CN113535692A - Federation member revocation method and device, electronic equipment and storage medium - Google Patents

Federation member revocation method and device, electronic equipment and storage medium Download PDF

Info

Publication number
CN113535692A
CN113535692A CN202111086703.7A CN202111086703A CN113535692A CN 113535692 A CN113535692 A CN 113535692A CN 202111086703 A CN202111086703 A CN 202111086703A CN 113535692 A CN113535692 A CN 113535692A
Authority
CN
China
Prior art keywords
auditing
revocation
request
result
individual
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111086703.7A
Other languages
Chinese (zh)
Inventor
李浩浩
李慎国
贺亮
赵丽丽
张滨
王晓瑞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhongguancun Smart City Co Ltd
Original Assignee
Zhongguancun Smart City Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhongguancun Smart City Co Ltd filed Critical Zhongguancun Smart City Co Ltd
Priority to CN202111086703.7A priority Critical patent/CN113535692A/en
Publication of CN113535692A publication Critical patent/CN113535692A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/21Design, administration or maintenance of databases
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Mining & Analysis (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The application discloses a union member revocation method, a device, electronic equipment and a storage medium, wherein the method comprises the following steps: sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus verification on the revocation request and generates a chain entry notification of the revocation request; and receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes, and the individual auditing result is personal auditing information generated by the coalition members with auditing authority respectively according to the chain entering notification. According to the embodiment of the application, the revocation mode is changed from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, and the situation that the user randomly exits from a block chain network to cause reduction of reliability of data rights and interests management can be avoided.

Description

Federation member revocation method and device, electronic equipment and storage medium
Technical Field
The embodiment of the application relates to the technical field of computers, in particular to the technical field of block chains, and particularly relates to a union member revocation method, a union member revocation device, electronic equipment and a storage medium.
Background
With the more and more data mastered by each organization department, the more and more data range is required, and the exercise and the good data rights and interests protection become very urgent requirements of users on the basis of controllable risk and clear authority and liabilities. At present, a mainstream data rights and interests protection scheme is mainly realized in a centralized mode, but a centralized system or platform is operated and managed through a single responsible body, so that the management difficulty is high, the cost is high, the data leakage risk is high, the data legality cannot be guaranteed, the data source and the use cannot be traced, and the data content cannot be used as a requirement.
For the above reasons, a decentralized data rights management system has appeared, for example, the problem of centralized data rights management platform or system can be greatly improved by adopting the block chain technology to manage the data rights. However, in the existing decentralized data rights management scheme, the user quits the block chain and is realized by a preset rule, the mode is single, and the supervision is lacked.
Disclosure of Invention
The embodiment of the application provides a federation member revocation method, a federation member revocation device, electronic equipment and a storage medium, which can realize decentralization of data interest exercise and simultaneously can prevent a user from randomly quitting a block chain network to cause reduction of reliability of data interest management.
According to a first aspect of embodiments of the present application, there is provided a federation member revocation method including:
sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus verification on the revocation request and generates a chain entry notification of the revocation request;
and receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes, and the individual auditing result is personal auditing information generated by the coalition members with auditing authority respectively according to the chain entering notification.
Further, before sending the revocation request of the revocation federation member to the blockchain, the method further comprises:
the revocation request is generated according to the requested coalition member, the request type, the permission level of the requested coalition member and the request reason, the request type comprises revocation to the requested coalition member or revocation to other people, and the permission level comprises auditing permission, using permission and providing permission.
According to a second aspect of embodiments of the present application, there is provided a federation member revocation method including:
receiving a revocation request sent by any one alliance member, wherein the revocation request comprises a requested alliance member, a request type, a permission level of the requested alliance member and a request reason, the request type comprises revocation on the request type or revocation on other people, and the permission level comprises an auditing permission, a using permission and a providing permission;
performing consensus deposit on the revocation request, and generating an incoming chain notification of the revocation request;
broadcasting the incoming chain notification to enable each alliance member with the auditing authority to generate an individual auditing result according to the revocation request and send the individual auditing result to the block chain, wherein the individual auditing result is the personal auditing information generated by the alliance members with the auditing authority according to the incoming chain notification and has one of two meaning expressions of agreement and disagreement;
receiving an individual audit result sent by each coalition member with the audit authority;
judging whether the current individual audit result is legal or not through an intelligent contract, if so, generating a group audit result through the intelligent contract, wherein the group audit result comprises an audit passing rate which is legal and represents the ratio of the number of the approved individual audit results to the total number of the alliance members with the audit authority;
performing consensus and evidence-saving on the current individual audit result and the current group audit result;
and judging whether the auditing passing rate of the current group auditing result reaches a threshold value or not through an intelligent contract, if so, finishing the judgment, and sending the group auditing result to any one alliance member and/or other alliance members.
Further, before performing consensus check on the revocation request and generating an in-chain notification of the revocation request, the method further comprises:
judging whether the request type of the revocation request is revocation to other people or not;
if yes, sending the revocation request to the requested coalition member so that the requested coalition member forms the defending information on the revocation request.
Further, whether the current individual audit result is legal or not is judged through the intelligent contract, if so, a group audit result is generated through the intelligent contract, and the method comprises the following steps:
judging whether the identity of the coalition member with the auditing authority is legal or not through an intelligent contract;
if yes, determining that the individual verification result sent by the coalition member with the verification authority is legal, and generating a group verification result.
Further, whether the auditing passing rate of the auditing result of the current group reaches the threshold value or not is judged through the intelligent contract, if yes, the judgment is finished, and the method comprises the following steps:
judging whether the auditing passing rate of the auditing result of the current group reaches a threshold value within a first time, wherein the first time is the response time of the alliance member with the auditing authority to the link-in notification;
if so, finishing the judgment, otherwise, sending reminding information to the coalition members with the auditing authority which do not send the individual auditing results;
judging whether the auditing throughput in the current group auditing result reaches a threshold value within second time, wherein the second time is the response time of the alliance member with the auditing authority to the reminding information;
if yes, judging to end; otherwise, the flow ends.
Further, whether the auditing passing rate of the current group auditing result reaches the threshold value is judged through the intelligent contract, if yes, before the judgment is finished, the method further comprises the following steps:
and determining the value of the threshold according to the permission level, wherein the value of the threshold determined according to the auditing permission is larger than the value of the threshold determined according to the using permission and the providing permission.
According to a third aspect of embodiments of the present application, there is provided an affiliate member revocation apparatus including:
the first sending module is used for sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus and verification on the revocation request and generates a chain entry notification of the revocation request;
and the first receiving module is used for receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes or not, and the individual auditing result is personal auditing information generated by the alliance members with auditing authorities respectively according to the entering-chain notification.
According to a fourth aspect of the embodiments of the present application, there is provided an affiliate member revocation apparatus including:
the second receiving module is used for receiving revocation requests sent by any one alliance member, wherein the revocation requests comprise requested alliance members, request types, permission levels of the requested alliance members and request reasons, the request types comprise revocation to the second receiving module or revocation to other people, and the permission levels comprise auditing permission, using permission and providing permission;
the consensus deposit module is used for carrying out consensus deposit on the revocation request and generating a chain entry notice of the revocation request;
the broadcasting module is used for broadcasting the chain entering notification so that each alliance member with the auditing authority generates an individual auditing result according to the revocation request and sends the individual auditing result to the block chain, wherein the individual auditing result is personal auditing information which is generated by the alliance members with the auditing authority according to the chain entering notification and has one of two meaning expressions of agreement and disagreement;
the second receiving module is further used for receiving the individual auditing result sent by each coalition member with auditing authority;
the intelligent contract module is used for judging whether the current individual auditing result is legal or not through an intelligent contract, if so, generating a group auditing result through the intelligent contract, wherein the group auditing result comprises an auditing passing rate which is legal and represents the ratio of the number of the approved individual auditing results to the total number of the coalition members with auditing authorities;
the consensus and evidence-saving module is also used for carrying out consensus and evidence-saving on the current individual audit result and the current group audit result;
the intelligent contract module is also used for judging whether the auditing passing rate of the current group auditing result reaches the threshold value or not through the intelligent contract, if so, finishing the judgment;
and the second sending module is used for sending the group auditing result to any one alliance member and/or other alliance members.
According to a fifth aspect of embodiments of the present application, there is provided an electronic apparatus, including:
a processor, a memory, and a program or instructions stored on the memory and executable on the processor, which when executed by the processor, implement a federation member revocation method as described in any embodiment of the first and second aspects.
According to a sixth aspect of embodiments of the present application, there is provided a readable storage medium storing thereon a program or instructions that, when executed by a processor of an information processing apparatus or a server, implements a federation member revocation method as described in any one of the first and second aspects.
The technical scheme of the application has the following beneficial technical effects:
the embodiment of the application guarantees the data rights and interests of the alliance members through the block chain, and completes the exercise of the data rights and interests under the authentication of the consensus mechanism, thereby realizing the decentralization of the exercise of the data rights and interests and ensuring that the exercise of the data rights and interests is not infringed, infringed and unauthorized. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, thereby not only avoiding the revocation right from being abused, but also avoiding the situation that the user randomly exits the block chain network and reducing the reliability of data rights management.
Drawings
FIG. 1 is a flow diagram illustrating a federation member revocation method in an exemplary embodiment of the present application;
FIG. 2 is a flow diagram illustrating a federation member revocation method in another exemplary embodiment of the present application;
FIG. 3 is a flow diagram illustrating a federation member revocation method in yet another exemplary embodiment of the present application;
FIG. 4 is a flow diagram illustrating a federation member revocation method in yet another exemplary embodiment of the present application;
FIG. 5 is a diagram of a data architecture in an exemplary embodiment of the present application;
FIG. 6 is a system interaction diagram in an exemplary embodiment of the present application;
FIG. 7 is a block diagram illustrating exemplary embodiments of federation member revocation apparatus according to the present application;
FIG. 8 is a schematic diagram of a federation member revocation apparatus in another exemplary embodiment of the present application;
FIG. 9 is a schematic diagram of a federation member revocation apparatus in a further exemplary embodiment of the present application;
FIG. 10 is a schematic diagram of an electronic device according to an exemplary embodiment of the present application;
fig. 11 is a schematic diagram of a hardware structure of an electronic device in an exemplary embodiment of the present application.
Detailed Description
The existing data right exercise mode is realized by technologies such as data exchange, interface service, data ferry and the like, and when a data right person needs to use or maintain data rights in the operation process of various services, the current mainstream technical scheme is mainly realized by a centralized mode: building a big data center system platform; the data rights and interests owner gives own data to the big data platform, the big data platform uniformly publishes the data to the outside by the big data center, and the data is opened to the outside to invoke and use the service; when an organization needs to use the data collected by the big data center, the organization needs to provide a data directory to be used first, and then the big data center provides calling service; the large data center manages the authorization and authentication of the data right exercise process. The data is applied and used in a point-to-point mode, and due to the fact that no mechanism is used for guaranteeing the right and interest of the data to exercise, resource sharing is prone to be disordered, management is difficult, safety is low, risks are not controllable, and the like, infringement and unauthorized behaviors can be caused.
With the more and more data mastered by each organization department, the more and more data range is required, and the exercise and the good data rights and interests protection become very urgent requirements of users on the basis of controllable risk and clear authority and liabilities. At present, a mainstream data rights and interests protection scheme is mainly realized in a centralized mode, but a centralized system or platform is operated and managed through a single responsible body, so that the management difficulty is high, the cost is high, the data leakage risk is high, the data legality cannot be guaranteed, the data source and the use cannot be traced, and the data content cannot be used as a requirement.
For the above reasons, a decentralized data rights management system has appeared, for example, the problem of centralized data rights management platform or system can be greatly improved by adopting the block chain technology to manage the data rights.
The applicant finds that, in the existing decentralized data right management scheme, the user quits the block chain by means of a preset rule, although the management difficulty is reduced, the mode is single and has no initiative, and the disuse right may be abused. To this end, the applicant provides a federation member revocation method, apparatus, electronic device, and storage medium.
As shown in fig. 1, in a first aspect of the embodiments of the present application, there is provided a federation member revocation method, including:
s110, sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus and verification on the revocation request and generates a chain entering notification of the revocation request;
and S120, receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes, and the individual auditing result is personal auditing information generated by the coalition members with auditing authority respectively according to the entering chain notification.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
In some embodiments, prior to sending the revocation request of the revocation federation member to the blockchain, the method further comprises:
the revocation request is generated according to the requested coalition member, the request type, the permission level of the requested coalition member and the request reason, the request type comprises revocation to the requested coalition member or revocation to other people, and the permission level comprises auditing permission, using permission and providing permission.
Wherein, when revoking of others, a revoked user may be required to have a non-rule-compliant behavior, exemplary non-rule-compliant behaviors include:
1. organizations frequently initiate "organization revocation" and eventually fail to audit.
2. After the organization is successfully enqueued, it is subsequently found to be an imposter.
For revocation to others, after receiving the revocation request, the blockchain may first send the revocation request to the revoked user, so that the revoked user adds, to the revocation request, forensic information that may be referred to by a coalition member having an audit authority in an audit process.
As shown in fig. 2, according to a second aspect of the embodiments of the present application, there is provided a federation member revocation method including:
s210, receiving a revocation request sent by any one coalition member, wherein the revocation request comprises a requested coalition member, a request type, an authority level of the requested coalition member and a request reason, the request type comprises revocation to the request type or revocation to other people, and the authority level comprises an auditing authority, a using authority and a providing authority;
s220, performing consensus deposit certificate on the revocation request, and generating a chain entry notification of the revocation request;
s230, broadcasting the chain entering notification to enable each alliance member with the auditing authority to generate an individual auditing result according to the revocation request and send the individual auditing result to the block chain, wherein the individual auditing result is personal auditing information which is generated by the alliance members with the auditing authority according to the chain entering notification and has one of two meaning expressions of agreement and disagreement;
s240, receiving individual audit results sent by each coalition member with the audit authority;
s250, judging whether the current individual auditing result is legal or not through an intelligent contract, if so, generating a group auditing result through the intelligent contract, wherein the group auditing result comprises an auditing passing rate which is legal and represents the ratio of the number of the approved individual auditing results to the total number of the coalition members with auditing authority;
s260, performing consensus and evidence saving on the current individual audit result and the current group audit result;
and S270, judging whether the auditing passing rate of the current group auditing result reaches a threshold value or not through the intelligent contract, if so, finishing the judgment, and sending the group auditing result to any one alliance member and/or other alliance members.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
In some embodiments, prior to performing the consensus deposit for the revocation request and generating the in-chain notification of the revocation request, the method further comprises:
judging whether the request type of the revocation request is revocation to other people or not;
if yes, sending the revocation request to the requested coalition member so that the requested coalition member forms the defending information on the revocation request.
In some embodiments, judging whether the current individual audit result is legal or not by the intelligent contract, if so, generating a group audit result by the intelligent contract, including:
judging whether the identity of the coalition member with the auditing authority is legal or not through an intelligent contract;
if yes, determining that the individual verification result sent by the coalition member with the verification authority is legal, and generating a group verification result.
Wherein, to verify whether the identity of the federation member with the verification authority is legal is determined by the following judgment logic: after the coalition members successfully enter the chain, a block chain identity certificate is generated, the coalition members with the auditing authority call own certificates to audit the users to be revoked, and the validity of the auditing result is judged by judging whether the current block chain certificate is an effective user who enters the chain and the current block chain certificate is not blacked out.
In some embodiments, judging whether the auditing passing rate of the current group auditing result reaches the threshold value through the intelligent contract, if so, ending the judgment, including:
judging whether the auditing passing rate of the auditing result of the current group reaches a threshold value within a first time, wherein the first time is the response time of the alliance member with the auditing authority to the link-in notification; wherein, the threshold value can be modified, for example, one party initiates a modification request, and after 80% of the coalition members with audit authority agree, the threshold value becomes the value applied by the modification request
If so, finishing the judgment, otherwise, sending reminding information to the coalition members with the auditing authority which do not send the individual auditing results;
judging whether the auditing throughput in the current group auditing result reaches a threshold value within second time, wherein the second time is the response time of the alliance member with the auditing authority to the reminding information;
if yes, judging to end; otherwise, the flow ends.
In some embodiments, after determining whether the review passing rate of the review result of the current group reaches the threshold value through the intelligent contract, if so, before ending the determination, the method further includes:
and determining the value of the threshold according to the permission level, wherein the value of the threshold determined according to the auditing permission is larger than the value of the threshold determined according to the using permission and the providing permission. For example, the threshold value determined according to the audit authority may be 80% to 100%, and the threshold value determined according to the usage authority and the provision authority may be 50% to 60%. For example, before determining whether the authentication number of the coalition members reaches the threshold, by voting and auditing the coalition members with the auditing authority, the auditing threshold corresponding to the auditing authority may be determined to be 80%, and the auditing thresholds corresponding to other authorities may be determined to be 60%.
For example, within a period of time after the blockchain broadcasts the incoming chain notification, if the number of received legal individual audit results does not meet the criterion that the group audit result is passed, the blockchain may send a message to remind the user to send the individual audit result, however, within a period of time after the message is sent to remind, if the number of the individual audit results does not meet the criterion that the group audit result is passed yet, the process may be ended.
For example, in the process of determining the current group audit result, if the final result can be determined by the audit throughput in the current group audit result, the validity of the remaining individual audit results may be stopped.
In some embodiments, prior to performing the consensus deposit for the revocation request and generating the in-chain notification of the revocation request, the method further comprises:
and verifying the identity information of the federation members sending the revocation request, if the verification is valid, continuing to operate, otherwise, refusing the revocation request.
As shown in fig. 3, according to a third aspect of the embodiments of the present application, there is provided a federation member revocation method including:
s310, receiving a link entering notification broadcasted by a block chain, wherein the link entering notification is generated by the block chain according to a revocation request which is sent to the block chain by a member of a federation;
s320, auditing operation is carried out according to the chain entering notification, and an individual auditing result is generated, wherein the individual auditing result is individual auditing information which is generated by the coalition members with auditing permission according to the chain entering notification and has one meaning of agreement or disagreement;
and S330, sending an individual audit result to the blockchain, so that the blockchain generates a group audit result according to the intelligent contract and the individual audit result, and sending the group audit result to any one of the coalition members and/or other coalition members.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
As shown in fig. 4, according to a fourth aspect of the embodiments of the present application, there is provided an affiliate member revocation method applied to a blockchain system, the blockchain system including: the block chain and a plurality of coalition members, wherein the plurality of coalition member parts have auditing authority; the method comprises the following steps:
s410, any alliance member sends a revocation request for revoking the alliance member to the blockchain;
s420, the block chain is used for carrying out consensus deposit evidence on the revocation request; the block chain is also used for generating a chain entering notification according to the abolishing request and broadcasting the chain entering notification;
s430, each alliance member with the auditing authority is used for receiving the entering-chain notification and respectively auditing the entering-chain notification to generate an individual auditing result, wherein the individual auditing result is individual auditing information generated by the alliance members with the auditing authority according to the entering-chain notification, and the individual auditing result is one of two meaning expressions of agreement and disagreement; each alliance member with the auditing authority is also used for sending the individual auditing result to the block chain;
and S440, the block chain is further used for generating group auditing results according to the intelligent contracts and the individual auditing results and sending the group auditing results to any one of the coalition members and/or other coalition members.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
In other embodiments, the method described in this application may be used for revocation operation of a server, where the server may be an authorized terminal owned by a federation member, and a data consumer may request to exercise data rights and interests through the authorized terminal, and when the authorized terminal cannot be used or is no longer used, the federation member may implement revocation of the authorized terminal through the method of the foregoing embodiment.
In the system of this embodiment, the coalition members may take charge of receiving, processing and sending data through the blockchain data interest consensus management terminal, as shown in fig. 5, the blockchain bottom chain includes: the organization abolishes the intelligent contract and supervises the intelligent contract. The block chain data rights consensus management terminal comprises: the organization abolishes management, audits the history of voting and traces back, and supervises the right supervising process. The intelligent contract and block chain consensus mechanism is used for completing the chaining and revocation of the coalition members, and meanwhile, the data rights and interests range of the coalition members is guaranteed. The system of the embodiment can implement the interaction process shown in fig. 6.
As shown in fig. 7, according to a fifth aspect of an embodiment of the present application, there is provided an affiliate member revocation apparatus including:
a first sending module 710, configured to send a revocation request of a revocation union member to a blockchain, so that the blockchain performs consensus deposit for the revocation request, and generates an incoming chain notification of the revocation request;
a first receiving module 720, configured to receive a group audit result, where the group audit result is information generated by the block chain according to an intelligent contract and multiple individual audit results, so as to determine whether the revocation request passes through, and the individual audit result is personal audit information generated by the coalition members with audit authority according to the incoming chain notification.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
As shown in fig. 8, according to a sixth aspect of an embodiment of the present application, there is provided an affiliate member revocation apparatus including:
a second receiving module 810, configured to receive a revocation request sent by any one of the federation members, where the revocation request includes a requested federation member, a request type, an authority level of the requested federation member, and a request reason, where the request type includes revocation to itself or revocation to another person, and the authority level includes an audit authority, a usage authority, and a provision authority;
a consensus deposit module 820, configured to perform consensus deposit on the revocation request and generate an incoming chain notification of the revocation request;
a broadcasting module 830, configured to broadcast the inbound chain notification, so that each federation member having an audit authority generates an individual audit result according to the revocation request and sends the individual audit result to the block chain, where the individual audit result is personal audit information generated by the federation members having the audit authority respectively according to the inbound chain notification, and the individual audit result has one of two meaning expressions, namely, agreement and disagreement;
the second receiving module is further used for receiving the individual auditing result sent by each coalition member with auditing authority;
the intelligent contract module 840 is used for judging whether the current individual audit result is legal or not through an intelligent contract, if so, generating a group audit result through the intelligent contract, wherein the group audit result comprises an audit passing rate, and the audit passing rate is legal and represents the ratio of the number of the approved individual audit results to the total number of the coalition members with the audit authority;
the consensus and evidence-saving module 820 is further configured to perform consensus and evidence saving on the current individual audit result and the current group audit result;
and a second sending module 850, configured to determine, through the intelligent contract, whether an audit passing rate of the current group audit result reaches a threshold, if yes, end the determination, and send the group audit result to any one of the coalition members and/or other coalition members.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
As shown in fig. 9, according to a seventh aspect of the embodiment of the present application, there is provided an affiliate member revocation apparatus including:
a third receiving module 910, configured to receive an incoming chain notification broadcasted by a block chain, where the incoming chain notification is generated by the block chain according to a revocation request, and the revocation request is sent to the block chain by a coalition member;
the auditing module 920 is configured to perform auditing operation according to the incoming chain notification, and generate an individual auditing result, where the individual auditing result is personal auditing information generated by the coalition members with auditing permissions according to the incoming chain notification, and has one of two meaning representations of agreement and disagreement;
a third sending module 930, configured to send an individual audit result to the blockchain, so that the blockchain generates a group audit result according to the intelligent contract and the individual audit result, and sends the group audit result to the any coalition member and/or other coalition members.
In the embodiment, the block chain guarantees the data rights and interests of the alliance members, and the data rights and interests are exercised under the authentication of the consensus mechanism, so that the decentralization of the data rights and interests exercise is realized, and the data rights and interests are exercised without losing rights, infringing rights and overriding rights. Meanwhile, the method changes the mode of revoking the coalition members from rule realization to user audit, so that the user has the qualification of intervening the revocation request and requesting to revoke other people, the revocation right can be prevented from being abused, the situation that the user randomly exits the block chain network to cause the reduction of the reliability of data rights management can be avoided, and the reliability of data management can be improved.
The data right exercising device in the embodiment of the present application may be a device, or may be a component, an integrated circuit, or a chip in a terminal. The device can be mobile electronic equipment or non-mobile electronic equipment. By way of example, the mobile electronic device may be a mobile phone, a tablet computer, a notebook computer, a palm top computer, a vehicle-mounted electronic device, a wearable device, an ultra-mobile personal computer (UMPC), a netbook or a Personal Digital Assistant (PDA), and the like, and the non-mobile electronic device may be a server, a Network Attached Storage (NAS), a Personal Computer (PC), a Television (TV), a teller machine or a self-service machine, and the like, and the embodiments of the present application are not particularly limited.
The federation member revocation device in the embodiment of the present application may be a device having an operating system. The operating system may be an Android (Android) operating system, an ios operating system, or other possible operating systems, and embodiments of the present application are not limited specifically.
The federation member revocation apparatus provided in the embodiment of the present application can implement each process implemented by the method embodiment of fig. 1 to 5, and is not described here again to avoid repetition.
Optionally, as shown in fig. 10, an embodiment of the present application further provides an electronic device 1000, including:
a processor 1001, a memory 1002, and a program or instructions stored on the memory 1002 and executable on the processor 1001, which when executed by the processor 1001, implements the federation member revocation method described above.
It should be noted that the electronic device in the embodiment of the present application includes the mobile electronic device and the non-mobile electronic device described above.
Fig. 11 is a schematic diagram of a hardware structure of an electronic device implementing an embodiment of the present application.
The electronic device 1100 includes, but is not limited to: a radio frequency unit 1101, a network module 1102, an audio output unit 1103, an input unit 1104, a sensor 1105, a display unit 1106, a user input unit 1107, an interface unit 1108, a memory 1109, a processor 1110, and the like.
Those skilled in the art will appreciate that the electronic device 1100 may further include a power source (e.g., a battery) for supplying power to the various components, and the power source may be logically connected to the processor 1110 via a power management system, so as to manage charging, discharging, and power consumption management functions via the power management system. The electronic device structure shown in fig. 11 does not constitute a limitation of the electronic device, and the electronic device may include more or less components than those shown, or combine some components, or arrange different components, and thus, the description is not repeated here.
It should be understood that in the embodiment of the present application, the input Unit 1104 may include a Graphics Processing Unit (GPU) 11041 and a microphone 11042, and the Graphics processor 11041 processes image data of still pictures or video obtained by an image capturing device (such as a camera) in a video capturing mode or an image capturing mode. The display unit 1106 may include a display panel 11061, and the display panel 11061 may be configured in the form of a liquid crystal display, an organic light emitting diode, or the like. The user input unit 1107 includes a touch panel 11071 and other input devices 11072. A touch panel 11071, also called a touch screen. The touch panel 11071 may include two portions of a touch detection device and a touch controller. Other input devices 11072 may include, but are not limited to, a physical keyboard, function keys (e.g., volume control keys, switch keys, etc.), a trackball, a mouse, and a joystick, which are not described in detail herein. The memory 1109 may be used for storing software programs and various data including, but not limited to, application programs and an operating system. Processor 1110 may integrate an application processor that handles primarily operating systems, user interfaces, applications, etc. and a modem processor that handles primarily wireless communications. It will be appreciated that the modem processor described above may not be integrated into processor 1110.
The embodiments of the present application further provide a readable storage medium, where a program or an instruction is stored on the readable storage medium, and when the program or the instruction is executed by a processor of an information processing apparatus or a server, the process of the embodiment of the federation member revocation method described above is implemented, and the same technical effect can be achieved, and in order to avoid repetition, details are not repeated here.
The processor is the processor in the electronic device described in the above embodiment. The readable storage medium includes a computer readable storage medium, such as a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and so on.
It should be understood that the chips mentioned in the embodiments of the present application may also be referred to as system-on-chip, system-on-chip or system-on-chip, etc.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element. Further, it should be noted that the scope of the methods and apparatus of the embodiments of the present application is not limited to performing the functions in the order illustrated or discussed, but may include performing the functions in a substantially simultaneous manner or in a reverse order based on the functions involved, e.g., the methods described may be performed in an order different than that described, and various steps may be added, omitted, or combined. In addition, features described with reference to certain examples may be combined in other examples.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solutions of the present application may be embodied in the form of a computer software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal (such as a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present application.
While the present embodiments have been described with reference to the accompanying drawings, it is to be understood that the invention is not limited to the precise embodiments described above, which are meant to be illustrative and not restrictive, and that various changes may be made therein by those skilled in the art without departing from the spirit and scope of the invention as defined by the appended claims.

Claims (11)

1. A federation member revocation method, comprising:
sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus verification on the revocation request and generates a chain entry notification of the revocation request;
and receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes, and the individual auditing result is personal auditing information generated by the coalition members with auditing authority respectively according to the chain entering notification.
2. The method of claim 1, prior to sending a revocation request to a blockchain to revoke a federation member, the method further comprising:
the revocation request is generated according to the requested coalition member, the request type, the permission level of the requested coalition member and the request reason, the request type comprises revocation to the requested coalition member or revocation to other people, and the permission level comprises auditing permission, using permission and providing permission.
3. A federation member revocation method, comprising:
receiving a revocation request sent by any one alliance member, wherein the revocation request comprises a requested alliance member, a request type, a permission level of the requested alliance member and a request reason, the request type comprises revocation on the request type or revocation on other people, and the permission level comprises an auditing permission, a using permission and a providing permission;
performing consensus deposit on the revocation request, and generating an incoming chain notification of the revocation request;
broadcasting the incoming chain notification to enable each alliance member with the auditing authority to generate an individual auditing result according to the revocation request and send the individual auditing result to the block chain, wherein the individual auditing result is the personal auditing information generated by the alliance members with the auditing authority according to the incoming chain notification and has one of two meaning expressions of agreement and disagreement;
receiving an individual audit result sent by each coalition member with the audit authority;
judging whether the current individual audit result is legal or not through an intelligent contract, if so, generating a group audit result through the intelligent contract, wherein the group audit result comprises an audit passing rate which is legal and represents the ratio of the number of the approved individual audit results to the total number of the alliance members with the audit authority;
performing consensus and evidence-saving on the current individual audit result and the current group audit result;
and judging whether the auditing passing rate of the current group auditing result reaches a threshold value or not through an intelligent contract, if so, finishing the judgment, and sending the group auditing result to any one alliance member and/or other alliance members.
4. The method of claim 3, wherein prior to performing consensus verification on the revocation request and generating an in-chain notification of the revocation request, the method further comprises:
judging whether the request type of the revocation request is revocation to other people or not;
if yes, sending the revocation request to the requested coalition member so that the requested coalition member forms the defending information on the revocation request.
5. The method of claim 4, wherein the determining whether the current individual audit result is legal by the intelligent contract, and if so, generating a group audit result by the intelligent contract, comprises:
judging whether the identity of the coalition member with the auditing authority is legal or not through an intelligent contract;
if yes, determining that the individual verification result sent by the coalition member with the verification authority is legal, and generating a group verification result.
6. The method of claim 5, wherein the judging whether the auditing passing rate of the current group auditing results reaches the threshold value through the intelligent contract, if yes, the judging is finished, and the method comprises the following steps:
judging whether the auditing passing rate of the auditing result of the current group reaches a threshold value within a first time, wherein the first time is the response time of the alliance member with the auditing authority to the link-in notification;
if so, finishing the judgment, otherwise, sending reminding information to the coalition members with the auditing authority which do not send the individual auditing results;
judging whether the auditing throughput in the current group auditing result reaches a threshold value within second time, wherein the second time is the response time of the alliance member with the auditing authority to the reminding information;
if yes, judging to end; otherwise, the flow ends.
7. The method of claim 5, wherein before determining whether the audit passing rate of the current group audit result reaches the threshold value through the intelligent contract, and if so, ending the determination, the method further comprises:
and determining the value of the threshold according to the permission level, wherein the value of the threshold determined according to the auditing permission is larger than the value of the threshold determined according to the using permission and the providing permission.
8. An affiliate member revocation apparatus comprising:
the first sending module is used for sending a revocation request of a revocation union member to a blockchain so that the blockchain performs consensus and verification on the revocation request and generates a chain entry notification of the revocation request;
and the first receiving module is used for receiving a group auditing result, wherein the group auditing result is information generated by the block chain according to an intelligent contract and a plurality of individual auditing results so as to determine whether the revocation request passes or not, and the individual auditing result is personal auditing information generated by the alliance members with auditing authorities respectively according to the entering-chain notification.
9. An affiliate member revocation apparatus comprising:
the second receiving module is used for receiving revocation requests sent by any one alliance member, wherein the revocation requests comprise requested alliance members, request types, permission levels of the requested alliance members and request reasons, the request types comprise revocation to the second receiving module or revocation to other people, and the permission levels comprise auditing permission, using permission and providing permission;
the consensus deposit module is used for carrying out consensus deposit on the revocation request and generating a chain entry notice of the revocation request;
the broadcasting module is used for broadcasting the chain entering notification so that each alliance member with the auditing authority generates an individual auditing result according to the revocation request and sends the individual auditing result to the block chain, wherein the individual auditing result is personal auditing information which is generated by the alliance members with the auditing authority according to the chain entering notification and has one of two meaning expressions of agreement and disagreement;
the second receiving module is further used for receiving the individual auditing result sent by each coalition member with auditing authority;
the intelligent contract module is used for judging whether the current individual auditing result is legal or not through an intelligent contract, if so, generating a group auditing result through the intelligent contract, wherein the group auditing result comprises an auditing passing rate which is legal and represents the ratio of the number of the approved individual auditing results to the total number of the coalition members with auditing authorities;
the consensus and evidence-saving module is also used for carrying out consensus and evidence-saving on the current individual audit result and the current group audit result;
the intelligent contract module is also used for judging whether the auditing passing rate of the current group auditing result reaches the threshold value or not through the intelligent contract, if so, finishing the judgment;
and the second sending module is used for sending the group auditing result to any one alliance member and/or other alliance members.
10. An electronic device, comprising: a processor, a memory, and a program or instructions stored on the memory and executable on the processor, the program or instructions when executed by the processor implementing a federation member revocation method as recited in any one of claims 1-7.
11. A readable storage medium on which is stored a program or instructions which, when executed by a processor, implements a federation member revocation method as claimed in any one of claims 1 to 7.
CN202111086703.7A 2021-09-16 2021-09-16 Federation member revocation method and device, electronic equipment and storage medium Pending CN113535692A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111086703.7A CN113535692A (en) 2021-09-16 2021-09-16 Federation member revocation method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111086703.7A CN113535692A (en) 2021-09-16 2021-09-16 Federation member revocation method and device, electronic equipment and storage medium

Publications (1)

Publication Number Publication Date
CN113535692A true CN113535692A (en) 2021-10-22

Family

ID=78123250

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111086703.7A Pending CN113535692A (en) 2021-09-16 2021-09-16 Federation member revocation method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN113535692A (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109474584A (en) * 2018-10-29 2019-03-15 中化能源科技有限公司 A kind of rule-based block chain network permits Adding Way automatically
CN110889762A (en) * 2019-11-19 2020-03-17 腾讯科技(深圳)有限公司 Data processing method, device and medium
CN112187471A (en) * 2020-09-23 2021-01-05 上海万向区块链股份公司 Data copying method, system and medium based on block chain and intelligent contract
CN112488778A (en) * 2020-10-31 2021-03-12 远光软件股份有限公司 Bill processing method and related device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109474584A (en) * 2018-10-29 2019-03-15 中化能源科技有限公司 A kind of rule-based block chain network permits Adding Way automatically
CN110889762A (en) * 2019-11-19 2020-03-17 腾讯科技(深圳)有限公司 Data processing method, device and medium
CN112187471A (en) * 2020-09-23 2021-01-05 上海万向区块链股份公司 Data copying method, system and medium based on block chain and intelligent contract
CN112488778A (en) * 2020-10-31 2021-03-12 远光软件股份有限公司 Bill processing method and related device

Similar Documents

Publication Publication Date Title
US11799663B2 (en) Authentication and binding of multiple devices
CN110032865B (en) Authority management method, device and storage medium
CN103379098B (en) Content sharing method, device and network system thereof
CN111064757B (en) Application access method and device, electronic equipment and storage medium
US8869289B2 (en) Software application verification
CN102957666B (en) License control method and license control system
EP2875460A1 (en) Anti-cloning system and method
CN102223420A (en) Digital content distribution method for multimedia social network
US8793773B2 (en) System and method for providing reputation reciprocity with anonymous identities
CN113704210A (en) Data sharing method and electronic equipment
CN113486122A (en) Data sharing method and electronic equipment
CN102142067A (en) Digital family network-based digital rights management system
US20090025061A1 (en) Conditional peer-to-peer trust in the absence of certificates pertaining to mutually trusted entities
CN113542438B (en) Method and device for entering link of linked user, electronic equipment and storage medium
CN113792345A (en) Data access control method and device
CN110601852B (en) Authentication and authorization method and system for electronic equipment of voice conversation platform
Liu et al. Digital rights management and access control in multimedia social networks
CN113535692A (en) Federation member revocation method and device, electronic equipment and storage medium
CN113569214A (en) Essential data authorization method and system
US8955071B2 (en) Controlled password modification method
Kovacevic et al. Authentication and Identity Management Based on Zero Trust Security Model in Micro-cloud Environment
CN104883371A (en) Wireless network admission method
CN113536385A (en) Data right exercise method and device, electronic equipment and storage medium
Jun et al. Extended fingerprint-based user authentication scheme using smart cards in education IPTV
CN114268506A (en) Method for accessing server side equipment, access side equipment and server side equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination