KR102125042B1 - Node device constituting a block-chain network and an operation method of the node device - Google Patents

Abstract

The present invention relates to a node device of a blockchain network configured to include a plurality of the node devices. The node device includes: a communication circuit communicating with a client device and the other node devices; at least one processor; and a memory storing an instruction executable by the at least one processor. The at least one processor separately generates public and private blockchains, stores public data in a public block of the public blockchain, stores private data in which a specific condition is set in a private block of the private blockchain and then encrypts the private block storing the private data by generating a first random encryption key, divides the first random encryption key into a predetermined number, separately stores the divided fragments in the other node devices, copies the private block, temporarily loads the private block on the memory, receives and decrypts the divided fragments from the other node devices, and then edits the private block by deleting the private data stored in the decrypted private block when a deletion transaction occurs as the specific condition of the private data is satisfied, generates a child private block by copying the edited and decrypted private block, deletes the private block temporarily loaded on the memory, requests deletion of the divided fragments to the other node devices, encrypts the child private block by generating a second random encryption key, divides the second random encryption key into a predetermined number, and separately stores the divided fragments in the other node devices.

Description

Node device constituting a block-chain network and an operation method of the node device

The present invention relates to a blockchain technology, and more particularly, to a node device constituting a blockchain network including a multi-layer blockchain and a method of operating the node device.

Generally, electronic money is a digital currency that exists virtually on the Internet. Bitcoin, a representative electronic money among such electronic money, has a structure in which there is no central device for issuing and managing currency, and the transaction of Bitcoin is based on a blockchain.

Blockchain is a non-falsifiable distributed storage created and managed by a peer-to-peer (P2P) network. Blockchain refers to a collection of data blocks created by transactions (indivisible unit work between two parties) in a chain. Once recorded, data cannot be forged or tampered with. In the blockchain, the confirmed transaction history generated between users for a certain period of time can be stored. Many of the nodes that make up the blockchain network each have a copy of the blockchain, and transaction details can be made public.

In this way, the electronic money based on the blockchain is transacted based on the public key cryptography. Users who have electronic money have their wallet address, and when sending or making a transaction, they sign with a private key to generate a transaction.

In addition, blockchain is not limited to currency distribution and is used in various fields. For example, various fields such as cargo transportation and document storage are used. In order to be used in various fields, security of important data is important.Blockchains that have been proposed to date cannot be forged, and blocks can be disclosed to anyone. Of course, the important data itself can be encrypted and stored on the blockchain, but the possibility of hacking is still possible because it is exposed to anyone anyway in an encrypted state.

Also, as described above, the blockchain is not capable of forgery and alteration of the data stored in the block. However, it is necessary to perform the original deletion of previously stored data while deleting or modifying the data stored in the block of the blockchain as necessary. As of the present technology, there is no technology that can delete the original data at the same time while editing such as deletion or modification of data stored in the blockchain.

The present invention is proposed to solve the above-mentioned problems, and operates a multi-layered blockchain consisting of a public blockchain and a private blockchain, and can store important data in a private blockchain to enhance security for sensitive data. It is an object to provide a node device constituting a blockchain network and a method of operating the node device.

In particular, the present invention aims to provide a node device constituting a blockchain network and a method of operating the node device, which enables deletion of data that satisfies a specific condition among data stored in the private block of the private blockchain. There is this.

A node device of a blockchain network including a plurality of node devices according to an aspect includes: a communication circuit communicating with a client device and other node devices; One or more processors; And a memory for storing instructions executable by the one or more processors, wherein the one or more processors independently generate a public blockchain and a private blockchain, and store the public data in a public block of the public blockchain. Then, after storing the private data in which the specific conditions are set in the private block of the private blockchain, the first random encryption key is generated to encrypt the private block in which the private data is stored, and the first random encryption key is set to a predetermined number. Split and divide the fragments to be distributed to other node devices, and when a delete transaction occurs as the specific condition of the private data is satisfied, the private block is copied and temporarily loaded into memory, and then from the other node devices. After receiving and decoding the divided pieces, the private data stored in the decrypted private block is deleted to edit the private block, and the edited decrypted private block is copied to generate a child private block, and the memory Delete the private block temporarily loaded in, request deletion of the fragments to other node devices, generate a second random encryption key to encrypt the child private block, and set the second random encryption key to a predetermined number. It is divided into and distributed fragments to other node devices and stored.

When the public block of the public blockchain is generated, the one or more processors simultaneously generate the private block of the private blockchain, and record the hash value of the private block and the hash value of the previous public block simultaneously in the header of the public block. can do.

The one or more processors may record the hash value of the previous private block in the header of the private block when creating the private block of the private blockchain.

The one or more processors may record the deletion transaction in the public block of the public blockchain, and record the hash value of the child private block in the header of the private block generated simultaneously with the public block recording the deletion transaction. .

When the specific condition of the private data and the index of the private block containing the private data are recorded in the public block of the public blockchain, the deletion transaction may occur when the specific condition is satisfied.

The deletion transaction may include a signature value using a private key. In this case, the one or more processors transmit the signature value together when requesting the fragmentation of the first random encryption key to other node devices and the other node device upon successful verification of the signature value by the other node devices. It is possible to receive a fragment of the first random encryption key from the field.

The specific condition may include any one of a transaction expiration condition, a transaction cancellation condition, a transaction refund condition, a transaction validity period, a browsing validity period, and a reading frequency of an e-commerce transaction.

A method of operating a node device of a blockchain network including a plurality of node devices stores public data in a public block of a public blockchain, and specific conditions are set in a private block of a private blockchain independent from the public blockchain. Storing private data; Generating a first random encryption key to encrypt a private block in which the private data is stored, dividing the first random encryption key into a predetermined number, and distributing and storing the divided pieces to other node devices; When a deletion transaction occurs as the specific condition of the private data is satisfied, copying the private block and temporarily loading it into memory, and then receiving and decrypting the divided pieces from other node devices; Deleting the private data stored in the decrypted private block, editing the private block, and copying the edited decrypted private block to generate a child private block; Deleting a private block temporarily loaded in the memory and requesting deletion of the divided pieces by other node devices; And generating a second random encryption key to encrypt the child private block, dividing the second random encryption key into a predetermined number, and distributing and storing the divided pieces to other node devices.

The present invention is to construct a blockchain network by constructing a multi-layer blockchain as a private blockchain and a public blockchain, storing important data in a private block of a private blockchain, and storing general data in a public block of a public blockchain. It enhances security by fundamentally blocking external exposure of important data.

The present invention encrypts a private block storing important data with a random encryption key, distributes the random encryption key to node devices constituting a blockchain network, stores the random encryption key, and collects pieces of the random encryption key only under the approval of node devices. To prevent sensitive data from being hacked and to enhance security.

In addition, the present invention provides an effect of deleting data that satisfies a specific condition, such as an expiration date, from important data stored in a private block, and making it impossible to decrypt a private block before deletion, thereby fundamentally deleting data before deletion.

1 is a view showing a system according to an embodiment of the present invention.
FIG. 2 is a block diagram of a representative node of FIG. 1.
3 is a diagram illustrating a process of editing important data of a private block according to an embodiment of the present invention.
4 is a flowchart illustrating a method of storing a private block and a public block in a blockchain network in which a private block is generated according to an embodiment of the present invention.
5 is a flowchart illustrating a method of deleting data whose expiration date has expired from a private block according to an embodiment of the present invention.
6 is a flowchart illustrating a method of editing important data of a private block according to another embodiment of the present invention.
FIG. 7 is a flow chart illustrating the Innocoin subscription procedure and the Innocoin wallet creation procedure in the system of FIG. 1.

Hereinafter, the present invention will be described in more detail with reference to the accompanying drawings. In the following description, in order to clarify the understanding of the present invention, descriptions of well-known technologies for the features of the present invention will be omitted. The following examples are detailed descriptions to help the understanding of the present invention, and it will be understood that the scope of the present invention is not limited. Accordingly, an equivalent invention that performs the same function as the present invention will also fall within the scope of the present invention. In the following description, the same identification symbol means the same configuration, and redundant description and unnecessary description will be omitted.

1 is a diagram illustrating a system according to an embodiment of the present invention, and FIG. 2 is a diagram showing a blockchain of a representative node of FIG. 1. In FIG. 1 and the following description, electronic money according to the present invention is referred to as innocoin. Innocoin is a blockchain-based electronic money. As shown in FIG. 1, the blockchain network 120 includes a plurality of representative nodes 121 and a plurality of general nodes 122. Here, the nodes 121 and 122 may be desktops, laptops, smart phones, or corporate servers, and are computing devices including a memory and a processor. The blockchain network 120 may interwork with various types of electronic money (eg, Bitcoin, Ethereum, etc.) blockchain networks.

The client device 110 shown in FIG. 1 is a device used by a user who subscribes to Innocoin, which is a device having a communication function, including a mobile communication terminal such as a smartphone or a personal computer, laptop, desktop, or tablet. Can be. The user can sign up by installing a client application for Innocoin on the client device 110, or by accessing the Innocoin website using an Internet browser. The client application for Innocoin includes a membership subscription menu, and a menu for creating wallets for trading various types of coins, and the Innocoin website can also include a similar menu. In addition, the client application may include a menu that can specify the validity period of important data (eg, graduation certificate, passbook copy, ID card copy, ID card, etc.). The client application and the website can provide an API (Application Programmable Interface) that can communicate with any one of the representative nodes 121 of the blockchain network 120. In addition, the client device 110 may be a shopping mall server providing an online e-commerce service. The shopping mall server may generate a transaction for storing important data when the important data such as a delivery address occurs, and store it in a private block of the blockchain network 120, and when an event related to e-commerce occurs, Transactions can be sent to the blockchain network 120.

The Internet network 150 includes wired and wireless communication networks including TCP/IP communication networks. The wireless communication network may be a communication system such as Global System for Mobile Communication (GSM), Enhanced Data GSM Environment (EDGE), wideband code division multiple access (WCDMA), code division multiple access (CDMA), or time division multiple access (TDMA). . The Internet network 150 includes a communication network that has not been developed at the time of filing this application.

The representative nodes 121 constituting the blockchain network 120 are multi-layered, as shown in FIG. 2, consisting of a public blockchain 210 in which public blocks are connected and a private blockchain 220 in which private blocks are connected. Blockchain is operated and stored. Various transactions are stored in the public blockchain 210, and the private blockchain 220 stores important data that should not be exposed to the user's subscription information, users' private keys, and content encryption keys, that is, private data. do. Specific conditions for deletion may be set for the private data. For example, when the non-public data is personal information such as a delivery address in an online e-commerce transaction, the specific condition is a transaction expiration condition of the corresponding e-commerce transaction (eg, a purchase completion input of the buyer), a transaction cancellation condition (eg, a buyer) May include cancellation of purchase), transaction refund conditions (eg, refund after purchaser's purchase cancellation), transaction expiration date (eg, 2 weeks after delivery is completed), viewing expiration date, number of views, and the like. When these specific conditions are satisfied, the private data is substantially deleted from the blockchain network 120. The representative node 121 may compare the event received from the client device 110 with the specific condition to determine whether or not the specific condition is satisfied, or conditions such as an expiration date are valid independently of the event reception. You can judge the expiration of the period. In addition, the private blocks constituting the private blockchain 220 are encrypted with a random encryption key. In addition, the random encryption key is divided into pieces and distributedly stored only in representative nodes 121 excluding general nodes 122 among nodes constituting the blockchain network 120. Various transactions stored in the public blockchain 210 may include, for example, transfer of coins, public keys of users, and wallet addresses. In addition, the above-mentioned specific conditions of important data may be included in various transactions stored in the public blockchain 210. Known blockchain technology can be applied to the block generation technology (eg, proof of work or proof of ownership, hash calculation) applied to the public blockchain 210 and the private blockchain 220.

Blocks of the blockchains 210 and 220 are composed of a header and a body. In the header, the hash value of the previous block, difficulty, nonce, time stamp, and Merkle Root are recorded, and various transaction information and block indexes are recorded in the body. Here, the index of the block includes the index of the private block. That is, when a transaction for storing specific important data in a private block occurs, the information of the transaction is recorded in the body of the public block, and the important data corresponding to the transaction is included in the index and the private block for the private block in which the transaction is recorded. The specific conditions of the important data are recorded in the body of the public block. Therefore, when a search for specific important data is required, a private block storing the specific important data may be found by referring to the index. In addition, based on the specific condition included in the public block, it is possible to verify whether the specific condition of the specific important data is satisfied. When the public block constituting the public blockchain 210 is generated, the private block constituting the private blockchain 220 is also generated at the same time. In addition, the hash value of the previous block and the hash value of the private block generated simultaneously with the public block are recorded in the header of the public block. Therefore, forgery and alteration of the private block can be prevented. Naturally, the hash value of the previous private block is recorded in the header of the private block.

The representative nodes 121 can communicate with the client device 110 through an open API, process the user's subscription, take charge of creating a wallet, and also create a block chain to create a block chain and other representative nodes ( 121). Here, creating a wallet means generating a user's private key, public key, and wallet address. The representative nodes 121 divide and store the divided pieces of the random encryption key, store them, and verify the integrity of the representative node 121 requested at the request of any representative node 121, and then have the random they have. Reply to the fragment of the encryption key. The representative nodes 121 do not store the fragmented fragment of the random encryption key in a separate local storage, but manage the relationship information between the random encryption key and the private block. The general nodes 122 are not responsible for the user's subscription processing, wallet creation, and random encryption key generation and storage among the operations of the representative node 121, but only store a copy of the blockchain.

As described above, the random encryption key is a key that encrypts a private block that stores important data such as a user's private key. Here, the user's private key includes a private key for Innocoin, another private key for electronic money, and the like used for the Innocoin of the present invention. The random encryption key is different for each private block in which each important data is stored, and the private block in which each important data is stored may also be different. Meanwhile, the identification information of the private block in which each important data is stored is stored in the public block, so that the representative nodes 121 can identify information of the private block in which specific important data is stored in the public block.

Representative nodes 121 include a memory, a memory controller, one or more processors (CPUs), peripheral interfaces, input/output (I/O) subsystems, display devices, input devices, and communication circuitry. These components communicate over one or more communication buses or signal lines. The various components may be implemented in hardware, software or a combination of hardware and software, including one or more signal processing and/or application specific integrated circuits.

The memory may include high-speed random access memory, and may also include one or more magnetic disk storage devices, non-volatile memory such as flash memory devices, or other non-volatile semiconductor memory devices. In some embodiments, the memory is a storage device located away from one or more processors, for example, communication circuitry, the Internet, an intranet, a local area network (LAN), a wide LAN (WLAN), a storage area network (SAN), etc. Or a network attached storage device accessed through a communication network (not shown), such as a suitable combination thereof. Access to memory by other components of the representative node, such as the processor and peripheral interfaces, can be controlled by a memory controller. Private and public blockchains can be stored in memory.

The peripheral interface connects the input/output peripherals of the representative nodes 121 with the processor and memory. One or more processors execute various functions for representative nodes 121 and process data by executing various software programs and/or sets of instructions (instructions) stored in memory.

In some embodiments, the peripheral interface, processor and memory controller can be implemented on a single chip, such as a chip. In some other embodiments, they can be implemented as separate chips.

The I/O subsystem provides an interface between the input/output peripherals of a representative node, such as display devices and input devices, and peripheral interfaces.

The display device may use liquid crystal display (LCD) technology or light emitting polymer display (LPD) technology, and the display device may be a capacitive, resistive, infrared type touch display. The touch display provides an output interface and an input interface between the terminal and the user. The touch display displays visual output to the user. The visual output can include text, graphics, video and combinations thereof. Some or all of the visual output may correspond to a user interface object. The touch display forms a touch-sensitive surface that accepts user input.

The processor is a processor configured to perform operations related to representative nodes 121 and to perform instructions, for example, by using instructions retrieved from memory, receiving and manipulating input and output data between components of representative nodes 121. Can be controlled.

In some embodiments, the software component is loaded (installed) in memory with an operating system, a graphics module (instruction set), and an Innocoin program (instruction set). The operating system may be, for example, a built-in operating system such as Darwin, RTXC, LINUX, UNIX, OS X, WINDOWS or VxWorks, Android, etc., and general system tasks (e.g., memory management, storage Device control, power management, etc.) to control and manage various software components and/or devices, and facilitate communication between various hardware and software components. The graphics module includes several well-known software components for presenting and displaying graphics on a display device. The term "graphics" includes any object that can be displayed to a user, including, without limitation, text, web pages, icons (eg, user interface objects that include soft keys), digital images, videos, animations, and the like. Includes. According to the Innocoin program, one or more processors perform an operation described with reference to the following drawings.

The communication circuit can perform wireless or wired communication. The communication circuit converts electrical signals into electromagnetic waves and vice versa, and can communicate with the communication network, other mobile gateways, and communication devices through the electromagnetic waves. Communication circuits include, but are not limited to, antenna systems, RF transceivers, one or more amplifiers, tuners, one or more oscillators, digital signal processors, CODEC chipsets, subscriber identity module (SIM) cards, memory, etc. Well-known circuits for performing these functions may be included. The communication circuit is based on the Internet, an intranet and a network called the World Wide Web (WWW), and/or a wireless network such as a cellular telephone network, a wireless LAN and/or a metropolitan area network (MAN), and short-range wireless communication. It can communicate with other devices. Wireless communication includes Global System for Mobile Communication (GSM), Enhanced Data GSM Environment (EDGE), wideband code division multiple access (WCDMA), code division multiple access (CDMA), time division multiple access (TDMA), and voice over Internet (VoIP). Protocol), Wi-MAX, Bluetooth, Zigbee, NFC (Near Field Communication) or any other suitable communication protocol, including communication protocols not yet developed at the time of filing this application. Any of a plurality of communication standards, protocols, and technologies not limited thereto may be used.

3 is a diagram illustrating a process of editing important data of a private block according to an embodiment of the present invention.

As shown in FIG. 3, the representative node 121 constitutes a public blockchain consisting of public blocks and a private blockchain consisting of private blocks. The representative node 121 simultaneously generates a private block even if there is no important data to be stored when the public block is generated, and records the hash value of the private block in the header of the public block. Therefore, the hash value of the previous public block and the hash value of the previous private block are associated with the header of the next public block. The representative node 121 generates a random encryption key for the private block, encrypts the private block using the random encryption key, and then splits the random encryption key to distribute the divided pieces to other representative nodes 121 And save. In addition, the specific conditions described above may be set in the important data included in the private block. The specific condition may be set by the user, or may be automatically set systematically based on the type of important data. Hereinafter, the expiration date will be described as an example of the specific condition.

Referring to FIG. 3, when the representative node 121 generates the public block #N and the private block #N, when the validity period of the important data 310 among the data stored in the private block #1 expires, the validity period expires A delete transaction for the important data 310 may be generated. The deletion transaction includes a signature value using the subject's private key requesting deletion. For example, the signature value using the private key of the user of the client device or the private key of the representative node is included. When a delete transaction occurs, the representative node 121 copies the private block #1, temporarily loads it into memory, and then splits the random encryption key that can decrypt the private block #1 from other representative nodes. Listen. At this time, the representative node 121 transmits the signature value together when requesting the divided fragment to other representative nodes, and receives the divided fragment from the other representative nodes upon successful verification of the signature value in the other representative nodes. do. Thus, it is possible to prevent deletion of important data due to hacking or the like. The representative node 121 decrypts the private block #1 temporarily loaded in the memory using the received divided fragment, and then, among the data stored in the decrypted private block #1, important data to be deleted upon expiration of the validity period. The 310 is deleted, and the decrypted private block #1 from which the important data 310 is deleted is copied to generate a child private block #1. Then, the representative node 121 deletes the private block #1 temporarily loaded in the memory, and transmits a request to delete the fragment of the random encryption key for the private block #1 to other representative nodes 121. Therefore, since the random encryption key for decryption cannot be generated for the private block #1, the private block #1 is as if it was originally deleted. On the other hand, the representative node 121 generates a random encryption key for the child private block #1 to encrypt the child private block #1, and divides the random encryption key into a predetermined number to divide the pieces into different node devices. Disperse with and store. Since the deletion transaction occurred when the public block #N and the private block #N were generated, the representative node 121 records the deleted transaction in the public block #N, and the hash value of the child private block #1 is the private block #N. Record in N. Therefore, the hash value of the previous public block #N-1, the hash value of the private block #N, and the hash value of the child private block #1 are associated with the header of the public block #N.

Referring to FIG. 3, when the representative node 121 generates the public block #N+1 and the private block #N+1, the representative node 121 relates to deletion and addition of some data 330 among the data stored in the private block #2. You can receive a Modify transaction. A revised transaction likewise contains the signature value of the subject that caused the transaction. The representative node 121 copies the private block #2 and temporarily loads it into memory, and then receives fragments of a random encryption key that can decrypt the private block #2 from other representative nodes 121. Likewise, when the verification of the signature value is successful, a fragment is received. The representative node 121 decrypts the private block #2 temporarily loaded in the memory using the received divided fragment, and then deletes the requested data 330 from the data stored in the decrypted private block #2 and requests an addition. After adding the old data 350, the data 330 is deleted and the private block #2 to which the data 350 is added is copied to generate a child private block #2. Then, the representative node 121 deletes the private block #2 temporarily loaded in the memory, and transmits a request to delete the fragment of the random encryption key for the private block #2 to other representative nodes 121. Therefore, for the private block #2, since a random encryption key for decryption cannot be generated, the private block #2 is essentially deleted. Meanwhile, the representative node 121 generates a random encryption key for the child private block #2, encrypts the child private block #2, and divides the random encryption key into a predetermined number to divide the pieces into different node devices. Disperse with and store. Since the revised transaction occurred when the public block #N+1 and the private block #N+1 were generated, the representative node 121 records the revised transaction in the public block #N+1, and of the child private block #2. The hash value is recorded in private block #N+1. Therefore, the hash value of the previous public block #N, the hash value of the private block #N+1, and the hash value of the child private block #2 are associated with the header of the public block #N+1.

4 is a flowchart illustrating a method of storing a private block and a public block in a blockchain network in which a private block is generated according to an embodiment of the present invention.

Referring to FIG. 4, in step S401, the first representative node 121 receives an information registration transaction including important data whose validity period is set. The information registration transaction includes a signature value using the private key of the subject who requested information registration.

In step S403, the first representative node 121 generates a private block including the important data, and creates a public block including the index of the private block and the expiration date.

In step S405, the first representative node 121 generates a random encryption key for the private block, and encrypts the private block using the generated render encryption key.

In steps S407 and S409, the first representative node 121 divides the generated random encryption key into a predetermined number and distributes the fragmented fragments to other representative nodes for storage.

In step S411, the first representative node 121 records the hash value of the previous private block in the generated private block, and in the public block generated simultaneously with the private block, the previous public block hash value and the generated private block. Record the hash value of the block. Therefore, the generated public block/private block and the previous public block/private block are correlated.

5 is a flowchart illustrating a method of deleting data whose expiration date has expired from a private block according to an embodiment of the present invention.

In step S501, the first representative node 121 executes a validation process to check whether data whose expiration date has expired exists. The first representative node 121 may check whether there is important data whose validity period has expired by checking the data validity period stored in the public blocks. In another embodiment, the first representative node 121 stores a separate table in which the validity period of the data and the index of the private block are mapped, and whether the expired data exists based on the validity period stored in the table. Can be checked. Alternatively, the first representative node 121 may be notified of the existence of data whose expiration date has expired from another representative node or an external communication device.

In step S503, when the first representative node 121 finds data whose expiration date has expired, it checks the index of the private block corresponding to the data, and generates a deletion transaction including the index.

In step S505, the first representative node 121 searches for a private block including important data whose expiration date has expired by using the index included in the deletion transaction, and temporarily loads the private block into memory.

In step S507, the first representative node 121 requests and receives fragments of a random encryption key capable of decrypting the private block with other representative nodes. At this time, other representative nodes verify the integrity of the first representative node 121. The first representative node 121 transmits its signature value together when requesting the divided fragment to other representative nodes, and when the verification of the signature value is successful in the other representative nodes, divides the fragment from the other representative nodes. To receive.

In step S509, the first representative node 121 decodes the private block temporarily loaded in the memory using the received fragment, and the validity period has expired among the data included in the decrypted private block in step S511. Edit the private block by deleting important data.

In step S513, the first representative node 121 copies the decrypted and edited private block to generate a child private block. Then, in step S515, the first representative node 121 deletes the temporarily loaded private block, and in step S517, transmits a request to delete the fragment of the random encryption key for the private block to other representative nodes. . That is, the first representative node 121 requests deletion of the fragment of the random encryption key requested in step S507 to other representative nodes, so that the random encryption key capable of decrypting the private block before important data is deleted is completely Discard it. Accordingly, since the random encryption key for decryption cannot be generated for the private block, the private block is essentially deleted.

In step S519, the first representative node 121 generates a random encryption key for the child private block to encrypt the child private block, and in step S521, divides the random encryption key into a predetermined number to divide the pieces. It is distributed and stored in other representative nodes.

In step S523, the first representative node 121 generates the public block including the deletion transaction and the private block together, and writes the hash value of the child private block to the generated hash value of the private block, In addition, a hash value of the generated private block and a hash value of the previous public block are recorded in the public block. Accordingly, a hash value of the previous public block, a hash value of the private block, and a hash value of the child private block are associated with the header of the generated public block.

6 is a flowchart illustrating a method of editing important data of a private block according to another embodiment of the present invention.

Referring to FIG. 6, in step S601, the first representative node 121 receives an edit transaction for some data among data stored in a specific private block. Editing here includes deleting or adding. The first representative node 121 records the received edit transaction in a public block generated when the corresponding transaction is received. The edit transaction includes the signature value using the private key of the subject who requested the edit.

In step S603, the first representative node 121 searches for a specific private block using the information included in the edit transaction. The first representative node 121 may search for a private block storing data to be edited by referring to the index of the private block for each data recorded in the public block.

In step S605, the first representative node 121 copies the retrieved specific private block and temporarily loads it into memory, and in step S607, the first representative node 121 decrypts the specific private block with other representative nodes. Request and receive fragments of a random encryption key that can be done. At this time, other representative nodes verify the integrity of the first representative node 121. The first representative node 121 transmits the signature value together when requesting the segment fragment to other representative nodes, and receives the fragment segment from the other representative nodes upon successful verification of the signature value at the other representative nodes. do.

In step S609, the first representative node 121 decodes the specific private block temporarily loaded in the memory using the received fragment, and in step S611, deletes some of the data stored in the decoded specific private block. Or edit data, such as adding data.

In step S613, the first representative node 121 copies the edited specific decrypted block to generate a child closed block. Then, in step S615, the first representative node 121 deletes the temporarily loaded specific private block, and in step S617, transmits a request to delete a fragment of the random encryption key for the specific private block to other representative nodes. do. Therefore, since the random encryption key for decryption cannot be generated for the specific private block, the specific private block is essentially deleted.

In step S619, the first representative node 121 generates a random encryption key for the child private block to encrypt the child private block, and in step S621, the random encryption key is divided into a predetermined number to divide the pieces. It is distributed and stored in other representative nodes.

In step S623, the first representative node 121 records the hash value of the child private block in the currently generated private block. Therefore, the hash value of the previous public block, the hash value of the currently generated private block, and the hash value of the child private block are associated with the header of the currently generated public block.

FIG. 7 is a flowchart illustrating the Innocoin subscription process and the Innocoin wallet creation process in the system of FIG. 1.

In the description with reference to FIG. 7, it is assumed that some of the data included in the subscription information have an expiration date.

Referring to FIG. 7, in step S701, the user connects to the blockchain network 120 through the client device 110 and transmits a subscription request. A client program for Innocoin can be installed in the client device 110, and the program accesses one of the representative nodes 121 constituting the blockchain network 120 through the API. Alternatively, you can access the signup web page through your internet browser. When signing up, you can enter personal information such as ID/password, user's name, email, phone number, and date of birth. In addition, the user may transmit important data such as a copy of a passbook, a copy of an identification card, an image of an ID, a social security number, etc. to the representative node 121, and may set an expiration date on the important data.

In step S703, the representative node 121 performs real-name authentication for the user. Here, the real name authentication may use a known method such as mobile authentication or account authentication. If the user's real name authentication is successful, in step S705, the representative node 121 approves the subscription. Then, in step S707, the representative node 121 generates the user's private key, public key, and Innocoin wallet address. The creation of the private key, public key, and wallet address can use known blockchain technology.

In step S709, the representative node 121 stores the public key and the Innocoin wallet address in a block of the public blockchain. Then, in step S711, the representative node 121 stores the user's private key and the subscription information received in step S701 in a block of the private blockchain. Among the data of subscription information stored in the private blockchain, there may be data for which an expiration date is set.

In step S713, the representative node 121 generates a random encryption key to be used to encrypt the private block in which the subscription information and the private key are stored, and in step S715, the private block is encrypted with the random encryption key. Subsequently, in steps S717 to S721, the representative node 121 divides the random encryption key into N pieces, which is the number of representative nodes, and transmits the divided pieces of the random encryption key to other representative nodes for distribution. Therefore, the fragmented N random encryption key pieces are distributed and stored in N representative nodes. When transmitting a piece, the representative node 121 transmits identification information of a private block associated with the piece.

In steps S723 and S725, the representative node 121 disposes the fragments and stores them, discards the original random encryption key, and records the relationship information between the private block and the private key in the public block. Here, the relationship information is information of whose private key is stored in which private block.

In the embodiment with reference to FIG. 7 described above, it is described that representative node #1 receives the subscription application, generates a private key, a public key, and a wallet address, and performs all operations of generating a block, but the representative node of the blockchain network 120 The 121s generate a block by proof of stake. That is, each representative node requests approval to create a block of a specific sequence from other representative nodes. Among them, the representative node that has the most approval has the final block creation authority and creates a block, and the generated block is different. Synchronization by transmitting to representative nodes and general nodes. In the above-described embodiment with reference to FIG. 7, for convenience of description, it is assumed that representative node #1 has the final block creation authority. Therefore, storing in the blocks in the above-described steps S709, S711, and S725 means that blocks are generated by such proof of stake and should be understood in the following claims as well.

In the data of the subscription information registered in FIG. 7, the data whose validity period is set is substantially deleted from the private blockchain when the validity period expires through the process as in FIG. 5 described above.

The above description is merely illustrative of the technical idea of the present invention, and those skilled in the art to which the present invention pertains may make various modifications and variations without departing from the essential characteristics of the present invention. Therefore, the embodiments disclosed in the present invention are not intended to limit the technical spirit of the present invention, but to explain, and the scope of the technical spirit of the present invention is not limited by these embodiments. The scope of protection of the present invention should be interpreted by the claims below, and all technical spirits within the equivalent range should be interpreted as being included in the scope of the present invention. The method of the present invention as described above may be implemented as a program and stored in a computer-readable form (CD-ROM, RAM, ROM, floppy disk, hard disk, magneto-optical disk, etc.). Such a process will not be described in detail any more as those skilled in the art to which the present invention pertains can easily carry out.

110: client device
120: blockchain network
121: representative node
122: normal node
150: Internet network
210: public block
220: private block

Claims (8)

In a node device of a blockchain network comprising a plurality of node devices,
A communication circuit in communication with the client device and other node devices;
One or more processors; And
And a memory for storing instructions executable by the one or more processors,
The one or more processors,
Create public blockchain and private blockchain independently,
Store the public data in the public block of the public blockchain,
After storing the private data in which the specific condition is set in the private block of the private blockchain, a first random encryption key is generated to encrypt the private block in which the private data is stored,
The first random encryption key is divided into a predetermined number, and the divided pieces are distributed to other node devices and stored.
When a deletion transaction occurs as the specific condition of the private data is satisfied, the private block is copied and temporarily loaded into memory, and then the fragments received from other node devices are decrypted and then stored in the decrypted private block. Editing the private block by deleting the private data, and copying the edited decrypted private block to generate a child private block,
Delete the private block temporarily loaded in the memory, request deletion of the fragments to other node devices, generate a second random encryption key to encrypt the child private block, and specify the second random encryption key Divide the number of pieces and distribute the divided pieces to other node devices and store them.
In addition, the one or more processors,
When the public block of the public blockchain is created, the private block of the private blockchain is simultaneously generated, and the hash value of the private block and the hash value of the previous public block are simultaneously recorded in the header of the public block,
When the private block of the private blockchain is created, the hash value of the previous private block is recorded in the header of the private block,
Record the deletion transaction in the public block of the public blockchain,
A node device, characterized in that a hash value of the child private block is recorded in a header of a private block generated simultaneously with the public block recording the deletion transaction. delete delete delete According to claim 1,
The specific condition of the private data and the index of the private block containing the private data are recorded in the public block of the public blockchain,
A node device characterized in that the deletion transaction occurs when the specific condition is satisfied. According to claim 1,
The deletion transaction includes a signature value using a private key,
The one or more processors,
When requesting the fragmentation of the first random encryption key to other node devices, the signature value is transmitted together and the first random encryption key from the other node devices upon successful verification of the signature value by the other node devices Node device, characterized in that for receiving the fragmentation of the. According to claim 1,
The specific conditions are:
A node device comprising any one of a transaction expiration condition, a transaction cancellation condition, a transaction refund condition, a transaction validity period, a browsing validity period, and a reading frequency of an e-commerce transaction. A method of operating a node device of a blockchain network including a plurality of node devices,
Storing public data in a public block of a public blockchain, and storing private data with specific conditions set in a private block of a private blockchain independent from the public blockchain;
Generating a first random encryption key to encrypt a private block in which the private data is stored, dividing the first random encryption key into a predetermined number, and distributing and storing the divided pieces to other node devices;
When a deletion transaction occurs as the specific condition of the private data is satisfied, copying the private block and temporarily loading it into memory, and then receiving and decrypting the divided pieces from other node devices;
Deleting the private data stored in the decrypted private block, editing the private block, and copying the edited decrypted private block to generate a child private block;
Deleting a private block temporarily loaded in the memory and requesting deletion of the divided pieces by other node devices; And
Generating a second random encryption key, encrypting the child private block, dividing the second random encryption key into a predetermined number, and distributing and storing the divided pieces to other node devices,
When the public block of the public blockchain is created, the private block of the private blockchain is simultaneously generated, and the hash value of the private block and the hash value of the previous public block are simultaneously recorded in the header of the public block,
When the private block of the private blockchain is created, the hash value of the previous private block is recorded in the header of the private block,
Record the deletion transaction in the public block of the public blockchain,
And recording the hash value of the child private block in the header of the private block generated simultaneously with the public block recording the deletion transaction.

Images