CN115982764A - Method, system, device and medium for storing electronic file based on block chain - Google Patents
Method, system, device and medium for storing electronic file based on block chain Download PDFInfo
- Publication number
- CN115982764A CN115982764A CN202211675032.2A CN202211675032A CN115982764A CN 115982764 A CN115982764 A CN 115982764A CN 202211675032 A CN202211675032 A CN 202211675032A CN 115982764 A CN115982764 A CN 115982764A
- Authority
- CN
- China
- Prior art keywords
- file
- electronic
- electronic file
- block chain
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The utility model discloses a method for storing certificate electronic files based on block chain, which records the authentication and circulation process of the electronic files, converts the electronic files to generate data and seals the data as metadata, files the electronic files transferred by the service system, generates the data packet of the files, uploads the metadata and the data packet of the files to the block chain, acquires the operation log encryption of all links including the generation, the filing and the signing of the registration form of the electronic files and uploads the block chain certificate in real time; and carrying out integrity check on the file metadata and the file data packet of the uploaded block chain by using a Hash algorithm, storing a check value in the intelligent contract of the block chain, and adding a trusted timestamp between file information and data in the process of storing the check. Through the certificate cochain of depositing to the operation action, the whole process of depositing the certificate of the electronic file can be traced to the source, the traceability of depositing the certificate of the electronic file is realized, and the authenticity of the electronic file of depositing the certificate is ensured.
Description
Technical Field
The application relates to the technical field of computer information processing, in particular to a method for detecting authenticity of an electronic file based on business deposit certificate.
Background
The blockchain technology is a database technology which utilizes a blockchain data structure to verify and store data, utilizes a distributed node consensus algorithm to generate and update data, utilizes a cryptographic mode to ensure data transmission and access security, and utilizes an intelligent contract composed of automated script codes to program and operate data, and comprises a brand new distributed infrastructure and a computing mode. The block chain technology has the characteristics of decentralization, openness, independence, safety, anonymity and the like, and can effectively support cross-organization credible transactions.
The special creation and storage environment of electronic files makes them appear to have different technical characteristics from traditional paper files. From the aspect of information recording form, the electronic file is pure digital information and has the characteristics of easy modification, easy vanishing, dependence on a computer system and the like; from the characteristic of the carrier, the electronic file has the characteristics of separability of the carrier and the information, instability of information storage and the like. These technical characteristics make the authenticity of electronic files a great challenge. At present, mechanisms such as electronic signatures and timestamps are mainly adopted in the technology of guaranteeing the authenticity of electronic files, but the mechanisms have the problems of limited service period, easy damage to the information structure of the electronic files, high management cost, difficult cross-organization collaborative management, inconvenient sharing and utilization of the electronic files and the like. The block chain technology has the technical advantages of a chain data structure, distributed nodes, a consensus mechanism, an automatic intelligent contract, asymmetric encryption and the like, is an effective tool for solving the data trust problem, and plays an important role in guaranteeing the authenticity of the electronic file. The stipulations of the highest people's court about a plurality of problems of the Internet court trial case released and implemented by the highest people's court in China indicate that: the electronic data submitted by the party can be authenticated through evidence collection, fixing and tamper-proof technical means such as electronic signature, trusted timestamp, hash value verification, block chain and the like or through electronic evidence obtaining and storing platform authentication, and the authenticity of the electronic data can be proved, and the internet court should be confirmed. "this regulation provides the legal basis for the authenticity guarantee of the electronic file.
The block chain is a chain formed by blocks. Each block holds certain information, which are linked in a chain according to a respective generated time sequence. This chain is maintained in all servers, and as long as one server can work in the entire system, the entire blockchain is secure. These servers, referred to as nodes in the blockchain system, provide storage space and computational support for the entire blockchain system. If the information in the block chain is to be modified, more than half of the nodes must be proved to agree and modify the information in all the nodes, and the nodes are usually held in different subjects, so that the information in the block chain is extremely difficult to tamper with. Compared with the traditional network, the block chain has two core characteristics: firstly, data is difficult to tamper, and secondly, decentralization is performed. Based on the two characteristics, the information recorded by the block chain is more real and reliable, and the problem that people are not trusted each other can be solved.
The block chain has unique advantages in the aspects of data storage, data transmission and the like, and has strong development and use scenes in privacy and safety protection. By combining the block chain technology, a decentralized and untrusted distributed data account book can be realized in an incompletely trusted environment, has the characteristics of non-falsification, openness and transparency, traceability, collective maintenance and the like, and can provide a brand-new thought and scheme for solving the problem of the four properties of the electronic file. When the electronic file is operated, the file use record and the generated log information can be stored, so that the electronic file can be conveniently tracked subsequently, the electronic file is ensured not to be maliciously modified, and the authenticity of the electronic file is protected.
The authenticity of electronic documents can be divided into two aspects: first, the authenticity of the document during its formation; the second is that the file is real after being formed, namely the file is not tampered in the whole life cycle from being formed to being archived and kept in the original state during being formed all the time. Although the authenticity of an electronic signature and an electronic seal in the process of forming an electronic file can be guaranteed to a certain extent, whether the file is falsified by a technical means after being formed or not and whether the authenticity of the electronic file can be maintained in the process of filing and handing over and in future storage, migration and utilization are problems to be solved urgently at present.
The authenticity of the electronic file also includes the chain of storing certificates of the operation behavior of the business system, what is mainly realized at present is that the block chain storing certificates of the electronic file are stored, the processing between the business system and the block chain platform is independent, the chain of business is usually carried out afterwards, and when each business carries out the chain storing processing, because there is a certain time difference, it is difficult to ensure that the data of the business system is not falsified, the deviation between the stored business data and the actual business data is easily caused, and the effects of preventing falsification and solidifying data are not achieved.
Aiming at business deposit certificate, only after the last business item is finished, the business deposit certificate can be carried out on the next business item, the middle part has certificate deposit time difference, the business data in the time difference is difficult to be guaranteed not to be falsified, and once falsification occurs, the authenticity of the business data is inevitably challenged. And the service data is modified within the time difference, so that the service information of the block chain certificate storage platform is inconsistent with the information stored in the actual service system database, and service disputes are easily caused.
Disclosure of Invention
The invention provides a method for storing certificates and verifying electronic files based on a block chain, aiming at the problems that in the prior art, the electronic files are possibly subjected to technical tampering in the transferring and storing processes, the certificate storing service data and the actual service data have deviation, the files are not easy to be perceived after being tampered, and the service disputes are easy to cause.
The embodiment of the invention provides the following technical scheme:
in the first aspect of the present invention: recording authentication and circulation processes of the archived electronic files, acquiring original electronic files, processing, storing and utilizing related metadata information of the electronic files, packaging the electronic files and metadata thereof in a data packet according to a standard structure by utilizing an XML format, generating an archived data packet hash value when the electronic files are archived, and storing the encrypted data packet and the hash value thereof into a block chain; acquiring user behavior logs, key data digests, file data digests, whole data digests and timestamps in the process of forming and modifying electronic files, calculating hash values, recording uplink node generated certificates and uplink storage, extracting service-related data information from operation logs of all links of uplink storage certificates of electronic files, transferring the service-related data information to a block chain platform in batches, performing real-time uplink storage of operation behaviors of all the service links in the process of processing the electronic files, and performing non-real-time uplink storage of service data; and carrying out integrity check on the file metadata and the file data packet of the uploading block chain, and storing a check value in the block chain intelligent contract.
Further preferably, the process of recording authentication and circulation of the archived electronic file includes: establishing a unique electronic identity mark for each filed electronic file, forming the attribute of the electronic file, simultaneously recording the source and the delivery history, the attribution and the storage place of the electronic file, and realizing the business association of the file storage certificate through the electronic file number and the business storage certificate number.
Further preferably, the encapsulating into a data packet according to the canonical structure includes: the method comprises the steps that software and hardware environments including content, structures, backgrounds and file generation, physical and intelligent formats of files, related personnel information and presence state information are packaged in metadata through an XML format, a plurality of documents can be packaged in one packaging package, one document can comprise a plurality of versions, and the same version of the document can comprise computer files in different formats.
Preferably, when the electronic file is filed, adding a trusted timestamp to the filed data packet, obtaining a hash value of the filed data packet based on the holographic calculation result of the electronic file, associating the original text of the electronic archive file with a timestamp certificate of a national time service center corresponding to the hash value, and verifying the electronic signature attribute of the electronic archive file through a file abstract asymmetric encryption algorithm; and in the stage of storing the electronic file, storing relevant logs and corresponding metadata of the electronic file, storing relevant software and hardware information when a storage medium is changed, and verifying a copied file and a source file through a digital abstract algorithm.
Further preferably, the acquiring metadata information includes recording the whole process information of the electronic file, the original electronic file metadata includes the file number, the title, the time, the page number and the remark of the electronic file, and the metadata for managing, storing and utilizing the electronic file includes the file-establishing unit, the part number, the file, the category, the storage period, the storage level, the security level, the URL of the electronic file, the carrier and the retrieval/information classification; the service processing metadata comprises responsibility chain information of interface processing and process information which is generated by a working process and is related to the file close basis.
According to a second aspect of the invention, the method comprises a storage stage and a verification stage, wherein the storage stage comprises: recording authentication and circulation processes of the archived electronic file, acquiring an original electronic file, processing, storing and utilizing related metadata information of the electronic file, packaging the electronic file and the metadata thereof in a data packet according to a standard structure by utilizing an XML format, generating an archived data packet hash value when the electronic file is archived, and storing an encrypted data packet and the hash value thereof into a block chain; acquiring user behavior logs, key data digests, file data digests, whole data digests and timestamps in the forming and modifying process of electronic files, calculating hash values, recording uplink node generated certificates and uplink storage, extracting service related data information from operation logs of all links of uplink certificate storage of electronic files, transferring the service related data information to a block chain platform in batches, performing real-time uplink certificate storage on service operation behaviors of all service links, and performing non-real-time uplink certificate storage on service data; integrity check is carried out on the file metadata and the file data packet of the uploaded block chain, and a check value is stored in a block chain intelligent contract; a verification stage: and extracting the hash value of the electronic archive file filing data packet stored in the block chain, and comparing the hash value with the hash value of the electronic archive file stored in the archive file storage server to judge whether the electronic archive file is tampered.
Preferably, the step of judging whether the file is tampered includes that after the electronic archive archiving service data and the electronic file are subjected to solidified evidence storage uplink, an archiving service data packet hash value and an archiving file hash value H2 are generated and stored in a block chain intelligent contract storage system, the hash value is calculated for the archiving service data and the electronic file information stored in the local archive file storage server, an archiving service data and an electronic file hash value H1 are generated, the hash values H1 and H2 are compared, if the hash values H1 and H2 are the same, the archived file in the local archive file storage server is not tampered, and if the electronic archive file is tampered, the electronic archive file is tampered.
According to another aspect of the present application. The utility model provides a system for verifying electronic file authenticity based on block chain deposit certificate includes, electronic file files the unit, block chain deposit certificate system, files file storage server, hash calculation unit, comparing element, verification unit, and electronic file files the unit: the system is used for generating an electronic archive file by utilizing an archived electronic file, acquiring archived business data in the electronic archive generating and storing process, recording the authentication and circulation process of the archived electronic file, acquiring the original archived electronic file, performing business processing, storing and utilizing related metadata information, and packaging the electronic file and the metadata thereof in a data packet according to a standard structure by utilizing an XML format; the archive file storage server is used for storing original archive electronic files, metadata and archive data packet hash values; the Hash calculation unit is used for generating a Hash value of the filing data packet when the electronic file is filed and carrying out Hash operation on the filing electronic file and the service data to obtain a certificate-storing Hash value; the block chain certificate storing system is used for storing electronic archive files and evidence of business data solidification in a chain mode, recording chain node generated certificate chain storage, extracting business related data information from operation logs of all links of the electronic file chain certificate storage, handing over the business related data information to a block chain platform in batches, carrying out real-time chain storage on business operation behaviors of all business links, carrying out non-real-time chain storage on business data, and comparing hash values of the electronic archive files currently stored by the archive file storage server with hash values stored in the block chain to identify and judge whether the electronic archive files stored in the file server are original archive electronic files.
Further preferably, the evidence of the solidification of the uplink stored electronic archive file and the business data comprises: archiving an original archived electronic file handed over by a business system and metadata thereof to generate an archived file data packet, uploading the archived file data packet and a hash value to a block chain, acquiring operation log encryption of all links including electronic file generation, archiving and signing registration, and uploading block chain storage certificate in real time; and carrying out integrity check on the file metadata and the file data packet of the uploaded block chain by using a Hash algorithm, storing a check value in the intelligent contract of the block chain, and adding a trusted timestamp between file information and data in the process of storing the check.
Further preferably, the XML format is used for storing the contents, the structure, the background, the software and hardware environment for file generation, the physical and intelligent formats of the file, the related personnel information and the existence state information in metadata, various metadata information of the archived electronic file is captured during archiving, the metadata information comprises the metadata of the electronic file and a series of metadata for generating electronic archive behaviors, a plurality of documents can be packaged in one packaging package, one document can comprise a plurality of versions, and the same version of the document can comprise computer files with different formats.
According to another aspect of the present application, there is provided an electronic device including: a processor; and a memory storing a program, wherein the program comprises instructions that, when executed by the processor, cause the processor to perform any of the methods described above.
According to another aspect of the present application, a non-transitory computer readable storage medium having stored thereon computer instructions for causing a computer to perform the method according to the above.
According to the method and the device, authenticity and originality of the electronic file are guaranteed, operation behavior logs are subjected to real-time chain winding and storage, business data are subjected to non-real-time chain winding, integrity of certificate chain winding is achieved, and originality and integrity of the certificate data are guaranteed. Through extracting the electronic file, XML filing is carried out on service metadata, multi-link service certificate storage is realized through the behavior information and the certificate storage chain of the file, and the effects of preventing tampering and removing centralization to achieve solidified certificate storage are realized. Through the certificate cochain of depositing to the operation action, the whole process of depositing the certificate of the electronic file can be traced to the source, the traceability of depositing the certificate of the electronic file is realized, and the authenticity of the electronic file of depositing the certificate is ensured.
Drawings
In the following description of exemplary embodiments, taken in conjunction with the accompanying drawings, further details, features and advantages of the present application are disclosed,
FIG. 1 is a schematic diagram of an embodiment of the present invention for guaranteeing authenticity verification of an electronic file by using a block chain service certificate;
FIG. 2 is a schematic block diagram of the electronic archive service credentialing in an exemplary embodiment of the present application;
fig. 3 is a schematic diagram of an authenticity verification method for electronic file block chain storage certificate in an exemplary embodiment of the application.
Detailed Description
Embodiments of the present application will be described in more detail below with reference to the accompanying drawings. While certain embodiments of the present application are shown in the drawings, it should be understood that the present application may be embodied in various forms and should not be construed as limited to the embodiments set forth herein, but rather these embodiments are provided for a more complete and thorough understanding of the present application. It should be understood that the drawings and embodiments of the present application are for illustration purposes only and are not intended to limit the scope of the present application.
It should be understood that the various steps recited in the method embodiments of the present application may be performed in a different order and/or in parallel. Moreover, method embodiments may include additional steps and/or omit performing the illustrated steps. The scope of the present application is not limited in this respect.
The term "include" and variations thereof as used herein are open-ended, i.e., "including but not limited to". The term "based on" is "based at least in part on". The term "one embodiment" means "at least one embodiment"; the term "another embodiment" means "at least one additional embodiment"; the term "some embodiments" means "at least some embodiments". Relevant definitions for other terms will be given in the following description. It should be noted that the terms "first", "second", and the like in the present application are only used for distinguishing different devices, modules or units, and are not used for limiting the order or interdependence relationship of the functions performed by the devices, modules or units.
It is noted that references to "a", "an", and "the" modifications in this application are intended to be illustrative rather than limiting, and that those skilled in the art will recognize that reference to "one or more" unless the context clearly dictates otherwise.
The names of messages or information exchanged between a plurality of devices in the embodiments of the present application are for illustrative purposes only, and are not intended to limit the scope of the messages or information.
The key technologies of the block chain include:
a consensus mechanism. And the consensus algorithm is used for coordinating the consistency of the data of each node in the whole network of the block chain. The consensus algorithm realizes the functions of node election, data consistency verification, data synchronization control and the like by formulating a rule which achieves consensus. In general, consensus algorithms have the following functions: the nodes participating in consensus are in consensus under the condition of mutual distrust; the support nodes independently perform algorithm operation without depending on any other node data and state; ensuring that the calculation of each node on the uplink data packaging block can be converged and the final consistency is reached; declaring theoretical time required for reaching consensus in a node environment of a certain scale; there should be a clear indicator of malicious attack resistance.
And (6) signature verification. Digital signatures are methods for authenticating digital information using asymmetric key cryptography and digital digest technology. The method is mainly used for determining that the message is actually signed and sent out by a sender and determining the integrity of the received message, and the message is not tampered in the transmission process. The digital signature technique is to encrypt the digest information with the sender's private key and transmit it to the receiver together with the original text. The receiver can decrypt the encrypted digest information only by using the public key of the sender, and then generates a digest information for the received original text by using the hash function, and compares the digest information with the decrypted digest information. If the two information are the same, the received information is complete and is not modified in the transmission process, otherwise, the information is modified, and therefore the digital signature can verify the integrity of the information.
A chained storage structure. The chain type storage structure is a data structure which stores transaction processing occurring in a period of time by taking blocks as units and connects the blocks into a chain according to time sequence by a cryptographic algorithm. Since the latter block contains the characteristic information of the previous block, if it is desired to modify the data in one of the blocks, all the subsequent blocks in the chained memory structure need to be modified. As the number of blocks in a block is increasing, the modification difficulty is also increasing. Therefore, the chain type storage structure effectively improves the anti-tampering and anti-counterfeiting capabilities of the data stored in the chain type storage structure.
P2P (peer-to-peer) means that each node in the network is in a peer-to-peer status, and each node serves as a server to provide services for other nodes and also enjoys the services provided by other nodes. Resources and services in the P2P network are dispersed on all nodes, information transmission and service realization are directly carried out among the nodes, intervention of intermediate links and servers is not needed, possible bottleneck is avoided, and advantages of the network in aspects of expandability, robustness and the like are highlighted. Each node in the block chain is a typical equal server network, and partial primary and secondary server networks can realize the effect of near rapid synchronization of data among the nodes through a P2P communication mechanism. Meanwhile, the network attack resistance of the whole block chain is improved.
And storing the evidence and tracing the source of the block chain. By utilizing a block chain technology, the distributed account book recording characteristic which can not be falsified is combined with the technologies of the Internet of things and the like, and the commodities are traceable from the information acquisition record of the source, the tracing of the raw material source, the production process, the processing link, the warehousing information, the inspection batch and the logistics turnover to the third-party quality inspection, the customs entry and exit and the anti-counterfeiting authentication in the whole process.
The block chain realizes the functions of data tampering incapability, source tracing and the like by using technical means such as time stamps, a consensus mechanism and the like, and provides technical support for the establishment of a cross-mechanism source tracing system. Meanwhile, a third-party monitoring mechanism and a consumer are brought into a monitoring system, an information island is broken, information support is provided, and transparent production flow is achieved to a certain degree. The processes of verification, accounting, storage, maintenance and transmission of blockchain data are all based on a distributed system structure. According to different types of block chains, the block chain tracing can be divided into public chain tracing, alliance chain tracing and private chain tracing.
The following detailed description of the embodiments of the invention is provided in connection with the accompanying drawings.
Fig. 1 is a schematic diagram illustrating authenticity verification of an electronic file by using a blockchain transaction certificate according to an exemplary embodiment of the invention. And in the electronic file filing link, the transfer link and the storage link, the file content, the structure, the background information, the operation behavior, the existing state and the environmental characteristic of the original file are stored in a chain manner, so that the authenticity verification of the electronic file is realized.
By utilizing a block chain non-falsifiable and whole-course trace-remaining database storage technology, a huge archive data set stored in a block chain manner contains all histories (including source data) of each information exchange, and by means of the credibility, the safety and the non-falsification of the archive data set and the traceability of the block chain, each step of forming, collecting, sorting, filing, utilizing, storing and calculating and analyzing the electronic archive can be recorded on the block chain, so that the authenticity of the electronic archive can obtain a constant trust endorsement, and the correctness of a data analysis result and the effect of data mining are also ensured.
For example: the problems of traceability and authenticity of the electronic file can be effectively solved by using functions of non-tampering, complete data tracing and time stamping of the block chain.
The authentication and circulation process of the electronic archive file materials is recorded, a unique electronic identity mark is established for each electronic archive, the attribute of the electronic archive is formed, the source origin, circulation history, attribution, storage place and the like of the electronic archive are recorded at the same time, the information is stored into a block chain, and the information can be detected by the block chain as long as illegal change and counterfeiting behaviors exist, so that the whole life cycle of the electronic archive can be traced and tracked, the existence, authenticity and uniqueness of the electronic archive are confirmed, the 'four-property' function of the electronic archive is effectively ensured, and technical support and conclusive evidence are provided for the certificate function of the electronic archive.
In the archive collection stage, the business system is connected with the block chain, the archiving requirement transformation is carried out on the business system, the block chain technology is utilized to capture various metadata information required by archive management during archiving, the metadata information comprises metadata of the electronic archive and a series of metadata for generating electronic archive behaviors, and the electronic archive is real and controllable in the generation process.
And (3) authenticity guarantee in the electronic file generation stage: the method comprises the steps of collecting filing requirements in a front-end service system, capturing various metadata in the forming process of an electronic file, containing link information such as draft making, modification and draft setting designed during file forming, carrying out block chain storage on the service metadata and the file metadata, ensuring the originality and the authenticity of the formed electronic file, controlling the whole process of the formed electronic file, verifying user authority, ensuring that only a user with uploading authority can transmit electronic file information into a block chain, ensuring that the user cannot carry out operation outside the authority, and updating user and file operation information records in real time.
The authenticity of the electronic archive filing stage is ensured: when the electronic file is filed, the authenticity evidence of filing of the electronic file can be stored through the trusted timestamp and the digital signature technology. The concrete implementation is as follows: when the electronic file is filed and initiated, a credible time stamp is added to a filing data packet, the obtained HASH value is a holographic calculation result of the electronic file, and the authenticity and the originality of an original text can be directly verified through the HASH value and a time stamp certificate of a national time service center which is only corresponding to the HASH value. Meanwhile, when the electronic file is filed, the filed data packet has legal electronic signature attribute through the file abstract asymmetric encryption algorithm, and the authenticity and the originality of the electronic filed data packet can be verified through verifying the authenticity. The authenticity of the electronic file is guaranteed.
The authenticity of the electronic file in the long-term storage stage is ensured: the electronic archive data comprises electronic files of various types, structured data and unstructured data, the electronic archive files mainly comprise PDF files and OFD files, when the electronic archive is used or a storage medium is changed in a long-term storage link, the electronic archive files need to store logs related to the electronic archive and corresponding metadata, when the storage medium is changed, software, hardware and other related information need to be stored, the copied files and a source file are verified by means of a digital digest algorithm, if the files are changed in the copying process, hash values are not matched, and authenticity of the files is not trusted.
Therefore, the electronic file management is combined with the block chain, so that the electronic file can be ensured not to have malicious behaviors in all links such as creation, transfer, use and the like, and the authenticity of the electronic file is ensured.
FIG. 2 is a block diagram illustrating the storage of electronic archive services in an exemplary embodiment of the present application.
The block chain technology is used for realizing business deposit certificate, which comprises metadata deposit certificate, file deposit certificate, business information deposit certificate and the like, and the original electronic file metadata mainly comprises electronic file text number, title name, time, page number, remarks and the like. The metadata set for file management, storage and provision includes file unit, part number (serial number), file number, file, category, storage period, storage level, security level, URL of electronic file, carrier, search/information classification, etc. The service processing metadata mainly comprises responsibility chain information of interface processing and process information which is generated in the working process and closely related to the archive. The method mainly comprises the working time, responsibility persons, processing related information and the like of file transfer, receiving, classifying, arranging, numbering, volume grouping, cataloguing, warehousing, shelving, file state, protection processing, digital processing, micro processing, opening processing, information utilization, destruction processing and the like. These sets of metadata record the entire course information of the archive job.
After the metadata information of each door type included in the electronic file is acquired in the modes of automatic capture and manual recording, the electronic file and the metadata thereof are packaged in a data packet according to a standard structure by using a standard XML language irrelevant to software and hardware so as to maintain the integrity of the electronic file and the metadata thereof, ensure the reliable connection between the electronic file and the metadata thereof and realize the self-inclusion, self-description and self-certification of the electronic file. And finally, performing block chain storage on the generated data packet of the electronic file and the metadata.
And after the business data is stored, the authenticity guarantee of the archive business storage certificate is realized through block chain business verification. The method specifically comprises the following steps:
hash operation is carried out on each electronic file in the electronic file folder, hash of the electronic file folder and Hash of all subfiles in the folder are obtained, a corresponding relation between the file and a corresponding Hash value is established, the folder, all the subfiles and the corresponding Hash values are uploaded to a block chain for storage, and authenticity of a cochain storage file according to data is guaranteed.
The generated data including the content, the structure, the background, the software and hardware environment generated by the file, the physical and intelligent format of the file, the related personnel information, the existence state and other information are sealed in the metadata by the XML format, and the related metadata is uploaded to the block chain for evidence storage. A plurality of documents can be packaged in an electronic file packaging package, one document can contain a plurality of versions (original, manuscript, draft and the like), and the same version of the document can also contain computer files with different formats (such as PDF format codes and TIFF format codes of the same original).
Metadata (text number, title, time, page number, remark, filing unit, part number, whole part, category, storage period, storage level, security level, electronic file URL, carrier, retrieval/information classification, transfer, reception, classification, arrangement, numbering, volume, cataloguing, warehousing, shelving, archive state, protection processing, digitization processing, micro processing, opening processing, time, accountant, processing of work such as information utilization, destruction processing and the like) is packaged in a data packet by using XML language and the electronic file, and the data packet is subjected to block chain encryption and storage when the electronic file is filed to generate a filed data packet hash value.
And (4) performing uplink processing on the business operation behaviors, and uploading the business operation behaviors of each business link to the block chain in real time for storing the certificate. And acquiring a user behavior log, a key data abstract, a file data abstract and a file data abstract in the forming and modifying process of the electronic file, and performing time certificate storage, hash certificate storage, node chaining and certificate generation on the user behavior log, the key data abstract, the file data abstract and the file data abstract.
Through depositing the certificate to above-mentioned electronic archives relevant information, through electronic archives serial number and business deposit certificate serial number, realize archives deposit the business of certificate and be correlated with, deposit the certificate information of certificate through the block chain, can look over electronic archives from forming, filing, keeping each link, including signing deposit certificate, action deposit certificate, business deposit certificate, archives deposit certificate etc. can look over deposit the relevant plaintext of certificate business and ciphertext relevant information.
A verification stage: when the electronic archive file in the block chain needs to be verified, whether the file is tampered or not is judged by extracting the file hash value stored in the block chain, namely the hash value generated by the archive data packet, and comparing the hash value with the hash value actually stored in the archive system.
The authenticity of the cochain file is guaranteed through Hash operation, and the originality of the electronic file is guaranteed through cochain of the file, so that the original file is safer and more reliable. The concrete implementation is as follows:
the business system submits the related information of the electronic file needing to be stored, the authenticity of the electronic file is detected according to the requirement, after the detection is passed, the electronic file needing to be filed and the business data information are operated through a Hash function, and are converted into bit strings with fixed length through MD5 and SHA-1 algorithms to be output as Hash values. And storing the generated hash value in a block chain node, and realizing authenticity check through hash comparison when the authenticity of the electronic file needs to be verified.
The block chain certificate storage is carried out by extracting the metadata of the electronic file, the electronic file and the metadata handed over by the service system are filed to generate a filing data packet, and the filing data packet is uploaded to the block chain for certificate storage, so that the authenticity of the electronic file is ensured.
The method comprises the steps of carrying out real-time chain loading and evidence storage on the business operation behaviors of each business link, carrying out real-time chain loading and evidence storage on each business link according to a chain loading rule agreed in advance, extracting business related data information from operation logs of each link of the electronic document chain loading and evidence storage, and handing over the business related data information to a block chain platform in batches to carry out chain loading processing, so that non-real-time chain loading and evidence storage of business data is realized, and meanwhile, the real-time chain loading and evidence storage of the business operation behaviors is guaranteed. The electronic filing file forming process and the business data stored in the chain are carried out in a non-real-time chain-loading mode, and the solidification evidence storing effect of business data evidence storing and business operation behaviors at each time is ensured on the premise of not influencing the original business evidence storing efficiency.
Fig. 3 is a schematic diagram of an electronic file block chain verification authenticity verification system in an exemplary embodiment of the present application. The method comprises the following steps: the system comprises an electronic file archiving unit, a Hash calculation unit, a block chain storage certificate system, an archived file storage server, a comparison unit, a verification unit, an electronic file archiving unit and the like, wherein the electronic file archiving unit is responsible for archiving electronic files, archiving business data and the like; the Hash calculation unit is used for carrying out Hash operation on the archived electronic files and the service data by using MD5 and SHA-1 to obtain a Hash value; the block chain deposit certificate system is used for chain deposit certificate on evidence by solidifying the stored and filed electronic files and the business data; an archived file storage server for storing archived electronic files; the hash calculation unit is used for carrying out hash calculation on all the archived files and the service data stored in the uplink to obtain hash values, and carrying out hash calculation on the stored archived electronic files to obtain hash values; the comparison unit is used for comparing whether the two hash values are consistent or not and verifying the unit; for identifying whether the archive file stored in the file server is the original archive file.
By extracting the hash value of the file stored in the blockchain and comparing the hash value with the hash value actually stored in the archive storage server, whether the file is tampered or not is judged, and if the way of verifying the hash value can be adopted:
after the archiving business data and the electronic file are subjected to solidification evidence certificate storing uplink, generating an archiving business data packet HASH and an archiving file nominal value (the HASH value can be generated through MD5 and SHA-1 HASH operation), storing the generated HASH value in a block chain certificate storing system, and marking the archiving business data packet HASH and the archiving file nominal value of the uploading block chain certificate as H2 (HASH 2);
calculating a HASH value of the archiving business data and the electronic file information stored in the local archive file storage server, generating the HASH value of the archiving business data and the electronic file in the storage server, and marking the HASH value as H1 (HASH 1); when the authenticity of the electronic file needs to be verified, comparing the hash values H1 and H2 to determine whether the hash values are consistent, if the hash values are inconsistent, indicating that the archived file is tampered; if the two files are consistent, the file is proved to be authentic and is not tampered.
The method and the system combine the business deposit certificate when the electronic file is filed, store the certificate for the electronic file, the business related metadata and other related information by using the block chain, encrypt the operation behavior log and combine the business deposit certificate, ensure that the business data is not falsified, realize evidence solidification and ensure the authenticity, originality and integrity of the electronic file.
The method comprises the steps of uploading a block chain containing metadata, electronic files, service information and the like to realize service data storage, generating a hash value of service data after the service data storage, comparing the hash value of the archived files and the archived service data in an archive file memory with the hash value stored in a corresponding cochain in a verification stage, and realizing authenticity guarantee of the archive service storage through block chain service verification. The method specifically comprises the following steps:
1) And ensuring the authenticity of the uplink stored data by utilizing the hash operation.
2) Converting the XML format of the archived electronic file to generate data, obtaining information including contents, structures, backgrounds, software and hardware environments for file generation, physical and intelligent formats of the file, related personnel information, existing states and the like, sealing and storing the information as metadata, and storing the generated metadata of the archive file through a block chain.
3) Archiving the electronic file handed over by the service system, generating an archived file data packet, and uploading the archived file data packet to a block chain for storing certificates;
4) Using Hash algorithm (such as SHA-256) to carry out integrity check on the file by using the file metadata and the file data packet of the uploaded block chain, and storing the check value in a block chain intelligent contract;
5) Uploading operation days of business operation behaviors of all business links including electronic archive file formation, filing and registry signing in real time to a block chain deposit certificate;
6) Respectively calculating hash values of all documents in an uploading block chain of the archived electronic file;
7) And in the verification stage, according to the electronic file to be verified stored in the file storage server, extracting the hash value of the corresponding electronic file stored in the block chain, comparing the hash values of the electronic file and the hash value, and judging whether the stored file is tampered.
8) All nodes in the block chain can participate in the file work, file information uploaded by any node can be browsed by other nodes in the chain, the problem that electronic files are distributed in a network too much to be scattered to cause difficulty in identification is solved, the richness of electronic file resources is improved, and the change and the deletion of the electronic file information are more convenient.
An exemplary embodiment of the present application also provides an electronic device, including: at least one processor; and a memory communicatively coupled to the at least one processor. The memory stores a computer program executable by the at least one processor, the computer program, when executed by the at least one processor, is operative to cause the electronic device to perform a method according to embodiments of the present application.
The exemplary embodiments of this application also provide a non-transitory computer readable storage medium storing a computer program, wherein the computer program, when executed by a processor of a computer, is configured to cause the computer to perform a method according to an embodiment of this application.
Program code for implementing the methods of the present application may be written in any combination of one or more programming languages. These program codes may be provided to a processor or controller of a general purpose computer, special purpose computer, or other programmable data processing apparatus, such that the program codes, when executed by the processor or controller, cause the functions/operations specified in the flowchart and/or block diagram to be performed. The program code may execute entirely on the machine, partly on the machine, as a stand-alone software package, partly on the machine and partly on a remote machine or entirely on the remote machine or server.
In the context of this application, a machine-readable medium may be a tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. The machine-readable medium may be a machine-readable signal medium or a machine-readable storage medium. A machine-readable medium may include, but is not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any suitable combination of the foregoing. More specific examples of a machine-readable storage medium would include an electrical connection based on one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
As used herein, the terms "machine-readable medium" and "computer-readable medium" refer to any computer program product, apparatus, and/or device (e.g., magnetic discs, optical disks, memory, programmable Logic Devices (PLDs)) used to provide machine instructions and/or data to a programmable processor, including a machine-readable medium that receives machine instructions as a machine-readable signal. The term "machine-readable signal" refers to any signal used to provide machine instructions and/or data to a programmable processor.
To provide for interaction with a user, the systems and techniques described here can be implemented on a computer having: a display device (e.g., a CRT (cathode ray tube) or LCD (liquid crystal display) monitor) for displaying information to a user; and a keyboard and a pointing device (e.g., a mouse or a trackball) by which a user may provide input to the computer. Other kinds of devices may also be used to provide for interaction with a user; for example, feedback provided to the user can be any form of sensory feedback (e.g., visual feedback, auditory feedback, or tactile feedback); and input from the user may be received in any form, including acoustic, speech, or tactile input.
The systems and techniques described here can be implemented in a computing system that includes a back-end component (e.g., as a data server), or that includes a middleware component (e.g., an application server), or that includes a front-end component (e.g., a user computer having a graphical user interface or a web browser through which a user can interact with an implementation of the systems and techniques described here), or any combination of such back-end, middleware, or front-end components. The components of the system can be interconnected by any form or medium of digital data communication (e.g., a communication network). Examples of communication networks include: local Area Networks (LANs), wide Area Networks (WANs), and the Internet.
The computer system may include clients and servers. A client and server are generally remote from each other and typically interact through a communication network. The relationship of client and server arises by virtue of computer programs running on the respective computers and having a client-server relationship to each other.
Claims (12)
1. A method for storing an electronic file based on a block chain certificate is characterized in that the authentication and circulation processes of the electronic file to be stored are recorded, the original electronic file is obtained, the electronic file is processed, stored and utilizes related metadata information, the electronic file and the metadata thereof are packaged in a data packet according to a standard structure by utilizing an XML format, a hash value of the data packet to be stored is generated when the electronic file is stored, and an encrypted data packet and the hash value thereof are stored to the block chain; acquiring user behavior logs, key data digests, file data digests, whole data digests and timestamps in the process of forming and modifying electronic files, calculating hash values, recording uplink node generated certificates and uplink storage, extracting service-related data information from operation logs of all links of uplink storage certificates of electronic files, transferring the service-related data information to a block chain platform in batches, performing real-time uplink storage of operation behaviors of all the service links in the process of processing the electronic files, and performing non-real-time uplink storage of service data; and carrying out integrity check on the file metadata and the file data packet of the uploading block chain, and storing a check value in the block chain intelligent contract.
2. The method of claim 1, wherein said recording authentication and circulation procedures of the archived electronic file comprises: establishing a unique electronic identity for each filed electronic file, forming the attribute of the electronic file, simultaneously recording the source origin, the circulation history, the affiliation and the storage place of the electronic file, and realizing the business association of the file certificate through the electronic file number and the business certificate number.
3. The method of claim 1, wherein encapsulating in a packet according to a canonical structure comprises: the method comprises the steps that the XML format is used for encapsulating the software and hardware environment including content, structure, background and file generation, the physical and intelligent format of the file, related personnel information and presence state information in metadata, a plurality of documents can be encapsulated in one encapsulation package, one document can comprise a plurality of versions, and the same version of the document can comprise computer files with different formats.
4. The method as claimed in claim 2, wherein when the electronic file is archived, the archived data packet is stamped with a trusted timestamp, a hash value of the archived data packet is obtained based on the holographic calculation result of the electronic file, the original text of the electronic archive file is associated by the hash value and the corresponding timestamp certificate of the national time service center, and the electronic signature attribute of the electronic archive is verified by the file digest asymmetric encryption algorithm; in the stage of storing the electronic file, the related logs and the corresponding metadata of the electronic file are stored and certified, when the storage medium is changed, the related information of software and hardware is stored and certified, and the copied file and the source file are verified through a digital abstract algorithm.
5. The method according to any one of claims 1-4, wherein the obtaining metadata information comprises recording whole process information of the electronic file, the metadata of the original electronic file comprises the file number, the subject name, the time, the page number and the remark of the electronic file, and the metadata for managing, storing and utilizing the electronic file comprises the file establishment unit, the component number, the file number, the volume, the category, the storage period, the storage level, the security level, the URL of the electronic file, the carrier and the retrieval/information classification; the business processing metadata comprises responsibility chain information of interface processing and process information which is generated by a working process and closely related to a file.
6. A method for verifying an electronic certificate of deposit based on a block chain is characterized by comprising a certificate deposit stage and a verification stage, wherein the certificate deposit stage comprises the following steps: recording authentication and circulation processes of the archived electronic file, acquiring an original electronic file, processing, storing and utilizing related metadata information of the electronic file, packaging the electronic file and the metadata thereof in a data packet according to a standard structure by utilizing an XML format, generating an archived data packet hash value when the electronic file is archived, and storing an encrypted data packet and the hash value thereof into a block chain; acquiring a user behavior log, a key data abstract, a file data abstract and a whole data abstract in the forming and modifying process of an electronic file, adding a timestamp, calculating a hash value, recording a chain node generation certificate chain storage, extracting service related data information from operation logs of each link of the chain storage certificate of the electronic file, handing over the service related data information to a block chain platform in batches, carrying out real-time chain storage on service operation behaviors of each service link, and carrying out non-real-time chain storage on service data; carrying out integrity check on the file metadata and the file data packet of the uploading block chain, and storing a check value in the block chain intelligent contract; a verification stage: and extracting the hash value of the electronic archive file filing data packet stored in the block chain, and comparing the hash value with the hash value of the electronic archive file stored in the archive file storage server to judge whether the electronic archive file is tampered.
7. The method of claim 6, wherein determining whether the file is tampered with comprises generating an archive service data package hash and an archive file hash value H2 to be stored in a blockchain intelligent contract certificate system after the electronic archive service data and the electronic file are subjected to solidified evidence certificate chaining, calculating a hash value for the archive service data and the electronic file information stored in the local archive file storage server, generating an archive service data and an electronic file hash value H1, and comparing the hash values H1 and H2, if H1 and H2 are the same, indicating that the file archived in the local archive file storage server is not tampered, otherwise indicating that the electronic archive file has been tampered.
8. The utility model provides a system for verifying electronic file authenticity based on block chain deposit certificate, its characterized in that includes, electronic file files unit, block chain deposit certificate system, files file storage server, hash calculation unit, comparing unit, verification unit, and electronic file files the unit: the system is used for generating an electronic archive file by utilizing an archived electronic file, acquiring archived business data in the electronic archive generating and storing process, recording the authentication and circulation process of the archived electronic file, acquiring the original archived electronic file, performing business processing, storing and utilizing related metadata information, and packaging the electronic file and the metadata thereof in a data packet according to a standard structure by utilizing an XML format; the archive file storage server is used for storing original archive electronic files, metadata and archive data packet hash values; the Hash calculation unit is used for generating a Hash value of the filing data packet when the electronic file is filed and carrying out Hash operation on the filing electronic file and the service data to obtain a certificate-storing Hash value; the block chain certificate storing system is used for storing electronic archive files and evidence of business data solidification in a chain mode, recording chain node generated certificate chain storage, extracting business related data information from operation logs of all links of the electronic file chain certificate storage, handing over the business related data information to a block chain platform in batches, carrying out real-time chain storage on business operation behaviors of all business links, carrying out non-real-time chain storage on business data, and comparing hash values of the electronic archive files currently stored by the archive file storage server with hash values stored in the block chain to identify and judge whether the electronic archive files stored in the file server are original archive electronic files.
9. The system of claim 8 wherein the proof that the ul stored electronic file and the business data are solidified comprises: archiving an original archived electronic file handed over by a business system and metadata thereof to generate an archived file data packet, uploading the archived file data packet and a hash value to a block chain, acquiring operation log encryption of all links including electronic file generation, archiving and signing registration, and uploading block chain storage certificate in real time; and carrying out integrity check on the file metadata and the file data packet of the uploaded block chain by using a Hash algorithm, storing a check value in the intelligent contract of the block chain, and adding a trusted timestamp between file information and data in the process of storing the check.
10. The system according to claim 7 or 8, characterized in that, the metadata is encapsulated by XML format for the software and hardware environment including content, structure, background, file generation, physical and intelligent format of file, related personnel information, and presence status information, and various metadata information of the archived electronic file, including the metadata of the electronic file itself and a series of metadata for generating the behavior of the electronic archive, are captured at the same time of archiving, a plurality of documents can be encapsulated in one encapsulation package, one document can contain a plurality of versions, and the same version of document can contain computer files with different formats.
11. An electronic device, comprising: a processor; and a memory storing a program, wherein the program comprises instructions that, when executed by the processor, cause the processor to perform the method of any of claims 1-7.
12. A non-transitory computer readable storage medium having stored thereon computer instructions for causing the computer to perform the method according to any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211675032.2A CN115982764A (en) | 2022-12-26 | 2022-12-26 | Method, system, device and medium for storing electronic file based on block chain |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211675032.2A CN115982764A (en) | 2022-12-26 | 2022-12-26 | Method, system, device and medium for storing electronic file based on block chain |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115982764A true CN115982764A (en) | 2023-04-18 |
Family
ID=85971814
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211675032.2A Pending CN115982764A (en) | 2022-12-26 | 2022-12-26 | Method, system, device and medium for storing electronic file based on block chain |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115982764A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116561228A (en) * | 2023-05-26 | 2023-08-08 | 杭州安铂数据科技有限公司 | System and method for archiving based on engineering archive sheet composition |
| CN116701522A (en) * | 2023-05-29 | 2023-09-05 | 浙江轩毅信息技术有限公司 | File cabinet classified data visualization method and device and electronic equipment |
| CN116775566A (en) * | 2023-08-23 | 2023-09-19 | 福建福清核电有限公司 | Method, device and system for archiving electronic files and electronic equipment |
| CN117453629A (en) * | 2023-12-22 | 2024-01-26 | 厦门无链之链科技有限公司 | Personal mobile blockchain data archive management system based on U shield |
| CN117763567A (en) * | 2023-12-28 | 2024-03-26 | 中金金融认证中心有限公司 | Electronic data solidification method and system |
-
2022
- 2022-12-26 CN CN202211675032.2A patent/CN115982764A/en active Pending
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116561228A (en) * | 2023-05-26 | 2023-08-08 | 杭州安铂数据科技有限公司 | System and method for archiving based on engineering archive sheet composition |
| CN116701522A (en) * | 2023-05-29 | 2023-09-05 | 浙江轩毅信息技术有限公司 | File cabinet classified data visualization method and device and electronic equipment |
| CN116701522B (en) * | 2023-05-29 | 2024-05-14 | 浙江轩毅信息技术有限公司 | File cabinet classified data visualization method and device and electronic equipment |
| CN116775566A (en) * | 2023-08-23 | 2023-09-19 | 福建福清核电有限公司 | Method, device and system for archiving electronic files and electronic equipment |
| CN116775566B (en) * | 2023-08-23 | 2023-10-31 | 福建福清核电有限公司 | Method, device and system for archiving electronic files and electronic equipment |
| CN117453629A (en) * | 2023-12-22 | 2024-01-26 | 厦门无链之链科技有限公司 | Personal mobile blockchain data archive management system based on U shield |
| CN117453629B (en) * | 2023-12-22 | 2024-03-08 | 厦门无链之链科技有限公司 | Personal mobile blockchain data archive management system based on U shield |
| CN117763567A (en) * | 2023-12-28 | 2024-03-26 | 中金金融认证中心有限公司 | Electronic data solidification method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN115982764A (en) | Method, system, device and medium for storing electronic file based on block chain | |
| CN107947922B (en) | Digital file management method and system based on block chain technology | |
| CN109766673B (en) | Alliance type audio and video copyright block chain system and audio and video copyright chaining method | |
| CN107508812B (en) | Industrial control network data storage method, calling method and system | |
| US11868509B2 (en) | Method and arrangement for detecting digital content tampering | |
| EP3049991B1 (en) | Method and system for providing a way to verify the integrity of a document | |
| CN109543065B (en) | Video active identification method combined with block chain | |
| CN109815748B (en) | Central data source monitoring method based on block chain | |
| CN115349244A (en) | Storage and communication environment for cryptographic labels | |
| WO2017063465A1 (en) | Innovation and creativity data processing method, device and system and certificate storage device | |
| CN103617402B (en) | A kind of multimedia electronic data forensic report and generation, methods of exhibiting and system | |
| CN103310164A (en) | Verification method of electronic seal pattern and verification method of file containing electronic seal | |
| CN111475866A (en) | Block chain electronic evidence preservation method and system | |
| CN117313122A (en) | Data sharing and exchanging management system based on block chain | |
| CN114254269B (en) | System and method for determining rights of biological digital assets based on block chain technology | |
| CN110689348B (en) | Revenue verification method, device, terminal and medium based on alliance chain | |
| CN115270182A (en) | Power grid project closed-loop control file management system | |
| CN117632855A (en) | Single-system electronic archive filing system, method, equipment and storage medium based on four-package structure | |
| CN103647650A (en) | Rule definition based automatic signature/signature verification device and method | |
| CN116010989A (en) | Method, system, equipment and medium for realizing single-system electronic file based on original handwriting | |
| CN112995225B (en) | Intelligent stamp credible verification system based on block chain | |
| CN113570321B (en) | Hydrogen energy data management system | |
| CN109271811B (en) | Group signature-based electronic material evidence tamper-proof storage method | |
| CN113626860A (en) | Electric power data privacy protection method based on block chain | |
| US11770260B1 (en) | Determining authenticity of digital content |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |