CN114257605A - Data sharing system, method, device, medium and equipment - Google Patents

Data sharing system, method, device, medium and equipment Download PDF

Info

Publication number
CN114257605A
CN114257605A CN202011017495.0A CN202011017495A CN114257605A CN 114257605 A CN114257605 A CN 114257605A CN 202011017495 A CN202011017495 A CN 202011017495A CN 114257605 A CN114257605 A CN 114257605A
Authority
CN
China
Prior art keywords
data
subsystem
data file
block chain
file
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202011017495.0A
Other languages
Chinese (zh)
Inventor
孟祥乾
黄玉琦
王惠平
牟森
佛宇航
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shaanxi Aerospace Information Co ltd
Aisino Corp
Original Assignee
Shaanxi Aerospace Information Co ltd
Aisino Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shaanxi Aerospace Information Co ltd, Aisino Corp filed Critical Shaanxi Aerospace Information Co ltd
Priority to CN202011017495.0A priority Critical patent/CN114257605A/en
Publication of CN114257605A publication Critical patent/CN114257605A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The present invention relates to a data sharing system, method, apparatus, medium, and device. According to the scheme provided by the embodiment of the invention, the data file can be stored in the data storage subsystem, the storage path information of the data file in the data storage subsystem is stored in the block chain subsystem, and the data sharing based on the block chain network is realized by combining with an additional data storage system. The data sharing is realized by storing the data file in the data storage subsystem and only storing the storage path information of the data file in the data storage subsystem in the block chain subsystem, so that the operation speed and the sharing efficiency of the block chain network cannot be influenced even if the data volume of the data file is large, the operation speed of the block chain network can be effectively ensured to be high, and the data sharing efficiency can be ensured to be high.

Description

Data sharing system, method, device, medium and equipment
Technical Field
The present invention relates to the field of block chain technologies, and in particular, to a data sharing system, method, apparatus, medium, and device.
Background
This section is intended to provide a background or context to the embodiments of the invention that are recited in the claims. The description herein is not admitted to be prior art by inclusion in this section.
The ecological explosion of the internet generates ever-huge information data, and the information data is listed as production elements, and the value of the information data can be effectively explored by effectively utilizing the information data. The difficulty in utilizing information data is achieving a balance between privacy protection and data sharing.
The blockchain network is a trusted, secure, non-tamperable decentralized technical network. The blockchain network enables the sharing of information data to be solved.
The common information data sharing method for the block chain network is that a data file is directly sent to the block chain network after being signed, the information data is solidified until the block chain network is not tampered, the circulation of the information data is improved, and the information data sharing is realized through the block chain network. However, the current method for sharing information and data of the block chain network has at least the following problems:
(1) the information data with large data volume is not supported to be shared.
As is known, a distributed ledger maintained by a blockchain network records every transaction occurring in the network, including a timestamp, transaction information, and blockchain information. The size of the transaction information directly affects the size of the distributed ledger maintained by the blockchain network. The larger the distributed account book maintained by the blockchain network is, the higher the requirement on the storage and calculation capacity of the blockchain network is, the slower the blockchain network runs, and the lower the sharing efficiency is.
The information data with large data volume is sent to the block chain network, so that the transaction information is large due to the fact that the information data sharing is achieved, and therefore the information data with small data volume is sent to the block chain network to achieve the information data sharing.
(2) The privacy of the information data cannot be effectively guaranteed.
Currently, blockchain networks store informational data as plaintext storage to satisfy transparent, public, queryable features. After the information data is sent to the block chain network, each node in the block chain network can inquire the information data, so that the privacy and the safety of the information data cannot be effectively guaranteed.
Disclosure of Invention
Embodiments of the present invention provide a data sharing system, method, apparatus, medium, and device, which are used to solve the problems of slow operation and low sharing efficiency when a blockchain network implements information data sharing with a large data size.
In a first aspect, the present invention provides a data sharing system, which includes a blockchain network access subsystem, a data storage subsystem, and a blockchain subsystem, wherein:
the block chain network access subsystem is used for receiving a data acquisition request sent by data demand side equipment and sending the data acquisition request to the block chain subsystem; the data acquisition request is sent by the data demand side equipment according to the brief description of the data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
the data storage subsystem is used for storing data files;
the block chain subsystem is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
Optionally, the block chain subsystem is specifically configured to determine a sharing mode of the data file required to be acquired by the data acquisition request and storage path information in the data storage subsystem, and provide the data file stored in the data storage subsystem to the data requiring side device according to the determined sharing mode and the storage path information in the data storage subsystem.
Optionally, the data file saved by the data storage subsystem is obtained by:
the block chain network access subsystem receives a data sharing request sent by data owner equipment and sends the data sharing request to the block chain subsystem, wherein the data sharing request comprises a data file to be shared by the data owner equipment, a brief description of the data file and a sharing mode of the data file;
and the block chain subsystem transfers the data file to be shared to the data storage subsystem, records the storage path information and sharing mode of the data file in the data storage subsystem, and issues a brief description of the data file through the block chain network access subsystem.
Optionally, when the sharing mode of the data file to be shared included in the data sharing request is an approval mode, the data file to be shared is the data file to be shared after being encrypted by the encrypted secret key;
the block chain subsystem transfers the data file to be shared to the data storage subsystem, and comprises: and transferring the data file to be shared after being encrypted by the encryption key to the data storage subsystem.
Optionally, the data obtaining request carries a public key corresponding to the data demander device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and includes:
when the determined sharing mode is the public mode, sending the storage path information of the data file required to be acquired by the determined data acquisition request in the data storage subsystem to the block chain network access subsystem;
and the block chain network access subsystem is further configured to download a data file from the data storage subsystem according to the received storage path information, so that the data requiring party device can obtain the data file.
Optionally, the data obtaining request carries a public key corresponding to the data demander device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and includes:
when the determined sharing mode is the approval mode, sending the received data acquisition request to the data owner equipment corresponding to the data file required to be acquired;
if an acquisition permission notification message sent by the data owner device through the block chain network access subsystem is received, the acquisition permission notification message carries encryption information, the encryption information is obtained by encrypting an encryption key corresponding to the data file required to be acquired by the data owner device through the public key, and the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem are sent to the data demand party device;
the block chain network access subsystem is further configured to receive the storage path information sent by the data demand side device, download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file to the data demand side device, so that the data demand side device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
In a second aspect, the present invention further provides a data sharing method, where the method includes:
receiving a data acquisition request sent by data demand side equipment, wherein the data acquisition request is sent by the data demand side equipment according to a brief description of a data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
and sending the data acquisition request to a block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
In a third aspect, the present invention further provides a data sharing method, where the method includes:
receiving a data acquisition request sent by a block chain network access subsystem;
determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem to the data demand side equipment according to the determined storage path information in the data storage subsystem;
the data acquisition request sent by the blockchain network access subsystem is sent by the data demand side device according to the brief description of the data file issued by the blockchain network access subsystem, and the determined data file required to be acquired.
In a fourth aspect, the present invention further provides a data sharing apparatus, including:
the receiving module is used for receiving a data acquisition request sent by data demander equipment, wherein the data acquisition request is sent by the data demander equipment according to a brief description of a data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
the sending module is configured to send the data acquisition request received by the receiving module to a block chain subsystem, so that the block chain subsystem determines storage path information of a data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provides the data file stored in the data storage subsystem to the data demanding side device according to the determined storage path information in the data storage subsystem.
In a fifth aspect, the present invention further provides a data sharing apparatus, including:
the receiving module is used for receiving a data acquisition request sent by the block chain network access subsystem;
the sharing module is used for determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem;
the data acquisition request sent by the blockchain network access subsystem is sent by the data demand side device according to the brief description of the data file issued by the blockchain network access subsystem, and the determined data file required to be acquired.
In a sixth aspect, the present invention further provides a data sharing system, where the system includes a blockchain network access subsystem, a data storage subsystem, and a blockchain subsystem, where:
the block chain network access subsystem is used for receiving a data acquisition request sent by data demand side equipment and sending the data acquisition request to the block chain subsystem; the data acquisition request is used for acquiring a data file provided by the data owner equipment according to the requirement release request sent by the data demander equipment; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
the data storage subsystem is used for storing data files;
the block chain subsystem is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
Optionally, the data file saved by the data storage subsystem is obtained by:
the block chain network access subsystem receives a demand release request sent by the data demander equipment and sends the demand release request to the block chain subsystem; receiving a data response request sent by the data owner equipment, and sending the data response request to the block chain subsystem; the data response request comprises a data file provided by a brief description of the data file corresponding to the demand release request;
the blockchain subsystem issues a brief description of the data file included in the demand issue request; and when the data response request is received, the data file included in the data response request is transferred to the data storage subsystem, and the storage path information of the data file in the data storage subsystem is recorded.
Optionally, the requirement issuing request carries a public key corresponding to the data requiring side device;
the block chain subsystem is further configured to send the public key to the data owner device through the block chain network access subsystem according to a received data response pre-request sent by the data owner device through the block chain network access subsystem before receiving the data response request;
the data response request comprises a data file which is provided by a brief description of the data file corresponding to the demand issue request and encrypted by an encrypted secret key, and encrypted information, wherein the encrypted information is obtained by encrypting the encrypted secret key corresponding to the data file by using the public key;
when receiving the data response request, the block chain subsystem transfers the data file included in the data response request to the data storage subsystem, and records storage path information of the data file in the data storage subsystem, including:
and when the data response request is received, transferring the data file which is included in the data response request and is encrypted by the encrypted secret key to the data storage subsystem, and recording the storage path information of the data file in the data storage subsystem and the encryption information.
Optionally, the block chain subsystem provides the data file stored in the data storage subsystem to the data demander device according to the determined storage path information in the data storage subsystem, and includes:
sending the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem to the block chain network access subsystem;
the block chain network access subsystem is further configured to download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file and the received encryption information to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
In a seventh aspect, the present invention provides a data sharing method, where the method includes:
receiving a data acquisition request sent by data demand side equipment, wherein the data acquisition request is used for acquiring a data file provided by data owner equipment according to a demand release request sent by the data demand side equipment; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and sending the data acquisition request to the block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
In an eighth aspect, the present invention further provides a data sharing method, where the method includes:
receiving a data acquisition request sent by a block chain network access subsystem, wherein the data acquisition request is used for acquiring a data file provided by a data owner device according to a demand release request sent by a data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem to the data demand side equipment according to the determined storage path information in the data storage subsystem.
In a ninth aspect, the present invention further provides a data sharing apparatus, including:
the data acquisition module is used for acquiring a data file provided by a data owner device according to a requirement release request sent by the data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and the sending module is used for sending the data acquisition request to the block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and provides the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
In a tenth aspect, the present invention further provides a data sharing apparatus, including:
the system comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a data acquisition request sent by a block chain network access subsystem, and the data acquisition request is used for acquiring a data file provided by a data owner device according to a request issuing request sent by a data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and the sharing module is used for determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
In an eleventh aspect, the present invention also provides a non-volatile computer storage medium storing an executable program which is executed by a processor to implement the method as described above.
In a twelfth aspect, the present invention further provides a data sharing device, including a processor, a communication interface, a memory, and a communication bus, where the processor, the communication interface, and the memory complete communication with each other through the communication bus;
the memory is used for storing a computer program;
the processor, when executing the program stored in the memory, is configured to implement the method steps as described above.
According to the scheme provided by the embodiment of the invention, the data file can be stored in the data storage subsystem, the storage path information of the data file in the data storage subsystem is stored in the block chain subsystem, and the data sharing based on the block chain network is realized by combining with an additional data storage system. The data demand side device may request to acquire the sharable data file according to a brief description of the sharable data file issued by the blockchain network access subsystem. The block chain subsystem can provide the data files for the data storage subsystem according to the storage path information of the data files required to be acquired by the data demand side equipment in the data storage subsystem and the sharing mode of the data files. The block chain subsystem may provide the data file according to the storage path information of the data file in the data storage subsystem, which is required to be acquired by the data demander device. The data sharing is realized by storing the data file in the data storage subsystem and only storing the storage path information of the data file in the data storage subsystem in the block chain subsystem, so that the operation speed and the sharing efficiency of the block chain network cannot be influenced even if the data volume of the data file is large, the operation speed of the block chain network can be effectively ensured to be high, and the data sharing efficiency can be ensured to be high.
Additional features and advantages of the invention will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention. The objectives and other advantages of the invention will be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic structural diagram of a data sharing system according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 3 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a data sharing device according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of a data sharing device according to an embodiment of the present invention;
fig. 6 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 7 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a data sharing device according to an embodiment of the present invention;
fig. 9 is a schematic structural diagram of a data sharing device according to an embodiment of the present invention;
fig. 10 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 11 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 12 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 13 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 14 is a schematic flowchart of a data sharing method according to an embodiment of the present invention;
fig. 15 is a schematic structural diagram of a data sharing device according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention clearer, the present invention will be described in further detail with reference to the accompanying drawings, and it is apparent that the described embodiments are only a part of the embodiments of the present invention, not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It should be noted that, the "plurality" or "a plurality" mentioned herein means two or more. "and/or" describes the association relationship of the associated objects, meaning that there may be three relationships, e.g., a and/or B, which may mean: a exists alone, A and B exist simultaneously, and B exists alone. The character "/" generally indicates that the former and latter associated objects are in an "or" relationship.
The terms "first," "second," and the like in the description and in the claims, and in the drawings described above, are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that the embodiments of the invention described herein are capable of operation in sequences other than those illustrated or described herein.
Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed, but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
In order to solve the problem that the existing method for sharing information data of a block chain network does not support the sharing of information data with large data volume, the embodiment of the invention introduces a data storage system on the basis of the block chain network and combines the data storage system to realize the sharing of the information data based on the block chain network. The data storage subsystem is used for storing the data files, and only the storage path information of the data files in the data storage subsystem is stored in the block chain subsystem, so that the information data sharing based on the block chain subsystem is also suitable for realizing the sharing of the information data with larger data volume.
In addition, aiming at the problem that the privacy of the information data cannot be effectively guaranteed, the embodiment of the invention provides a method for introducing a symmetric encryption technology, so that the privacy protection of the information data is realized, and the encryption and decryption efficiency of the data file can be guaranteed.
In addition, in the scheme provided by the embodiment of the invention, different sharing modes can be set for the data files. The sharing mode of the data file can comprise a public mode and an approval mode. And the data file can be provided for the data demand side equipment by combining the sharing mode of the data file.
In a possible implementation manner, when the sharing manner of the data file is the public manner, the data owner may provide the unencrypted data file when issuing the shared data, and when the sharing manner of the data file is the approval manner, the data owner may provide the encrypted data file when issuing the shared data.
When the sharing mode of the data file is a public mode, the data demanding party can directly download the unencrypted data file, and when the sharing mode of the data file is an approval mode, the data demanding party can download the encrypted data file after the approval is passed through the equipment of the data owning party, and decrypt the encrypted data file to obtain the data file, so that the privacy and the safety of the data file are further improved.
An embodiment of the present invention provides a data sharing system, which may have a structure as shown in fig. 1, and includes a block chain network access subsystem 11, a data storage subsystem 12, and a block chain subsystem 13, where:
the block chain network access subsystem 11 is configured to receive a data acquisition request sent by a data demander device, and send the data acquisition request to the block chain subsystem; the data acquisition request is sent by the data demand side equipment according to the brief description of the data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
the data storage subsystem 12 is used for storing data files;
the block chain subsystem 13 is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
That is, in the present embodiment, the data consumer apparatus may request to acquire an already existing sharable data file according to a brief description of the sharable data file. The block chain subsystem can provide the data files for the data storage subsystem according to the storage path information of the data files required to be acquired by the data demand side equipment in the data storage subsystem and the sharing mode of the data files.
A brief description of a data file may be understood as a description of the data provided by the data file or, alternatively, as a description of the data requirements satisfied by the data file.
The data demander can determine the data file to be acquired according to the brief description of the data file, and send a data acquisition request for the data file through the data demander device.
In a possible implementation manner, the block chain subsystem 13 is specifically configured to determine a sharing manner of the data file requested to be acquired by the data acquisition request and storage path information in the data storage subsystem, and provide the data file stored in the data storage subsystem to the data demander device according to the determined sharing manner and the storage path information in the data storage subsystem.
That is, in the present embodiment, the sharing manner of the data file may be set. The block chain subsystem can provide the data file to the data demand side device by combining the sharing mode of the data file.
In this embodiment, the sharing manner may include, but is not limited to, a disclosure manner and an approval manner. The sharing mode of one data file is a public mode, and the data file can be understood as allowing any data demand side device to share. The sharing mode of one data file is an approval mode, and can be understood as that the data file is shared by the data demand side equipment and needs to be approved by the data owner side equipment of the data file. Therefore, the privacy and the safety of the data file can be improved through the setting of the sharing mode.
Further, in a possible implementation, the data file saved by the data storage subsystem 12 may be obtained by:
the block chain network access subsystem receives a data sharing request sent by data owner equipment and sends the data sharing request to the block chain subsystem, wherein the data sharing request comprises a data file to be shared by the data owner equipment, a brief description of the data file and a sharing mode of the data file;
and the block chain subsystem transfers the data file to be shared to the data storage subsystem, records the storage path information and sharing mode of the data file in the data storage subsystem, and issues a brief description of the data file through the block chain network access subsystem.
That is, in this embodiment, the data storage subsystem may store therein a data file actively shared by the data owner device.
And the data sharing request can also carry brief description and sharing mode of the data file to be shared, so that the data demanding party can know whether the data file is the data file which needs to be acquired per se according to the brief description of the issued data file, and the block chain subsystem can provide the data file for the data demanding party device according to the sharing mode of the stored data file.
Of course, the data sharing request may carry a brief description of the data file to be shared, so that the data requiring party may know whether the data file is a data file that needs to be acquired by itself, and may also carry other related information of the data file, such as data industry category information of the data file (which may be understood as industry information to which the data file belongs), so that the data requiring party may combine with the other related information of the data file to more clearly know whether the data file is a data file that needs to be acquired by itself.
It should be further described that, when the sharing mode of the data file to be shared included in the data sharing request is an approval mode, the data file to be shared may be the data file to be shared after being encrypted by the encryption key;
at this time, the transferring, by the blockchain subsystem, the data file to be shared to the data storage subsystem may include: and transferring the data file to be shared after being encrypted by the encryption key to the data storage subsystem.
That is to say, in this embodiment, for a data file whose sharing mode is an approval mode, when the data owner device provides the data file, the data owner device may encrypt the data file by using the encryption key, and store the encrypted data file in the data storage subsystem, so as to further improve the privacy and security of the data file.
And if the data owner equipment encrypts the data file of which the sharing mode is the approval mode, the data demand side equipment needs to provide a public key when needing to acquire the data file, so that when the sharing mode of the data file needing to be acquired is the approval mode, the data owner equipment can encrypt the encryption key by using the public key and send the encryption key to the data demand side equipment, so that the data demand side equipment can decrypt by using the corresponding private key to obtain the encryption key, and then obtain the decrypted data file.
That is to say, the data obtaining request may carry a public key corresponding to the data demander device.
If the sharing mode of the data file that the data demanding side device needs to acquire is a public mode, the block chain subsystem 13 provides the data file stored in the data storage subsystem to the data demanding side device according to the determined sharing mode and the storage path information in the data storage subsystem, which may include:
when the determined sharing mode is the public mode, sending the storage path information of the data file required to be acquired by the determined data acquisition request in the data storage subsystem to the block chain network access subsystem;
at this time, the block chain network access subsystem 11 is further configured to download a data file from the data storage subsystem according to the received storage path information, so that the data requiring device obtains the data file.
If the sharing mode of the data file that needs to be acquired by the data demanding side device is an approval mode, the block chain subsystem 13 provides the data file stored in the data storage subsystem to the data demanding side device according to the determined sharing mode and the storage path information in the data storage subsystem, which may include:
when the determined sharing mode is the approval mode, sending the received data acquisition request to the data owner equipment corresponding to the data file required to be acquired;
if an acquisition permission notification message sent by the data owner device through the block chain network access subsystem is received, the acquisition permission notification message carries encryption information, the encryption information is obtained by encrypting an encryption key corresponding to the data file required to be acquired by the data owner device through the public key, and the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem are sent to the data demand party device;
at this time, the block chain network access subsystem 11 is further configured to receive the storage path information sent by the data requiring party device, download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
From the side of the block chain network access subsystem, an embodiment of the present invention further provides a data sharing method, where the flow of the steps of the method may be as shown in fig. 2, and the method includes:
step 101, receiving a data acquisition request sent by a data demand side device.
In this step, the data acquisition request received by the blockchain network access subsystem may be understood as that the data requiring device sends the determined data file required to be acquired according to the brief description of the data file issued by the blockchain network access subsystem.
Step 102, sending the data acquisition request to the block chain subsystem.
In this step, the blockchain network access subsystem may send the received data acquisition request to the blockchain subsystem, so that the blockchain subsystem determines storage path information of the data file, which is required to be acquired by the data acquisition request, in the data storage subsystem, and provides the data file stored in the data storage subsystem to the data demanding side device according to the determined storage path information in the data storage subsystem.
It should be noted that, in a possible implementation manner, the blockchain subsystem may determine a sharing manner of the data file requested to be acquired by the data acquisition request and storage path information in the data storage subsystem, and provide the data file stored in the data storage subsystem to the data demanding device according to the determined sharing manner and the storage path information in the data storage subsystem.
In one possible implementation, the data file saved by the data storage subsystem may be obtained by:
the block chain network access subsystem receives a data sharing request sent by data owner equipment and sends the data sharing request to the block chain subsystem, wherein the data sharing request comprises a data file to be shared by the data owner equipment, a brief description of the data file and a sharing mode of the data file;
the block chain subsystem transfers the data file to be shared to the data storage subsystem, records the storage path information and sharing mode of the data file in the data storage subsystem, and issues the brief description of the data file through the block chain network access subsystem.
In a possible implementation manner, when the sharing manner of the data file to be shared included in the data sharing request is an approval manner, the data file to be shared is the data file to be shared after being encrypted by the encryption key;
the transferring the data file to be shared to the data storage subsystem by the blockchain subsystem may include:
and transferring the data file which is encrypted by the encryption key and needs to be shared to the data storage subsystem.
At this time, in a possible implementation manner, the data acquisition request may carry a public key corresponding to the data demander device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and may include:
when the determined sharing mode is the public mode, sending the storage path information of the data file required to be acquired by the determined data acquisition request in the data storage subsystem to the block chain network access subsystem;
the block chain network access subsystem can download the data file from the data storage subsystem according to the received storage path information, so that the data requiring side equipment can acquire the data file.
The block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and may further include:
when the determined sharing mode is the approval mode, sending a received data acquisition request to the data owner equipment corresponding to the data file required to be acquired;
if an acquisition permission notification message sent by the data owner device through the block chain network access subsystem is received, the acquisition permission notification message carries encryption information, the encryption information is obtained by the data owner device through a received public key to encrypt an encryption key corresponding to a data file required to be acquired by the data demand device, and the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem are sent to the data demand device;
the block chain network access subsystem can receive storage path information sent by the data demand side equipment, download the data file from the data storage subsystem according to the received storage path information, and send the downloaded data file to the data demand side equipment, so that the data demand side equipment decrypts the downloaded data file according to an encryption key obtained by decrypting the encrypted information by using a private key, and obtains the decrypted data file.
From the side of the block chain subsystem, an embodiment of the present invention further provides a data sharing method, where the flow of the steps of the method may be as shown in fig. 3, and the method includes:
step 201, a data acquisition request sent by a block chain network access subsystem is received.
In this step, the data acquisition request received by the blockchain subsystem is sent by the blockchain network access subsystem for the determined data file required to be acquired according to the brief description of the data file issued by the blockchain network access subsystem by the data requiring side device.
And step 202, sharing data according to the data acquisition request.
In this step, the block chain subsystem may determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
It should be noted that, in a possible implementation manner, the blockchain subsystem may determine a sharing manner of the data file requested to be acquired by the data acquisition request and storage path information in the data storage subsystem, and provide the data file stored in the data storage subsystem to the data demanding device according to the determined sharing manner and the storage path information in the data storage subsystem.
In one possible implementation, the data file saved by the data storage subsystem may be obtained by:
the block chain network access subsystem receives a data sharing request sent by data owner equipment and sends the data sharing request to the block chain subsystem, wherein the data sharing request comprises a data file to be shared by the data owner equipment, a brief description of the data file and a sharing mode of the data file;
the block chain subsystem transfers the data file to be shared to the data storage subsystem, records the storage path information and sharing mode of the data file in the data storage subsystem, and issues the brief description of the data file through the block chain network access subsystem.
In a possible implementation manner, when the sharing manner of the data file to be shared included in the data sharing request is an approval manner, the data file to be shared is the data file to be shared after being encrypted by the encryption key;
the transferring the data file to be shared to the data storage subsystem by the blockchain subsystem may include:
and transferring the data file which is encrypted by the encryption key and needs to be shared to the data storage subsystem.
At this time, in a possible implementation manner, the data acquisition request may carry a public key corresponding to the data demander device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and may include:
when the determined sharing mode is the public mode, sending the storage path information of the data file required to be acquired by the determined data acquisition request in the data storage subsystem to the block chain network access subsystem;
the block chain network access subsystem can download the data file from the data storage subsystem according to the received storage path information, so that the data requiring side equipment can acquire the data file.
The block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and may further include:
when the determined sharing mode is the approval mode, sending a received data acquisition request to the data owner equipment corresponding to the data file required to be acquired;
if an acquisition permission notification message sent by the data owner device through the block chain network access subsystem is received, the acquisition permission notification message carries encryption information, the encryption information is obtained by the data owner device through a received public key to encrypt an encryption key corresponding to a data file required to be acquired by the data demand device, and the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem are sent to the data demand device;
the block chain network access subsystem can receive storage path information sent by the data demand side equipment, download the data file from the data storage subsystem according to the received storage path information, and send the downloaded data file to the data demand side equipment, so that the data demand side equipment decrypts the downloaded data file according to an encryption key obtained by decrypting the encrypted information by using a private key, and obtains the decrypted data file.
Corresponding to the provided method, the following device is further provided.
An embodiment of the present invention provides a data sharing apparatus, which may be integrated in a blockchain network access subsystem, and a structure of the apparatus may be as shown in fig. 4, where the apparatus includes:
the receiving module 21 is configured to receive a data obtaining request sent by a data demander device, where the data obtaining request is sent by the data demander device according to a brief description of a data file issued by the block chain network access subsystem, and is sent for the determined data file required to be obtained;
the sending module 22 is configured to send the data obtaining request received by the receiving module to the block chain subsystem, so that the block chain subsystem determines storage path information of a data file in the data storage subsystem, where the data obtaining request requires to obtain, and provides the data file stored in the data storage subsystem to the data demanding side device according to the determined storage path information in the data storage subsystem.
An embodiment of the present invention provides a data sharing apparatus, which may be integrated in a blockchain subsystem, and a structure of the apparatus may be as shown in fig. 5, where the apparatus includes:
the receiving module 31 is configured to receive a data acquisition request sent by the blockchain network access subsystem;
the sharing module 32 is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem;
the data acquisition request sent by the blockchain network access subsystem is sent by the data demand side device according to the brief description of the data file issued by the blockchain network access subsystem, and the determined data file required to be acquired.
The functions of the functional units of the apparatuses provided in the above embodiments of the present invention may be implemented by the steps of the corresponding methods, and therefore, detailed working processes and beneficial effects of the functional units in the apparatuses provided in the embodiments of the present invention are not described herein again.
The embodiment of the present invention further provides a data sharing system, the structure of which can still be as shown in fig. 1, and the system includes a block chain network access subsystem 11, a data storage subsystem 12, and a block chain subsystem 13, at this time:
the block chain network access subsystem 11 is configured to receive a data acquisition request sent by a data demander device, and send the data acquisition request to the block chain subsystem; the data acquisition request is used for acquiring a data file provided by the data owner equipment according to the requirement release request sent by the data demander equipment; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
the data storage subsystem 12 is used for storing data files;
the block chain subsystem 13 is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
That is to say, in this embodiment, the data demander device may issue the requirement first, the data owner device may provide the data file according to the requirement of the data demander device, and the block chain subsystem may provide the data file to the data demander device according to the storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data demander device.
In one possible implementation, the data file saved by the data storage subsystem is obtained by:
the block chain network access subsystem receives a demand release request sent by the data demander equipment and sends the demand release request to the block chain subsystem; receiving a data response request sent by the data owner equipment, and sending the data response request to the block chain subsystem; the data response request comprises a data file provided by a brief description of the data file corresponding to the demand release request;
the blockchain subsystem issues a brief description of the data file included in the demand issue request; and when the data response request is received, the data file included in the data response request is transferred to the data storage subsystem, and the storage path information of the data file in the data storage subsystem is recorded.
That is, in this embodiment, the data storage subsystem may store a data file shared by the data owner device according to the requirement of the data demander device.
In addition, the requirement issuing request may include, in addition to the brief description of the data file, the sharing mode of the data file and/or other related information of the data file (e.g., data industry category information of the data file), so that the data owner may make it more clear whether the data file meeting the requirement of the data demander can be provided.
In a possible implementation manner, the data owning device may encrypt the provided data file, at this time, when the data requiring device sends the requirement issuing request, the requirement issuing request may further carry a public key, so that the data owning device may encrypt an encryption key used for encrypting the data file that the data requiring device needs to obtain by using the public key of the numerical certificate, and the data requiring device may decrypt by using a corresponding private key to obtain the encryption key and decrypt by using the encryption key to obtain the data file.
At this time, the requirement issuing request may carry a public key corresponding to the data requiring side device;
the blockchain subsystem 13 is further configured to send the public key to the data owner device through the blockchain network access subsystem according to the received data response pre-request sent by the data owner device through the blockchain network access subsystem before receiving the data response request;
the data response request may include a data file encrypted by an encrypted key provided by a brief description of the data file corresponding to the demand issue request, and encryption information, where the encryption information is obtained by encrypting the encrypted key corresponding to the data file by using the public key;
when receiving the data response request, the block chain subsystem 13 transfers the data file included in the data response request to the data storage subsystem, and records storage path information of the data file in the data storage subsystem, which may include:
and when the data response request is received, transferring the data file which is included in the data response request and is encrypted by the encrypted secret key to the data storage subsystem, and recording the storage path information of the data file in the data storage subsystem and the encryption information.
That is to say, in this embodiment, when the data owner device provides the data file according to the requirement of the data demander device, the data owner device may encrypt the data file by using the encryption key, and store the encrypted data file in the data storage subsystem, so as to improve the privacy and security of the data file.
Further, in a possible implementation manner, the providing, by the block chain subsystem 13, the data file stored in the data storage subsystem to the data demand side device according to the determined storage path information in the data storage subsystem includes:
sending the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem to the block chain network access subsystem;
at this time, the block chain network access subsystem 11 is further configured to download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file and the received encryption information to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
From the side of the block chain network access subsystem, an embodiment of the present invention further provides a data sharing method, where the flow of the steps of the method may be as shown in fig. 6, and the method includes:
step 301, receiving a data acquisition request sent by a data demand side device.
In this step, the data obtaining request received by the blockchain network access subsystem may be understood as a data file provided by the data owner device according to the requirement issuing request sent by the data demander device, where the requirement issuing request includes a brief description of the data file corresponding to the data file that the data demander device needs to obtain.
Step 302, send the data acquisition request to the blockchain subsystem.
In this step, the blockchain network access subsystem may send the received data acquisition request to the blockchain subsystem, so that the blockchain subsystem determines storage path information of the data file, which is required to be acquired by the data acquisition request, in the data storage subsystem, and provides the data file stored in the data storage subsystem to the data demanding side device according to the determined storage path information in the data storage subsystem.
In one possible implementation, the data file saved by the data storage subsystem may be obtained by:
the block chain network access subsystem receives a demand release request sent by data demander equipment and sends the demand release request to the block chain subsystem; receiving a data response request sent by the data owner equipment, and sending the data response request to the block chain subsystem; the data response request comprises data files provided by brief descriptions of the data files corresponding to the demand release request;
the blockchain subsystem issues a brief description of the data file included in the demand issue request; and when the data response request is received, transferring the data file included in the data response request to the data storage subsystem, and recording the storage path information of the data file in the data storage subsystem.
In a possible implementation manner, the requirement issuing request may carry a public key corresponding to the data requiring side device;
the block chain subsystem may send the public key to the data owner device through the block chain network access subsystem according to a received data response pre-request sent by the data owner device through the block chain network access subsystem before receiving the data response request;
at this time, the data response request may include the data file encrypted by the encrypted key provided by the brief description of the data file corresponding to the request for issuing the demand, and the encryption information, where the encryption information is obtained by encrypting the encrypted key corresponding to the data file by using the public key;
when receiving the data response request, the blockchain subsystem transfers the data file included in the data response request to the data storage subsystem, and records storage path information of the data file in the data storage subsystem, which may include:
when a data response request is received, the data file which is included in the data response request and is encrypted by the encrypted secret key is transferred to the data storage subsystem, and the storage path information of the data file in the data storage subsystem and the encryption information are recorded.
Further, in a possible implementation manner, the providing, by the block chain subsystem, the data file stored in the data storage subsystem to the data demander device according to the determined storage path information in the data storage subsystem may include:
sending the encrypted information and the determined storage path information of the data file required to be acquired in the data storage subsystem to the block chain network access subsystem;
at this time, the block chain network access subsystem may download the data file from the data storage subsystem according to the received storage path information, and send the downloaded data file and the received encryption information to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with the private key, and obtains the decrypted data file.
From the side of the block chain subsystem, an embodiment of the present invention further provides a data sharing method, where the flow of the steps of the method may be as shown in fig. 7, and the method includes:
step 401, receiving a data acquisition request sent by a blockchain network access subsystem.
In this step, the data obtaining request received by the block chain subsystem is used to obtain a data file provided by the data owner device according to the requirement issuing request sent by the data demander device, where the requirement issuing request includes a brief description of the data file corresponding to the data file that the data demander device needs to obtain.
And step 402, realizing data sharing according to the received data acquisition request.
In this step, the block chain subsystem may determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
In one possible implementation, the data file saved by the data storage subsystem may be obtained by:
the block chain network access subsystem receives a demand release request sent by data demander equipment and sends the demand release request to the block chain subsystem; receiving a data response request sent by the data owner equipment, and sending the data response request to the block chain subsystem; the data response request comprises data files provided by brief descriptions of the data files corresponding to the demand release request;
the blockchain subsystem issues a brief description of the data file included in the demand issue request; and when the data response request is received, transferring the data file included in the data response request to the data storage subsystem, and recording the storage path information of the data file in the data storage subsystem.
In a possible implementation manner, the requirement issuing request may carry a public key corresponding to the data requiring side device;
the block chain subsystem may send the public key to the data owner device through the block chain network access subsystem according to a received data response pre-request sent by the data owner device through the block chain network access subsystem before receiving the data response request;
at this time, the data response request may include the data file encrypted by the encrypted key provided by the brief description of the data file corresponding to the request for issuing the demand, and the encryption information, where the encryption information is obtained by encrypting the encrypted key corresponding to the data file by using the public key;
when receiving the data response request, the blockchain subsystem transfers the data file included in the data response request to the data storage subsystem, and records storage path information of the data file in the data storage subsystem, which may include:
when a data response request is received, the data file which is included in the data response request and is encrypted by the encrypted secret key is transferred to the data storage subsystem, and the storage path information of the data file in the data storage subsystem and the encryption information are recorded.
Further, in a possible implementation manner, the providing, by the block chain subsystem, the data file stored in the data storage subsystem to the data demander device according to the determined storage path information in the data storage subsystem may include:
sending the encrypted information and the determined storage path information of the data file required to be acquired in the data storage subsystem to the block chain network access subsystem;
at this time, the block chain network access subsystem may download the data file from the data storage subsystem according to the received storage path information, and send the downloaded data file and the received encryption information to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with the private key, and obtains the decrypted data file.
Corresponding to the provided method, the following device is further provided.
An embodiment of the present invention provides a data sharing apparatus, which may be integrated in a blockchain network access subsystem, and a structure of the apparatus may be as shown in fig. 8, where the apparatus includes:
the receiving module 41 is configured to receive a data obtaining request sent by a data demander device, where the data obtaining request is used to obtain a data file provided by a data owner device according to a requirement issuing request sent by the data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
the sending module 42 is configured to send the data obtaining request to the block chain subsystem, so that the block chain subsystem determines storage path information of a data file in the data storage subsystem, where the data file is required to be obtained by the data obtaining request, and provides the data file stored in the data storage subsystem to the data requiring device according to the determined storage path information in the data storage subsystem.
An embodiment of the present invention provides a data sharing apparatus, which may be integrated in a blockchain subsystem, and a structure of the apparatus may be as shown in fig. 9, where the apparatus includes:
the receiving module 51 is configured to receive a data obtaining request sent by a block chain network access subsystem, where the data obtaining request is used to obtain a data file provided by a data owner device according to a request issuing request sent by the data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
the sharing module 52 is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data requiring device according to the determined storage path information in the data storage subsystem.
The data sharing system disclosed by the embodiment of the invention can comprise a block chain network access subsystem, a data storage subsystem and a block chain subsystem. The block chain network access subsystem can be used for a data owner and a data demander to issue a data acquisition request, a data sharing request and a demand issuing request; the data storage subsystem (such as a cloud storage system) may be configured to store and download encrypted shared data files (which may be data files with large data volumes); the blockchain subsystem may be used for identity authentication, contract validation, ledger accounting, shared data file retrieval, data file cataloging, and brief description storage of data files. The invention can improve the efficiency and the safety of information data sharing and is beneficial to realizing the balance between data privacy protection and data sharing.
According to the scheme provided by the embodiment of the invention, the efficiency of encrypting and decrypting the big data file is improved by integrating the symmetric encryption technology, and the privacy protection of the data file in the data sharing process is realized. By integrating the existing mature storage system (or device), the storage performance, the expansibility and the reliability are improved, and the short board of the block chain system on the storage is well repaired.
In addition, the scheme provided by the embodiment of the invention can realize the data sharing problem under the conditions of large shared data files and multiple types, can solve the problems of difficult certainty, poor safety, poor expandability and the like of the existing data sharing solution, can better realize the safe circulation, value mining, repeated use and the like of internet information data, broadens the interconnection and intercommunication, exchange sharing and business cooperation of data resources of cross-department and cross-region, and better realizes the balance between data privacy protection and data sharing.
The scheme provided by the embodiment of the present invention is described below by taking the block chain subsystem as an example to adopt the union block chain.
In a possible mode, an organization or an individual who joins the alliance selects a specific intelligent contract which is approved by the alliance through corresponding data owner equipment, and can apply for chaining after packaging information such as brief description of own data files, industry category information of the data files, a data sharing mode, symmetrically encrypted data files and the like. After the identity authentication is passed, the block chain subsystem forwards the encrypted data file to the data storage subsystem, which is described in this embodiment by taking the cloud storage system as an example, and meanwhile, records information such as a brief description of the data file, industry category information of the data file, a sharing mode of the data file, a storage path of the data file in the cloud storage system, and the like on the chain. The data demander joining the alliance can determine the data file to be acquired according to the brief description of the shared data file on the chain through the corresponding data demander equipment, and further can acquire the data file through the block chain subsystem according to the sharing mode (open mode or approval mode) of the data file.
When the sharing mode of the shared data file is the public mode, the data demand side equipment can directly download the unencrypted data file from the chain. When the sharing mode of the shared data file is an approval mode, the data demand side equipment needs to acquire the file access authorization of the data owner side equipment, further acquire the encrypted data file, and decrypt the encrypted data file.
It should be noted that the data owner device and the data demander device may access the subsystem through the blockchain network, access the blockchain subsystem in an interface manner, and initiate an identity verification request for joining the federation chain. And after the block chain subsystem passes the verification, generating a digital certificate capable of identifying the user identity and a corresponding key pair, and sending the digital certificate and the corresponding key pair to the block chain network access subsystem. The data owner device and the data demander device may store the returned key pair and the digital certificate, so that the data owner device and the data demander device may issue the data sharing request and the demand issuing request at the blockchain network access subsystem.
An embodiment of the present invention provides a data sharing method, which mainly describes a process of issuing a data sharing request by a data owner device, and a flow of steps of the method may be as shown in fig. 10, where the method includes:
in a first step, the data owner device receives data file additional information and determines a selected intelligent contract.
In this step, the data owner device may receive additional information of the data file to be shared, and perform intelligent contract selection. The data file additional information may include a brief description of the data file, a sharing manner of the data file, and industry category information of the data file.
And secondly, the data owner equipment generates a symmetric secret key and encrypts the data file.
Assuming that the sharing mode of the data file to be shared is an approval mode, in this step, the data owning device may generate a symmetric key and encrypt the data file to be shared. And can submit the related information (additional information of the data file and the encrypted data file) through a data sharing request.
And thirdly, performing information verification by the block chain subsystem.
In this step, the blockchain subsystem receives the related information (the additional information of the data file and the encrypted data file) submitted by the data owner device through the data sharing request, and can perform information verification when confirming that the data owner device needs to perform data sharing.
The identity of the data owner device can be verified, and whether the data owner corresponding to the data owner device belongs to a member of the federation or not can be understood as verification. It is also possible to check whether the relevant information conforms to the format of the specified intelligent contract. If the verification passes, the fourth step can be continued, otherwise, the sixth step can be executed.
And fourthly, the block chain subsystem transfers the data file to the data storage subsystem.
In this step, the blockchain subsystem may forward the encrypted data file to the data storage subsystem. If the storage is successful, the fifth step can be executed continuously, otherwise, the sixth step can be executed in a skipping manner.
And step five, the block chain subsystem issues information and records transaction information.
In this step, the blockchain subsystem may issue additional information of the data file, such as brief description, sharing manner, and industry category information, through the blockchain network access subsystem, and record related transaction information (e.g., information of the brief description of the data file, the industry category information of the data file, the sharing manner of the data file, a storage path of the data file in the cloud storage system, and the like) to the blockchain ledger.
And sixthly, returning the transaction information by the block chain subsystem.
In this step, the blockchain subsystem may return transaction information, such as a transaction hash value (hash), transaction status information, exception information, and so on, to the data-owner device. And can end the process after returning the transaction information.
That is, in the scheme of the present invention, the data owner may symmetrically encrypt the data file to be shared in a format conforming to a specified intelligent contract, add additional information such as brief description, belonging industry category, sharing mode, and so on, package and upload the additional information to the block chain subsystem, and complete the release of the shared data. After the block chain subsystem receives the uplink request, the encrypted data file can be transferred to the data storage subsystem, and the transaction is recorded.
An embodiment of the present invention provides a data sharing method, which mainly describes a process of acquiring a shared data file by a data consumer device when a sharing mode of the data file is a public mode, and a step flow of the method may be as shown in fig. 11, where the method includes:
firstly, data demand side equipment sends a data acquisition request.
In this step, the data demander may view the sharable data file list issued by the blockchain network access subsystem through the data demander device, and may send a data acquisition request to the blockchain network access subsystem through the data demander device when determining that there is a data file that the data demander device needs to acquire, where the data acquisition request may carry a public key corresponding to the data demander device.
And secondly, the block chain network access subsystem sends a data acquisition request.
In this step, the blockchain network access subsystem (which may be simply referred to as an access subsystem) may send the received data acquisition request to the blockchain subsystem.
And thirdly, the block chain subsystem checks the identity and judges the sharing mode of the data file.
In this step, the blockchain subsystem may check the identity of the data consumer device, and if the identity check is passed and it is determined that the sharing mode of the data file is the public mode, the fourth step may be continuously performed.
And fourthly, the block chain subsystem sends the storage path information.
In this step, the blockchain subsystem may return, to the blockchain network access subsystem, information of a storage path of the data file, which is requested to be obtained by the data obtaining request, in the data storage subsystem.
And step five, the block chain network access subsystem sends a downloading request.
In this step, the blockchain network access subsystem may send a download request to the data storage subsystem according to the received storage path information, requesting to download the data file from the data storage subsystem.
And sixthly, providing the data file by the data storage subsystem.
In this step, the data storage subsystem may provide the data file requested to be downloaded to the blockchain network access subsystem according to the download request of the blockchain network access subsystem.
And seventhly, the data requiring side equipment acquires the data file.
In this step, the data demander device may obtain the data file from the blockchain network access subsystem.
An embodiment of the present invention provides a data sharing method, where the method mainly describes a process in which a data requiring device acquires a shared data file when a sharing mode of the data file is an approval mode, and a step flow of the method may be as shown in fig. 12, where the method includes:
firstly, data demand side equipment sends a data acquisition request.
In this step, the data demander may view the sharable data file list issued by the blockchain network access subsystem through the data demander device, and may send a data acquisition request to the blockchain network access subsystem through the data demander device when determining that there is a data file that the data demander device needs to acquire, where the data acquisition request may carry a public key corresponding to the data demander device.
And secondly, the block chain network access subsystem sends a data acquisition request.
In this step, the blockchain network access subsystem may send the received data acquisition request to the blockchain subsystem.
And thirdly, the block chain subsystem checks the identity and judges the sharing mode of the data file.
If the block chain subsystem passes the identity verification of the data demander equipment and determines that the sharing mode of the data file is the approval mode, the fourth step can be continuously executed.
And fourthly, the block chain subsystem sends a data acquisition request to the data owner side equipment and sends a waiting examination and approval notice to the data demand side equipment.
In this step, the block chain subsystem may send a data acquisition request to the data owner device, and request the data owner device to approve the data acquisition request sent by the data demander device.
And a waiting approval notice can be sent to the data demand side equipment through the block chain network access subsystem, so that the data demand side is prompted that a data acquisition request is submitted and the shared data file can be acquired by the data demand side equipment when the data acquisition request is required to pass the approval.
And fifthly, the data owner equipment sends a message of allowing to acquire the notification.
In this step, the data owner may check the relevant information of the data demander in the blockchain network access subsystem through the data owner device, approve the data acquisition request, and send an acquisition permission notification message to the blockchain network access subsystem when it is confirmed that the data demander is permitted to acquire the data file requested to be acquired by the data demander.
The permission acquisition notification message may carry encryption information, where the encryption information is obtained by encrypting, by the data owner device, an encryption key corresponding to the data file that the data owner device requires to acquire, by using a public key provided by the data requiring device.
And sixthly, the block chain network access subsystem sends a message of allowing to acquire the notification.
After receiving the acquisition permission notification message, the blockchain network access subsystem may send the acquisition permission notification message received by the blockchain network access subsystem to the blockchain subsystem.
And step seven, the block chain subsystem records the transaction information.
In this step, the blocking subsystem may record transaction information such as the obtained encryption information.
And step eight, the block chain subsystem sends the encryption information and the storage path information.
In this step, the block subsystem may send the encrypted information and the storage path information of the data file in the data storage subsystem, which is required to be acquired by the data acquisition request, to the data consumer device.
And ninthly, the data demand side equipment sends the storage path information.
In this step, the data demander device may send the received storage path information to the blockchain network access subsystem.
And step ten, downloading the data file by the block chain network access subsystem.
In this step, the blockchain network access subsystem may download the encrypted data file from the data storage subsystem according to the received storage path information.
And step ten, the data storage subsystem provides a data file.
In this step, the data storage subsystem may provide the encrypted data file that the blockchain network access subsystem requires to download to the blockchain network access subsystem according to the download request of the blockchain network access subsystem.
And step ten, the data requiring side equipment acquires the data file.
In this step, the data demander device may obtain the encrypted data file from the blockchain network access subsystem.
And step thirteen, the data demand side equipment decrypts the data file.
In this step, the data requiring party device may decrypt the encrypted information using the private key to obtain an encrypted key, and decrypt the encrypted data file using the encrypted key to obtain the data file shared by the data owning party device.
That is to say, in the scheme of the present invention, the data demander can check information such as brief descriptions of data files shared on the chain at any time at the access subsystem end of the blockchain network, and if it is determined that the data demander meets the data requirement of the data demander, the data demander device carries an own public key to initiate a data use application to the blockchain subsystem. The block chain subsystem can determine the mode to give the data request to respond according to the sharing mode of the data file designated by the data owner.
If the data sharing mode is the public mode, the data file is not encrypted, and the block chain subsystem directly forwards the address of the data file on the chain to the data demand side equipment; if the data sharing mode is an approval mode, the block chain subsystem end forwards the data use application and the public key corresponding to the data demand side device to the data owner device, and after the data owner passes the approval, the data owner device encrypts the symmetric key for encrypting the shared data file with the public key corresponding to the data demand side device and returns the encrypted symmetric key to the block chain subsystem. And the block chain subsystem receives the verification passing notice, records the transaction and returns the encrypted information and the data file storage path to the data demand side equipment. The data requiring party equipment receives the data file access authorization information, decrypts the encrypted information by using the private key to obtain the symmetric key of the encrypted data file, and decrypts the encrypted data file by using the symmetric key to obtain the shared data file.
An embodiment of the present invention provides a data sharing method, which mainly describes a process of issuing a request issuing request by a data demander device, and a step flow of the method may be as shown in fig. 13, where the method includes:
in the first step, the data requirement side equipment receives the additional information of the data file and determines the selected intelligent contract.
In this step, the data demander device may receive additional information of the data file to be acquired, and perform intelligent contract selection. The data file additional information may include a brief description of the data file, a sharing manner of the data file, and industry category information of the data file.
And secondly, the data demand side equipment sends a demand issuing request.
In this step, the data demander device may submit the relevant information (the additional information of the data file and the corresponding public key) through the request for issuing the requirement.
And thirdly, performing information verification by the block chain subsystem.
In this step, the blockchain subsystem receives the relevant information (the additional information of the data file and the corresponding public key) submitted by the data demander device through the request issue request, and can perform information verification when confirming that the data owner device needs to acquire the shared data.
The identity of the data demander equipment can be verified, and whether the data demander corresponding to the data demander equipment belongs to a coalition member or not can be verified. It is also possible to check whether the relevant information conforms to the format of the specified intelligent contract. If the verification passes, the fourth step can be continued, otherwise, the fifth step can be skipped to.
And fourthly, the block chain subsystem issues information and records transaction information.
In this step, the blockchain subsystem may issue additional information of the data file, such as a brief description, a sharing manner, and industry category information, through the blockchain network access subsystem, and record related transaction information (e.g., a brief description of the data file, industry category information of the data file, a sharing manner of the data file, and a public key corresponding to the data demander device) to the blockchain ledger.
And step five, returning the transaction information by the block chain subsystem.
In this step, the blockchain subsystem may return transaction information, such as a transaction hash value (hash), transaction status information, exception information, and the like, to the data consumer device. And can end the process after returning the transaction information.
That is, the data demander can fill in information such as brief description of a required data file, a related industry category, a sharing mode and the like, select a designated intelligent contract and then carry a self public key to access the block chain subsystem end, apply for chain display of the requirement, and issue the requirement to the chain for public display after the block chain subsystem passes verification identity.
An embodiment of the present invention provides a data sharing method, which mainly describes a process of acquiring shared data by a data consumer device in a scenario where the data consumer device provides shared data according to a demand issue request issued by the data consumer device, where a step flow of the method may be as shown in fig. 14, and includes:
firstly, data owner equipment sends a data response pre-request.
In this step, the data owner may view the list of data files to be acquired, which is issued by the blockchain network access subsystem, through the data owner device, and may send a data response pre-request to the blockchain network access subsystem through the data owner device when determining that there is a sharable data file therein.
And secondly, the block chain network access subsystem sends a data response pre-request.
In this step, the blockchain network access subsystem may send the received data response pre-request to the blockchain subsystem.
And thirdly, checking the identity by the block chain subsystem.
In this step, the blockchain subsystem may check the identity of the data owner device, and if the identity check passes, the fourth step may be continuously performed.
And fourthly, the block chain subsystem sends the public key.
In this step, the blockchain subsystem may send the public key corresponding to the data consumer device (the data consumer device corresponding to the data file that can be provided by the data owner device) to the blockchain network access subsystem.
And step five, the block chain network access subsystem sends a public key.
In this step, the blockchain network access subsystem may send the received public key to the data owner device that sent the data response pre-request.
And sixthly, the data owner equipment encrypts the data file and generates encryption information.
In this step, the data owning device may encrypt the data file by using the encryption key, and encrypt the encryption key by using the received public key to obtain the encrypted information.
And step seven, the data owner equipment sends a data response request.
In this step, the data owner device may send a data response request to the blockchain network access subsystem, where the data response request may carry encryption information and an encrypted data file.
And step eight, the block chain network access subsystem sends a data response request.
In this step, the blockchain network access subsystem may further send a data response request to the blockchain subsystem.
And ninthly, the block chain subsystem transfers the data file to the data storage subsystem.
In this step, the blockchain subsystem may forward the encrypted data file to the data storage subsystem.
And step ten, the block chain subsystem receives the storage path information.
In this step, the block chain subsystem may receive the storage path information fed back by the data storage subsystem.
The eleventh step, the blockchain subsystem records transaction information.
In this step, the blockchain subsystem may record relevant transaction information (e.g., information such as a storage path of the data file in the cloud storage system, an identifier of the data requester device, etc.) to the blockchain ledger.
And step twelve, the block chain subsystem sends a response success message.
In this step, the blockchain subsystem may send a response success message to the blockchain network access subsystem, prompting a successful response to a request for issuing a demand.
And step three, the block chain network access subsystem sends a response success message.
In this step, the blockchain network access subsystem may send a response success message to the data owner device, prompting the data owner device that the request for issuing the request response is successful.
And fourteenth, the data demand side equipment sends a data acquisition request.
In this step, the data demander may check, through the data demander device, a response status of the request issuing request issued by the data demander device in the blockchain network access subsystem, and may send, through the data demander device, a data acquisition request to the blockchain network access subsystem when it is determined that the request issuing request issued by the data demander device is successfully responded.
And step fifteen, the block chain network access subsystem sends a data acquisition request.
In this step, the blockchain network access subsystem may send a data acquisition request to the blockchain subsystem.
Sixthly, the block chain subsystem checks the identity.
In this step, the blockchain subsystem may check the identity of the data consumer device, and if the identity check passes, the next step may be continued.
Seventeenth, the block chain subsystem sends the encryption information and the storage path information.
In this step, the block subsystem may send the encryption information and the storage path information of the data file in the data storage subsystem, which is required to be acquired by the data acquisition request, to the block chain network access subsystem.
And eighteenth, downloading the data file by the block chain network access subsystem.
In this step, the blockchain network access subsystem may download the encrypted data file from the data storage subsystem according to the received storage path information.
And step nineteenth, the data storage subsystem provides the data file.
In this step, the data storage subsystem may provide the encrypted data file that the blockchain network access subsystem requires to download to the blockchain network access subsystem according to the download request of the blockchain network access subsystem.
And twentieth, the data demand side equipment acquires the data file.
In this step, the data consumer device may obtain the encrypted data file and the encrypted information from the blockchain network access subsystem.
And twenty-first step, the data demand side equipment decrypts the data file.
In this step, the data requiring party device may decrypt the encrypted information using the private key to obtain an encrypted key, and decrypt the encrypted data file using the encrypted key to obtain the data file shared by the data owning party device.
That is, the data owner may view the on-chain data file requirement list in the blockchain network access subsystem, and may select a record in the list by the data owner device to initiate a data sharing response application to the blockchain subsystem. After the verification identity of the block chain subsystem end passes, the public key corresponding to the data demand side device corresponding to the record can be returned to the data owner device, the data owner generates a file encryption symmetric key, encrypts the data file, encrypts the symmetric key by using the public key corresponding to the data demand side device, uploads the encrypted information, the encrypted data file, brief description of the data file and the like to the block chain subsystem, and the block chain subsystem records the transaction and forwards the encrypted data file to a data storage subsystem (the data storage subsystem can be but is not limited to a cloud storage system or a file storage system). After the data file is stored, the block chain subsystem may forward the data file storage path, the encryption information, the brief description of the data file, and the like to the data consumer device. The data demand side equipment can download the encrypted file, encrypt information after decrypting with the private key to obtain an encrypted key, and decrypt the downloaded data file to obtain the shared data file.
Based on the same inventive concept, embodiments of the present invention provide the following apparatus and medium.
An embodiment of the present invention provides a data sharing device, which may have a structure as shown in fig. 15, and includes a processor 61, a communication interface 62, a memory 63, and a communication bus 64, where the processor 61, the communication interface 62, and the memory 63 complete mutual communication through the communication bus 64;
the memory 63 is used for storing computer programs;
the processor 61 is configured to implement the steps of the above method embodiments of the present invention when executing the program stored in the memory.
Optionally, the processor 61 may specifically include a Central Processing Unit (CPU), an Application Specific Integrated Circuit (ASIC), one or more Integrated circuits for controlling program execution, a hardware Circuit developed by using a Field Programmable Gate Array (FPGA), and a baseband processor.
Optionally, the processor 61 may include at least one processing core.
Alternatively, the Memory 63 may include a Read-Only Memory (ROM), a Random Access Memory (RAM), and a disk Memory. The memory 63 is used for storing data required by the at least one processor 61 during operation. The number of the memory 63 may be one or more.
An embodiment of the present invention further provides a non-volatile computer storage medium, where the computer storage medium stores an executable program, and when the executable program is executed by a processor, the method provided in the foregoing method embodiment of the present invention is implemented.
In particular implementations, computer storage media may include: various storage media capable of storing program codes, such as a Universal Serial Bus Flash Drive (USB), a mobile hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
In the embodiments of the present invention, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described embodiments of the apparatus are merely illustrative, and for example, the described unit or division of units is only one division of logical functions, and there may be other divisions when actually implemented, for example, a plurality of units or components may be combined or may be integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical or other form.
The functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may be an independent physical module.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, all or part of the technical solutions of the embodiments of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device, such as a personal computer, a server, or a network device, or a processor (processor) to execute all or part of the steps of the methods according to the embodiments of the present invention. And the aforementioned storage medium includes: various media capable of storing program codes, such as a Universal Serial Bus Flash Drive (usb Flash Drive), a removable hard disk, a ROM, a RAM, a magnetic disk, or an optical disk.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While preferred embodiments of the present invention have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all such alterations and modifications as fall within the scope of the invention.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (20)

1. A data sharing system, the system comprising a blockchain network access subsystem, a data storage subsystem, and a blockchain subsystem, wherein:
the block chain network access subsystem is used for receiving a data acquisition request sent by data demand side equipment and sending the data acquisition request to the block chain subsystem; the data acquisition request is sent by the data demand side equipment according to the brief description of the data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
the data storage subsystem is used for storing data files;
the block chain subsystem is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
2. The system of claim 1, wherein the blockchain subsystem is specifically configured to determine a sharing manner of the data file requested to be obtained by the data obtaining request and storage path information in the data storage subsystem, and provide the data file stored in the data storage subsystem to the data demander device according to the determined sharing manner and the storage path information in the data storage subsystem.
3. The system of claim 2, wherein the data files held by the data storage subsystem are obtained by:
the block chain network access subsystem receives a data sharing request sent by data owner equipment and sends the data sharing request to the block chain subsystem, wherein the data sharing request comprises a data file to be shared by the data owner equipment, a brief description of the data file and a sharing mode of the data file;
and the block chain subsystem transfers the data file to be shared to the data storage subsystem, records the storage path information and sharing mode of the data file in the data storage subsystem, and issues a brief description of the data file through the block chain network access subsystem.
4. The system according to claim 3, wherein when the sharing mode of the data file to be shared included in the data sharing request is an approval mode, the data file to be shared is the data file to be shared after being encrypted by the encrypted key;
the block chain subsystem transfers the data file to be shared to the data storage subsystem, and comprises:
and transferring the data file to be shared after being encrypted by the encryption key to the data storage subsystem.
5. The system of claim 4, wherein the data acquisition request carries a public key corresponding to the data consumer device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and includes:
when the determined sharing mode is the public mode, sending the storage path information of the data file required to be acquired by the determined data acquisition request in the data storage subsystem to the block chain network access subsystem;
and the block chain network access subsystem is further configured to download a data file from the data storage subsystem according to the received storage path information, so that the data requiring party device can obtain the data file.
6. The system of claim 4, wherein the data acquisition request carries a public key corresponding to the data consumer device;
the block chain subsystem provides the data file stored in the data storage subsystem to the data demand side device according to the determined sharing mode and the storage path information in the data storage subsystem, and includes:
when the determined sharing mode is the approval mode, sending the received data acquisition request to the data owner equipment corresponding to the data file required to be acquired;
if an acquisition permission notification message sent by the data owner device through the block chain network access subsystem is received, the acquisition permission notification message carries encryption information, the encryption information is obtained by encrypting an encryption key corresponding to the data file required to be acquired by the data owner device through the public key, and the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem are sent to the data demand party device;
the block chain network access subsystem is further configured to receive the storage path information sent by the data demand side device, download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file to the data demand side device, so that the data demand side device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
7. A method for data sharing, the method comprising:
receiving a data acquisition request sent by data demand side equipment, wherein the data acquisition request is sent by the data demand side equipment according to a brief description of a data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
and sending the data acquisition request to a block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
8. A method for data sharing, the method comprising:
receiving a data acquisition request sent by a block chain network access subsystem;
determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem to the data demand side equipment according to the determined storage path information in the data storage subsystem;
the data acquisition request sent by the blockchain network access subsystem is sent by the data demand side device according to the brief description of the data file issued by the blockchain network access subsystem, and the determined data file required to be acquired.
9. A data sharing apparatus, the apparatus comprising:
the receiving module is used for receiving a data acquisition request sent by data demander equipment, wherein the data acquisition request is sent by the data demander equipment according to a brief description of a data file issued by the block chain network access subsystem and aiming at the determined data file required to be acquired;
the sending module is configured to send the data acquisition request received by the receiving module to a block chain subsystem, so that the block chain subsystem determines storage path information of a data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provides the data file stored in the data storage subsystem to the data demanding side device according to the determined storage path information in the data storage subsystem.
10. A data sharing apparatus, the apparatus comprising:
the receiving module is used for receiving a data acquisition request sent by the block chain network access subsystem;
the sharing module is used for determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem;
the data acquisition request sent by the blockchain network access subsystem is sent by the data demand side device according to the brief description of the data file issued by the blockchain network access subsystem, and the determined data file required to be acquired.
11. A data sharing system, the system comprising a blockchain network access subsystem, a data storage subsystem, and a blockchain subsystem, wherein:
the block chain network access subsystem is used for receiving a data acquisition request sent by data demand side equipment and sending the data acquisition request to the block chain subsystem; the data acquisition request is used for acquiring a data file provided by the data owner equipment according to the requirement release request sent by the data demander equipment; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
the data storage subsystem is used for storing data files;
the block chain subsystem is configured to determine storage path information of the data file in the data storage subsystem, where the data file is required to be acquired by the data acquisition request, and provide the data file stored in the data storage subsystem to the data consumer device according to the determined storage path information in the data storage subsystem.
12. The system of claim 11, wherein the data files held by the data storage subsystem are obtained by:
the block chain network access subsystem receives a demand release request sent by the data demander equipment and sends the demand release request to the block chain subsystem; receiving a data response request sent by the data owner equipment, and sending the data response request to the block chain subsystem; the data response request comprises a data file provided by a brief description of the data file corresponding to the demand release request;
the blockchain subsystem issues a brief description of the data file included in the demand issue request; and when the data response request is received, the data file included in the data response request is transferred to the data storage subsystem, and the storage path information of the data file in the data storage subsystem is recorded.
13. The system of claim 12, wherein the requirement issuance request carries a public key corresponding to the data demander device;
the block chain subsystem is further configured to send the public key to the data owner device through the block chain network access subsystem according to a received data response pre-request sent by the data owner device through the block chain network access subsystem before receiving the data response request;
the data response request comprises a data file which is provided by a brief description of the data file corresponding to the demand issue request and encrypted by an encrypted secret key, and encrypted information, wherein the encrypted information is obtained by encrypting the encrypted secret key corresponding to the data file by using the public key;
when receiving the data response request, the block chain subsystem transfers the data file included in the data response request to the data storage subsystem, and records storage path information of the data file in the data storage subsystem, including:
and when the data response request is received, transferring the data file which is included in the data response request and is encrypted by the encrypted secret key to the data storage subsystem, and recording the storage path information of the data file in the data storage subsystem and the encryption information.
14. The system of claim 13, wherein the blockchain subsystem, based on the determined storage path information at the data storage subsystem, provides the data files stored in the data storage subsystem to the data consumer device, comprising:
sending the encryption information and the determined storage path information of the data file required to be acquired in the data storage subsystem to the block chain network access subsystem;
the block chain network access subsystem is further configured to download a data file from the data storage subsystem according to the received storage path information, and send the downloaded data file and the received encryption information to the data requiring party device, so that the data requiring party device decrypts the downloaded data file according to an encryption key obtained by decrypting the encryption information with a private key, and obtains the decrypted data file.
15. A method for data sharing, the method comprising:
receiving a data acquisition request sent by data demand side equipment, wherein the data acquisition request is used for acquiring a data file provided by data owner equipment according to a demand release request sent by the data demand side equipment; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and sending the data acquisition request to the block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
16. A method for data sharing, the method comprising:
receiving a data acquisition request sent by a block chain network access subsystem, wherein the data acquisition request is used for acquiring a data file provided by a data owner device according to a demand release request sent by a data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem to the data demand side equipment according to the determined storage path information in the data storage subsystem.
17. A data sharing apparatus, the apparatus comprising:
the data acquisition module is used for acquiring a data file provided by a data owner device according to a requirement release request sent by the data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and the sending module is used for sending the data acquisition request to the block chain subsystem so that the block chain subsystem determines the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and provides the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
18. A data sharing apparatus, the apparatus comprising:
the system comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a data acquisition request sent by a block chain network access subsystem, and the data acquisition request is used for acquiring a data file provided by a data owner device according to a request issuing request sent by a data demander device; the requirement issuing request comprises a brief description of the data file corresponding to the data file required to be acquired by the data requiring side equipment;
and the sharing module is used for determining the storage path information of the data file required to be acquired by the data acquisition request in the data storage subsystem, and providing the data file stored in the data storage subsystem for the data demand side equipment according to the determined storage path information in the data storage subsystem.
19. A non-transitory computer storage medium storing an executable program for execution by a processor to perform the method of any one of claims 7 to 8 or 15 to 16.
20. A data sharing device is characterized by comprising a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory are communicated with each other through the communication bus;
the memory is used for storing a computer program;
the processor, when executing the program stored in the memory, implements the method steps of any of claims 7-8 or 15-16.
CN202011017495.0A 2020-09-24 2020-09-24 Data sharing system, method, device, medium and equipment Pending CN114257605A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011017495.0A CN114257605A (en) 2020-09-24 2020-09-24 Data sharing system, method, device, medium and equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011017495.0A CN114257605A (en) 2020-09-24 2020-09-24 Data sharing system, method, device, medium and equipment

Publications (1)

Publication Number Publication Date
CN114257605A true CN114257605A (en) 2022-03-29

Family

ID=80788859

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011017495.0A Pending CN114257605A (en) 2020-09-24 2020-09-24 Data sharing system, method, device, medium and equipment

Country Status (1)

Country Link
CN (1) CN114257605A (en)

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109347941A (en) * 2018-10-10 2019-02-15 南京简诺特智能科技有限公司 A kind of data sharing platform and its implementation based on block chain
CN109862103A (en) * 2019-02-26 2019-06-07 上海南潮信息科技有限公司 File data secure sharing method and device based on block chain
US20190215157A1 (en) * 2017-03-03 2019-07-11 Tencent Technology (Shenzhen) Company Limited Information storage method, device, and computer-readable storage medium
CN110602206A (en) * 2019-09-12 2019-12-20 腾讯科技(深圳)有限公司 Data sharing method and device based on block chain and storage medium
CN110688261A (en) * 2019-11-13 2020-01-14 杭州新链科技有限公司 Heterogeneous electronic file cloud disaster recovery system based on block chain
CN111382463A (en) * 2020-04-02 2020-07-07 中国工商银行股份有限公司 Block chain system and method based on stream data
CN111416704A (en) * 2020-03-17 2020-07-14 中国建设银行股份有限公司 Data processing method, device and system based on block chain
KR20200085095A (en) * 2019-01-04 2020-07-14 삼성전자주식회사 Electronic apparatus and method for managing data based on block chain
CN111541753A (en) * 2020-04-16 2020-08-14 深圳市网心科技有限公司 Distributed storage system, method, computer device and medium for block chain data

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190215157A1 (en) * 2017-03-03 2019-07-11 Tencent Technology (Shenzhen) Company Limited Information storage method, device, and computer-readable storage medium
CN109347941A (en) * 2018-10-10 2019-02-15 南京简诺特智能科技有限公司 A kind of data sharing platform and its implementation based on block chain
KR20200085095A (en) * 2019-01-04 2020-07-14 삼성전자주식회사 Electronic apparatus and method for managing data based on block chain
CN109862103A (en) * 2019-02-26 2019-06-07 上海南潮信息科技有限公司 File data secure sharing method and device based on block chain
CN110602206A (en) * 2019-09-12 2019-12-20 腾讯科技(深圳)有限公司 Data sharing method and device based on block chain and storage medium
CN110688261A (en) * 2019-11-13 2020-01-14 杭州新链科技有限公司 Heterogeneous electronic file cloud disaster recovery system based on block chain
CN111416704A (en) * 2020-03-17 2020-07-14 中国建设银行股份有限公司 Data processing method, device and system based on block chain
CN111382463A (en) * 2020-04-02 2020-07-07 中国工商银行股份有限公司 Block chain system and method based on stream data
CN111541753A (en) * 2020-04-16 2020-08-14 深圳市网心科技有限公司 Distributed storage system, method, computer device and medium for block chain data

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
周艺华等: "基于区块链的数据管理方案", 《信息安全研究》, no. 1, 31 January 2020 (2020-01-31), pages 37 - 45 *

Similar Documents

Publication Publication Date Title
CN110493261B (en) Verification code obtaining method based on block chain, client, server and storage medium
CN105553951B (en) Data transmission method and device
CN110061845A (en) Block chain data ciphering method, device, computer equipment and storage medium
CN101605137B (en) Safe distribution file system
CN110460439A (en) Information transferring method, device, client, server-side and storage medium
CA3191453A1 (en) Transferring cryptocurrency from a remote limited access wallet
CN106209739A (en) Cloud storage method and system
CN110502887A (en) Electric paying method and device
CN101464932B (en) Cooperation method and system for hardware security units, and its application apparatus
CN108173644A (en) Data transmission encryption method and device, storage medium, equipment and server
CN109067528A (en) Crypto-operation, method, cryptographic service platform and the equipment for creating working key
CN110601830B (en) Key management method, device, equipment and storage medium based on block chain
CN104917807A (en) Resource transfer method, apparatus and system
CN109547218B (en) Alliance link node key distribution and backup system for improving BIP (building information processing) protocol
CN110569666A (en) data statistics method and device based on block chain
CN111723384B (en) Data processing method, system and equipment
CN113886856A (en) Dual verifiable cloud storage method based on block chain
CN111131416A (en) Business service providing method and device, storage medium and electronic device
CN103973440A (en) File cloud security management method and system based on CPK
CN109005184A (en) File encrypting method and device, storage medium, terminal
CN113472720A (en) Digital certificate key processing method and device, terminal equipment and storage medium
CN108809907A (en) A kind of certificate request message sending method, method of reseptance and device
CN111193703A (en) Communication apparatus and communication method used in distributed network
WO2020082226A1 (en) Method and system for transferring data in a blockchain system
CN113326525A (en) Data processing method and device based on intelligent contract

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination