CN117972726A - General high-performance trusted computing system, method and device - Google Patents
General high-performance trusted computing system, method and device Download PDFInfo
- Publication number
- CN117972726A CN117972726A CN202410215723.7A CN202410215723A CN117972726A CN 117972726 A CN117972726 A CN 117972726A CN 202410215723 A CN202410215723 A CN 202410215723A CN 117972726 A CN117972726 A CN 117972726A
- Authority
- CN
- China
- Prior art keywords
- computing
- task
- calculation
- branch node
- trusted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 32
- 238000012795 verification Methods 0.000 claims abstract description 34
- 238000004364 calculation method Methods 0.000 claims description 162
- 238000004590 computer program Methods 0.000 claims description 10
- 238000003860 storage Methods 0.000 claims description 8
- 238000010586 diagram Methods 0.000 description 5
- 230000006870 function Effects 0.000 description 3
- 230000007547 defect Effects 0.000 description 2
- 238000009826 distribution Methods 0.000 description 2
- 238000013473 artificial intelligence Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The embodiment of the invention discloses a general high-performance trusted computing system, a method and a device, wherein the system comprises a central node computing unit and a branch node computing unit, the central node computing unit comprises a central node computing model module, a central node consensus mechanism module and a central node operation instruction module, the central node consensus mechanism module and the central node operation instruction module are both connected with the central node computing model module, the branch node computing unit is respectively connected with the central node consensus mechanism module and the central node operation instruction module, and monitors the health state of a branch node before sending a computing task, so that the rationality of the distributing task can be ensured, the reliability of the computing of the branch node can be ensured, the distributed computing task is subjected to trusted processing through the consensus mechanism, a trusted label is generated for the computing task, the computing result is subjected to trusted verification, and the reliability of the computing result is ensured.
Description
Technical Field
The invention relates to the technical field of artificial intelligence and super computing, in particular to a general high-performance trusted computing system, method and device.
Background
The super computer is used for supporting a computer center cluster deployed by scientific research computing tasks in the national key science and technology innovation field, and is characterized by extremely large capacity, extremely high computing power and extremely good performance, and by 2020, the super computer centers built in China have eight places, the construction and deployment speed of the super computer center cluster gradually cannot meet the requirement of the key scientific research field on computing power, and meanwhile, the matched manufacturing and deployment cost and the matched computing load are extremely high, the computing load is extremely high, and the input resources are not easy to copy.
Meanwhile, due to the demand on computing power, civil enterprises are increasingly researching and innovating cloud computing, distributed computing and the like, but the existing cloud computing and distributed computing have the following defects: after the total calculation task is cut, the data consistency of the calculation task cannot be ensured after the calculation of the branch nodes; the state of the branch node in the calculation process is continuously healthy and cannot be guaranteed, so that the credibility of the branch node cannot be guaranteed. These two problems affect to a maximum extent the requirements of high performance distributed computing for settlement result accuracy.
Disclosure of Invention
Aiming at the defects, the embodiment of the invention discloses a general high-performance trusted computing system, a general high-performance trusted computing method and a general high-performance trusted computing device, which can monitor the health state of a computing unit, ensure the credibility of branch nodes and ensure the reliability of computing results.
The first aspect of the embodiment of the invention discloses a general high-performance trusted computing system, which comprises: the central node computing unit comprises a central node computing model module, a central node consensus mechanism module and a central node operation instruction module, wherein the central node consensus mechanism module and the central node operation instruction module are both connected with the central node computing model module, and the branch node computing unit is respectively connected with the central node consensus mechanism module and the central node operation instruction module;
The central node calculation model module is used for generating a plurality of calculation tasks according to the current calculation total task, distributing the calculation tasks to at least one branch node calculation unit and processing calculation results returned from the branch node calculation unit; the central node consensus mechanism module is used for carrying out credibility processing on the calculation task and carrying out credibility verification on the calculation result returned by the branch node calculation unit; the central node operation instruction module is used for managing the state of the branch node computing unit; the branch node computing unit is used for receiving the computing task, computing the computing task, and returning a computing result to the central node computing model module.
The second aspect of the embodiment of the invention discloses a general high-performance trusted computing method, which comprises the following steps:
Acquiring a current calculation total task and state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information;
Performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the credible tag is used for recording the uniqueness and the legality of the computing task;
And distributing the calculated data to a branch node calculation unit corresponding to the branch node information, so that the branch node calculation unit calculates the calculated data and receives a calculation result returned from the branch node calculation unit.
As an alternative implementation manner, in the second aspect of the embodiment of the present invention, the state information includes the number of CPUs, the type of processable task, the memory capacity, the network speed, and the idle state.
As an optional implementation manner, in the second aspect of the embodiment of the present invention, before obtaining the state information of all current branch node computing units, the method further includes:
Receiving a registration request of a branch node computing unit, wherein the registration request comprises branch node information of the branch node computing unit;
Verifying the legitimacy of the branch node computing unit based on the branch node information, and receiving registration information of the branch node computing unit through websocket protocol when the branch node computing unit is verified to be legal, so as to establish authentication connection with the branch node computing unit.
In a second aspect of the embodiment of the present invention, the performing, separately, a trusted process on each of the computing tasks to generate a trusted label of the computing task includes:
generating a serial number of each calculation task according to a preset rule, and acquiring task information of the calculation task;
And extracting keywords of task information, and generating a unique code of the computing task based on the serial number and the keywords.
As an optional implementation manner, in a second aspect of the embodiment of the present invention, the calculation unit of the branch node calculates the calculation data, including:
the branch node computing unit analyzes the computing data to obtain a computing task and a trusted tag;
the branch node computing unit compares the trusted tag with the first verification data to verify the reliability of the trusted tag, and computes the computing task after verification is passed.
In a second aspect of the embodiment of the present invention, receiving the calculation result returned from the branch node calculation unit includes:
Acquiring second verification data carried in the calculation result, and generating a new hash value based on the trusted label and the calculation result;
and comparing whether the new hash value is consistent with the second verification data.
A third aspect of an embodiment of the present invention discloses a general purpose high performance trusted computing device, comprising:
The task allocation module: the method comprises the steps of obtaining a current calculation total task and obtaining state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information;
The label generating module: the trusted label is used for performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the credible tag is used for recording the uniqueness and the legality of the computing task;
And a result return module: and the branch node computing unit is used for distributing the computing data to a branch node computing unit corresponding to the branch node information so as to enable the branch node computing unit to compute the computing data and receive a computing result returned by the branch node computing unit.
As an optional implementation manner, in the third aspect of the embodiment of the present invention, the state information includes the number of CPUs, the type of processable task, the memory capacity, the network speed, and the idle state.
As an optional implementation manner, in the third aspect of the embodiment of the present invention, before obtaining the state information of all current branch node computing units, the method further includes:
Receiving a registration request of a branch node computing unit, wherein the registration request comprises branch node information of the branch node computing unit;
Verifying the legitimacy of the branch node computing unit based on the branch node information, and receiving registration information of the branch node computing unit through websocket protocol when the branch node computing unit is verified to be legal, so as to establish authentication connection with the branch node computing unit.
As an optional implementation manner, in a third aspect of the embodiment of the present invention, performing a trusted process on each of the computing tasks to generate a trusted label of the computing task, includes:
generating a serial number of each calculation task according to a preset rule, and acquiring task information of the calculation task;
And extracting keywords of task information, and generating a unique code of the computing task based on the serial number and the keywords.
As an optional implementation manner, in a third aspect of the embodiment of the present invention, the calculation unit of the branch node calculates the calculation data, including:
the branch node computing unit analyzes the computing data to obtain a computing task and a trusted tag;
the branch node computing unit compares the trusted tag with the first verification data to verify the reliability of the trusted tag, and computes the computing task after verification is passed.
In a third aspect of the embodiment of the present invention, receiving a calculation result returned from the branch node calculation unit includes:
Acquiring second verification data carried in the calculation result, and generating a new hash value based on the trusted label and the calculation result;
and comparing whether the new hash value is consistent with the second verification data.
A fourth aspect of an embodiment of the present invention discloses an electronic device, including: a memory storing executable program code; a processor coupled to the memory; the processor invokes the executable program code stored in the memory for performing the general purpose high performance trusted computing method disclosed in the second aspect of the embodiment of the present invention.
A fifth aspect of the embodiments of the present invention discloses a computer-readable storage medium storing a computer program, wherein the computer program causes a computer to execute the general-purpose high-performance trusted computing method disclosed in the second aspect of the embodiments of the present invention.
Compared with the prior art, the embodiment of the invention has the following beneficial effects:
In the embodiment of the invention, a central node calculation model module is used for generating a plurality of calculation tasks according to the current calculation total task, distributing the calculation tasks to at least one branch node calculation unit and processing calculation results returned from the branch node calculation unit; the central node consensus mechanism module is used for carrying out credibility processing on the calculation task and carrying out credibility verification on the calculation result returned by the branch node calculation unit; the central node operation instruction module is used for managing the state of the branch node computing unit; the branch node computing unit is used for receiving the computing task, computing the computing task, and returning a computing result to the central node computing model module. Before sending the calculation tasks, the health states of the branch nodes are monitored, so that the rationality of the distribution tasks can be ensured, the reliability of the calculation of the branch nodes can be ensured, further, the branch nodes which cannot meet the standard for the health states can be planned in advance, and other branch nodes are reselected to distribute the calculation tasks; the embodiment also carries out credibility processing on the distributed computing tasks through a consensus mechanism, generates credibility labels for the computing tasks, carries out credibility verification on the computing results, and ensures the reliability of the computing results.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings that are needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a schematic block diagram of a generic high-performance trusted computing system according to an embodiment of the present invention;
FIG. 2 is a flow chart of a general high-performance trusted computing method disclosed in an embodiment of the present invention;
FIG. 3 is a schematic diagram of a general purpose high performance trusted computing device according to an embodiment of the present invention;
Fig. 4 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
It should be noted that the terms "first," "second," "third," "fourth," and the like in the description and in the claims of the present invention are used for distinguishing between different objects and not necessarily for describing a particular sequential or chronological order. The terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed or inherent to such process, method, article, or apparatus.
The embodiment of the invention discloses a general high-performance trusted computing system, a method, a device, electronic equipment and a storage medium, wherein a central node computing model module of the embodiment is used for generating a plurality of computing tasks according to the current computing total task, distributing the computing tasks to at least one branch node computing unit and processing a computing result returned from the branch node computing unit; the central node consensus mechanism module is used for carrying out credibility processing on the calculation task and carrying out credibility verification on the calculation result returned by the branch node calculation unit; the central node operation instruction module is used for managing the state of the branch node computing unit; the branch node computing unit is used for receiving the computing task, computing the computing task, and returning a computing result to the central node computing model module. Before sending the calculation tasks, the health states of the branch nodes are monitored, so that the rationality of the distribution tasks can be ensured, the reliability of the calculation of the branch nodes can be ensured, further, the branch nodes which cannot meet the standard for the health states can be planned in advance, and other branch nodes are reselected to distribute the calculation tasks; the embodiment also carries out credibility processing on the distributed computing tasks through a consensus mechanism, generates credibility labels for the computing tasks, carries out credibility verification on the computing results, and ensures the reliability of the computing results.
Example 1
Referring to fig. 1, fig. 1 is a general high-performance trusted computing system disclosed in an embodiment of the present invention, which includes a central node computing unit and a branch node computing unit, where the central node computing unit includes a central node computing model module, a central node consensus mechanism module, and a central node operation instruction module, the central node consensus mechanism module and the central node operation instruction module are both connected with the central node computing model module, and the branch node computing unit is respectively connected with the central node consensus mechanism module and the central node operation instruction module.
Specifically, the central node computing model module is used for generating a plurality of computing tasks according to the current computing total task, distributing the computing tasks to at least one branch node computing unit, and processing the computing results returned from the branch node computing units; the central node consensus mechanism module is used for carrying out credibility processing on the calculation task and carrying out credibility verification on the calculation result returned by the branch node calculation unit; the central node operation instruction module is used for managing the state of the branch node computing unit; the branch node computing unit is used for receiving the computing task, computing the computing task, and returning a computing result to the central node computing model module.
In the central node operation instruction module, state management of calculation branch nodes is carried out, CA digital certificates of each branch node are issued firstly, each branch node calculation unit actively registers with the central node operation instruction module before obtaining a calculation task, and after registration, the branch nodes obtain authentication of the central node operation instruction module and then start to carry out the calculation task; and the central node operation instruction module detects the online state of each branch node computing unit after distributed computing release by using a heartbeat mechanism. The websocket protocol is used in the registration-authentication of the branch stage and the central node operation instruction module. The specific mode for evaluating the health state of the branch node by the central node operation instruction module is as follows: evaluating whether the task type, the number of CPUs, the memory capacity, the network speed of the branch node are matched with the registration time, and the like.
Example two
Referring to fig. 2, fig. 2 is a flow chart of a general high-performance trusted computing method according to an embodiment of the present invention. The execution main body of the method described in the embodiment of the invention is an execution main body composed of software or/and hardware, and the execution main body can receive related information in a wired or/and wireless mode and can send a certain instruction. Of course, it may also have certain processing and storage functions. The execution body may control a plurality of devices, such as a remote physical server or cloud server and related software, or may be a local host or server and related software that performs related operations on a device that is located somewhere, etc. In some scenarios, multiple storage devices may also be controlled, which may be located in the same location or in different locations than the devices. As shown in fig. 2, the trusted and high-performance general-purpose computing method comprises the following steps:
201. acquiring a current calculation total task and state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information.
In this step, the central node computing unit distributes the calculation total tasks to generate a plurality of calculation tasks. And monitor the state of the computational element of branch node, including evaluating CPU quantity, treatable task type, memory capacity, network speed, idle state of branch node, when the computational element state of branch node is healthy, its computational result is safer and more reliable.
Further, before acquiring the state information of all the current branch node computing units, the embodiment further includes: receiving a registration request of a branch node computing unit, wherein the registration request comprises branch node information of the branch node computing unit; verifying the legitimacy of the branch node computing unit based on the branch node information, and receiving registration information of the branch node computing unit through websocket protocol when the branch node computing unit is verified to be legal, so as to establish authentication connection with the branch node computing unit.
202. Performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the trusted label is used for recording the uniqueness and the legality of the computing task.
The embodiment generates the trusted label by performing trusted processing on the calculation task so as to verify the calculation result returned by the branch node calculation unit.
Specifically, generating a serial number of each calculation task according to a preset rule, and acquiring task information of the calculation task; and extracting keywords of task information, and generating a unique code of the computing task based on the serial number and the keywords.
The serial number of the trusted processing corresponds to a code of the calculation task allocated at this time, and the task information is that the calculation task has the content to be calculated. Each computing task may include a different direction of computation, may require different computing methods, may involve different computing items, etc., extracts keywords of the task information, and combines the keywords with the sequence to generate a unique code. Specifically, different codes corresponding to different characters can be set in advance to form a character code relation matching table, codes corresponding to keywords can be found from the relation matching table by high inquiry, and then the codes are combined with the serial numbers to obtain unique codes.
203. And distributing the calculated data to a branch node calculation unit corresponding to the branch node information, so that the branch node calculation unit calculates the calculated data and receives a calculation result returned from the branch node calculation unit.
In this step, the branch node calculation unit calculates the calculation data, including: the branch node analyzes the calculation data to obtain a calculation task and a credible label; where the trusted tag is the unique code obtained previously. The branch node computing unit compares the trusted tag with the first verification data to verify the reliability of the trusted tag, and computes the computing task after verification is passed. The first verification data is verification data stored in the branch node computing unit, and may be a hash value or a unique code, for example, the branch node computing unit generates a hash value according to a serial number directly sent from the central node computing unit, analyzes the unique data to obtain a serial number, regenerates the serial number into a new hash value, and compares the new hash value with the new hash value to see whether the new hash value is consistent with the new hash value, thereby verifying the reliability of the current computing task.
Further, receiving the calculation result returned from the branch node calculation unit includes: acquiring second verification data carried in the calculation result, and generating a new hash value based on the trusted label and the calculation result; and comparing whether the new hash value is consistent with the second verification data.
In the step, the center node computing unit performs trusted verification on the received computing result, the computing result carries second verification data, the second verification data is a hash value generated by combining the trusted label and the computing result by the branch node computing unit, and the center node computing unit generates a new hash value based on the trusted label and the computing result to compare, so that whether the computing result is a computing result corresponding to the computing task which is initially sent out by the center node computing unit or not can be determined, and the reliability of the computing result is improved.
Example III
Referring to fig. 3, fig. 3 is a schematic structural diagram of a general-purpose high-performance trusted computing device according to an embodiment of the present invention. As shown in fig. 3, the trusted and high-performance general-purpose computing device may include: a task allocation module 301, a label generation module 302, and a result return module 303, wherein the task allocation module 301: the method comprises the steps of obtaining a current calculation total task and obtaining state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information; label generation module 302: the trusted label is used for performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the credible tag is used for recording the uniqueness and the legality of the computing task; the result returns to the module 303: and the branch node computing unit is used for distributing the computing data to a branch node computing unit corresponding to the branch node information so as to enable the branch node computing unit to compute the computing data and receive a computing result returned by the branch node computing unit.
Before the task allocation module 301, the system further includes a registration module, configured to receive a registration request of a branch node computing unit, where the registration request includes branch node information of the branch node computing unit; verifying the legitimacy of the branch node computing unit based on the branch node information, and receiving registration information of the branch node computing unit through websocket protocol when the branch node computing unit is verified to be legal, so as to establish authentication connection with the branch node computing unit.
The tag generation module 302 includes a tag generation sub-module: the method comprises the steps of generating a serial number of each calculation task according to a preset rule, and obtaining task information of the calculation task; and extracting keywords of task information, and generating a unique code of the computing task based on the serial number and the keywords. The preset rule for generating the serial number can be that the date of the day of the task allocation calculation is added with a time stamp and the task sequence.
The result returning module 303 includes a calculation sub-module, which is used for the branch node calculation unit to analyze the calculation data to obtain a calculation task and a trusted label; the branch node computing unit compares the trusted tag with the first verification data to verify the reliability of the trusted tag, and computes the computing task after verification is passed.
The further embodiment further comprises a result verification module, which is used for obtaining second verification data carried in the calculation result and generating a new hash value based on the trusted label and the calculation result; and comparing whether the new hash value is consistent with the second verification data.
Example IV
Referring to fig. 4, fig. 4 is a schematic structural diagram of an electronic device according to an embodiment of the invention. The electronic device may be a computer, a server, or the like, and of course, may also be an intelligent device such as a mobile phone, a tablet computer, a monitor terminal, or the like, and an image acquisition device having a processing function. As shown in fig. 4, the electronic device may include:
a memory 401 storing executable program codes;
A processor 402 coupled with the memory 401;
wherein the processor 402 invokes executable program code stored in the memory 401 to perform some or all of the steps in the general purpose high performance trusted computing method in embodiment two.
The embodiment of the invention discloses a computer readable storage medium storing a computer program, wherein the computer program causes a computer to execute part or all of the steps in the general high-performance trusted computing method in the second embodiment.
The embodiment of the invention also discloses a computer program product, wherein when the computer program product runs on a computer, the computer is enabled to execute part or all of the steps in the general high-performance trusted computing method in the second embodiment.
The embodiment of the invention also discloses an application release platform, wherein the application release platform is used for releasing the computer program product, and when the computer program product runs on a computer, the computer is caused to execute part or all of the steps in the general high-performance trusted computing method in the second embodiment.
In various embodiments of the present invention, it should be understood that the size of the sequence numbers of the processes does not mean that the execution sequence of the processes is necessarily sequential, and the execution sequence of the processes should be determined by the functions and internal logic thereof, and should not constitute any limitation on the implementation process of the embodiments of the present invention.
The units described as separate units may or may not be physically separate, and units shown as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.
The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer-accessible memory. Based on this understanding, the technical solution of the present invention, or a part contributing to the prior art or all or part of the technical solution, may be embodied in the form of a software product stored in a memory, comprising several requests for a computer device (which may be a personal computer, a server or a network device, etc., in particular may be a processor in a computer device) to execute some or all of the steps of the method according to the embodiments of the present invention.
In the embodiments provided herein, it should be understood that "B corresponding to a" means that B is associated with a, from which B can be determined. It should also be understood that determining B from a does not mean determining B from a alone, but may also determine B from a and/or other information.
Those of ordinary skill in the art will appreciate that some or all of the steps of the various methods of the described embodiments may be implemented by hardware associated with a program that may be stored in a computer-readable storage medium, including Read-Only Memory (ROM), random-access Memory (RandomAccess Memory, RAM), programmable Read-Only Memory (Programmable Read-Only Memory, PROM), erasable programmable Read-Only Memory (Erasable Programmable Read-Only Memory, EPROM), one-time programmable Read-Only Memory (One-time Programmable Read-Only Memory, OTPROM), electrically erasable programmable Read-Only Memory (EEPROM), compact disc Read-Only Memory (Compact Disc Read-Only Memory, CD-ROM), or other optical disk Memory, magnetic disk Memory, tape Memory, or any other medium capable of being used to carry or store data.
The general high-performance trusted computing system, the method, the device, the electronic equipment and the storage medium disclosed by the embodiment of the invention are described in detail, and specific examples are applied to illustrate the principle and the implementation of the invention, and the description of the above embodiments is only used for helping to understand the method and the core idea of the invention; meanwhile, as those skilled in the art will have variations in the specific embodiments and application scope in accordance with the ideas of the present invention, the present description should not be construed as limiting the present invention in view of the above.
Claims (10)
1. A general purpose high performance trusted computing system, comprising: the central node computing unit comprises a central node computing model module, a central node consensus mechanism module and a central node operation instruction module, wherein the central node consensus mechanism module and the central node operation instruction module are both connected with the central node computing model module, and the branch node computing unit is respectively connected with the central node consensus mechanism module and the central node operation instruction module;
The central node calculation model module is used for generating a plurality of calculation tasks according to the current calculation total task, distributing the calculation tasks to at least one branch node calculation unit and processing calculation results returned from the branch node calculation unit; the central node consensus mechanism module is used for carrying out credibility processing on the calculation task and carrying out credibility verification on the calculation result returned by the branch node calculation unit; the central node operation instruction module is used for managing the state of the branch node computing unit; the branch node computing unit is used for receiving the computing task, computing the computing task, and returning a computing result to the central node computing model module.
2. A method of universal high performance trusted computing comprising:
Acquiring a current calculation total task and state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information;
Performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the credible tag is used for recording the uniqueness and the legality of the computing task;
And distributing the calculated data to a branch node calculation unit corresponding to the branch node information, so that the branch node calculation unit calculates the calculated data and receives a calculation result returned from the branch node calculation unit.
3. The general purpose high performance trusted computing method of claim 2, wherein said state information includes CPU number, type of processable task, memory capacity, network speed, idle state.
4. The method for universal high-performance trusted computing as claimed in claim 3, further comprising, before said obtaining the state information of all current branch node computing units:
Receiving a registration request of a branch node computing unit, wherein the registration request comprises branch node information of the branch node computing unit;
Verifying the legitimacy of the branch node computing unit based on the branch node information, and receiving registration information of the branch node computing unit through websocket protocol when the branch node computing unit is verified to be legal, so as to establish authentication connection with the branch node computing unit.
5. The method of claim 2, wherein separately performing a trusted process on each of the computing tasks to generate a trusted label for the computing task comprises:
generating a serial number of each calculation task according to a preset rule, and acquiring task information of the calculation task;
And extracting keywords of task information, and generating a unique code of the computing task based on the serial number and the keywords.
6. The general purpose high performance trusted computing method of claim 5, wherein said branch node computing unit computes said computation data, comprising:
the branch node computing unit analyzes the computing data to obtain a computing task and a trusted tag;
the branch node computing unit compares the trusted tag with the first verification data to verify the reliability of the trusted tag, and computes the computing task after verification is passed.
7. The method of claim 6, wherein receiving the calculation result returned from the branch node calculation unit comprises:
Acquiring second verification data carried in the calculation result, and generating a new hash value based on the trusted label and the calculation result;
and comparing whether the new hash value is consistent with the second verification data.
8. A general purpose high performance trusted computing device, comprising:
The task allocation module: the method comprises the steps of obtaining a current calculation total task and obtaining state information of all current branch node calculation units, and generating a plurality of calculation tasks based on the calculation total task and the state information, wherein each calculation task comprises calculation task data and branch node information;
The label generating module: the trusted label is used for performing trusted processing on each computing task to generate a trusted label of the computing task, and combining the trusted label and the computing task to generate computing data; the credible tag is used for recording the uniqueness and the legality of the computing task;
And a result return module: and the branch node computing unit is used for distributing the computing data to a branch node computing unit corresponding to the branch node information so as to enable the branch node computing unit to compute the computing data and receive a computing result returned by the branch node computing unit.
9. An electronic device, comprising: a memory storing executable program code; a processor coupled to the memory; the processor invokes the executable program code stored in the memory for performing the general purpose high performance trusted computing method of any one of claims 2 to 7.
10. A computer-readable storage medium storing a computer program, wherein the computer program causes a computer to execute the general-purpose high-performance trusted computing method of any one of claims 3 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410215723.7A CN117972726A (en) | 2024-02-27 | 2024-02-27 | General high-performance trusted computing system, method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410215723.7A CN117972726A (en) | 2024-02-27 | 2024-02-27 | General high-performance trusted computing system, method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117972726A true CN117972726A (en) | 2024-05-03 |
Family
ID=90853053
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410215723.7A Pending CN117972726A (en) | 2024-02-27 | 2024-02-27 | General high-performance trusted computing system, method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117972726A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111027086A (en) * | 2019-12-16 | 2020-04-17 | 支付宝(杭州)信息技术有限公司 | Private data protection method and system |
| US20210067347A1 (en) * | 2019-08-29 | 2021-03-04 | Alibaba Group Holding Limited | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
| CN113873004A (en) * | 2021-08-16 | 2021-12-31 | 中国人民银行数字货币研究所 | Task execution method and device and distributed computing system |
| CN114265898A (en) * | 2021-12-24 | 2022-04-01 | 北京天融信网络安全技术有限公司 | Data processing method, device, equipment and storage medium |
| CN115708095A (en) * | 2021-08-20 | 2023-02-21 | 华为技术有限公司 | Data security processing method and device |
| CN116204914A (en) * | 2022-12-09 | 2023-06-02 | 杭州安恒信息技术股份有限公司 | Trusted privacy computing method, device, equipment and storage medium |
| WO2023116790A1 (en) * | 2021-12-21 | 2023-06-29 | 中兴通讯股份有限公司 | Method and apparatus for executing computing task, and storage medium and electronic apparatus |
-
2024
- 2024-02-27 CN CN202410215723.7A patent/CN117972726A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20210067347A1 (en) * | 2019-08-29 | 2021-03-04 | Alibaba Group Holding Limited | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
| CN111027086A (en) * | 2019-12-16 | 2020-04-17 | 支付宝(杭州)信息技术有限公司 | Private data protection method and system |
| CN113873004A (en) * | 2021-08-16 | 2021-12-31 | 中国人民银行数字货币研究所 | Task execution method and device and distributed computing system |
| CN115708095A (en) * | 2021-08-20 | 2023-02-21 | 华为技术有限公司 | Data security processing method and device |
| WO2023116790A1 (en) * | 2021-12-21 | 2023-06-29 | 中兴通讯股份有限公司 | Method and apparatus for executing computing task, and storage medium and electronic apparatus |
| CN114265898A (en) * | 2021-12-24 | 2022-04-01 | 北京天融信网络安全技术有限公司 | Data processing method, device, equipment and storage medium |
| CN116204914A (en) * | 2022-12-09 | 2023-06-02 | 杭州安恒信息技术股份有限公司 | Trusted privacy computing method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111163182A (en) | Block chain-based device registration method and apparatus, electronic device, and storage medium | |
| CN111698315B (en) | Data processing method and device for block and computer equipment | |
| CN111597567B (en) | Data processing method, data processing device, node equipment and storage medium | |
| CN109120614B (en) | Service processing method and device based on distributed system | |
| CN113986835B (en) | FastDFS distributed file management method, fastDFS distributed file management device, fastDFS distributed file management equipment and storage medium | |
| CN113505354B (en) | Data processing method, device and storage medium | |
| CN111460394A (en) | Copyright file verification method and device and computer readable storage medium | |
| CN110866265A (en) | Data storage method, device and storage medium based on block chain | |
| CN110930254A (en) | Data processing method, device, terminal and medium based on block chain | |
| CN112131196A (en) | Distributed log processing method and device, terminal equipment and storage medium | |
| CN111338834B (en) | Data storage method and device | |
| CN112948723A (en) | Interface calling method and device and related equipment | |
| CN115701078A (en) | Cross-chain transaction processing method and device, electronic equipment and storage medium | |
| CN114401239B (en) | Metadata transmission method, apparatus, computer device and storage medium | |
| CN106203179B (en) | A kind of completeness check system and method for pair of file | |
| CN114676205A (en) | Event information processing method and device | |
| CN113162971B (en) | Block link point management method, device, computer and readable storage medium | |
| CN113129002A (en) | Data processing method and equipment | |
| CN114785526B (en) | Multi-user multi-batch weight distribution calculation and storage processing system based on block chain | |
| CN117972726A (en) | General high-performance trusted computing system, method and device | |
| CN110474954B (en) | Block chain-based file sharing method and device, computer equipment and readable storage medium | |
| CN114398678A (en) | Registration verification method and device for preventing electronic file from being tampered, electronic equipment and medium | |
| CN108805741B (en) | Fusion method, device and system of power quality data | |
| CN115842866A (en) | Data processing method and device, computer readable medium and electronic equipment | |
| CN113032820A (en) | File storage method, access method, device, equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |