior related information of the user to be registered from the second platform;
step S210, if the third verifiable statement is verified, the recorded behavior related information of the user to be registered is sent to the first platform.
Specifically, if the verification of the third verifiable statement is passed, acquiring behavior related information of the associated record from the record information according to the second digital identity information in the third verifiable statement, and transmitting the acquired behavior related information to the first platform; if the verification is not passed, the request failure information is sent to the first platform.
It should be noted that, the user to be registered may issue a fourth verifiable statement to the second platform through the issuing mechanism, so as to grant the second platform permission to acquire the behavior related information of the user to be registered from the first platform; correspondingly, the method further comprises the steps of:
receiving a fourth verifiable statement sent by an issuing mechanism, and sending a behavior information acquisition request to the first platform according to the fourth verifiable statement, so that the first platform sends behavior related information of a user to be registered on the first platform to the second platform based on the fourth verifiable statement; and receiving behavior related information sent by the first platform. Therefore, information intercommunication among different platforms is realized.
In one or more embodiments of the present disclosure, after the second platform succeeds in the registration process according to the second registration request sent by the user to be registered, the user to be registered may register on the first platform based on the first verifiable statement by issuing the first verifiable statement to the user to be registered; when the second platform receives the registration information sent by the first platform and obtains the registration related information of the user to be registered, the second platform can send the registration related information of the user to be registered to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered from the second platform, so that the registration processing can be directly carried out according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Corresponding to the registration processing method described in fig. 3 to 7, one or more embodiments of the present disclosure further provide a registration processing device, based on the same technical concept, which is applied to the first platform. Fig. 13 is a schematic block diagram of a registration processing apparatus according to one or more embodiments of the present disclosure, where the apparatus is configured to perform the registration processing method described in fig. 3 to 7, and as shown in fig. 13, the apparatus includes:
a first receiving module 301, which receives a first registration request sent by a user to be registered; the first registration request comprises a first verifiable statement, and the first verifiable statement is used for proving that the user to be registered is successfully registered in a second platform;
a second receiving module 302 that receives a second verifiable statement sent by the issuing authority; wherein the second verifiable statement is sent based on a first issuance request sent by the user to be registered; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform;
a verification module 303 that verifies the first verifiable claim;
The obtaining module 304 is configured to obtain registration related information of the user to be registered from the second platform according to the second verifiable statement if the verification module verifies that the first verifiable statement passes;
and a registration module 305, configured to perform registration processing according to the acquired registration related information, and send registration processing result information to the user to be registered.
When receiving a first registration request sent by a user to be registered, the registration processing device provided by one or more embodiments of the present disclosure firstly verifies a first verifiable statement in the first registration request, and determines that the user to be registered is successfully registered in a second platform when the verification passes; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. It can be seen that, according to the second verifiable statement, the trusted and effective registration related information of the user to be registered can be directly obtained from the second platform, so that the registration processing can be directly performed according to the obtained registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Optionally, the first verifiable claim comprises: the first digital identity information of the second platform, the first signature data obtained by signing the first appointed data by adopting a private key corresponding to the first digital identity;
the verification module 303 queries first target record information from related record information of verifiable statement stored in a blockchain according to the first statement identification;
determining whether the first verifiable statement is in a valid state according to a validity field in the first target record information; the method comprises the steps of,
acquiring a public key corresponding to the first digital identity information;
verifying the first signature data by adopting the obtained public key;
if the first verifiable claim is determined to be in a valid state and the first signature data is verified to pass, then the first verifiable claim is determined to pass.
Optionally, the obtaining module 304 sends a registration information obtaining request to the second platform according to the second verifiable statement, so that the second platform returns registration related information of the user to be registered in the second platform based on the second verifiable statement;
And receiving the registration related information returned by the second platform.
Optionally, the registration module 305 performs registration processing according to the acquired registration related information if it is determined that the user information in the registration related information matches the user information in the first registration request.
Optionally, the second receiving module 302 further receives a third verifiable statement sent by the issuing authority after the registration process of the registering module 305 is successful; wherein the third verifiable statement is sent based on a second issuance request sent by the user to be registered; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
the obtaining module 304 further sends a behavior information obtaining request to the second platform according to the third verifiable statement, so that the second platform returns the behavior related information of the user to be registered on the second platform based on the third verifiable statement; and receiving the behavior-related information returned by the second platform.
When receiving a first registration request sent by a user to be registered, the registration processing device provided by one or more embodiments of the present disclosure firstly verifies a first verifiable statement in the first registration request, and determines that the user to be registered is successfully registered in a second platform when the verification passes; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. It can be seen that, according to the second verifiable statement, the trusted and effective registration related information of the user to be registered can be directly obtained from the second platform, so that the registration processing can be directly performed according to the obtained registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
It should be noted that, in the present specification, the embodiment about the registration processing apparatus and the embodiment about the registration processing method in the present specification are based on the same inventive concept, so the specific implementation of this embodiment may refer to the implementation of the corresponding registration processing method, and the repetition is not repeated.
Further, according to the registration processing method described in fig. 8 to 12, based on the same technical concept, one or more embodiments of the present disclosure further provide another registration processing apparatus that is applied to the second platform. Fig. 14 is a schematic block diagram of another registration processing apparatus according to one or more embodiments of the present disclosure, where the apparatus is configured to perform the registration processing method described in fig. 8 to 12, and as shown in fig. 14, the apparatus includes:
a receiving module 401, which receives a second registration request sent by a user to be registered; wherein the second registration request includes registration-related information to be registered;
a registration module 402, configured to send, if the registration processing is successful according to the registration related information, a first verifiable statement to the user to be registered through a designated issuing authority, so that the user to be registered sends a first registration request to a first platform based on the first verifiable statement; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform;
A transmitting module 403, configured to, when receiving a registration information acquisition request sent by the first platform, transmit the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request, so that the first platform performs registration processing according to the registration related information; wherein the second verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform.
According to the registration processing device provided by one or more embodiments of the present disclosure, after the registration processing is successful according to the second registration request sent by the user to be registered, a first verifiable statement is issued to the user to be registered, so that the user to be registered can register on the first platform based on the first verifiable statement; when registration information sent by the first platform is received, the registration related information of the user to be registered can be sent to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered, and can directly perform registration processing according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
Optionally, the registration module 402 acquires the second digital identity information of the user to be registered if the registration processing is successful according to the registration related information; the method comprises the steps of,
and sending a third issuing request to the issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, so that the issuing mechanism generates the first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to the user to be registered.
Optionally, the apparatus further comprises: a signature module;
the signing module receives a signing request sent by the issuing authority after the registration module 402 sends a third issuing request to the issuing authority; wherein the signature request includes first specified data to be signed; the method comprises the steps of,
signing the first appointed data by adopting a private key corresponding to the first digital identity information to obtain first signature data;
the first signature data is sent to the issuing entity to cause the issuing entity to generate the first verifiable claim based on the second digital identity information, the first digital identity information, the registration success information, and the first signature data.
Optionally, the sending module 403 sends the registration-related information to the first platform if the second verifiable statement included in the registration information obtaining request passes verification.
Optionally, the second verifiable claim comprises: the second verifiable statement comprises a second declaration identifier, second digital identity information of the user to be registered, third digital identity information of the first platform and second signature data obtained by signing second instruction data by adopting a private key corresponding to the second digital identity information;
the sending module 403 queries, according to the second declaration identifier, second target record information from the related record information of the verifiable declaration stored in the blockchain;
determining whether the second verifiable statement is in a valid state according to a validity field in the second target record information; the method comprises the steps of,
obtaining a public key corresponding to the second digital identity information;
verifying the second signature data by adopting the obtained public key;
and if the second verifiable statement is determined to be in a valid state and the second signature data is verified to pass, determining that the second verifiable statement included in the registration information acquisition request is verified to pass.
Optionally, the apparatus further comprises: a recording module;
the recording module records the behavior related information of the user to be registered on the second platform after the registration module 402 performs registration processing successfully according to the registration related information included in the second registration request;
the receiving module 401 receives a behavior information obtaining request sent by the first platform after the sending module 403 sends the registration related information to the first platform based on a second verifiable statement included in the registration information obtaining request; wherein the behavioral information acquisition request includes a third verifiable claim; the third verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
and the sending module 403 sends the recorded behavior-related information to the first platform if the third verifiable statement passes verification.
According to the registration processing device provided by one or more embodiments of the present disclosure, after the registration processing is successful according to the second registration request sent by the user to be registered, a first verifiable statement is issued to the user to be registered, so that the user to be registered can register on the first platform based on the first verifiable statement; when registration information sent by the first platform is received, the registration related information of the user to be registered can be sent to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered, and can directly perform registration processing according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
It should be noted that, in the present specification, the embodiment about the registration processing apparatus and the embodiment about the registration processing method in the present specification are based on the same inventive concept, so the specific implementation of this embodiment may refer to the implementation of the corresponding registration processing method, and the repetition is not repeated.
Further, according to the registration processing method described above, one or more embodiments of the present disclosure further provide a registration processing system based on the same technical concept. Fig. 15 is a schematic diagram illustrating a registration processing system according to one or more embodiments of the present disclosure, where the registration processing system includes: a first terminal device 501, a first platform 502, a second platform 503, and an issuing authority 504 of a user to be registered;
the first terminal device 501 responds to a first registration operation of the user to be registered, sends a second registration request to the second platform 503, and receives a first verifiable statement sent by the second platform 503; in response to a verifiable claim issuing operation by the user to be registered, sending a first issuing request to the issuing authority 504; and, in response to a second registration operation of the user to be registered, sending a first registration request to the first platform 502 according to the first verifiable statement; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform;
The first platform 502 receives the first registration request and a second verifiable statement sent by the issuing authority 504; if the first verifiable statement in the first registration request passes verification, a registration information acquisition request is sent to the second platform 503 according to the second verifiable statement, registration processing is performed according to registration related information sent by the second platform 503, and registration processing result information is sent to the first terminal device 501; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the registration related information of the user to be registered from the second platform;
the second platform 503 sends a third issuing request to the issuing authority 504 after the registration processing is successful according to the registration related information included in the second registration request; and upon receiving the registration information acquisition request sent by the first platform 502, sending the registration-related information to the first platform 502 based on the second verifiable statement in the registration information acquisition request;
the issuing authority 504 generates a first verifiable statement according to the third issuing request sent by the second platform 503, and sends the first verifiable statement to the first terminal device 501; and generating a second verifiable claim according to the first issuing request sent by the first terminal device 501, and sending the second verifiable claim to the first platform 502.
Optionally, after generating the first verifiable claim, the issuing authority 504 generates first issue record information for the first verifiable claim, saving the first issue record information into a blockchain; the method comprises the steps of,
after generating the second verifiable claim, generating second issuing record information of the second verifiable claim, and saving the second issuing record information into a blockchain.
According to the payment processing system provided by one or more embodiments of the present disclosure, after a user to be registered is successfully registered in a second platform, a second verifiable statement is issued to a first platform to grant the first platform permission to acquire registration related information of the user to be registered from the second platform, so that the first platform can directly acquire trusted and effective registration related information of the user to be registered from the second platform according to the second verifiable statement, and thus registration processing is directly performed according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
It should be noted that, in the present specification, the embodiment about the registration processing system and the embodiment about the registration processing method in the present specification are based on the same inventive concept, so the specific implementation of this embodiment may refer to the implementation of the corresponding registration processing method, and the repetition is not repeated.
Further, according to the above-described registration processing method, based on the same technical concept, one or more embodiments of the present disclosure further provide a registration processing apparatus, which is configured to perform the above-described registration processing method, and fig. 16 is a schematic structural diagram of a registration processing apparatus provided in one or more embodiments of the present disclosure.
As shown in fig. 16, the registration processing device may have a relatively large difference due to different configurations or performances, and may include one or more processors 601 and a memory 602, where the memory 602 may store one or more storage applications or data. Wherein the memory 602 may be transient storage or persistent storage. The application programs stored in memory 602 may include one or more modules (not shown) each of which may include a series of computer-executable instructions for registering with a processing device. Still further, the processor 601 may be arranged to communicate with the memory 602 and execute a series of computer executable instructions in the memory 602 on the registered processing device. The registration processing device may also include one or more power supplies 603, one or more wired or wireless network interfaces 604, one or more input/output interfaces 605, one or more keyboards 606, and the like.
In a particular embodiment, the registration processing device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each module may include a series of computer-executable instructions for the registration processing device, and configured to be executed by the one or more processors, the one or more programs comprising computer-executable instructions for:
receiving a first registration request sent by a user to be registered; the first registration request comprises a first verifiable statement, and the first verifiable statement is used for proving that the user to be registered is successfully registered in a second platform;
receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is sent based on a first issuance request sent by the user to be registered; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform;
if the first verifiable statement passes verification, acquiring registration related information of the user to be registered from the second platform according to the second verifiable statement;
And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the user to be registered.
Optionally, the computer-executable instructions, when executed, the first verifiable claim comprises: the first digital identity information of the second platform, the first signature data obtained by signing the first appointed data by adopting a private key corresponding to the first digital identity;
said validating said first verifiable claim comprises:
inquiring first target record information from related record information of verifiable statement stored in a blockchain according to the first statement identification;
determining whether the first verifiable statement is in a valid state according to a validity field in the first target record information; the method comprises the steps of,
acquiring a public key corresponding to the first digital identity information;
verifying the first signature data by adopting the obtained public key;
if the first verifiable claim is determined to be in a valid state and the first signature data is verified to pass, then the first verifiable claim is determined to pass.
Optionally, the computer executable instructions, when executed, obtain registration-related information of the user to be registered from the second platform according to the second verifiable claim, including:
Sending a registration information acquisition request to the second platform according to the second verifiable statement so that the second platform returns registration related information of the user to be registered in the second platform based on the second verifiable statement;
and receiving the registration related information returned by the second platform.
Optionally, the computer executable instructions, when executed, perform a registration process according to the acquired registration related information, including:
and if the user information in the registration related information is matched with the user information in the first registration request, performing registration processing according to the acquired registration related information.
Optionally, when executed, the computer executable instructions further include, after the registration processing is successful according to the acquired registration related information:
receiving a third verifiable statement sent by the issuing authority; wherein the third verifiable statement is sent based on a second issuance request sent by the user to be registered; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
Sending a behavior information acquisition request to the second platform according to the third verifiable statement, so that the second platform returns the behavior related information of the user to be registered on the second platform based on the third verifiable statement;
and receiving the behavior-related information returned by the second platform.
When receiving a first registration request sent by a user to be registered, the registration processing device provided by one or more embodiments of the present disclosure firstly verifies a first verifiable statement in the first registration request, and determines that the user to be registered is successfully registered in a second platform when the verification passes; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. It can be seen that, according to the second verifiable statement, the trusted and effective registration related information of the user to be registered can be directly obtained from the second platform, so that the registration processing can be directly performed according to the obtained registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
In another particular embodiment, a registration processing device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each module may include a series of computer-executable instructions for the registration processing device, and configured to be executed by one or more processors, the one or more programs comprising computer-executable instructions for:
receiving a second registration request sent by a user to be registered; wherein the second registration request includes registration-related information to be registered;
if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the user to be registered through a designated issuing mechanism, so that the user to be registered sends a first registration request to a first platform based on the first verifiable statement; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform;
when a registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request, so that the first platform carries out registration processing according to the registration related information; wherein the second verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform.
Optionally, the computer-executable instructions, when executed, send, by the designated issuing authority, a first verifiable claim to the user to be registered, comprising:
acquiring second digital identity information of the user to be registered;
and sending a third issuing request to the issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, so that the issuing mechanism generates the first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to the user to be registered.
Optionally, the computer-executable instructions, when executed, further comprise, after sending a third issue request to the issuing authority:
receiving a signature request sent by the issuing institution; wherein the signature request includes first specified data to be signed;
signing the first appointed data by adopting a private key corresponding to the first digital identity information to obtain first signature data;
the first signature data is sent to the issuing entity to cause the issuing entity to generate the first verifiable claim based on the second digital identity information, the first digital identity information, the registration success information, and the first signature data.
Optionally, the computer executable instructions, when executed, send the registration-related information to the first platform based on a second verifiable claim included in the registration information acquisition request, including:
and if the second verifiable statement included in the registration information acquisition request passes verification, sending the registration related information to the first platform.
Optionally, the computer-executable instructions, when executed, the second verifiable claim comprises: the second verifiable statement comprises a second declaration identifier, second digital identity information of the user to be registered, third digital identity information of the first platform and second signature data obtained by signing second instruction data by adopting a private key corresponding to the second digital identity information;
the verifying that the second verifiable statement included in the registration information acquisition request passes includes:
inquiring second target record information from related record information of the verifiable statement stored in the blockchain according to the second declaration identifier;
determining whether the second verifiable statement is in a valid state according to a validity field in the second target record information; the method comprises the steps of,
Obtaining a public key corresponding to the second digital identity information;
verifying the second signature data by adopting the obtained public key;
and if the second verifiable statement is determined to be in a valid state and the second signature data is verified to pass, determining that the second verifiable statement included in the registration information acquisition request is verified to pass.
Optionally, when executed, the computer executable instructions further include, after the registration processing is successful according to the registration related information included in the second registration request:
recording behavior related information of the user to be registered on the second platform;
after the second verifiable statement included in the registration information acquisition request sends the registration related information to the first platform, the method further includes:
receiving a behavior information acquisition request sent by the first platform; wherein the behavioral information acquisition request includes a third verifiable claim; the third verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
And if the third verifiable statement passes verification, the recorded behavior-related information is sent to the first platform.
After the registration processing device provided by one or more embodiments of the present disclosure succeeds in the registration processing according to the second registration request sent by the user to be registered, the user to be registered may register on the first platform based on the first verifiable statement by issuing the first verifiable statement to the user to be registered; when registration information sent by the first platform is received, the registration related information of the user to be registered can be sent to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered, and can directly perform registration processing according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
It should be noted that, in the present specification, the embodiment about the registration processing apparatus and the embodiment about the registration processing method in the present specification are based on the same inventive concept, so the specific implementation of this embodiment may refer to the implementation of the foregoing corresponding registration processing method, and the repetition is not repeated.
Further, in accordance with the above-described registration processing method, based on the same technical concept, one or more embodiments of the present disclosure further provide a storage medium, which is used to store computer executable instructions, and in a specific embodiment, the storage medium may be a U disc, an optical disc, a hard disk, or the like, where the computer executable instructions stored in the storage medium can implement the following flow when executed by a processor:
receiving a first registration request sent by a user to be registered; the first registration request comprises a first verifiable statement, and the first verifiable statement is used for proving that the user to be registered is successfully registered in a second platform;
receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is sent based on a first issuance request sent by the user to be registered; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform;
if the first verifiable statement passes verification, acquiring registration related information of the user to be registered from the second platform according to the second verifiable statement;
And carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the user to be registered.
Optionally, the storage medium stores computer executable instructions that, when executed by the processor, the first verifiable claim comprises: the first digital identity information of the second platform, the first signature data obtained by signing the first appointed data by adopting a private key corresponding to the first digital identity;
said validating said first verifiable claim comprises:
inquiring first target record information from related record information of verifiable statement stored in a blockchain according to the first statement identification;
determining whether the first verifiable statement is in a valid state according to a validity field in the first target record information; the method comprises the steps of,
acquiring a public key corresponding to the first digital identity information;
verifying the first signature data by adopting the obtained public key;
if the first verifiable claim is determined to be in a valid state and the first signature data is verified to pass, then the first verifiable claim is determined to pass.
Optionally, the computer executable instructions stored on the storage medium, when executed by the processor, obtain registration-related information of the user to be registered from the second platform according to the second verifiable statement, including:
sending a registration information acquisition request to the second platform according to the second verifiable statement so that the second platform returns registration related information of the user to be registered in the second platform based on the second verifiable statement;
and receiving the registration related information returned by the second platform.
Optionally, the computer executable instructions stored in the storage medium, when executed by the processor, perform a registration process according to the acquired registration related information, including:
and if the user information in the registration related information is matched with the user information in the first registration request, performing registration processing according to the acquired registration related information.
Optionally, the computer executable instructions stored in the storage medium, when executed by the processor, further include, after the registration processing is successful according to the acquired registration related information:
receiving a third verifiable statement sent by the issuing authority; wherein the third verifiable statement is sent based on a second issuance request sent by the user to be registered; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
Sending a behavior information acquisition request to the second platform according to the third verifiable statement, so that the second platform returns the behavior related information of the user to be registered on the second platform based on the third verifiable statement;
and receiving the behavior-related information returned by the second platform.
When the computer executable instructions stored in the storage medium provided by one or more embodiments of the present disclosure are executed by the processor, when a first registration request sent by a user to be registered is received, first, verifying a first verifiable statement in the first registration request, and when verification passes, determining that the user to be registered is successfully registered in a second platform; and then acquiring the registration related information of the user to be registered from the second platform according to a second verifiable statement issued by the user to be registered, thereby performing registration processing according to the acquired registration related information. It can be seen that, according to the second verifiable statement, the trusted and effective registration related information of the user to be registered can be directly obtained from the second platform, so that the registration processing can be directly performed according to the obtained registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
In another specific embodiment, the storage medium may be a usb disk, an optical disk, a hard disk, or the like, where the computer executable instructions stored in the storage medium when executed by the processor implement the following procedures:
receiving a second registration request sent by a user to be registered; wherein the second registration request includes registration-related information to be registered;
if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the user to be registered through a designated issuing mechanism, so that the user to be registered sends a first registration request to a first platform based on the first verifiable statement; the first verifiable statement is used for proving that the user to be registered is successfully registered in the second platform;
when a registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on a second verifiable statement included in the registration information acquisition request, so that the first platform carries out registration processing according to the registration related information; wherein the second verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the second verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire registration related information of the user to be registered from the second platform.
Optionally, the storage medium storing computer executable instructions that, when executed by the processor, send, by the designated issuing authority, a first verifiable claim to the user to be registered, comprising:
acquiring second digital identity information of the user to be registered;
and sending a third issuing request to the issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, so that the issuing mechanism generates the first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to the user to be registered.
Optionally, the storage medium storing computer executable instructions that, when executed by the processor, after sending the third issue request to the issuing authority, further comprise:
receiving a signature request sent by the issuing institution; wherein the signature request includes first specified data to be signed;
signing the first appointed data by adopting a private key corresponding to the first digital identity information to obtain first signature data;
The first signature data is sent to the issuing entity to cause the issuing entity to generate the first verifiable claim based on the second digital identity information, the first digital identity information, the registration success information, and the first signature data.
Optionally, the computer executable instructions stored on the storage medium, when executed by the processor, send the registration-related information to the first platform based on a second verifiable statement included in the registration information acquisition request, including:
and if the second verifiable statement included in the registration information acquisition request passes verification, sending the registration related information to the first platform.
Optionally, the storage medium stores computer executable instructions that, when executed by the processor, the second verifiable claim comprises: the second verifiable statement comprises a second declaration identifier, second digital identity information of the user to be registered, third digital identity information of the first platform and second signature data obtained by signing second instruction data by adopting a private key corresponding to the second digital identity information;
the verifying that the second verifiable statement included in the registration information acquisition request passes includes:
Inquiring second target record information from related record information of the verifiable statement stored in the blockchain according to the second declaration identifier;
determining whether the second verifiable statement is in a valid state according to a validity field in the second target record information; the method comprises the steps of,
obtaining a public key corresponding to the second digital identity information;
verifying the second signature data by adopting the obtained public key;
and if the second verifiable statement is determined to be in a valid state and the second signature data is verified to pass, determining that the second verifiable statement included in the registration information acquisition request is verified to pass.
Optionally, the computer executable instructions stored in the storage medium, when executed by the processor, further comprise, after the registration processing is successful according to the registration related information included in the second registration request:
recording behavior related information of the user to be registered on the second platform;
after the second verifiable statement included in the registration information acquisition request sends the registration related information to the first platform, the method further includes:
receiving a behavior information acquisition request sent by the first platform; wherein the behavioral information acquisition request includes a third verifiable claim; the third verifiable statement is sent by the user to be registered to the first platform through the issuing authority; the third verifiable statement is used for proving that the user to be registered grants the first platform permission to acquire the behavior related information of the user to be registered from the second platform;
And if the third verifiable statement passes verification, the recorded behavior-related information is sent to the first platform.
The computer executable instructions stored by the storage medium provided by one or more embodiments of the present disclosure, when executed by the processor, enable a user to be registered to a first platform based on a first verifiable claim by issuing the first verifiable claim to the user to be registered after a registration process is successful according to a second registration request sent by the user to be registered; when registration information sent by the first platform is received, the registration related information of the user to be registered can be sent to the first platform based on the second verifiable statement; therefore, the first platform can directly acquire the trusted and effective registration related information of the user to be registered, and can directly perform registration processing according to the acquired registration related information; the registration related information of the user to be registered is not required to be authenticated and audited through the registration related authority, so that the registration efficiency is greatly improved, a large amount of labor cost and time cost are not required to be occupied, and the registration cost is reduced.
It should be noted that, in the present specification, the embodiment about the storage medium and the embodiment about the registration processing method in the present specification are based on the same inventive concept, so the specific implementation of this embodiment may refer to the implementation of the corresponding registration processing method, and the repetition is not repeated.
The foregoing describes specific embodiments of the present disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims can be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing are also possible or may be advantageous.
In the 30 s of the 20 th century, improvements to one technology could clearly be distinguished as improvements in hardware (e.g., improvements to circuit structures such as diodes, transistors, switches, etc.) or software (improvements to the process flow). However, with the development of technology, many improvements of the current method flows can be regarded as direct improvements of hardware circuit structures. Designers almost always obtain corresponding hardware circuit structures by programming improved method flows into hardware circuits. Therefore, an improvement of a method flow cannot be said to be realized by a hardware entity module. For example, a programmable logic device (Programmable Logic Device, PLD) (e.g., field programmable gate array (Field Programmable Gate Array, FPGA)) is an integrated circuit whose logic function is determined by the programming of the device by a user. A designer programs to "integrate" a digital system onto a PLD without requiring the chip manufacturer to design and fabricate application-specific integrated circuit chips. Moreover, nowadays, instead of manually manufacturing integrated circuit chips, such programming is mostly implemented by using "logic compiler" software, which is similar to the software compiler used in program development and writing, and the original code before the compiling is also written in a specific programming language, which is called hardware description language (Hardware Description Language, HDL), but not just one of the hdds, but a plurality of kinds, such as ABEL (Advanced Boolean Expression Language), AHDL (Altera Hardware Description Language), confluence, CUPL (Cornell University Programming Language), HDCal, JHDL (Java Hardware Description Language), lava, lola, myHDL, PALASM, RHDL (Ruby Hardware Description Language), etc., VHDL (Very-High-Speed Integrated Circuit Hardware Description Language) and Verilog are currently most commonly used. It will also be apparent to those skilled in the art that a hardware circuit implementing the logic method flow can be readily obtained by merely slightly programming the method flow into an integrated circuit using several of the hardware description languages described above.
The controller may be implemented in any suitable manner, for example, the controller may take the form of, for example, a microprocessor or processor and a computer readable medium storing computer readable program code (e.g., software or firmware) executable by the (micro) processor, logic gates, switches, application specific integrated circuits (Application Specific Integrated Circuit, ASIC), programmable logic controllers, and embedded microcontrollers, examples of which include, but are not limited to, the following microcontrollers: ARC 625D, atmel AT91SAM, microchip PIC18F26K20, and Silicone Labs C8051F320, the memory controller may also be implemented as part of the control logic of the memory. Those skilled in the art will also appreciate that, in addition to implementing the controller in a pure computer readable program code, it is well possible to implement the same functionality by logically programming the method steps such that the controller is in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers, etc. Such a controller may thus be regarded as a kind of hardware component, and means for performing various functions included therein may also be regarded as structures within the hardware component. Or even means for achieving the various functions may be regarded as either software modules implementing the methods or structures within hardware components.
The system, apparatus, module or unit set forth in the above embodiments may be implemented in particular by a computer chip or entity, or by a product having a certain function. One typical implementation is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smart phone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices.
For convenience of description, the above devices are described as being functionally divided into various units, respectively. Of course, the functions of each unit may be implemented in the same piece or pieces of software and/or hardware when implementing the embodiments of the present specification.
One skilled in the relevant art will recognize that one or more embodiments of the present description may be provided as a method, system, or computer program product. Accordingly, one or more embodiments of the present description may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present description can take the form of a computer program product on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.
The present description is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the specification. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
In one typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
The memory may include volatile memory in a computer-readable medium, random Access Memory (RAM) and/or nonvolatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of computer-readable media.
Computer readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of storage media for a computer include, but are not limited to, phase change memory (PRAM), static Random Access Memory (SRAM), dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), read Only Memory (ROM), electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium, which can be used to store information that can be accessed by a computing device. Computer-readable media, as defined herein, does not include transitory computer-readable media (transmission media), such as modulated data signals and carrier waves.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article or apparatus that comprises the element.
One or more embodiments of the present specification may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. One or more embodiments of the specification may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.
In this specification, each embodiment is described in a progressive manner, and identical and similar parts of each embodiment are all referred to each other, and each embodiment mainly describes differences from other embodiments. In particular, for system embodiments, since they are substantially similar to method embodiments, the description is relatively simple, as relevant to see a section of the description of method embodiments.
The foregoing description is by way of example only and is not intended to limit the present disclosure. Various modifications and changes may occur to those skilled in the art. Any modifications, equivalent substitutions, improvements, etc. that fall within the spirit and principles of the present document are intended to be included within the scope of the claims of the present document.

Claims (24)

1. A registration processing method, comprising:
receiving a first registration request sent by a first user to be registered on a first platform; wherein the first registration request includes a first verifiable statement that is used to prove that the first user is successfully registered with a second platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
Receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is used to prove that the first user grants the first platform permission to acquire registration-related information of the first user from the second platform;
when the first platform is a node in the blockchain, according to a first declaration identification of the first verifiable declaration, inquiring first target record information from related record information of the verifiable declaration stored in the blockchain; when the first platform is not a node in a blockchain, sending a query request to a blockchain link to which the blockchain is accessed according to the first declaration identification, so that the blockchain node queries the first target record information from the blockchain based on the query request;
if the first verifiable statement is determined to be in a valid state according to the first target record information, acquiring registration related information of the first user from the second platform according to the second verifiable statement;
and carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
2. The method according to claim 1, wherein the performing registration processing according to the acquired registration-related information includes:
Determining whether the acquired user information in the registration related information is matched with the user information in the first registration request;
if yes, carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
3. The method of claim 1, the first verifiable claim comprising: the first digital identity information of the second platform and first signature data obtained by signing first appointed data by adopting a private key corresponding to the first digital identity;
the method further comprises, before determining that the first verifiable statement is in a valid state according to the first target record information:
determining whether the first verifiable statement is in a valid state according to a validity field in the first target record information; the method comprises the steps of,
acquiring a public key corresponding to the first digital identity information;
verifying the first signature data by adopting the obtained public key;
and if the first verifiable statement is determined to be in a valid state according to the first target record information, acquiring registration related information of the first user from the second platform according to the second verifiable statement, wherein the registration related information comprises:
And if the first verifiable statement is determined to be in a valid state and the first signature data passes verification, acquiring registration related information of the first user from the second platform according to the second verifiable statement.
4. The method of claim 1, the obtaining registration-related information of the first user from the second platform according to the second verifiable claim, comprising:
sending a registration information acquisition request to the second platform according to the second verifiable statement so that the second platform returns registration related information of the first user in the second platform based on the second verifiable statement;
and receiving the registration related information returned by the second platform.
5. The method according to any one of claims 1-4, wherein after the registration processing is successful according to the acquired registration related information, the method further comprises:
receiving a third verifiable statement sent by the issuing authority; wherein the third verifiable statement is sent based on a second issuance request sent by the first user; the third verifiable statement is used for proving that the first user grants the first platform permission to acquire the behavior related information of the first user from the second platform;
Sending a behavior information acquisition request to the second platform according to the third verifiable statement so that the second platform returns the behavior related information of the first user on the second platform based on the third verifiable statement;
and receiving the behavior-related information returned by the second platform.
6. A registration processing method, comprising:
receiving a second registration request sent by a first user to be registered in a second platform; wherein the second registration request includes registration-related information to be registered;
if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the first user; the first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
when a registration information acquisition request sent by the first platform is received, the registration related information is sent to the first platform based on a second verifiable statement included in the registration information acquisition request; the registration information acquisition request is sent when the first platform determines that the received first verifiable statement is in a valid state according to first target record information; the first target record information is obtained by inquiring related record information of the verifiable statement stored in the blockchain according to a first statement identification of the first verifiable statement when the first platform is a node in the blockchain; when the first platform is not a node in the blockchain, sending a query request to a blockchain link connected with the blockchain according to the first declaration identification; the registration related information is used for the first platform to register; the second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
7. The method of claim 6, the sending a first verifiable claim to the first user, comprising:
acquiring second digital identity information of the first user;
and sending a third issuing request to an issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, so that the issuing mechanism generates the first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to the first user.
8. The method of claim 7, the sending a third issue request to the issuing authority further comprising:
receiving a signature request sent by the issuing institution; wherein the signature request includes first specified data to be signed;
signing the first appointed data by adopting a private key corresponding to the first digital identity information to obtain first signature data;
the first signature data is sent to the issuing entity to cause the issuing entity to generate the first verifiable claim based on the second digital identity information, the first digital identity information, the registration success information, and the first signature data.
9. The method of claim 6, the sending the registration-related information to the first platform based on a second verifiable claim included in the registration information retrieval request, comprising:
and if the second verifiable statement included in the registration information acquisition request passes verification, sending the registration related information to the first platform.
10. The method of claim 9, the second verifiable claim comprising: the second verifiable claim comprises a second declaration identifier, second digital identity information of the first user, third digital identity information of the first platform and second signature data obtained by signing second instruction data by adopting a private key corresponding to the second digital identity information;
the verifying that the second verifiable statement included in the registration information acquisition request passes includes:
inquiring second target record information from related record information of the verifiable statement stored in the blockchain according to the second declaration identifier;
determining whether the second verifiable statement is in a valid state according to a validity field in the second target record information; the method comprises the steps of,
obtaining a public key corresponding to the second digital identity information;
Verifying the second signature data by adopting the obtained public key;
and if the second verifiable statement is determined to be in a valid state and the second signature data is verified to pass, determining that the second verifiable statement included in the registration information acquisition request is verified to pass.
11. The method according to any one of claims 6-10, further comprising, after a successful registration process according to the registration related information included in the second registration request:
recording behavior related information of the first user on the second platform;
after the second verifiable statement included in the registration information acquisition request sends the registration related information to the first platform, the method further includes:
receiving a behavior information acquisition request sent by the first platform; wherein the behavioral information acquisition request includes a third verifiable claim; the third verifiable statement is sent by the first user to the first platform through an issuing authority; the third verifiable statement is used for proving that the first user grants the first platform permission to acquire the behavior related information of the first user from the second platform;
and if the third verifiable statement passes verification, the recorded behavior-related information is sent to the first platform.
12. A registration processing apparatus comprising:
a first receiving module for receiving a first registration request sent by a first user to be registered on a first platform; wherein the first registration request includes a first verifiable statement that is used to prove that the first user is successfully registered with a second platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
a second receiving module that receives a second verifiable statement sent by the issuing authority; wherein the second verifiable statement is used to prove that the first user grants the first platform permission to acquire registration-related information of the first user from the second platform;
the verification module is used for inquiring first target record information from related record information of the verifiable statement stored in the blockchain according to a first statement identification of the first verifiable statement when the first platform is a node in the blockchain; when the first platform is not a node in a blockchain, sending a query request to a blockchain link to which the blockchain is accessed according to the first declaration identification, so that the blockchain node queries the first target record information from the blockchain based on the query request; determining whether the first verifiable statement is in a valid state according to the first target record information;
The acquisition module is used for acquiring registration related information of the first user from the second platform according to the second verifiable statement if the verification module determines that the first verifiable statement is in a valid state;
and the registration module is used for carrying out registration processing according to the acquired registration related information and sending registration processing result information to the first user.
13. An apparatus according to claim 12,
the registration module is used for determining whether the acquired user information in the registration related information is matched with the user information in the first registration request;
if yes, carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
14. The apparatus of claim 12, the first verifiable claim comprising: the first digital identity information of the second platform and first signature data obtained by signing first appointed data by adopting a private key corresponding to the first digital identity;
the verification module is used for determining whether the first verifiable statement is in a valid state according to the validity field in the first target record information; the method comprises the steps of,
Acquiring a public key corresponding to the first digital identity information;
verifying the first signature data by adopting the obtained public key;
the acquisition module acquires registration related information of the first user from the second platform according to the second verifiable statement if the verification module determines that the first verifiable statement is in a valid state and the first signature data passes verification.
15. An apparatus according to claim 12,
the acquisition module sends a registration information acquisition request to the second platform according to the second verifiable statement so that the second platform returns registration related information of the first user in the second platform based on the second verifiable statement;
and receiving the registration related information returned by the second platform.
16. A registration processing apparatus comprising:
a receiving module for receiving a second registration request sent by a first user to be registered in a second platform; wherein the second registration request includes registration-related information to be registered;
the registration module is used for sending a first verifiable statement to the first user if registration processing is successful according to the registration related information; the first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
A transmitting module, configured to transmit, when receiving a registration information acquisition request transmitted by the first platform, the registration-related information to the first platform based on a second verifiable statement included in the registration information acquisition request; the registration information acquisition request is sent when the first platform determines that the received first verifiable statement is in a valid state according to first target record information; the first target record information is obtained by inquiring related record information of the verifiable statement stored in the blockchain according to a first statement identification of the first verifiable statement when the first platform is a node in the blockchain; when the first platform is not a node in the blockchain, sending a query request to a blockchain link connected with the blockchain according to the first declaration identification; the registration related information is used for the first platform to register; the second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
17. The apparatus according to claim 16,
the registration module acquires second digital identity information of the first user; the method comprises the steps of,
And sending a third issuing request to an issuing mechanism according to the second digital identity information, the first digital identity information of the second platform and the registration success information to be proved, so that the issuing mechanism generates the first verifiable statement according to the second digital identity information, the first digital identity information and the registration success information, and sends the first verifiable statement to the first user.
18. The apparatus according to claim 16,
and the sending module is used for sending the registration related information to the first platform if the second verifiable statement included in the registration information acquisition request passes verification.
19. A registration system, comprising: the system comprises a first terminal device of a first user, a first platform, a second platform and an issuing authority; the first platform and the second platform are service platforms for providing business services for users;
the first terminal equipment responds to a first registration operation of the first user, sends a second registration request to the second platform, and receives a first verifiable statement sent by the issuing authority; in response to a verifiable claim issuing operation by the first user, sending a first issuing request to the issuing authority; and in response to a second registration operation of the first user, sending a first registration request to the first platform according to the first verifiable claim; wherein the first verifiable statement is used to prove that the first user is successfully registered in the second platform;
The first platform receives the first registration request and a second verifiable statement sent by the issuing authority; when the first platform is a node in the blockchain, according to a first declaration identification of the first verifiable declaration, inquiring first target record information from related record information of the verifiable declaration stored in the blockchain; when the first platform is not a node in a blockchain, sending a query request to a blockchain link to which the blockchain is accessed according to the first declaration identification, so that the blockchain node queries the first target record information from the blockchain based on the query request; if the first verifiable statement is determined to be in a valid state according to the first target record information, a registration information acquisition request is sent to the second platform according to the second verifiable statement, registration processing is carried out according to the acquired registration related information, and registration processing result information is sent to the first terminal equipment; wherein the second verifiable statement is used to prove that the first user grants the first platform permission to acquire registration-related information of the first user from the second platform;
The second platform sends a third issuing request to the issuing mechanism after successful registration processing according to the registration related information included in the second registration request; and when the registration information acquisition request sent by the first platform is received, sending the registration related information to the first platform based on the second verifiable statement in the registration information acquisition request;
the issuing mechanism generates a first verifiable statement according to the third issuing request sent by the second platform and sends the first verifiable statement to the first terminal equipment; and generating a second verifiable statement according to the first issuing request sent by the first terminal device, and sending the second verifiable statement to the first platform.
20. The system according to claim 19,
the issuing authority generates first issuing record information of the first verifiable statement after generating the first verifiable statement, and stores the first issuing record information into a blockchain; the method comprises the steps of,
after generating the second verifiable claim, generating second issuing record information of the second verifiable claim, and saving the second issuing record information into a blockchain.
21. A registration processing apparatus comprising:
a processor; the method comprises the steps of,
a memory arranged to store computer executable instructions that, when executed, cause the processor to:
receiving a first registration request sent by a first user to be registered on a first platform; wherein the first registration request includes a first verifiable statement that is used to prove that the first user is successfully registered with a second platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is used to prove that the first user grants the first platform permission to acquire registration-related information of the first user from the second platform;
when the first platform is a node in the blockchain, according to a first declaration identification of the first verifiable declaration, inquiring first target record information from related record information of the verifiable declaration stored in the blockchain; when the first platform is not a node in a blockchain, sending a query request to a blockchain link to which the blockchain is accessed according to the first declaration identification, so that the blockchain node queries the first target record information from the blockchain based on the query request;
If the first verifiable statement is determined to be in a valid state according to the first target record information, acquiring registration related information of the first user from the second platform according to the second verifiable statement;
and carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
22. A registration processing apparatus comprising:
a processor; the method comprises the steps of,
a memory arranged to store computer executable instructions that, when executed, cause the processor to:
receiving a second registration request sent by a first user to be registered in a second platform; wherein the second registration request includes registration-related information to be registered;
if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the first user; the first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
When a registration information acquisition request sent by the first platform is received, the registration related information is sent to the first platform based on a second verifiable statement included in the registration information acquisition request; the registration information acquisition request is sent when the first platform determines that the received first verifiable statement is in a valid state according to first target record information; the first target record information is obtained by inquiring related record information of the verifiable statement stored in the blockchain according to a first statement identification of the first verifiable statement when the first platform is a node in the blockchain; when the first platform is not a node in the blockchain, sending a query request to a blockchain link connected with the blockchain according to the first declaration identification; the registration related information is used for the first platform to register; the second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
23. A storage medium storing computer-executable instructions that when executed by a processor implement the following:
Receiving a first registration request sent by a first user to be registered on a first platform; wherein the first registration request includes a first verifiable statement that is used to prove that the first user is successfully registered with a second platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
receiving a second verifiable statement sent by an issuing authority; wherein the second verifiable statement is used to prove that the first user grants the first platform permission to acquire registration-related information of the first user from the second platform;
when the first platform is a node in the blockchain, according to a first declaration identification of the first verifiable declaration, inquiring first target record information from related record information of the verifiable declaration stored in the blockchain; when the first platform is not a node in a blockchain, sending a query request to a blockchain link to which the blockchain is accessed according to the first declaration identification, so that the blockchain node queries the first target record information from the blockchain based on the query request;
If the first verifiable statement is determined to be in a valid state according to the first target record information, acquiring registration related information of the first user from the second platform according to the second verifiable statement;
and carrying out registration processing according to the acquired registration related information, and sending registration processing result information to the first user.
24. A storage medium storing computer-executable instructions that when executed by a processor implement the following:
receiving a second registration request sent by a first user to be registered in a second platform; wherein the second registration request includes registration-related information to be registered;
if the registration processing is successful according to the registration related information, a first verifiable statement is sent to the first user; the first verifiable statement is used for proving that the first user is successfully registered in the second platform and is used for registering in the first platform; the first platform and the second platform are service platforms for providing business services for users; the first platform and the second platform are in different national environments;
When a registration information acquisition request sent by the first platform is received, the registration related information is sent to the first platform based on a second verifiable statement included in the registration information acquisition request; the registration information acquisition request is sent when the first platform determines that the received first verifiable statement is in a valid state according to first target record information; the first target record information is obtained by inquiring related record information of the verifiable statement stored in the blockchain according to a first statement identification of the first verifiable statement when the first platform is a node in the blockchain; when the first platform is not a node in the blockchain, sending a query request to a blockchain link connected with the blockchain according to the first declaration identification; the registration related information is used for the first platform to register; the second verifiable statement is used to prove that the first user granted the first platform access to registration-related information of the first user from the second platform.
CN202110374308.2A 2020-04-01 2020-04-01 Registration processing method, device, equipment and system Active CN113497805B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110374308.2A CN113497805B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202110374308.2A CN113497805B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system
CN202010251415.1A CN111163113B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
CN202010251415.1A Division CN111163113B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system

Publications (2)

Publication Number Publication Date
CN113497805A CN113497805A (en) 2021-10-12
CN113497805B true CN113497805B (en) 2023-08-04

Family

ID=70567845

Family Applications (2)

Application Number Title Priority Date Filing Date
CN202010251415.1A Active CN111163113B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system
CN202110374308.2A Active CN113497805B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN202010251415.1A Active CN111163113B (en) 2020-04-01 2020-04-01 Registration processing method, device, equipment and system

Country Status (1)

Country Link
CN (2) CN111163113B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113691541B (en) * 2021-08-25 2023-03-14 成都佐沃拉科技有限公司 Registration verification method and system based on block chain

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103179134A (en) * 2013-04-19 2013-06-26 中国建设银行股份有限公司 Single sign on method and system based on Cookie and application server thereof
CN107257340A (en) * 2017-06-19 2017-10-17 阿里巴巴集团控股有限公司 A kind of authentication method, authentication data processing method and equipment based on block chain
WO2018145127A1 (en) * 2017-02-06 2018-08-09 ShoCard, Inc. Electronic identification verification methods and systems with storage of certification records to a side chain
WO2019179535A2 (en) * 2019-07-02 2019-09-26 Alibaba Group Holding Limited System and method for verifying verifiable claims
CN110768968A (en) * 2019-10-11 2020-02-07 支付宝(杭州)信息技术有限公司 Authorization method, device, equipment and system based on verifiable statement

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5129313B2 (en) * 2010-10-29 2013-01-30 株式会社東芝 Access authorization device
US10701113B2 (en) * 2011-10-25 2020-06-30 Nokia Technologies Oy Method for securing host configuration messages
CN102624728B (en) * 2012-03-09 2015-04-15 浙江大学城市学院 Method and system for carrying out whole-network login authentication by utilizing registered website user information
CN106487511B (en) * 2015-08-27 2020-02-04 阿里巴巴集团控股有限公司 Identity authentication method and device
US11057366B2 (en) * 2018-08-21 2021-07-06 HYPR Corp. Federated identity management with decentralized computing platforms
WO2020047281A1 (en) * 2018-08-30 2020-03-05 Ideola, Inc. System and method for memetic authentication and identification

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103179134A (en) * 2013-04-19 2013-06-26 中国建设银行股份有限公司 Single sign on method and system based on Cookie and application server thereof
WO2018145127A1 (en) * 2017-02-06 2018-08-09 ShoCard, Inc. Electronic identification verification methods and systems with storage of certification records to a side chain
CN107257340A (en) * 2017-06-19 2017-10-17 阿里巴巴集团控股有限公司 A kind of authentication method, authentication data processing method and equipment based on block chain
WO2019179535A2 (en) * 2019-07-02 2019-09-26 Alibaba Group Holding Limited System and method for verifying verifiable claims
CN110768968A (en) * 2019-10-11 2020-02-07 支付宝(杭州)信息技术有限公司 Authorization method, device, equipment and system based on verifiable statement

Also Published As

Publication number Publication date
CN111163113B (en) 2021-02-19
CN111163113A (en) 2020-05-15
CN113497805A (en) 2021-10-12

Similar Documents

Publication Publication Date Title
CN111431936B (en) Authorization processing method, device, equipment, system and storage medium based on verifiable statement
EP3968191B1 (en) Trusted hardware-based identity management methods, apparatuses, and devices
CN111311251B (en) Binding processing method, device and equipment
CN110795501A (en) Method, device, equipment and system for creating verifiable statement based on block chain
CN113542288B (en) Service authorization method, device, equipment and system
US10812477B2 (en) Blockchain-based enterprise authentication method, apparatus, and device, and blockchain-based authentication traceability method, apparatus, and device
CN112232795B (en) Transaction processing method, device, equipment and system
CN111126950A (en) Service processing method, device and equipment based on block chain
CN111382980B (en) Logistics management method, device, equipment and system based on block chain
CN111191268A (en) Storage method, device and equipment capable of verifying statement
CN112200585B (en) Service processing method, device, equipment and system
CN111931154B (en) Service processing method, device and equipment based on digital certificate
CN114491430A (en) Service processing method, device and equipment based on block chain
CN112560110A (en) Signing method and device of authorization protocol, electronic equipment and storage medium
CN108616361B (en) Method and device for identifying uniqueness of equipment
CN111526166B (en) Information verification method, device and equipment
CN113221142A (en) Authorization service processing method, device, equipment and system
CN113497805B (en) Registration processing method, device, equipment and system
CN111737304B (en) Processing method, device and equipment of block chain data
CN113239853A (en) Biological identification method, device and equipment based on privacy protection
CN115392889A (en) Service processing method and device
CN112131545B (en) Method, device and equipment for processing voice authorization and voice related service
CN110321752B (en) Method and device for checking offline graphic codes
CN117034301A (en) Application authentication processing method and device
CN111784550B (en) Method, device and equipment for processing inherited service

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant