KR102051231B1 - Method and system for tracking transaction of the user personal information based in blockchain - Google Patents

Abstract

Disclosed are a method and system for grasping user personal information utilizing a blockchain. A method of providing a transaction flow for user personal information, the method comprising: generating a new block including a user's personal information related transaction details corresponding to a predetermined time, and each block including the personal information related transaction details; Connecting the new block to a blockchain that is connected in a chain form, propagating a new block connected to the blockchain to a node that forms a network, receiving a block generated in a previous node The method may include verifying validity of the received block, and additionally connecting the verified block to the blockchain.

Description

METHOD AND SYSTEM FOR TRACKING TRANSACTION OF THE USER PERSONAL INFORMATION BASED IN BLOCKCHAIN}

Embodiments of the present invention, when subscribing to the website for the use of various services, such as subscription to the Internet portal site, credit card, insurance, chat service, education service, game service, telephone or in writing, the service of the service, The present invention relates to a technology for identifying / tracking a collection and use flow of personal information of a user who has agreed to use.

As the network develops, a growing number of data broker companies are gathering various information and processing big data, and then profiting from selling or using big data. The scale is also growing.

A data broker collects data from a personal information provider to find out characteristics of an individual through big data analysis and sells the information to a service provider. For example, the information may be sold to service providers in various fields such as advertisement, recommendation, policy promotion, and the like, and may be used for product marketing such as advertisement marketing, real estate policy, and travel / clothing based on the information.

However, users who subscribe to websites that provide such services, download applications, subscribe to insurance, credit cards, e-financial services, etc. to use a particular service (ie, personal information providers) must Most people do not know how data is collected and used under a contract, which causes anxiety in the privacy provider. For example, according to the 2014 World Economic Forum's report, users (ie, privacy providers) have a high level of anxiety about privacy violations, and they are concerned with on / offline providers (ie service providers) who use personal information. Reliability was found to be low.

As such, the initiative to use personal information does not belong to individual users who are the owners of personal information, but problems related to the leakage and misuse of personal information continue to be collected in terms of collecting personal information. In other words, there is a conflict of interest problem for big data collectors. As a representative conflict, there is a conflict of interest about the opt-in method. In the past few years of disputes involving privacy infringement issues, the unauthorized collection of personal location information from big data collectors (ie data brokers) has become an issue.

In relation to location information, there is a question about the optout method already adopted in the United States. The opt-out method allows the service to be blocked after rejecting the service. The US has supported the opt-out method because it basically prioritizes the industry and promotes the structure of the 'privacy business'.

However, after Google's 2010 Street View incident, Google has opted in to Android-based location information. And unlike the United States, the EU adheres to the opt-in principle. In the European Union, the draft of the Data Protection Rules was released in January 2012, strictly restricting the collection, disclosure and fraud of personal information, including the collection of up to 0.5% of global annual sales for violations of prior applications.

Based on this background, the big data market in the future is expected to become a big trust market due to the destructive features of big trust. For example, the destructive features of Big Trust include: user control base, relationship priority base, benefits through privacy defense, user electoralization, personal economy defense and expansion, transparent collection and use, opt-in recommendation, self-analysis self It includes a proven consumer profile, an individual's appearance, single sign-on, synergy in interests, rebalancing interests, building trust, and breaking the market power of the Internet majors.

As the mobile Internet as well as the wired Internet are developed, the collection and utilization of big data is increasing, the user's anxiety about the transaction of the collected big data is increasing, and the denial is also increasing. There is a need for a technology that provides and utilizes the foundation. That is, based on user control that transfers ownership (i.e. initiative) of personal information from the data collecting side (e.g., big data collection device or data broker) to the data providing side (e.g. user who is the owner of the personal information). Personal information utilization skills are required.

Korean Patent Laid-Open No. 10-2013-0142863 relates to a method and device for managing personal information, and receives a consignment request including personal information and a telephone number corresponding to the personal information from a consignment agency system, and encrypts the received personal information. To protect personal information.

One embodiment of the present invention is to provide a method and system for allowing personal information to be utilized on a user's control basis (that is, a user's control basis), which is one of the main issues related to the use of personal information. That is, to provide a technology for the personal information is utilized by moving the ownership / control of the personal information to the personal information provider (that is, the user terminal) that provides the personal information from the data broker side collecting the personal information.

In addition, an embodiment of the present invention represents the flow of personal information transactions using a blockchain used for cryptocurrency transactions, such as Bitcoin, thereby requiring elements necessary for a user control base (ie, a user control base). One of the purposes of the present invention is to provide a technology for enabling a user to personally check the use of personal information.

A method of providing a transaction flow for user personal information, the method comprising: generating a new block including a user's personal information related transaction details corresponding to a predetermined time, and each block including the personal information related transaction details; Connecting the new block to a blockchain connected in a chain form, propagating a new block connected to the blockchain to a node forming a network, receiving a block generated in the node The method may include verifying validity of the received block, and additionally connecting the verified block to the blockchain.

According to one aspect, the blockchain has a structure in which one block is connected to each other in a chain form for each time, the one block may include a plurality of transactions associated with the user's personal information.

According to another aspect, the step of generating the new block, the transaction-related basics including the identifier information of the node transmitting the personal information, the identifier information of the node receiving the personal information, the identifier information and time information of the transaction history The new block is generated such that the information is included with the transaction information related to the personal information, and the transaction information related to the user's personal information includes: identifier information of the user corresponding to the personal information included in the new block, personal information of the user, Type of data, and data size.

According to another aspect, generating the new block, when the transaction flow providing method is performed by a user terminal, generating the personal information to be delivered to at least one of a data broker server and a service server in the user terminal And generating the new block by collecting the generated at least one personal information for the predetermined time.

According to another aspect, the step of generating the new block, when the new block is received from the user terminal, processing at least one of the user-related transaction history and transaction-related basic information of the user included in the new block It may include a step.

According to another aspect, whenever a change occurs in at least one of the transaction details and the basic information through the processing, the new block connected to the block chain includes the transaction details changed through the processing or in the new block. The machined blocks can be connected in chain form.

According to another aspect, the method may further include providing, in response to the request of the user, tracking of a transaction flow related to the personal information of the user based on the blockchain.

According to another aspect, the step of providing a transaction flow associated with the user's personal information, the block information included in the blockchain, based on the identification information of the user to search based on the Merkle tree (Merkle tree) search And extracting identifier information of the node that has transmitted and received the personal information of the corresponding user, and visualizing and providing a transaction flow based on the extracted identifier information of the node.

According to another aspect, the new block may be further connected to the blockchain when validation is completed through the node.

The transaction flow providing system for user personal information may include: a block generation unit generating a new block including a user's personal information related transaction details corresponding to a predetermined time, and each block including the personal information related transaction details; A blockchain control unit for additionally connecting the new block to a blockchain that connects them in a chain form, a block propagation unit for propagating the new block connected to the blockchain to a node forming a network, and at the node And a block verification unit configured to receive the generated block and to verify the validity of the received block, wherein the blockchain controller may further connect the verified block to the blockchain.

According to an aspect, the blockchain may be configured in a structure in which different blocks are connected in a chain form for each time, and the one block may include a plurality of transactions generated in association with a user's personal information.

According to another aspect, the block generation unit, the transaction-related basic information including the identifier information of the node for transmitting the personal information, the identifier information of the node for receiving the personal information, the identifier information of the transaction history, and the time information; The new block is generated to be included with the transaction information related to personal information, and the transaction information related to the user's personal information includes user's identifier information, user's personal information, and type of data corresponding to personal information included in the new block. , And data size.

According to another aspect, when the transaction flow providing system is a user terminal, the block generation unit generates the personal information to be transmitted from the user terminal to at least one of a data broker server and a service server, the at least one individual The new block may be generated by collecting information for the predetermined time.

According to another aspect, when the new block is received from the user terminal, the block generation unit may process at least one of a user's personal information related transaction details and transaction related basic information included in the new block.

According to another aspect, whenever a change occurs in at least one of the transaction details and the basic information through the processing, the new block connected to the block chain includes the transaction details changed through the processing or in the new block. The machined blocks can be connected in chain form.

According to another aspect, in response to the user's request, it may further include a transaction flow tracking unit for providing a trace of the transaction flow associated with the user's personal information based on the blockchain.

According to another aspect, the transaction flow tracking unit, based on the identifier information of the user to search based on the Merkle tree search for the blocks included in the blockchain, the user's personal information Identifier information of the transmitted / received nodes may be extracted, and the transaction flow may be visualized and provided based on the extracted identifier information of the node.

According to another aspect, the new block may be additionally connected to the blockchain when validation is completed through the node.

In a computer program stored in a recording medium in order to execute a method of providing a transaction flow for user personal information in combination with a computer-implemented electronic device, the method of providing a transaction flow for the user personal information corresponds to a predetermined time. Generating a new block including a user's personal information related transaction, and adding the new block to a blockchain that connects each block including the personal information related transaction in a chain form; Connecting, controlling propagation of a new block connected to the blockchain to nodes forming a network, receiving a block generated at the node, validating the received block, and verifying The method may further include connecting the block to the blockchain.

One of the main issues related to the use of personal information is to use the personal information as the control base of the user (ie, based on the user's control). It can be moved to the personal information provider (that is, the user terminal) that provides.

In addition, by representing the flow of personal information using a blockchain used for cryptocurrency trading such as Bitcoin, personal information, which is one of the elements necessary for the user control base (ie, the user control base), is traded. The details (or details of use of personal information) may be made available to the individual user who is the owner of the information.

1 is a diagram illustrating a schematic structure of a P2P-based network in which user's personal information is propagated according to an embodiment of the present invention.
2 is a flowchart provided to explain a method of providing a transaction flow for a user's personal information using a blockchain according to an embodiment of the present invention.
3 is a block diagram illustrating an internal configuration of a system for providing a transaction flow for a user's personal information according to one embodiment of the present invention.
4 is a diagram illustrating a blockchain structure showing a transaction flow of a user's personal information according to one embodiment of the present invention.
FIG. 5 is a diagram illustrating a structure in which a blockchain branches according to an embodiment of the present invention.
6 is a diagram illustrating a structure for generating all transactions related to personal information in one blockchain according to one embodiment of the present invention.
7 is a network structure illustrating an operation of processing personal information of a user in a server of a data broker according to an embodiment of the present invention.
FIG. 8 is a diagram illustrating a structure of a blockchain manager for storing and maintaining personal information in a blockchain form according to an embodiment of the present invention.
9A and 9B illustrate a structure of transaction details recorded in one block according to one embodiment of the present invention.
FIG. 10 is a diagram illustrating a network structure in which all nodes have a blockchain manager for managing and controlling a blockchain according to an embodiment of the present invention.
11 is a flowchart illustrating a process of tracking personal information usage history according to an embodiment of the present invention.

The present embodiments provide a transaction flow for a user's personal information such as a user's name, age, gender, address, phone number, job, hobby, interest, asset information, marital status, location information, etc. in a distributed network system. It's about technology. In particular, a transaction is defined as a transaction in which a data broker collects user's personal information and provides it to a service provider or another service provider, and is a block used for cryptocurrency trading such as Bitcoin (BTC). By using a blockchain (blockchain) relates to a technology that provides the transaction history of the user's personal information, that is, the user's personal information as a flow of transactions related to the user's personal information can be identified.

In the present embodiments, a blockchain represents a transaction ledger based on a distributed database structure. The blockchain refers to an operation of exchanging user's personal information with an external device (eg, a data broker or a server) as a transaction. In addition, the exchange of personal information can also be stored in the form of blockchain. For example, a transaction may refer to an operation of transmitting location information (eg, GPS information) of a user terminal, which is one of user's personal information, to a server (ie, a service provider) providing a corresponding service. Information indicating the flow of the location information from the user terminal to the server through the devices corresponding to the intermediate data broker may be stored in the form of a block chain. In other words, the block chain is a block in which all details related to a personal information transaction (transaction) made between a user terminal, a server, and a data broker are recorded in a chain form in the order of occurrence time, and all user terminals participating in the network, Can be published and shared to servers, data brokers.

In the present embodiments, the 'block' may represent one unit for collecting personal information related transactions of the user occurring at the same time. For example, it may correspond to a unit representing transactions to be collected and recorded in one block for a predetermined predetermined time (eg, a predetermined time designated from time 1 to time 2).

In the present embodiments, a 'node' represents a device of a participant who forms a peer-to-peer network in connection with transmitting and receiving personal information of a user, for example, a user terminal. It may represent a server (ie, a service server) of a service provider and a data broker collecting personal information of a user from a user terminal. Here, the 'data broker' may be distinguished from a server of a service provider (that is, a service server) and may represent a big data collection server used for big data collection.

In the present embodiments, a user terminal providing personal information (eg, location information, etc.) corresponds to a transmitting node in a blockchain-based network, and a server providing the corresponding service by receiving personal information (eg, location information) is provided. A data broker, which corresponds to a receiving node in the network, collects and transmits the personal information (eg, location information) to the server, and forms a block chain for cryptocurrency transactions such as bitcoin. It may correspond to the terminal.

In the present embodiments, authenticated blocks that indicate that a transaction (ie, a transaction) has been processed normally may be bundled and chained, and user terminals may, for newly published blocks, determine whether they are consistent with an existing chain. Calculate whether or not, and if positive, the block can be validated by being part of the blockchain. In other words, a user terminal which has verified that the block is valid may add the block to its blockchain. And, if there is a contradiction between the block and the existing chain, the block may be rejected and the transmission indicated by the transaction (ie, transaction) included in the block may be invalidated.

In the present exemplary embodiment, the block including the transaction information related to personal information and the block generated through processing such as changing contents included in the block or adding new information may all have one block structure. have. In this case, when the block and the processed block are generated at different times, the block and the processed block may be connected to the block chain in a chain form for each time.

1 is a diagram illustrating a schematic structure of a P2P-based network in which personal information of a user is propagated according to an embodiment of the present invention.

According to FIG. 1, a user terminal, a server, one or more data brokers, etc. may participate to process a transaction such as generating (ie, issuing), collecting and propagating user's personal information in the network 100. Can be. For example, a transaction (transaction) may represent a transaction identifier including a block information, a hash value, and the like including transaction information and basic information related to personal information.

The user terminal (ie, the personal information provider 101) may use a desktop PC, a laptop, a smartphone, a tablet, or the like, and may install a dedicated application or a web-based program to participate in the network 100.

The server (ie, the service provider 103) may provide the service requested by the user terminal 101 to the user terminal 101 through the dedicated application or program. For example, when a location-based search service is requested, the user terminal 101 provides location information to the server 103, and the server 103 provides a game service or restaurant information based on the received location information through an application. Can provide.

The network 110 may include one or more data brokers, and the data broker 102 collects personal information (eg, location information) transmitted from the user terminal 101 to the server 103 to receive a specific service. To process the big data, transfer the personal information to the server 103, and sell (ie, transfer) the big data to another data broker.

The at least one data broker (ie, the big data collection server device) receives the block as the block including the transaction information related to personal information generated in the user terminal 101 is propagated to the network 100, Verification of the block may be verified based on a hash included in the received block. In addition, if valid, the block may be added to the blockchain, and the data may be transmitted to the network 100 and disclosed to the network 100 together with data verifying validity. In this case, the remaining data brokers may also verify the validity of the block added to the blockchain and, if valid, may add the added block to its blockchain. If it is not valid, the block can be discarded without adding it to its blockchain.

2 is a flowchart provided to explain a method for providing a transaction flow for a user's personal information using a blockchain according to an embodiment of the present invention, and FIG. 3 is an embodiment of the present invention. A block diagram showing an internal configuration of a system that provides a transaction flow for a user's personal information.

In FIG. 3, a system that provides a transaction flow for a user's personal information may represent a blockchain manager included in each of a user terminal, a server of a data broker, and a server of a service provider.

The personal information transaction flow providing system 300 according to the present exemplary embodiment may include a processor 310, a bus 320, a network interface 330, and a memory 340. The memory 340 may include an operating system 341 and a service providing routine 342. The processor 310 may include a block generator 311, a block chain controller 312, a block propagation unit 313, and a block verification unit 314. In other embodiments, the personal information transaction flow providing system 300 may include more components than the components of FIG. 3. However, it is not necessary to clearly show most of the prior art components. For example, the personal information transaction flow providing system 300 may include other components such as a display or a transceiver, and a transaction flow tracking unit (not shown) for estimating a transaction flow of personal information through a blockchain. H) may be further included.

The memory 340 is a computer-readable recording medium, and may include a permanent mass storage device such as random access memory (RAM), read only memory (ROM), and a disk drive. Also, program code for the operating system 341 and the service providing routine 342 may be stored in the memory 340. These software components may be loaded from a computer readable recording medium separate from the memory 340 using a drive mechanism (not shown). Such a separate computer-readable recording medium may include a computer-readable recording medium (not shown) such as a floppy drive, a disk, a tape, a DVD / CD-ROM drive, a memory card, and the like. In other embodiments, the software components may be loaded into the memory 340 via the network interface 330 rather than the computer readable recording medium.

The bus 320 may enable communication and data transmission between components of the personal information transaction flow providing system 300. Bus 320 may be configured using a high-speed serial bus, a parallel bus, a storage area network (SAN) and / or other suitable communication technology.

The network interface 330 may be a computer hardware component for connecting the personal information transaction flow providing system 300 to a computer network. The network interface 330 may connect the personal information transaction flow providing system 300 to a computer network through a wireless or wired connection.

The processor 310 may be configured to process instructions of a computer program by performing input / output operations of the basic arithmetic, logic, and personal information transaction flow providing system 300. The instructions may be provided to the processor 310 by the memory 340 or the network interface 330 and via the bus 320. The processor 310 is configured to execute program code for the block generation unit 311, the block chain control unit 312, the block propagation unit 313, the block verification unit 314, and the transaction flow tracking unit (not shown). Can be. Such program code may be stored in a recording device such as memory 340.

The block generator 311, the block chain controller 312, the block propagation unit 313, and the block verification unit 314 may be configured to perform the steps 210 to 260 of FIG. 2. 2 and 3, an operation of generating a personal information related block in the user terminal 101 or the server 102 of the data broker and additionally connecting the block to the blockchain will be described as an example.

In operation 210, the block generator 311 may generate a new block including the transaction information related to the user's personal information corresponding to a predetermined time. In addition, the block generator 311 may generate a new block so that basic transaction related information is included. In this case, the operation of generating a new block may be different depending on whether the transaction flow providing system 300 corresponds to the user terminal 101 or the data broker 102, and in the case of the data broker 102, A block received from the user terminal 101 may be processed to generate a new block. For example, information processing, such as changing the transaction history included in the block received from the user terminal 101 or merging with other transaction details, may be performed, and the processing may be different from the transaction history included in the received block. Blocks containing processed information in time (ie, processed blocks) may be connected to the blockchain. Detailed operations of generating a new block in the user terminal 101 and the data broker 102 (that is, the server of the data broker) will be described later with reference to FIGS. 4 to 6.

Here, the transaction details are the personal information contents (for example, location information, personal information, financial information, shopping information, payment information, payment information, etc.) transmitted to the server 103 of the service provider, the owner of the personal information delivered. Identifier information (eg, identifier information of the user terminal), type of data (eg, identifier information indicating whether it is location information, personal information, financial information, shopping information, etc.), size information of the data included in the block, and the like. It may include.

The transaction-related basic information may include identifier information (eg, identifier information of a user terminal) of a node transmitting personal information, identifier information (eg, identifier information of a server of a service provider) of a node receiving the personal information, and transaction details. May include identifier information, and time information (eg, a timestamp).

In operation 220, when a new block is generated, the blockchain controller 312 may control the new block to be connected to its blockchain. That is, the blockchain controller 312 may control each block including personal information related transaction details to be additionally connected to a blockchain in which a blockchain is connected in a chain form.

In operation 230, the block propagation unit 313 may broadcast the new block to the network for verifying a new block connected to its blockchain. For example, the block propagation unit 313 may deliver the new block to at least one node (eg, a server of a service provider and a server of a data broker) included in the network. Then, the new block propagated to the network verifies the validity of the block at the node (eg, the service provider's server or the data broker's server) that has received the new block, and if the verification is successfully completed, the node. It can be further connected to the blockchain of.

In operation 240, the block verification unit 314 may receive a block generated by another node (eg, another user terminal, a server of a data broker, a server of a service provider, or another data broker) that forms a network.

In operation 250, the block validator 314 may verify validity of the received block. For example, the validity of the block may be validated based on the public key and the hash value for the block digitally signed by the node.

In operation 260, the block controller 312 may control the validated block (that is, a block generated and received by another node) to be additionally connected to its blockchain.

In this way, not only the blocks created by themselves, but also blocks created by other nodes can be additionally connected to their blockchain through validation, so that the blockchain can be updated whenever a transaction related to personal information occurs, and the personal information through the update Transaction flow can be tracked, i.e. identified. Transaction flow tracking of the user's personal information may be provided through the corresponding application in response to a request of the user terminal, the processor 310 is a transaction for providing a transaction flow tracking indicating the transaction flow of the personal information to the user It may further include a flow tracking unit (not shown).

4 is a diagram illustrating a blockchain structure showing a transaction flow of personal information of a user according to one embodiment of the present invention.

According to FIG. 4, the block chain 400 may indicate that a plurality of blocks 410, 420, and 4430 in which transaction details and basic information related to personal information are recorded are connected in a chain form.

For example, if the transaction flow providing system 300 corresponds to the user terminal 101, the block generation unit 311 is a transaction that occurs during a predetermined time, that is, the server of the service provider, the data broker of the user terminal Collect personal information sent to servers, etc. In addition, one block including the transaction information and basic information related to the personal information collected for a predetermined time may be generated as a new block. In this case, when blocks 11 420 and 12 430 are blocks generated before block 10 410, which is a new block, each of blocks 420, 430, and 440 is connected to each other in a chain form. Since the block is referenced, past transaction details for personal information may be accessible.

For example, referring to block 11 420, block 11 420 may include (TX0, TX1, TX2, TX3) representing the actual transaction history 421 collected for a predetermined time. For example, TX0 is location information of the user terminal corresponding to time 1 transmitted from the user terminal to the server, TX1 is location information of the user terminal corresponding to time 2, TX2 is location information of the user terminal corresponding to time 3, and TX3 is Location information of the user terminal corresponding to time 4 may be indicated. The transaction details may indicate information of other attributes (for example, identifier information of a game item) transmitted from the user terminal to the service provider server in addition to the location information. In addition, the block 11 420 may include a hash value corresponding to each of the transaction details 421 for verifying each of the transaction details 421 collected for a predetermined time. In this case, the block 11 420 may include a hash value for each transaction history 421 in a merkle tree structure 422 to enable verification of the transaction history without viewing the actual transaction history 421. As such, each of the blocks 410, 420, and 430 connected to the blockchain 400 includes the transaction history collected for a predetermined time until the corresponding block is generated, and the hash value corresponding to each transaction is stored in the Merkle Tree ( merkle tree, 422).

As described in FIG. 4, when the transaction flow providing system 300 corresponds to the user terminal 101, the block generation unit 311 may use the server 102 of the data broker and the server of the service provider in the user terminal 101. The personal information to be delivered to at least one of the service servers 103 may be generated, and the generated personal information may be collected for a predetermined time to generate a new block.

On the other hand, when the transaction flow providing system 300 corresponds to the server 102 of the data broker, the block generation unit 311 receives a block generated in the user terminal 101 from the user terminal 101 and processes the new block. You can create a block. In this case, the block generation unit 311 may generate a new block by processing at least one of the user's personal information-related transaction history and transaction-related basic information included in the block received from the user terminal 101. For example, a new block can be generated by performing processing to modify time information, identifier information of a node transmitting the block, identifier information of a node to receive the block, and the like. As such, the blockchain may be branched every time a machining operation occurs in which the contents included in the block are changed / deformed, and the blockchain branch will be described with reference to FIG. 5 below. For example, each time elapses, processing operations such as changing or adding contents related to the user's personal information may occur at different times, such as blocks at time t ₁ , blocks at time t ₂ , A block at time t ₃ may be connected to the block chain in a chain form.

FIG. 5 is a diagram illustrating a structure in which a blockchain branches according to an embodiment of the present invention.

According to FIG. 5, a blockchain in which blocks generated as a block in which personal information of a user is recorded is transferred from a user terminal to other external devices (eg, a service server, a server of a data broker, a server of another data broker, etc.) are connected. In 500, blocks with hatched patterns may correspond to a main block. Each node prefers long blocks in mining, so it can converge to the longest block.

In this case, when the server 102 of the data broker receives the specific block 510 from the user terminal 101, the processing is performed on the block 510 to generate a new block. Can be generated. Accordingly, the blockchain 500 may be divided into a block 520 and a one block 530 generated through processing based on the specific block 510. For example, a blockchain including a block containing the user's personal information at time t ₁ may be branched to include the processed block as the transaction details included in the block are changed and processed at time t ₂ . . At this time, two chains may be temporarily formed due to the branching, but if the branch is extended by two or more blocks (540), the block in which the next block is mined first may remain in the blockchain. For example, based on the second branched block 540 in the blockchain 500, the blocks 541 and 542 are disconnected and discarded, and the blocks 543, 544 and 545 are connected in a chain to block the blockchain 500. ) Can be maintained.

As such, when the blockchain is branched, by using a long block preference policy based on a policy that maximizes the profit of each node, blocks to be left and blocks to be discarded at the time of branching of the blockchain can be determined. In other words, investing effort in short-length blocks connected by a chain is a disadvantage, so that blocks with long chains can be left on the blockchain.

FIG. 6 is a diagram illustrating a structure for generating all transactions related to personal information in one blockchain according to one embodiment of the present invention.

Referring to 610 of FIG. 6, different copies of personal information may be generated, unlike money. For example, various transactions may be generated that deal with the same information (ie, the same personal information) to the service server, a server of another data broker, or the like through a procedure of using personal information. In this case, all transactions related to personal information (that is, a plurality of transactions for the same information) may be generated in one block chain without branching the block chain. In other words, since personal information can transmit the same information to multiple people, the problem of double payment is fundamentally blocked, and there is no need for branching of the blockchain. As such, due to the structure in which double payment is impossible, duplicate transactions may not be included in one block.

Referring to 620 of FIG. 6, money cannot be processed, but personal information may be processed to generate new information.

For example, in blockchain-based currency trading, there is a concept of sending money to yourself through the concept of change, but the transaction appears in the form of zero sum and no additional goods are generated using the currency itself. Coin mining through proof of work can also be applied as a new input. That is, it can be applied as a deposit concept. Referring to 620, in the case of personal information, new information may be generated through processing based on data included in the personal information (that is, information input as personal information). In this case, the form of processing may also be recorded and tracked, and information of the owners of personal information before processing may be recorded to ensure the use of transparent personal information.

7 is a network structure illustrating an operation of processing personal information of a user in a server of a data broker according to an embodiment of the present invention.

According to FIG. 7, a network representing a transaction flow of a user's personal information in the form of a blockchain includes a user terminal 710, a server 720 of a data broker, a service server 730, and a server 740 of another data broker. can do. In FIG. 7, the blockchain manager 712 is included in the user terminal 710, but in addition to the user terminal 710, the server 720 of the data broker, the service server 730, and the server 740 of the other data broker are included. Each blockchain manager 712 may be included. In FIG. 7, t ₁ , t ₂ , and t ₃ may represent time (ie, time information) that each block is responsible for.

In the user terminal 710, a new block (that is, one block) in which the transaction history and the basic information related to the transaction, including the personal information indicating the location information of the terminal collected for a predetermined time, is recorded, may be generated. For example, a new block containing personal information 711 collected at a certain time at time t ₁ may be generated. The basic information includes identifier information of the user terminal 710, which is a node transmitting information 711 included in a new block corresponding to time t ₁ , identifier information of the server 720 of the data broker, which receives the block, It may include the type of data (eg, identifier information indicating location information) and the size of the data. At this time, if necessary, transaction details and basic information may be encrypted and recorded in a block corresponding to the time t ₁ .

The server 720 of the data broker may receive a block corresponding to time t ₁ (ie, personal information written in a new block at time t ₁ , 721) from the user terminal 710. In addition, a new block may be generated through a process of changing the content of the included information 721. That is, the new block may be generated by including the information 722 processed together with the information 721 in the block corresponding to the time t ₁ . Then, a new block (ie, a processed block) containing the processed information 722 may be delivered to the service server 730. That is, as the processing of the information occurs at time t ₂ , a block including the processed information 722 may be transferred to the service server 730. The block including the information 721 received from the user terminal 710 at the server 720 of the data broker may be transferred to the server 740 of another data broker.

The server 740 of the other data broker includes information 742 processed by processing the information 741 included in the block received from the server 720 of the data broker, that is, the block corresponding to the time t ₁ . It is possible to create new blocks (ie machined blocks). Herein, the processed information 742 included in the new block represents a transaction occurring at time t ₃ , and the new block includes information 711 generated at time t ₁ , and information generated at time t ₂ ( 722 may be connected to the blockchain in the form of a block and a chain.

In addition, the service server 730 collects data (personal information) in the middle of the partnership with the user terminal 710 in accordance with the contract to provide the service requested by the user terminal 710 server 720 And a block corresponding to user's personal information (eg, location information) from at least one of the servers 730 of another data broker. In addition, the service may be provided to the user terminal 710 based on the personal information included in the received block. For example, a corresponding service may be provided through a service application installed in the user terminal 710.

As such, after the personal information is generated in the user terminal 710, a block including the transaction information and basic information related to the personal information is stored in the server 720 of the data broker, the server 740 of the other data broker, and the service server 730. Information representing a series of processes delivered to each can be recorded and stored in a blockchain form, and the blockchain in which the information is recorded can be stored and maintained by the blockchain manager of each device 710, 720, 730, 740. have. Then, based on the blockchain, the user can track and grasp the transaction flow and usage degree indicating how his personal information is traded. That is, as the time connected to the blockchain elapses, each time a transaction related to the user's personal information occurs, by tracking the blocks connected in a chain form, the user can determine how his personal information is traded. Here, the operation of storing and maintaining the block in which the personal information is recorded in the form of a block chain will be described with reference to FIG. 8 below.

FIG. 8 is a diagram illustrating a structure of a blockchain manager for storing and maintaining personal information in a blockchain form according to an embodiment of the present invention.

8 illustrates the structure of a blockchain manager describing a blockchain storage method for tracking the generation, flow and use of personal information. In FIG. 8, the blockchain manager 800 may store and maintain one block 810, 820, 830 for each time t ₁ , t ₂ , t ₃ , and each block 810, 820, 830 may be Transaction information related to the user's personal information and transaction-related basic information (811, 812, 821, 822, 831, 832, 833) may be included.

Referring to FIGS. 7 and 8, a block 810 corresponding to a time t ₁ connected to the block chain in the user terminal 710 may be delivered to the server 720 of the data broker, and in the data broker server 720 Processing such as adding content to the block 810 or changing the included content may be performed. Here, the processing may include sending information to itself. Then, the block 810 corresponding to the time t ₁ may include a transaction history 811 and a transaction history 812, and the information 822 generated by processing the information 811 occurs at time t ₂ . As such, block 820 corresponding to time t ₂ may include transaction history 821 and transaction history 822. Here, the transaction history 812 indicates that the transaction history 811 received from the user terminal 710 is processed in the server 720 of the data broker, and the transaction history 811 indicates that the user's personal information is displayed in the user terminal 710. From the data broker server 720 may indicate that a transaction has occurred.

Similarly, block 820 corresponding to time t ₂ includes information 821 indicating that transaction details 811 have been transferred from server 720 of data broker to server 740 of another data broker; The transaction history 812 may include information 822, that is, transaction history, indicating that the transaction history 812 is transmitted from the server 720 of the data broker to the service server 730.

Block 830 corresponding to time t ₃ includes information 831 indicating that the transaction history 821 has been processed in the form of contents being changed or added, that is, the transaction history, and the transaction history 821 is a data broker. Information 832 indicating that the server 720 is transmitted from the server 720 to the service server 730. (833, ie, transaction details).

9A and 9B illustrate a structure of transaction details recorded in one block according to one embodiment of the present invention.

In FIGS. 9A and 9B, the user's personal information (for example, location information, etc.) must be continuously delivered to the service server such as Pokemon Go, but when the corresponding service can be provided, the user's personal information is collected for a predetermined time. When writing to a block and providing the block to the service server, the structure of the transaction history including the personal information recorded in one block, that is, the personal information will be described.

Referring to FIG. 9A, the user A (ie, the user terminal possessed by the user A) may be provided with a game service such as Pokemon Go while moving by walking or using a vehicle. Then, the user A 910 moves from the position information (transaction 1) at time 1, which is the current time, and the time information, and the position information (transaction 2) at time 2, which has elapsed for a predetermined time, for a predetermined time. You can collect while. Then, the current block 911 including the collected location information (ie, transaction 1 and transaction 2, that is, transaction details) may be generated. At this time, if there is a Pokémon caught at the location, the transaction may further include identifier information indicating the type of Pokémon caught. Then, the block 911 including the location information and the captured new Pokémon information may be transmitted to the service server (eg, Pokemon Go server 920).

At this time, for each transaction (eg, transaction 1, transaction 2, etc.) included in the block 911, time information (timestamp), information of the transmitting node transmitting the corresponding information, information of the receiving node, identifier information of the transaction history (for example, , E2DC3402A ...), etc. as basic information 913, and includes owner identifier information (e.g., ID) of the corresponding information, type of data (e.g., location information, Pokemon information, etc.), size of data for each data, and Data contents and the like may be included as the transaction history 914.

Referring to FIG. 9B, the service server 970 may process information based on information (eg, basic information, transaction history, etc.) included in blocks received from the user A 980 and the user B 990. . For example, processing such as merging (or collecting) information received from User A 980 and User B 990 may be performed, and the new transaction 972 may be included in the current block 971 through the information processing. Can be. For example, if transaction 1 and transaction 2 were included in the previous block, current block 971 may include transaction 1, transaction 2, and transaction 3 (ie, a new transaction created as the information is processed). Herein, transaction 3 972 includes user A related information 974 (e.g., location information, user's identifier information, type of Pokémon, etc.) and user B related information 973 (e.g., location information, user's identifier information, Transaction information, basic information, and the like). In this case, the service server 970 may calculate, store, and maintain statistics of transactions 3 (972), that is, statistics of users who have previously designated a target, such as Pikachu, based on a block including the processed information.

FIG. 10 is a diagram illustrating a network structure in which all nodes have a blockchain manager for managing and controlling a blockchain according to an embodiment of the present invention.

According to FIG. 10, a network may include a server 1000 of a data broker, a user terminal 1050, a service server 1060, and a server 1070 of one or more other data brokers. In addition, all nodes forming the network (ie, 1000, 1050, 1060, and 1070) may include a blockchain manager (1010, 1051, 1061, 1071).

Each of the blockchain managers 1010, 1051, 1061, and 1071 includes a blockchain verifier 1011, a blockchain distributor 1012, a blockchain creator 1013, And blockchain storage 1014. In FIG. 10, the blockchain verifier 1011 corresponds to the block verifier 314 of FIG. 3, and the blockchain distributor 1012 corresponds to the block propagation unit 313. The blockchain creator 1013 may correspond to the block generator 311, and the blockchain storage 1014 may correspond to the blockchain controller 312. The visualization module 1015 may be implemented to be included in the blockchain manager 1010 or may be separately implemented. The visualization module 1015 may be implemented in the server 1000 of the data broker, It may be implemented to be included in the processor of the user terminal 1050 in addition to the server 1000 of the data broker. For example, a visualization module 1015 for visualizing transaction flow tracking for personal information may be included in both the server 1000 and the user terminal 1050 of the data broker, and any one of the server 1000 and the terminal 1050 may be included. The visualization module 1015 may be included.

In FIG. 10, the blockchain creator 1013 stores N transactions collected for a predetermined time in one block to generate a new block, and the new block is generated in the block generator 311 of FIG. 3. Since the operation of generating is described in detail, duplicate description will be omitted.

The blockchain storage 1014 additionally connects the generated block to the blockchain to store transaction details in the network and may correspond to the blockchain controller 312 of FIG. 3.

The blockchain distributor (1012) is another blockchain manager (1051, 1061, 1071) that exists outside to be recognized as the actual transaction history of the new block created by the blockchain creator (1013) It may be transmitted to, and may correspond to the block propagation unit 313 of FIG. Here, the blockchain is authenticated by validating a block containing several transactions with other nodes in the network, and the authenticated block can be confirmed by additionally connecting to a blockchain stored in the existing blockchain storage unit 1014. have.

The blockchain verifier 1011 is used to verify a block containing new transaction details generated by external blockchain managers 1051, 1061, and 1071, and the block verifier 314 of FIG. 3. It may correspond to. After verifying the information recorded in the new block generated by another node, the blockchain may determine the block (ie, the corresponding transaction) and store the new block generated by another node in the blockchain storage unit 1014. That is, the new block may be additionally connected in a chain form to the blockchain stored in the blockchain storage unit 1014.

The personal information manager 1020 is included in the server 1000 of the data broker. When the transaction flow providing system 300 corresponds to the server 1000 of the data broker, a block received from the user terminal is received. Can be used for processing. In FIG. 10, the processing operation is performed by the personal information manager 1020 separately from the block chain manager 1010. For example, the operation of processing a block received from the terminal to generate a new block is performed by the block chain manager 1010. You can also run That is, some processes corresponding to the processing in the personal information manager 1020 may be implemented in the form of being integrated into the blockchain manager 1010.

The personal information manager 1020 includes an open API connector, a personal information processor, a personal information aggregator, and a personal information storage. can do. The open API connector may provide an API function for delivering collected personal information to an external device (eg, another data broker's server, a service server, etc.). In addition, the open API connector may not only provide the raw data as a whole through the API, but may also provide characteristics or summaries (statistics, etc.) of the data.

The personal information aggregator is a module that collects personal information of a user from a user terminal. The personal information aggregator may collect personal information of a corresponding user within a range in which the user agrees to provide the information.

The personal information processor may perform a series of processing to obtain new information or value based on the collected personal information of the user. In this case, the personal information processor may receive personal information from various other user terminals in addition to the personal information collected from one user terminal, and collect new information or new personal information by collecting the received personal information of different user terminals. You can do the processing for value. For example, in order to generate value to find out the kind of cosmetics preferred by age, personal information collected from terminals possessed by various users of various ages (eg, age, gender, type of cosmetics purchased, purchase price, preferred brand, etc.). ) Can be collected.

The personal information storage unit is a module for storing the acquired personal information. The personal information may be classified according to the user information (ie, the provider of the personal information) according to the identifier information of the user terminal or may be classified and stored according to the data type. have. If the data is classified by data type, the data may be classified by type and then stored and maintained in association with the provider data (eg, identifier information of the user terminal, ID of the data owner, etc.) of the data.

11 is a flowchart illustrating a process of tracking personal information usage history according to an embodiment of the present invention.

In FIG. 11, the processor 300 of FIG. 3 provides a transaction flow tracking unit in order to provide an operation of providing personal information usage, that is, a transaction flow (ie, to perform steps 1110 and 1120 of FIG. 11). It may further include (not shown). In addition, each of the steps 1110 and 1120 of FIG. 11 may be performed by a visualization module 1015.

In step 1110, the transaction flow tracking unit targets blocks connected in the form of a chain included in the blockchain, based on identifier information (eg, ID of a personal information owner) of a user to be tracked through a Merkle tree search. The identifier information of the node that transmits the personal information of the user can be extracted. That is, based on the identifier information of the user, the information (eg, data broker identifier information, service server identifier information, identifier information of another broker, etc.) of all nodes that have transmitted and received personal information of the user on the network may be extracted. have. In this case, when extracting the identifier information of all the nodes, the elements extracted according to the reference point may be different.

For example, when tracking the usage status (ie, transaction flow) of location information as personal information, chain information in which a pair of a transmitting node and a receiving node are chained based on the location information may be generated. have. In addition, identifier information of all nodes that have transmitted and received personal information such as location information may be stored and maintained in association with a company name, business information, etc. so that a user may immediately recognize what the corresponding node is. When the search in the block is completed, the search may continue to the next block (that is, the previous block in time).

In operation 1120, the transaction flow tracking unit may visualize and provide a transaction flow for personal information to the user based on the extracted identifier information of the node. For example, when the transaction flow tracking unit is included in the user terminal, the transaction flow searched on the screen of the user terminal through the application may be provided by visualization. When the transaction flow tracking unit is included in the server of the data broker, chain information in which the identifier information of the extracted nodes is chained may be provided to the user terminal, and the information of the nodes that transmit / receive personal information based on the chain information may be visualized. It can be displayed on the screen of the user terminal.

For example, each node configured in the form of a network may be displayed on the screen of the user terminal. The data type corresponding to the user's personal information transmitted / received based on the selected node among the plurality of nodes forming the network displayed on the screen may be displayed together in the area around the selected node in the form of an icon. In addition, whether the amount is actually transmitted may be displayed on the screen of the user terminal in the form of an overlay arrow.

The method and system for grasping the utilization of user personal information using the blockchain described above may be implemented as a hardware component, a software component, and / or a combination of hardware components and software components. For example, the system and components of the system described in the embodiments are, for example, a processor, a controller, an arithmetic logic unit (ALU), a digital signal processor, a microcomputer, a field programmable array ), A programmable logic unit (PLU), a microprocessor, or any other device capable of executing and responding to instructions, may be implemented using one or more general purpose or special purpose computers. The processing device may execute an operating system (OS) and one or more software applications running on the operating system. The processing device may also access, store, manipulate, process, and generate data in response to the execution of the software. For convenience of explanation, one processing device may be described as being used, but one of ordinary skill in the art will appreciate that the processing device includes a plurality of processing elements and / or a plurality of types of processing elements. It can be seen that it may include. For example, the processing device may include a plurality of processors or one processor and one controller. In addition, other processing configurations are possible, such as parallel processors.

The software may include a computer program, code, instructions, or a combination of one or more of the above, and configure the processing device to operate as desired, or process it independently or collectively. You can command the device. The software may be distributed over networked computer systems so that they may be stored or executed in a distributed manner. Software and data may be stored on one or more computer readable recording media.

The method according to the embodiment may be embodied in the form of program instructions that can be executed by various computer means and recorded in a computer readable medium. The computer readable medium may include program instructions, data files, data structures, etc. alone or in combination. The program instructions recorded on the media may be those specially designed and constructed for the purposes of the embodiments, or they may be of the kind well-known and available to those having skill in the computer software arts. Examples of computer-readable recording media include magnetic media such as hard disks, floppy disks, and magnetic tape, optical media such as CD-ROMs, DVDs, and magnetic disks, such as floppy disks. Magneto-optical media, and hardware devices specifically configured to store and execute program instructions, such as ROM, RAM, flash memory, and the like. Examples of program instructions include not only machine code generated by a compiler, but also high-level language code that can be executed by a computer using an interpreter or the like.

Although the embodiments have been described by the limited embodiments and the drawings as described above, various modifications and variations are possible to those skilled in the art from the above description. For example, the described techniques may be performed in a different order than the described method, and / or components of the described systems, structures, devices, circuits, etc. may be combined or combined in a different form than the described method, or other components. Or even if replaced or substituted by equivalents, an appropriate result can be achieved.

Therefore, other implementations, other embodiments, and equivalents to the claims are within the scope of the claims that follow.

Claims (10)

A method of providing a transaction flow for user personal information in a network including a plurality of nodes, the method comprising:
Storing, by the first node, a first blockchain that connects a plurality of blocks generated in a chain form to include transaction details of a transaction of a user's personal information;
The first node processes the first transaction on the basis of the first transaction history of the transaction of the user's personal information between the first node and the second node, and the personal information of the user at the first node. A second transaction history for generating new information and a third transaction history for the transaction of the new information between the first node and the second node or between the first node and the third node. Generating a first block to make;
Adding and connecting the first block to the stored first blockchain when the first node is validated of the first block; And
Forwarding the first block through the network to at least one other node such that the first block is updated in a second blockchain stored at at least one other node in the network.
Transaction flow providing method for the user personal information comprising a. The method of claim 1,
Generating the first block,
Generating the first block to include the two or more transactions for a predefined time period
Transaction flow providing method for the user personal information, characterized in that. The method of claim 1,
In response to the user's request, the first node, a transaction flow related to the user's personal information based on the two or more transactions stored in the first blockchain, and new information based on the user's personal information. Providing tracking of the processing and more than one transaction associated with the new information
Transaction flow providing method for the user personal information further comprising. The method of claim 3,
Providing the trace,
Based on identifier information of a user who wants to search based on a Merkle tree search for the blocks included in the first blockchain, personal information of the user or identifier information of a node that has transmitted / received the new information. Extracting; And
Visualizing and providing a transaction flow of the personal information or the new information based on the identifier information of the extracted node
Transaction flow providing method for the user personal information comprising a. A blockchain storage unit for storing a first blockchain for connecting a plurality of blocks generated in a chain form to include transaction details of a transaction of a user's personal information;
The first transaction for the transaction of the user's personal information between the first node and the second node, for generating new information through the processing of the first transaction on the basis of the user's personal information in the first node Generating a first block comprising two or more of a second transaction and a third transaction for the transaction of the new information between the first node and the second node or between the first node and the third node; Block generation unit;
A block chain controller configured to add the first block to the stored first block chain when the first block is validated; And
Block propagation unit for transmitting the first block to at least one other node through the network so that the first block is updated in the second block chain stored in at least one other node of the network
Transaction flow providing system for user personal information comprising a. The method of claim 5,
The block generation unit,
Generating the first block to include the two or more transactions for a predefined time period
Transaction flow providing system for the user personal information, characterized in that. The method of claim 5,
In response to the user's request, a transaction flow associated with the user's personal information based on the two or more transaction histories stored in the first blockchain, processing new information based on the user's personal information, and the new Transaction flow tracker that provides tracking of the transaction flow and more than one associated with the information
Transaction flow providing system for the user personal information further comprising. The method of claim 7, wherein
The transaction flow tracking unit,
Based on identifier information of a user who wants to search based on a Merkle tree search for the blocks included in the first blockchain, personal information of the user or identifier information of a node that has transmitted / received the new information. Extract and visualize and provide a transaction flow of the personal information or the new information based on the extracted identifier information of the node.
Transaction flow providing system for the user personal information, characterized in that. A computer program stored in a recording medium for executing a method of providing a transaction flow for user personal information in combination with a computer-implemented electronic device,
The transaction flow providing method for the user personal information,
Storing a first blockchain for connecting a plurality of blocks generated in a chain form to include transaction details of a transaction of a user's personal information;
The first transaction for the transaction of the user's personal information between the first node and the second node, for generating new information through the processing of the first transaction on the basis of the user's personal information in the first node Generating a first block comprising two or more of a second transaction and a third transaction for the transaction of the new information between the first node and the second node or between the first node and the third node; step;
When the validity of the first block is verified, adding and connecting the first block to the stored first blockchain; And
Forwarding the first block through the network to at least one other node such that the first block is updated in a second blockchain stored at at least one other node in the network.
Computer program comprising a. The method of claim 9,
The transaction flow providing method for the user personal information,
In response to the user's request, a transaction flow associated with the user's personal information based on the two or more transaction histories stored in the first blockchain, processing new information based on the user's personal information, and the new Providing tracking of the transaction flow and more than one associated with the information
Computer program characterized in that it further comprises.

Images