CN114357490A - A method, device and system for data sharing based on blockchain - Google Patents

Abstract

This application provides a blockchain-based data sharing method, device and system, which are used in scientific research to provide various institutions with a scientific research data collection and sharing alliance blockchain network (Science Collection Sharing Blockchain, SCSB), so on the premise of sharing data, it can overcome the problems of data leakage and network security risks. The method includes: after joining the consortium blockchain platform, the blockchain node obtains the scientific research data of scientific research institutions or the condition data of the hospital from the off-chain collection node that it is responsible for in the blockchain node network organization to which it belongs; The node will package the scientific research data or disease data obtained by the off-chain collection node according to the data requirements of the alliance blockchain platform to obtain the data to be uploaded; the blockchain node will submit the data to be uploaded to the alliance blockchain platform. , and write into the ledger after reaching a consensus among different blockchain nodes in the alliance blockchain platform to provide data sharing services.

Description

A method, device and system for data sharing based on blockchain

technical field

The present application relates to the field of data sharing, and in particular to a method, device and system for data sharing based on blockchain.

Background technique

Ensuring data security is a necessary prerequisite for data sharing. At present, my country's scientific research data sharing is still in its infancy, and it faces greater security risks and governance dilemmas, mainly in data leakage and network security.

First, the risk of leakage of sensitive data and private data increases with data mining, data integration and exchange. In the era of big data, data development and application often infringe on the security and privacy of the public, enterprises, organizations, and even the country, while scientific research data is large in volume, widely sourced, and stored in a centralized manner, making data theft, abuse, and transaction easier. The organic integration with different data sources may also lead to the gradual mining of some characteristics of private data, making sensitive data at risk of being leaked and infringed, causing many scientific research institutions to be reluctant to share, worrying about potential security risks due to data sharing. , afraid of taking responsibility. Therefore, protecting data privacy has become a necessary premise and necessary guarantee for realizing data sharing.

Second, the structure of the central platform architecture is more vulnerable to cyber attacks. At present, central scientific research institutions are the main owners of scientific research data. General big data storage, transmission and processing are carried out through highly centralized central servers. Many scientific research institutions have begun to store data resources by purchasing cloud computing services, which further leads to Data is centralized in various clouds. Once the server is attacked by external hackers, it will inevitably seriously threaten the data security, and even cause the database to freeze, data loss, forgery or malicious tampering and other consequences. This involves not only the micro data of the public and institutions, but also the macro data related to scientific research security and research security issues. After being attacked, it will threaten national security and cause immeasurable losses to the whole society.

From the above point of view, in terms of scientific research, the data sharing solutions in the prior art have the problems of data leakage and network security risks.

SUMMARY OF THE INVENTION

This application provides a blockchain-based data sharing method, device and system, which are used in scientific research to provide various institutions with a scientific research data collection and sharing alliance blockchain network (ScienceCollection Sharing Blockchain, SCSB), so on the premise of sharing data, it can overcome the problems of data leakage and network security risks.

In a first aspect, the present application provides a blockchain-based data sharing method, the method comprising:

After joining the consortium blockchain platform composed of different scientific research institutions and different hospitals, the blockchain nodes in the blockchain node network organization to which they belong, obtain the scientific research data of scientific research institutions or the conditions of the hospital from the off-chain collection nodes that they are responsible for Data, blockchain nodes and off-chain collection nodes belong to the same organization registered on the alliance blockchain platform, and off-chain collection nodes are nodes outside the alliance blockchain that provide data collection services for blockchain nodes;

The blockchain node will package the scientific research data or disease data obtained from the off-chain collection node according to the data requirements of the alliance blockchain platform to obtain the data to be uploaded;

The blockchain node submits the data to be on-chain to the alliance blockchain platform, and writes it to the ledger after reaching a consensus among different blockchain nodes in the alliance blockchain platform to provide data sharing services.

In combination with the first aspect of the present application, in the first possible implementation manner of the first aspect of the present application, the blockchain node in the blockchain node network organization to which it belongs, obtains the scientific research of scientific research institutions from the off-chain collection node that it is responsible for Before data or hospital condition data, methods also include:

To build an alliance blockchain platform, the alliance blockchain platform is designed as a six-layer platform structure. The six-layer platform structure includes data layer, network layer, security layer, consensus incentive layer, contract layer and application business layer.

The data layer encapsulates the block data, the chain structure, the timestamp on the block header, the hash function, the Merkle tree, the random number on the block tail, and the public key on the chain;

The network layer encapsulates the networking method, message dissemination protocol and data verification mechanism of the blockchain system;

The security layer provides security guarantee for the entire consortium blockchain system;

The consensus incentive layer encapsulates the consensus algorithm and incentive mechanism based on statistical capabilities and statistical workload proof, and builds a consensus incentive mechanism for data providers, intermediaries, and data users to participate;

The contract layer, which encapsulates scripts, algorithms and smart contracts, turns the blockchain from an encapsulated system into a contract mechanism that can be programmed for secondary development or even intelligent operation;

The application business layer, located at the top of the six-layer platform structure, is an application program implemented by code.

In combination with the first aspect of the present application, in the second possible implementation manner of the first aspect of the present application, the blockchain node stores a data recording pool and a data controller;

The data record pool stores the block data of the consortium blockchain;

The data controller is responsible for integrating scientific research data or disease data uploaded by off-chain collection nodes, reviewing the quality of collected data and controlling shared access to data according to smart contracts.

In combination with the first aspect of the present application, in the third possible implementation manner of the first aspect of the present application, the blockchain node in the blockchain node network organization to which it belongs, obtains the scientific research of the scientific research institution from the off-chain collection node that it is responsible for Before data or hospital condition data, methods also include:

In the data collection node access stage, the off-chain collection node accesses the alliance blockchain platform through the blockchain node, and becomes a node outside the alliance blockchain that provides data collection services for the blockchain node. Blockchain nodes use smart contracts to automatically update, maintain, review and import the basic unit directory library of off-chain collection nodes. Organization administrators use the real-time updated directory library to upload the basic information of off-chain collection nodes within their organizations to their public keys. Chain storage ensures the matching relationship between the public key and the off-chain collection node, and the content of the public key cannot be tampered with. The public key is obtained from the alliance blockchain platform. If the acquisition fails, it indicates that the data collection node has not been accessed by the organization administrator. Enter, refuse subsequent operations, and provide the outermost security protection for the alliance blockchain platform.

In combination with the third possible implementation manner of the first aspect of the present application, in the fourth possible implementation manner of the first aspect of the present application, the method further includes:

In the data collection stage, in order to ensure that the collected data is not tampered with during the reporting process, and that the off-chain collection nodes and blockchain nodes are not attacked by illegal devices, the blockchain platform uses the public, The private key adopts a two-way signature verification mechanism for identification and data confirmation between off-chain collection nodes and blockchain nodes.

In combination with the first aspect of the present application, in the fifth possible implementation manner of the first aspect of the present application, in the process of consensus among different blockchain nodes in the consortium blockchain platform to treat the on-chain data, the statistical ability is the most important. The blockchain node that quickly calculates a valid result is used as the master node in the current consensus process, and the rest of the blockchain nodes are used as slave nodes. The Byzantine Fault Tolerance (PBFT) consensus mechanism is used to perform block consensus and reach a consensus. After that, the current data blocks are stored in the alliance blockchain platform in a sequential manner according to the time sequence, and the master node is rewarded with alliance points for recording the data.

In combination with the first aspect of the present application, in the sixth possible implementation manner of the first aspect of the present application, in the process of data sharing, a Merkle tree structure is used to perform hierarchical encryption and multi-level encryption. According to the difference between the three Merkle trees in the block Features, statistical data sharing on the alliance blockchain platform is divided into three different levels:

The first level, transaction statistics Merkle tree;

The second level, the overall statistical Merkle tree;

The third level, individual statistics Merkle tree.

In a second aspect, the present application provides a blockchain-based data sharing device, the device comprising:

The acquisition unit is used to obtain scientific research data of scientific research institutions or hospital data from the off-chain collection nodes under the responsibility of the affiliated blockchain node network organization after joining the consortium blockchain platform composed of different scientific research institutions and different hospitals. For disease data, blockchain nodes and off-chain collection nodes belong to the same organization registered on the alliance blockchain platform, and off-chain collection nodes are nodes outside the alliance blockchain that provide data collection services for blockchain nodes;

The packaging unit is used to package the scientific research data or disease data obtained from the off-chain collection nodes according to the data requirements of the alliance blockchain platform to obtain the data to be uploaded;

The chaining unit is used to submit the data to be chained to the alliance blockchain platform, and write it into the ledger after reaching a consensus among different blockchain nodes in the alliance blockchain platform to provide data sharing services.

In combination with the second aspect of the present application, in the first possible implementation manner of the second aspect of the present application, the blockchain node in the blockchain node network organization to which it belongs, obtains the scientific research of the scientific research institution from the off-chain collection node that it is responsible for Before data or hospital condition data, methods also include:

To build an alliance blockchain platform, the alliance blockchain platform is designed as a six-layer platform structure. The six-layer platform structure includes data layer, network layer, security layer, consensus incentive layer, contract layer and application business layer.

The data layer encapsulates the block data, the chain structure, the timestamp on the block header, the hash function, the Merkle tree, the random number on the block tail, and the public key on the chain;

The network layer encapsulates the networking method, message dissemination protocol and data verification mechanism of the blockchain system;

The security layer provides security guarantee for the entire consortium blockchain system;

The consensus incentive layer encapsulates the consensus algorithm and incentive mechanism based on statistical capabilities and statistical workload proof, and builds a consensus incentive mechanism for data providers, intermediaries, and data users to participate;

The contract layer, which encapsulates scripts, algorithms and smart contracts, turns the blockchain from an encapsulated system into a contract mechanism that can be programmed for secondary development or even intelligent operation;

The application business layer, located at the top of the six-layer platform structure, is an application program implemented by code.

In combination with the second aspect of the present application, in the second possible implementation manner of the second aspect of the present application, the blockchain node stores a data recording pool and a data controller;

The data record pool stores the block data of the consortium blockchain;

The data controller is responsible for integrating scientific research data or disease data uploaded by off-chain collection nodes, reviewing the quality of collected data and controlling shared access to data according to smart contracts.

In combination with the second aspect of the present application, in the third possible implementation manner of the second aspect of the present application, in the data acquisition node access stage, the off-chain acquisition node accesses the consortium blockchain platform through the blockchain node, and becomes a member of the consortium. A node outside the blockchain that provides data collection services for blockchain nodes. The blockchain node uses smart contracts to automatically update, maintain, review and import the basic unit directory library of off-chain collection nodes, organize administrators Through the real-time updated directory library, the basic information of the off-chain collection node and the public key of the affiliated organization are stored on the chain, which ensures the matching relationship between the public key and the off-chain collection node, and the content of the public key cannot be tampered with. Obtained from the alliance blockchain platform. If the acquisition fails, it indicates that the data collection node has not been accessed by the organization administrator, and subsequent operations are refused, providing the outermost security protection for the alliance blockchain platform.

In combination with the third possible implementation manner of the second aspect of the present application, in the data collection stage, in order to ensure that the collected data is not tampered with during the reporting process, and that off-chain collection nodes and blockchain nodes are not attacked by illegal devices, The blockchain platform uses the public and private keys generated during the access phase of the data acquisition node, and adopts a two-way signature verification mechanism to identify and confirm the identity and data between the off-chain acquisition node and the blockchain node.

In combination with the second aspect of the present application, in the fifth possible implementation manner of the second aspect of the present application, in the process of consensus among different blockchain nodes in the consortium blockchain platform to treat the data on the chain, the statistical ability is the most important. The blockchain node that quickly calculates a valid result is used as the master node in the current consensus process, and the remaining blockchain nodes are used as slave nodes. The PBFT consensus mechanism is adopted for block consensus. After reaching a consensus, the current data area is chronologically ordered. Blocks are stored in the consortium blockchain platform in a sequential manner, and masternodes are rewarded with consortium points for recording data.

In combination with the second aspect of the present application, in the sixth possible implementation manner of the second aspect of the present application, in the process of data sharing, a Merkle tree structure is used to perform hierarchical encryption and multi-level encryption. According to the difference between the three Merkle trees in the block Features, statistical data sharing on the alliance blockchain platform is divided into three different levels:

The first level, transaction statistics Merkle tree;

The second level, the overall statistical Merkle tree;

The third level, individual statistics Merkle tree.

In a third aspect, the present application provides a blockchain-based data sharing system. The system includes a blockchain node and an off-chain collection node. Both the blockchain node and the off-chain collection node include a processor and a memory, and the memory stores There is a computer program, and when the processor calls the computer program in the memory, the method provided by the first aspect of the present application or any possible implementation manner of the first aspect of the present application is executed.

In a fourth aspect, the present application provides a computer-readable storage medium. The computer-readable storage medium stores a plurality of instructions, and the instructions are suitable for being loaded by a processor to execute the first aspect of the present application or any one of the first aspect of the present application. methods provided by a possible implementation.

It can be drawn from the above content that the present application has the following beneficial effects:

In terms of scientific research between scientific research institutions and hospitals, for the data sharing requirements involved, this application builds a consortium blockchain platform, each blockchain node corresponds to an organization, and the off-chain collection node is the blockchain The node collects the relevant data of the organization it belongs to, and then uploads it to the blockchain by the blockchain node, and provides data sharing services through the alliance blockchain platform, which ensures the security of data in the stages of input, storage, and access, and overcomes data leakage, network security risk issues and promote an efficient and safe research environment.

Description of drawings

In order to illustrate the technical solutions in the embodiments of the present application more clearly, the following briefly introduces the drawings that are used in the description of the embodiments. Obviously, the drawings in the following description are only some embodiments of the present application. For those skilled in the art, other drawings can also be obtained from these drawings without creative effort.

Fig. 1 is a kind of schematic flow chart of the data sharing method based on block chain of the application;

FIG. 2 is a schematic structural diagram of the alliance block chain platform of the application;

FIG. 3 is a schematic diagram of the architecture of the alliance block chain platform of the application;

FIG. 4 is a schematic diagram of an operation scenario of the alliance block chain platform of the application;

FIG. 5 is a schematic diagram of a scenario of accessing a collection node under a chain of the present application;

FIG. 6 is a schematic diagram of a scenario of collecting data for the application;

7 is a schematic structural diagram of a data sharing device based on blockchain of the present application;

FIG. 8 is a schematic structural diagram of the blockchain-based data sharing system of the present application.

Detailed ways

The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application. Obviously, the described embodiments are only a part of the embodiments of the present application, but not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by those skilled in the art without creative work fall within the protection scope of the present application.

The terms "first", "second" and the like in the description and claims of the present application and the above drawings are used to distinguish similar objects, and are not necessarily used to describe a specific order or sequence. It is to be understood that data so used may be interchanged under appropriate circumstances so that the embodiments described herein can be practiced in sequences other than those illustrated or described herein. Furthermore, the terms "comprising" and "having", and any variations thereof, are intended to cover non-exclusive inclusion, for example, a process, method, system, product or device comprising a series of steps or modules is not necessarily limited to those expressly listed Rather, those steps or modules may include other steps or modules not expressly listed or inherent to the process, method, product or apparatus. The naming or numbering of steps in this application does not mean that the steps in the method flow must be executed in the time/logical sequence indicated by the naming or numbering, and the named or numbered process steps can be implemented according to the The technical purpose is to change the execution order, as long as the same or similar technical effects can be achieved.

The division of modules in this application is a logical division. In practical applications, there may be other divisions. For example, multiple modules may be combined or integrated into another system, or some features may be ignored. , or not implemented, in addition, the shown or discussed mutual coupling or direct coupling or communication connection may be through some interfaces, and the indirect coupling or communication connection between modules may be electrical or other similar forms. There are no restrictions in the application. In addition, the modules or sub-modules described as separate components may or may not be physically separated, may or may not be physical modules, or may be distributed into multiple circuit modules, and some or all of them may be selected according to actual needs. module to achieve the purpose of the solution of this application.

Before introducing the blockchain-based data sharing method provided by this application, the background content involved in this application is first introduced.

The blockchain-based data sharing method, device and computer-readable storage medium provided in this application can be applied to a blockchain-based data sharing system, and can be used in scientific research, by building an alliance blockchain platform, for various institutions Provide SCSB, so on the premise of sharing data, to overcome the problems of data leakage and network security risks.

For the blockchain-based data sharing method mentioned in this application, the executive body may be a blockchain-based data sharing device, or a blockchain-based data sharing system integrating the blockchain-based data sharing device, The blockchain-based data sharing device can be implemented in hardware or software, and the blockchain nodes in the blockchain-based data sharing system can be servers, physical hosts, or user equipment (User Equipment, UE), etc. Type of device, UE can be a terminal device such as a smart phone, tablet computer, notebook computer, desktop computer or Personal Digital Assistant (PDA), and corresponds to a blockchain node, the system can also include and block The chain node belongs to the off-chain collection node of the same organization, which is used to provide the data collection service of the relevant organization for the affiliated organization and the blockchain node, that is to say, it can provide data for the data sharing service involved in the alliance blockchain platform. source.

Next, the blockchain-based data sharing method provided by this application will be introduced.

First, referring to FIG. 1, FIG. 1 shows a schematic flowchart of the blockchain-based data sharing method of the present application. The blockchain-based data sharing method provided by the present application may specifically include the following steps S101 to S103:

Step S101, after joining the consortium blockchain platform composed of different scientific research institutions and different hospitals, the blockchain node in the blockchain node network organization to which it belongs, obtains the scientific research data of the scientific research institution from the off-chain collection node that it is responsible for or The hospital's disease data, blockchain nodes and off-chain collection nodes belong to the same organization registered on the alliance blockchain platform. Off-chain collection nodes are outside the alliance blockchain and are used to provide data collection services for blockchain nodes. node;

It can be understood that, for the architecture of the consortium blockchain platform or the consortium blockchain network involved in the present application, reference may also be made to a schematic structural diagram of the consortium blockchain platform of the present application shown in FIG. 2 .

The alliance blockchain platform involved in this application is specifically composed of various scientific research institutions and hospitals. Each institution is configured as an organization in the alliance, and is reflected in the platform through blockchain nodes. In the distributed mode of the platform, the collection and sharing of scientific research data and disease data are realized through the alliance blockchain.

For each organization, it configures a blockchain node. Of course, it is also possible to configure two or more blockchain nodes to belong to the same organization depending on the specific application.

In the organization, in addition to the blockchain nodes, it can also include off-chain acquisition nodes other than the consortium blockchain platform. The off-chain acquisition nodes are easy to understand. Specifically, they are outside the consortium blockchain and are used for blockchain A node that provides data collection services, and an off-chain collection node can be configured in the form of a client in the organization.

In the context of the above-mentioned consortium blockchain platform, as the basis for normal data sharing, the on-chain sharing of data can be involved. At this time, the blockchain node can obtain data from the off-chain collection node.

It can be understood that for off-chain collection nodes, they can write relevant data, such as scientific research data of scientific research institutions or medical condition data of hospitals, so that data can be directly extracted from local to blockchain nodes; Relevant data is extracted from other connected devices and sent to the blockchain node.

Among them, in the process of obtaining the data to be uploaded, as a practical implementation method, on the one hand, the blockchain nodes can collect the current statistical data from the off-chain collection nodes in the organization from time to time; on the other hand, The off-chain collection node can also actively report statistical data to the blockchain node of the organization on a regular basis.

In addition, for the acquisition of the data to be uploaded, it can be understood that it is generally acquired under the guidance of the preset data type, data content or data storage address, so as to be used for scientific research.

Step S102, the blockchain node packs the scientific research data or disease data obtained from the off-chain collection node according to the data requirements of the alliance blockchain platform, and obtains the data to be uploaded;

It can be understood that after the blockchain node obtains the scientific research data or disease data that needs to be uploaded in the current organization, it can be packaged according to the requirements of the blockchain platform of the alliance and the requirements of the contract. , to get the data to be uploaded in standard format.

Among them, it may involve preset data processing such as data format conversion, abnormal data cleaning, and data fusion.

In step S103, the blockchain node submits the data to be uploaded to the consortium blockchain platform, and after reaching a consensus among different blockchain nodes in the consortium blockchain platform, it is written into the ledger to provide data sharing services.

It is understandable that in the process of uploading data on the alliance blockchain platform, it is executed based on the pre-configured consensus mechanism. When the consensus result is passed, the chaining can be completed normally and written into the ledger of the alliance blockchain platform. Subsequently, the data access service of the data to be chained can be provided according to the preset data access form, that is, providing data sharing service.

It can be seen from the embodiment shown in Fig. 1 that, in terms of scientific research between various scientific research institutions and hospitals, for the data sharing requirements involved, this application builds a consortium blockchain platform, each blockchain node corresponds to a Organization, the off-chain collection node collects the relevant data of the affiliated organization for the blockchain node, and then the blockchain node uploads the chain, and provides data sharing services through the alliance blockchain platform, ensuring data input, storage, access, etc. security in stages, overcome data leakage, network security risks, and promote an efficient and secure scientific research environment.

Further, for the details of the alliance blockchain platform, this application is also configured with further optimization schemes.

Before providing data sharing services through the consortium blockchain platform, the construction of the consortium blockchain platform can also be involved.

In this application, as another practical implementation, referring to a schematic diagram of the architecture of the consortium blockchain platform of the present application shown in FIG. 3 , the consortium blockchain platform can be designed as a six-layer platform structure. The platform structure specifically includes data layer, network layer, security layer, consensus incentive layer, contract layer and application business layer.

1. Data layer, which encapsulates all related data on the chain, such as block data, chain structure, timestamp on block header, hash function, Merkle tree, random number on block tail, and public key on the chain.

The data in the block mainly includes various scientific research data, patient disease data, etc. Merkle tree draws on the principle of Ethereum blockchain and designs three Merkle trees, namely Merkle tree for scientific research diseases (shared transaction records, data evaluation records using the block data structure obtained by the hash process), Merkle tree for medical diseases (the micro-subject is in the Aggregate data at different levels use the block data structure obtained by the hash process), and the overall statistical Merkle tree (the block data structure obtained by the hash process for many individual (similar) data sets). Through the establishment of different statistical Merkle trees, the proper separation of macroscopic comprehensive information and microscopic individual information is realized in data records, which not only satisfies the use of scientific research data at different levels, enhances the flexibility of data use rights, but also ensures that statistical data is safe, orderly and accessible. control.

2. The network layer, which encapsulates the networking method, message dissemination protocol and data verification mechanism of the blockchain system.

Connect the servers of different scientific research institutions, hospitals and even the servers of the supervisor through the P2P network, and design a specific communication protocol and data verification mechanism based on the actual statistical needs, so that every node in the statistical blockchain system can participate in the area. The verification and accounting process of block data not only solves the single-point failure problem caused by the centralized architecture, but also alleviates the security problems of the traditional central architecture.

3. Security layer, which provides security guarantee for the entire consortium blockchain system.

Through hash algorithm, asymmetric encryption technology and digital signature technology, data collection based on signature verification mechanism, data sharing based on multi-level authority management combined with multi-signature mechanism are realized in the entire network system, and the collection of nodes and blocks under the chain is carried out. Chain nodes and visitors perform identity verification and identity management to ensure the legal connection between off-chain collection nodes and their corresponding blockchain nodes, ensure that authorized visitors enter the corresponding access space, and ensure data security and non-repudiation sex.

4. Consensus incentive layer, which encapsulates the consensus algorithm and incentive mechanism based on statistical capabilities and statistical workload proof, and builds a consensus incentive mechanism for data providers, intermediaries, and data users to participate;

Let the decentralized statistical nodes reach a consensus on the validity of block data in the decentralized blockchain network, use the alliance points as a unified standard for internal incentive execution, through a unified operation method, combined with data quality scores, to data providers. , Statistics processors issue points, which can be exchanged for services, construct an ecosystem that releases data value, stimulate the activity of all parties involved in statistical data, encourage data circulation, and deepen data service content and business models.

5. The contract layer, which encapsulates scripts, algorithms and smart contracts, turns the blockchain from an encapsulated system into a contract mechanism that can be programmed for secondary development or even intelligent operation;

In the structure of the contract layer, smart contracts are required to implement the following functions:

(1) Account system: The public and private keys generated by asymmetric encryption of the blockchain are combined with each subject in the statistical data collection and sharing scenario to provide reliable, safe, convenient and interactive account management functions;

(2) Data management: realize basic data management functions such as data collection, data retrieval, data permission interaction, and data sharing;

(3) Data service: realize the processing and customization of data sharing service based on subscription model, data automatic integration and authorization process, and provide extensible customization functions for Data-as-a-Service (DaaS);

(4) Data quality evaluation: Realize the quantitative function of data quality evaluation, and realize the recording and calculation functions of scientific research data quality evaluation through data user evaluation feedback, data citation volume, data download volume statistics and data citation index h index.

6. The application business layer, located at the top of the six-layer platform structure, is an application program implemented by code.

The App and the Web system call smart contracts through the interface, and are responsible for providing users with statistical data services for mobile terminals and PC terminals in a visual way, including data collection, data query, data traceability, data analysis, data sharing, etc., through the combination of smart contracts. The consensus algorithm transfers repetitive and regular tasks such as data auditing, data proofreading, and data duplication checking to machines for execution. At the same time, various data analysis algorithm models are embedded in smart contracts to improve the efficiency and level of data analysis.

In addition, in terms of the operation of the consortium blockchain platform, as another practical implementation method, the blockchain node has a data recording pool and a data controller;

The data record pool stores the block data of the consortium chain;

The data controller is responsible for integrating scientific research data or disease data uploaded by off-chain collection nodes, reviewing the quality of collected data and controlling shared access to data according to smart contracts.

At the software level of the blockchain node, through the configuration of the data recording pool and the data controller, more efficient data processing can be achieved through a clear division of labor settings.

In addition, for the operation of the alliance blockchain platform, this application believes that it can be specifically composed of four parts: data collection, data review, data on-chain (consensus mechanism, data block generation), and data sharing. The overall working scene It can also be understood with reference to the schematic diagram of a running scenario of the alliance blockchain platform of the present application shown in FIG. 4 .

In the early data collection part, the whole process can go through the following three stages: the off-chain collection node access stage, the data collection stage, and the data storage stage.

As another practical implementation method, in the off-chain acquisition node access stage, the off-chain acquisition node can access the consortium blockchain platform through the blockchain node, and become outside the consortium blockchain and used for The blockchain node provides data collection services. Among them, the blockchain node uses smart contracts to automatically update, maintain, review and import the basic unit directory library of the off-chain acquisition node. The organization administrator uses the real-time updated directory library. The basic information of the off-chain collection node and the public key are stored on the chain within the organization, which ensures the matching relationship between the public key and the off-chain collection node, and the content of the public key cannot be tampered with. For the access process, please refer to the present example shown in Figure 5. A schematic diagram of a scenario for applying for access to a collection node under the chain, and the involved public key can be obtained from the alliance blockchain platform. If the acquisition fails, it indicates that the data collection node has not been accessed by the organization administrator, and subsequent operations are refused. The alliance blockchain platform provides the outermost security protection. In this process, the matching relationship between the public key and the off-chain collection node is guaranteed, and the content of the public key cannot be tampered with, providing a safe and reliable guarantee for subsequent data input.

Further, in the data collection stage, as another practical implementation method, in order to ensure that the collected data is not tampered with during the reporting process, and that off-chain collection nodes and blockchain nodes are not attacked by illegal devices, the The blockchain platform uses the public and private keys generated during the access stage of the data collection node, and adopts a two-way signature verification mechanism to identify and confirm the identity and data between the off-chain collection node and the blockchain node. The related processing flow can also refer to the figure. 6 shows a schematic diagram of a scene of collecting data in the present application for understanding.

In the stage of verifying the identity of the blockchain node by the off-chain acquisition node, the blockchain node uses its private key to sign the data acquisition request and send it to the off-chain acquisition node. Obtain the public key of the blockchain node, and then use the public key to verify the signature data of the blockchain node. If the signature is successful, the blockchain node identity verification is passed;

In the stage of blockchain node verification of off-chain collection node identity, the off-chain collection node uses its private key to sign the statistical data and send it to the blockchain node, and the blockchain node obtains the off-chain collection node from the alliance blockchain platform the public key, and then verify the signature data sent by it. If the verification is passed, it is considered that the identity authentication of the collection point has passed and the statistical data sent has not been modified during transmission. The off-chain acquisition node access stage is the same, the private key is used for signature and the public key is used for signature verification.

In the data storage stage, its main task is that the blockchain node uploads the scientific research data or disease data received in the collection stage to the blockchain. As the types and standard rules of data from different sources are inconsistent, the alliance nodes can automatically perform the review according to the code written on the smart contract, and check and verify against the type, standard, scope, quantity and other contents of the relevant data and electronic signatures. When any node data is not compliant or has not been reported over time, the corresponding code will be triggered to automatically issue a real-time warning of the entire network, and the content of the warning and the cause of the failure will be recorded on the blockchain to facilitate responsibility tracing. If it is verified that the data is safe, complete and valid, it can be stored in the local data recording pool. After a period of time, the blockchain node will package and integrate the valid data collected during this period into a data set, and the data set will be processed. Encryption and digital signatures ensure the legitimacy and verifiability of the dataset itself and its origin.

As another practical implementation method, in the process of consensus among different blockchain nodes in the alliance blockchain platform, the blockchain node with the fastest statistical ability to calculate the effective result is used as the In the current consensus process, the master node of the year, and the rest of the blockchain nodes are used as slave nodes, and the PBFT consensus mechanism is used for block consensus. After reaching a consensus, the current data blocks are stored in the consortium blockchain in a sequential manner according to the time sequence. In the platform, the master node is rewarded with alliance points for recording data. Under this formula incentive mechanism, the robustness of the entire system is guaranteed.

In the later data sharing part, that is, in the data sharing process, the application specifically adopts the Merkle tree structure to perform hierarchical encryption and multi-level encryption, which can prevent the problem of data leakage, and according to the three Merkle trees in the block According to different characteristics, the statistical data sharing on the alliance blockchain platform is divided into three different levels:

The first level, transaction statistics Merkle tree;

The second level, the overall statistical Merkle tree;

The third level, individual statistics Merkle tree.

Specifically, its content can refer to the following:

(1) Merkle tree of transaction statistics. Access to shared records and data evaluation records does not require any permissions. The scenarios in which blockchain nodes use smart contracts to share data mainly include the following processes:

When node a sends a data sharing request to node b, node b first checks the identity of node a. After the check is passed, it executes the smart contract according to the data access purpose, time and times contained in the request, and uses the public key of node a at the same time. Perform asymmetric encryption on the shared data with the private key of node b, and output the result. After node a receives the data, it decrypts the data through the public key of node b and its own private key, and performs data read access. The off-chain collection node only needs to Data sharing can be achieved by verifying its identity through the blockchain node of the organization.

(2) Overall statistical Merkle tree. The aggregated data of micro-subjects at different levels, that is, the access and sharing of macro-integrated data, is realized by the deployment of multi-level access and multi-signature access mechanism by each blockchain node according to the pre-agreed smart contract. According to the social attributes of visitors, they can be classified from three aspects: security level, jurisdiction, and function division. At the same time, macro-integrated data can be managed hierarchically according to the level of confidentiality and the scope to which it belongs. Disclosure, the scope of which corresponds to the jurisdiction in the attributes of the visitor, according to the relevant attributes of the shared subject and object, under specific policies, through the process of key generation, data encryption, multi-signature, and data decryption. Multi-level access control of statistical data .

(3) Individual statistics Merkle tree. The sharing of micro-individual data is authorized and controlled by the real holder of the data, the off-chain collection node, which uses its private key to encrypt individual data, and selects some data sharing by setting constraints such as the scope and time limit of data sharing. The program regulates the behavior of data visitors, mainly including the following processes:

When node c requests to share individual data from node d, node d first checks the identity of node c, and after reaching a consensus with node c, node d will set constraints to limit the scope, time, frequency, etc. of the shared data, and provide the private key Automatically decrypt the data for the smart contract, then automatically match the relevant data according to the constraints, and finally use the public key of node c to encrypt the data, and node c uses its own private key to decrypt the data to achieve data sharing.

The above is the introduction of the blockchain-based data sharing method provided by this application. In order to facilitate better implementation of the blockchain-based data sharing method provided by this application, this application also provides a blockchain-based data sharing method from the perspective of functional modules. data sharing device.

Referring to FIG. 7, FIG. 7 is a schematic structural diagram of a blockchain-based data sharing device in the present application. In this application, the blockchain-based data sharing device 700 may specifically include the following structures:

The obtaining unit 701 is used to obtain the scientific research data of the scientific research institution or the hospital from the off-chain collection node under the responsibility of the affiliated blockchain node network organization after joining the consortium blockchain platform composed of different scientific research institutions and different hospitals. The blockchain node and the off-chain collection node belong to the same organization registered on the alliance blockchain platform, and the off-chain collection node is the node outside the alliance blockchain that provides data collection services for the blockchain node. ;

The packaging unit 702 is used to package the scientific research data or disease data obtained from the off-chain collection nodes according to the data requirements of the alliance blockchain platform to obtain the data to be uploaded on the chain;

The chaining unit 703 is used to submit the data to be chained to the consortium blockchain platform, and write into the ledger after reaching a consensus among different blockchain nodes in the consortium blockchain platform, so as to provide data sharing services.

In another exemplary implementation manner, before the blockchain node acquires the scientific research data of the scientific research institution or the condition data of the hospital from the off-chain collection node that it is responsible for in the blockchain node network organization to which it belongs, the method further includes: :

To build an alliance blockchain platform, the alliance blockchain platform is designed as a six-layer platform structure. The six-layer platform structure includes data layer, network layer, security layer, consensus incentive layer, contract layer and application business layer.

Data layer, which encapsulates block data, chain structure, timestamp on block header, hash function, Merkle tree, random number on block tail, and public key on the chain;

The network layer encapsulates the networking method, message dissemination protocol and data verification mechanism of the blockchain system;

The security layer provides security guarantee for the entire consortium blockchain system;

The consensus incentive layer encapsulates the consensus algorithm and incentive mechanism based on statistical capabilities and statistical workload proof, and builds a consensus incentive mechanism for data providers, intermediaries, and data users to participate;

The contract layer, which encapsulates scripts, algorithms and smart contracts, turns the blockchain from an encapsulated system into a contract mechanism that can be programmed for secondary development or even intelligent operation;

The application business layer, located at the top of the six-layer platform structure, is an application program implemented by code.

In yet another exemplary implementation, the blockchain node stores a data record pool and a data controller;

The data record pool stores the block data of the consortium blockchain;

The data controller is responsible for integrating scientific research data or disease data uploaded by off-chain collection nodes, reviewing the quality of collected data and controlling shared access to data according to smart contracts.

In another exemplary implementation manner, in the data collection node access stage, the off-chain collection node accesses the consortium blockchain platform through the blockchain node, and becomes outside the consortium blockchain and is used for blockchain Chain nodes are nodes that provide data collection services. Among them, the blockchain nodes use smart contracts to automatically update, maintain, review and import the basic unit directory library of off-chain collection nodes. The organization administrator uses the real-time updated directory library to transfer the data within the organization. The basic information of the off-chain collection node and the public key are stored on the chain, which ensures the matching relationship between the public key and the off-chain collection node, and the content of the public key cannot be tampered with. The public key is obtained from the alliance blockchain platform. If the acquisition fails , indicating that the data collection node has not been accessed by the organization administrator, refuses subsequent operations, and provides the outermost security protection for the alliance blockchain platform.

In another exemplary implementation manner, in the data collection stage, in order to ensure that the collected data is not tampered with during the reporting process, and that off-chain collection nodes and blockchain nodes are not attacked by illegal devices, the blockchain platform Using the public and private keys generated during the access phase of the data collection node, a two-way signature verification mechanism is used to identify and confirm the identity and data between the off-chain collection node and the blockchain node.

In another exemplary implementation manner, in the process of consensus among different blockchain nodes in the consortium blockchain platform on the data to be on-chain, the blockchain node with the fastest statistical ability to calculate valid results is used as the In the current consensus process, the master node of the year, and the rest of the blockchain nodes are used as slave nodes. The PBFT consensus mechanism is adopted for block consensus. After reaching a consensus, the current data blocks are stored in the alliance block in a sequential manner according to the time sequence. In the chain platform, the master node is rewarded with alliance points for recording data.

In another exemplary implementation, in the process of data sharing, a Merkle tree structure is used to perform hierarchical encryption and multi-level encryption. According to the different characteristics of the three Merkle trees in the block, statistical data sharing on the alliance blockchain platform There are three different levels:

The first level, transaction statistics Merkle tree;

The second level, the overall statistical Merkle tree;

The third level, individual statistics Merkle tree.

The present application also provides a blockchain-based data sharing system from the perspective of hardware structure. The system includes blockchain nodes and off-chain collection nodes. Refer to FIG. 8 , which shows the blockchain-based data sharing system of the present application. A schematic diagram of the structure of the system. From an overall point of view, the blockchain-based data sharing system of the present application may include a processor 801, a memory 802, and an input and output device 803. The processor 801 is used to execute the computer program stored in the memory 802. Each step of the method in the embodiment corresponding to FIG. 1 is realized; or, when the processor 801 is used to execute the computer program stored in the memory 802, the functions of each unit in the embodiment corresponding to FIG. 7 are realized, and the memory 802 is used to store the processor 801 A computer program required to execute the blockchain-based data sharing method in the embodiment corresponding to FIG. 1 .

Exemplarily, the computer program may be divided into one or more modules/units, and the one or more modules/units are stored in the memory 802 and executed by the processor 801 to complete the present application. One or more modules/units may be a series of computer program instruction segments capable of performing specific functions, and the instruction segments are used to describe the execution process of the computer program in a computer apparatus.

The blockchain-based data sharing system may include, but is not limited to, a processor 801 , a memory 802 , and an input and output device 803 . Those skilled in the art can understand that the illustration is only an example of a blockchain-based data sharing system, and does not constitute a limitation on a blockchain-based data sharing system, and may include more or less components than those shown in the illustration, or Combining some components, or different components, for example, a blockchain-based data sharing system may also include network access devices, buses, etc., and the processor 801, memory 802, input and output devices 803, etc. are connected through the bus.

The processor 801 may be a central processing unit (Central Processing Unit, CPU), other general-purpose processors, a digital signal processor (Digital Signal Processor, DSP), an application specific integrated circuit (Application Specific Integrated Circuit, ASIC), a field-available processor Field-Programmable Gate Array (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, etc. The general-purpose processor can be a microprocessor or the processor can also be any conventional processor, etc. The processor is the control center of the blockchain-based data sharing system, and uses various interfaces and lines to connect various parts of the entire device.

The memory 802 can be used to store computer programs and/or modules, and the processor 801 implements various functions of the computer device by running or executing the computer programs and/or modules stored in the memory 802 and calling data stored in the memory 802. The memory 802 may mainly include a stored program area and a stored data area, wherein the stored program area may store an operating system, an application program required for at least one function, and the like; created data, etc. In addition, the memory may include high-speed random access memory, and may also include non-volatile memory such as hard disk, internal memory, plug-in hard disk, Smart Media Card (SMC), Secure Digital (SD) card , a flash memory card (Flash Card), at least one magnetic disk storage device, flash memory device, or other volatile solid-state storage device.

When the processor 801 is configured to execute the computer program stored in the memory 802, the following functions can be specifically implemented:

After joining the consortium blockchain platform composed of different scientific research institutions and different hospitals, the blockchain nodes in the blockchain node network organization to which they belong, obtain the scientific research data of scientific research institutions or the conditions of the hospital from the off-chain collection nodes that they are responsible for Data, blockchain nodes and off-chain collection nodes belong to the same organization registered on the alliance blockchain platform, and off-chain collection nodes are nodes outside the alliance blockchain that provide data collection services for blockchain nodes;

The blockchain node will package the scientific research data or disease data obtained from the off-chain collection node according to the data requirements of the alliance blockchain platform to obtain the data to be uploaded;

The blockchain node submits the data to be on-chain to the alliance blockchain platform, and writes it to the ledger after reaching a consensus among different blockchain nodes in the alliance blockchain platform to provide data sharing services.

Those skilled in the art can clearly understand that, for the convenience and conciseness of the description, the specific working process of the blockchain-based data sharing device, system and its corresponding units described above can be referred to in the corresponding embodiment of FIG. The description of the data sharing method of the blockchain will not be repeated here.

Those of ordinary skill in the art can understand that all or part of the steps in the various methods of the above embodiments can be completed by instructions, or by instructions that control relevant hardware, and the instructions can be stored in a computer-readable storage medium, and loaded and executed by the processor.

To this end, the present application provides a computer-readable storage medium, in which a plurality of instructions are stored, and the instructions can be loaded by a processor to execute the block chain-based data sharing method in the embodiment corresponding to FIG. 1 of the present application. Steps and specific operations can be referred to the description of the blockchain-based data sharing method in the embodiment corresponding to FIG. 1 , which will not be repeated here.

Wherein, the computer-readable storage medium may include: a read only memory (Read Only Memory, ROM), a random access memory (Random Access Memory, RAM), a magnetic disk or an optical disk, and the like.

Because the instructions stored in the computer-readable storage medium can execute the steps of the blockchain-based data sharing method in the embodiment corresponding to FIG. The beneficial effects that can be achieved by the data sharing method of the blockchain are detailed in the previous description, and will not be repeated here.

The blockchain-based data sharing method, device, system and computer-readable storage medium provided by the present application have been described in detail above. The principles and implementations of the present application are described with specific examples. The description is only used to help understand the method of the present application and its core idea; meanwhile, for those skilled in the art, according to the idea of the present application, there will be changes in the specific embodiment and the scope of application. In summary, The contents of this specification should not be construed as limiting the application.

Claims (10)

1. A method for sharing data based on a block chain, the method comprising:

after different scientific research institutions and alliance blockchain platforms formed by different hospitals are added, blockchain nodes acquire scientific research data of the scientific research institutions or illness state data of the hospitals from under-chain acquisition nodes in the belonged blockchain node network organization, wherein the blockchain nodes and the under-chain acquisition nodes belong to the same organization registered by the alliance blockchain platform, and the under-chain acquisition nodes are nodes which are positioned outside the alliance blockchain and used for providing data acquisition services for the blockchain nodes;

the block chain link packs the scientific research data or the illness state data acquired from the under-chain acquisition nodes according to the data requirements of the alliance block chain platform to obtain to-be-linked chain data;

and the block chain link point submits the data to be uplink to the alliance block chain platform, and an account book is written after consensus among different block chain nodes in the alliance block chain platform is achieved so as to provide data sharing service.

2. The method of claim 1, wherein the blockchain node, prior to obtaining scientific research data of a scientific research institution or medical data of a hospital from an under-chain collection node in charge of the blockchain node in the blockchain node network organization, further comprises:

constructing the block chain platform, wherein the block chain platform is designed into a six-layer platform structure, the six-layer platform structure comprises a data layer, a network layer, a security layer, a consensus excitation layer, a contract layer and an application service layer,

the data layer encapsulates block data, a chain structure, a timestamp on a block head, a hash function, a Merkle tree, a random number on a block tail and a public key on a chain;

the network layer encapsulates a networking mode, a message propagation protocol and a data verification mechanism of the block chain system;

the security layer provides security guarantee for the whole block chain system of the alliance;

the consensus excitation layer encapsulates a consensus algorithm and an excitation mechanism based on statistical capability and statistical workload certification, and constructs a consensus excitation mechanism for participation of data providers, intermediaries and data users;

the contract layer encapsulates scripts, algorithms and intelligent contracts, and changes a block chain from an encapsulated system into a contract mechanism which can be programmed to carry out secondary development and even intelligent operation;

the application service layer is positioned at the top end of the six-layer platform structure and is an application program realized by codes.

3. The method of claim 1, wherein the blockchain node stores a pool of data records and a data controller;

the data recording pool stores block data of a block chain of the alliance;

and the data controller is responsible for integrating the scientific research data or the illness state data uploaded by the acquisition nodes under the chain, and examining the quality of the acquired data and controlling the shared access of the data according to an intelligent contract.

4. The method of claim 1, wherein the blockchain node, prior to obtaining scientific research data of a scientific research institution or medical data of a hospital from an under-chain collection node in charge of the blockchain node in the blockchain node network organization, further comprises:

in the data acquisition node access stage, the downlink acquisition node accesses the alliance blockchain platform through the blockchain link point to become a node which is positioned outside the alliance blockchain and used for providing data acquisition service for the blockchain node, wherein, the block chain node utilizes an intelligent contract to automatically update, maintain, verify and import the basic unit directory library of the downlink acquisition node, an organization administrator stores the basic information of the downlink acquisition node and the public key in the organization through the directory library updated in real time, thereby ensuring the matching relationship between the public key and the downlink acquisition node and the non-falsification of the content of the public key, and if the public key is acquired from the block chain platform, the public key indicates that the data acquisition node is not accessed by an organization administrator, subsequent operation is refused, and outermost layer safety protection is provided for the block chain platform.

5. The method of claim 4, further comprising:

in the data acquisition stage, in order to ensure that the acquired data is not tampered in the reporting process and the acquisition nodes under the chain and the block chain nodes are not attacked by illegal equipment, the block chain platform adopts a bidirectional signature verification mechanism to identify the identity and confirm the data between the acquisition nodes under the chain and the block chain nodes by using public and private keys generated in the data acquisition node access stage.

6. The method according to claim 1, wherein during the process of consensus on uplink data among different blockchain nodes in the alliance blockchain platform, the blockchain node point with the fastest statistical capability to calculate a valid result is used as a master node in the current consensus process, the other blockchain node points are used as slave nodes, a bayesian fault-tolerant PBFT consensus mechanism is adopted to perform blockchain consensus, after consensus is achieved, current data blocks are stored in the alliance blockchain platform in a sequential connection manner according to a time sequence, and the master node obtains alliance point reward due to recording data.

7. The method according to claim 1, wherein during the data sharing process, a Merkle tree structure is adopted to perform hierarchical encryption and multi-level encryption, and according to different characteristics of three Merkle trees in a block, the statistical data sharing on the alliance block chain platform is divided into three different levels:

at the first level, counting a Merkle tree in a transaction mode;

second level, overall statistics Merkle tree;

third level, individual statistics Merkle Tree.

8. An apparatus for data sharing based on a blockchain, the apparatus comprising:

the system comprises an acquisition unit, a processing unit and a processing unit, wherein the acquisition unit is used for acquiring scientific research data of scientific research institutions or illness state data of hospitals from under-chain acquisition nodes in charge of the acquisition unit in block chain link point network organizations to which the acquisition unit is responsible after joining alliance block chain platforms formed by different scientific research institutions and different hospitals, the block chain nodes and the under-chain acquisition nodes belong to the same organization registered by the alliance block chain platform, and the under-chain acquisition nodes are nodes which are positioned outside the alliance block chain and used for providing data acquisition services for the block chain nodes;

the packaging unit is used for packaging the scientific research data or the illness state data acquired from the under-chain acquisition node according to the data requirement of the alliance block chain platform to obtain to-be-linked data;

and the uplink unit is used for submitting the data to be uplink to the block chain alliance platform, and writing an account book after the different block chain nodes in the block chain alliance platform achieve consensus so as to provide data sharing service.

9. A blockchain based data sharing system, the system comprising a blockchain node and a down-link acquisition node, the blockchain node and the down-link acquisition node each comprising a processor and a memory, the memory having stored therein a computer program, the processor when calling the computer program in the memory performing the method according to any one of claims 1 to 7.

10. A computer-readable storage medium storing a plurality of instructions adapted to be loaded by a processor to perform the method of any one of claims 1 to 7.

Images