KR102412852B1 - Method for providing virtual asset service based on decentralized identity and virtual asset service providing server using them - Google Patents

Abstract

The present invention provides a method for providing a virtual asset service based on a decentralized ID to prevent the virtual asset service provider from laundering money through virtual asset transactions by allowing the virtual asset service provider to acquire and store information on users who trade virtual assets, and It relates to a virtual asset service providing server using the same.

Description

Decentralized ID-based virtual asset service provision method and virtual asset service provision server using the same

The present invention relates to a method of providing a virtual asset service and a server for providing a virtual asset service using the same, and more particularly, a Decentralized Identifier (DID)-based for preventing money laundering using a virtual asset It relates to a method of providing a virtual asset service of and a virtual asset service providing server using the same.

Bitcoin, a kind of virtual asset that is a cryptocurrency, not only showed high demand in the market by shaking the definition of fiat currency issued by the central bank, but also had a ripple effect of applying the block chain to existing services. come.

Bitcoin issuance and transaction details are simultaneously recorded and verified by multiple computers on a P2P distributed network by combining encryption technology and network technology through distributed ledger technology called blockchain.

After the application of Bitcoin to blockchain technology, various virtual assets such as Ethereum and Ripple using blockchain technology have been issued.

In addition, a virtual asset exchange, a marketplace for enabling a specific virtual asset to be traded with fiat currency or other virtual assets, has been created, and various virtual assets are being traded through various virtual asset exchanges worldwide.

However, due to the nature of virtual assets using blockchain, it is difficult to identify the virtual asset traders because virtual asset traders trade virtual assets using virtual asset addresses.

Because of this, the difficulty in identifying virtual asset traders is often used for illegal purposes such as money laundering or terrorist financing, so that illegal criminal proceeds can be viewed as profits from legitimate transactions through virtual asset transactions. is concealing

In order to prevent illegal transactions of virtual assets, the Financial Action Task Force (FATF) issued an international standard recommendation for virtual asset regulation in June 2019, encouraging each country to provide virtual asset service providers (Virtual Asset Service Providers). It is encouraging to make it mandatory to comply with the Travel Rule of the Asset Service Provider (VASP). Following this, the international organization for anti-money laundering will discuss the details of the application of the travel rule and prepare for an announcement in 2021.

The basis of the travel rule is that when transferring virtual assets, the virtual asset service provider responsible for the transmission is obliged to provide the virtual asset service provider with information related to the virtual asset transfer to the recipient. In the case of remittance and deposit, sender information including the sender's name and sending virtual asset address, and recipient information including the recipient's name and receiving virtual asset address, etc. may be checked, and it may be requested to provide evidence for this.

Accordingly, various methods for virtual asset service have been recently proposed to comply with the travel rule, but there is no suitable solution to satisfy the travel rule so far.

Accordingly, the present invention intends to propose a virtual asset service that satisfies the travel rule recommended by the international anti-money laundering organization.

US 10924284 B2 US 10742411 B2 US 10700851 B2

An object of the present invention is to solve all of the above problems.

Another object of the present invention is to prevent illegal transactions such as money laundering or terrorist financing using virtual assets.

Another object of the present invention is to enable the asset transaction service providing servers participating in the transaction to easily identify the sender and the receiver of the illegal transaction by authenticating the sender information and the receiver information.

In addition, another object of the present invention is to enable authentication and management of sender information and receiver information without exposing the personal information of the sender and receiver performing a virtual asset transaction.

In order to achieve the object of the present invention as described above and to realize the characteristic effects of the present invention to be described later, the characteristic configuration of the present invention is as follows.

According to one aspect of the present invention, in a method of providing a virtual asset service based on a decentralized identifier (DID), (a) the DIDs of users and virtual asset service providing servers are registered in a blockchain network In the following, when a virtual asset transmission request including a recipient virtual asset address corresponding to a recipient to receive the virtual asset is obtained from a sender terminal of a sender who wants to transmit a virtual asset, managing the sender virtual asset address corresponding to the sender The first virtual asset service providing server broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network, and at least one or more virtual asset service providing servers that participate as nodes in the blockchain network respectively to verify that the recipient virtual asset address is a virtual asset address managed by the user; (b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and (c) when receiving the recipient authentication transaction, the first virtual asset service providing server corresponds to the second server DID from the blockchain network using the second server DID included in the recipient authentication transaction. obtaining the second server public key, and decrypting the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and the recipient included in the recipient information Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the DID, and decrypt the recipient signature value included in the recipient information using the recipient public key to obtain the recipient VC and obtain the block After verifying through a chain network, storing the verification record, and then registering in the blockchain network by generating an additive transmission transaction for transferring the virtual asset from the sender virtual asset address to the recipient virtual asset address; A method comprising

As an example, in step (b), the first virtual asset service providing server may generate the first server DID to cause the second virtual asset service providing server to (i) obtain the first server public key. to obtain the first server public key corresponding to the first server DID from the blockchain network using obtain the first server DID document to be used to obtain the first server public key from the first server DID document, and (ii) use the sender DID to obtain the sender public key to obtain the sender public key corresponding to the sender DID from Disclosed is a method capable of obtaining a sender public key.

As an example, in step (a), the first virtual asset service providing server uses the first server authentication signature value that signed the first server VC with the first server private key and the first server DID as the identity resolution The second virtual asset service providing server confirms that it manages the recipient virtual asset address included in the identity resolution request by broadcasting it to the blockchain network in addition to the request to cause the identity resolution Verify the first server public key from the blockchain network using the first server DID included in the request, or use the first server DID through a resolver server to obtain the first server DID from the blockchain network Decrypt the first server authentication signature value by using the first server public key to obtain a first server DID document corresponding to to obtain the first server VC and to verify the first server VC through the blockchain network is disclosed.

As an example, in step (b), the first virtual asset service providing server is configured to cause the second virtual asset service providing server to sign a second server VC with the second server private key with a second server authentication signature value and The second server DID is additionally included in the response, and when the response is received, the second server public key is confirmed from the blockchain network using the second server DID included in the response. Or, by using the second server DID through a resolver server, obtain a second server DID document corresponding to the second server DID from the blockchain network, and then use the second server DID document to obtain the second server public key to obtain the second server VC by decrypting the second server authentication signature value using the second server public key, and verifying the second server VC through the block chain network. This is initiated.

As an example, in the step (b), the first virtual asset service providing server acquires the sender information from the sender, and includes the sender information in the virtual asset transmission request from the sender terminal to be transmitted. Disclosed is a method characterized by acquiring or acquiring by requesting a separate sender signature transaction to the sender terminal.

As an example, in step (b), the first virtual asset service providing server causes the second virtual asset service providing server to request a recipient signature transaction to the recipient terminal to obtain the recipient information A method is disclosed.

As an example, in the step (c), the first virtual asset service providing server, (i) the second server from the blockchain network using the second server DID to obtain the second server public key Obtaining the second server public key corresponding to the DID or obtaining a second server DID document corresponding to the second server DID from the blockchain network using the second server DID through a resolver server to obtain the second server DID document obtaining the second server public key from a server DID document, (ii) obtaining the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID to obtain the recipient public key, or Disclosed is a method characterized in that it is possible to obtain a recipient DID document corresponding to the recipient DID from the blockchain network using the recipient DID through a resolver server, and obtain the recipient public key from the recipient DID document.

According to another aspect of the present invention, in a method of providing a virtual asset service based on a Decentralized Identifier (DID), (a) DIDs of users and virtual asset service providing servers are registered in a blockchain network In the first virtual managing the virtual asset address by transmitting the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset to the receiver terminal using the receiver virtual asset address corresponding to the receiver to receive the virtual asset When the asset service providing server acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server broadcasts an identity resolution request corresponding to the sender virtual asset address to the blockchain network, , allowing at least one or more virtual asset service providing servers participating as nodes in the blockchain network to check whether the sender virtual asset address is a virtual asset address they manage; (b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server to cause the second virtual asset service providing server to access the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and include in the recipient information Obtain the recipient public key corresponding to the recipient DID from the block chain network using the recipient DID, decrypt the recipient signature value included in the recipient information using the recipient public key, and obtain the recipient VC Obtain and verify the receiver VC through the blockchain network, and when verification is complete, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value signed with a second server private key and a second server DID; and (c) upon receiving the sender authentication transaction, the first virtual asset service providing server corresponds to the second server DID from the blockchain network using the second server DID included in the sender authentication transaction. obtaining the second server public key, and decrypting the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and the sender included in the sender information Obtain the sender public key corresponding to the sender DID from the blockchain network using the DID, and use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC to obtain the block after verifying through a chain network, storing a verification record, and then registering the add-on transfer transaction with the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the recipient virtual asset address; A method comprising

As an example, in step (b), the first virtual asset service providing server may generate the first server DID to cause the second virtual asset service providing server to (i) obtain the first server public key. to obtain the first server public key corresponding to the first server DID from the blockchain network using obtain the first server DID document to be used to obtain the first server public key from the first server DID document, and (ii) use the recipient DID to obtain the recipient public key, the blockchain network to obtain the recipient public key corresponding to the recipient DID from the Disclosed is a method capable of obtaining a recipient public key.

As an example, in step (a), the first virtual asset service providing server uses the first server authentication signature value that signed the first server VC with the first server private key and the first server DID as the identity resolution The second virtual asset service providing server confirms that it manages the sender virtual asset address included in the identity resolution request by broadcasting it to the blockchain network in addition to the request to cause the identity resolution Verify the first server public key from the blockchain network using the first server DID included in the request, or use the first server DID through a resolver server to obtain the first server DID from the blockchain network Decrypt the first server authentication signature value by using the first server public key to obtain a first server DID document corresponding to to obtain the first server VC and to verify the first server VC through the blockchain network is disclosed.

As an example, in step (b), the first virtual asset service providing server is configured to cause the second virtual asset service providing server to sign a second server VC with the second server private key with a second server authentication signature value and The second server DID is additionally included in the response, and when the response is received, the second server public key is verified from the blockchain network using the second server DID included in the response. Or, by using the second server DID through a resolver server, obtain a second server DID document corresponding to the second server DID from the blockchain network, and then use the second server DID document to obtain the second server public key to obtain the second server VC by decrypting the second server authentication signature value using the second server public key, and verifying the second server VC through the block chain network. This is initiated.

As an example, in the step (b), the first virtual asset service providing server requests a recipient signature transaction to the recipient terminal to obtain the recipient information is disclosed.

As an example, in step (b), the first virtual asset service providing server causes the second virtual asset service providing server to request a sender signature transaction to the sender terminal to obtain the sender information. A method is disclosed.

As an example, in the step (c), the first virtual asset service providing server, (i) the second server from the blockchain network using the second server DID to obtain the second server public key Obtaining the second server public key corresponding to the DID or obtaining a second server DID document corresponding to the second server DID from the blockchain network using the second server DID through a resolver server to obtain the second server DID document obtain the second server public key from the server DID document, and (ii) obtain the sender public key corresponding to the sender DID from the blockchain network using the sender DID to obtain the sender public key Alternatively, the sender public key can be obtained from the sender DID document by obtaining a sender DID document corresponding to the sender DID from the blockchain network using the sender DID through a resolver server. is initiated

According to another aspect of the present invention, there is provided a virtual asset service providing server for providing a decentralized ID (Decentralized Identifier; DID)-based virtual asset service, comprising: a memory in which instructions for providing a DID-based virtual asset service are stored; and a processor configured to perform an operation for providing the DID-based virtual asset service according to the instructions stored in the memory. Including, wherein the processor, (I) with the DID of users and virtual asset service providing servers registered in the blockchain network, from the sender terminal of the sender who wants to transmit the virtual asset to the receiver to receive the virtual asset When a virtual asset transfer request including the corresponding recipient virtual asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least participating in the blockchain network as a node. A process for causing one or more virtual asset service providing servers to verify that the recipient virtual asset address is a virtual asset address that it manages, (II) other virtual asset services confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received from the providing server, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - to the first server The sender authentication transaction including the first server signature value and the first server DID signed with the private key is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to include the first server authentication transaction included in the sender authentication transaction. Obtain the first server public key corresponding to the first server DID from the blockchain network using the 1 server DID, and use the first server public key to sign the first server included in the sender authentication transaction Decrypt the value to obtain the sender information, use the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network, and use the sender public key Decrypting the sender signature value included in the sender information to obtain the sender VC to verify the sender VC through a key, and when verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - The second signed with the second server private key a process for transmitting a recipient authentication transaction including a server signature value and a second server DID, and (III) receiving the recipient authentication transaction, using the second server DID included in the recipient authentication transaction to use the block chain Obtaining the second server public key corresponding to the second server DID from the network, and using the second server public key to decrypt the second server signature value included in the recipient authentication transaction to obtain the recipient information and obtain a recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID included in the recipient information, and use the recipient public key to obtain the recipient signature value included in the recipient information After decrypting to obtain the recipient VC, verifying it through the blockchain network, storing the verification record, and then generating an additional transfer transaction for transferring the virtual asset from the sender virtual asset address to the recipient virtual asset address A virtual asset service providing server that performs a process of registering to the blockchain network is disclosed.

As an example, in the (II) process, the processor is configured to: (i) obtain the first server public key from the blockchain network using the first server DID to cause the other virtual asset service providing server to obtain the first server public key. Obtain the first server public key corresponding to the first server DID, or retrieve the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key from the first server DID document, and (ii) use the sender DID to obtain the sender public key corresponding to the sender DID from the blockchain network To obtain the sender public key, or to obtain the sender DID document corresponding to the sender DID from the blockchain network using the sender DID through a resolver server to obtain the sender public key from the sender DID document Disclosed is a virtual asset service providing server, characterized in that.

As an example, in the (I) process, the processor further includes a first server authentication signature value and the first server DID that signed the first server VC with the first server private key to the identity resolution request. By broadcasting to the blockchain network, the other virtual asset service providing server, which has confirmed that it manages the recipient virtual asset address included in the identity resolution request, causes the first virtual asset service providing server included in the identity resolution request Check the first server public key from the blockchain network using the server DID, or the first server DID corresponding to the first server DID from the blockchain network using the first server DID through a resolver server to obtain a document and then verify the first server public key through the first server DID document, and decrypt the first server authentication signature value using the first server public key to obtain the first server VC A virtual asset service providing server is disclosed, characterized in that it acquires and verifies the first server VC through the blockchain network.

As an example, in the process (II), the processor causes the other virtual asset service providing server to obtain a second server authentication signature value and the second server DID that signed the second server VC with the second server private key. In addition to being included in the response, when the response is received, the second server public key is checked from the blockchain network using the second server DID included in the response, or the A second server DID document corresponding to the second server DID is obtained from the block chain network by using a second server DID, and the second server public key is checked through the second server DID document, A virtual asset service providing server is disclosed, comprising decrypting the second server authentication signature value using a server public key to obtain the second server VC and verifying the second server VC through the block chain network. .

As an example, in the process (II), the processor acquires the sender information from the sender, by including the sender information in the virtual asset transmission request from the sender terminal to be transmitted, or to the sender terminal Disclosed is a virtual asset service providing server, characterized in that it is obtained by requesting a separate sender signature transaction.

As an example, in the process (II), the processor causes the other virtual asset service providing server to obtain the recipient information by requesting a recipient signature transaction to the recipient terminal. is initiated

As an example, in the process (III), the processor is configured to: (i) use the second server DID to obtain the second server public key, from the blockchain network, the second server DID corresponding to the second server DID Obtain a second server public key or obtain a second server DID document corresponding to the second server DID from the block chain network using the second server DID through a resolver server, and in the second server DID document 2 obtain a server public key, (ii) obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID to obtain the recipient public key, or via a resolver server, the recipient Disclosed is a virtual asset service providing server capable of acquiring a recipient DID document corresponding to the recipient DID from the block chain network using DID, and obtaining the recipient public key from the recipient DID document.

According to another aspect of the present invention, there is provided a virtual asset service providing server for providing a decentralized ID (Decentralized Identifier; DID)-based virtual asset service, comprising: a memory in which instructions for providing a DID-based virtual asset service are stored; and a processor configured to perform an operation for providing the DID-based virtual asset service according to the instructions stored in the memory. Including, wherein the processor, (I) with the DID of users and virtual asset service providing servers registered in the blockchain network, from the sender terminal of the sender who wants to transmit the virtual asset to the receiver to receive the virtual asset When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal by using the corresponding recipient virtual asset address obtains a virtual asset transaction for the transmission of the virtual asset, corresponding to the sender virtual asset address By broadcasting the identity resolution request to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address is the virtual asset address it manages (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, recipient information - the recipient information is Including the receiver signature value and the receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key The first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction is transmitted to the asset service providing server to cause the other virtual asset service providing server to obtain the recipient information by decrypting the first server signature value included in the recipient information VC using the first server public key, and using the recipient DID included in the recipient information To obtain a recipient public key corresponding to the recipient DID from the blockchain network, the recipient Decrypt the receiver signature value included in the receiver information using a public key to obtain the receiver VC to verify the receiver VC through the blockchain network, and when verification is complete, sender information - the sender information is the sender A process for transmitting a sender authentication transaction including the second server signature value and the second server DID signed with the second server private key - including the sender signature value and the sender DID that signed the VC (Verifiable Credential) with the sender private key and (III) upon receiving the sender authentication transaction, obtain the second server public key corresponding to the second server DID from the blockchain network using the second server DID included in the sender authentication transaction, , by using the second server public key to decrypt the second server signature value included in the sender authentication transaction to obtain the sender information, and from the blockchain network using the sender DID included in the sender information Obtain the sender public key corresponding to the sender DID, and use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, and record the verification and then, a virtual asset service providing server is disclosed that performs a process of registering the plus transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the recipient virtual asset address.

As an example, in the (II) process, the processor is configured to: (i) obtain the first server public key from the blockchain network using the first server DID to cause the other virtual asset service providing server to obtain the first server public key. Obtain the first server public key corresponding to the first server DID, or retrieve the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key from the first server DID document, and (ii) use the recipient DID to obtain the recipient public key corresponding to the recipient DID from the blockchain network to obtain the recipient public key, or to obtain the recipient DID document corresponding to the recipient DID from the blockchain network using the recipient DID through a resolver server to obtain the recipient public key from the recipient DID document Disclosed is a virtual asset service providing server, characterized in that it can.

As an example, in the (I) process, the processor further includes a first server authentication signature value and the first server DID that signed the first server VC with the first server private key to the identity resolution request. By broadcasting to the blockchain network, the other virtual asset service providing server, which has confirmed that it manages the sender virtual asset address included in the identity resolution request, causes the first virtual asset service providing server included in the identity resolution request Check the first server public key from the blockchain network using the server DID, or the first server DID corresponding to the first server DID from the blockchain network using the first server DID through a resolver server to obtain a document and then verify the first server public key through the first server DID document, and decrypt the first server authentication signature value using the first server public key to obtain the first server VC A virtual asset service providing server is disclosed, characterized in that it acquires and verifies the first server VC through the blockchain network.

As an example, in the process (II), the processor causes the other virtual asset service providing server to obtain a second server authentication signature value and the second server DID that signed the second server VC with the second server private key. In addition to being included in the response, when the response is received, the second server public key is checked from the blockchain network using the second server DID included in the response, or the A second server DID document corresponding to the second server DID is obtained from the block chain network by using a second server DID, and the second server public key is checked through the second server DID document, A virtual asset service providing server is disclosed, comprising decrypting the second server authentication signature value using a server public key to obtain the second server VC and verifying the second server VC through the block chain network. .

As an example, in the process (II), the processor requests a recipient signature transaction to the recipient terminal to obtain the recipient information.

As an example, in the process (II), the processor causes the other virtual asset service providing server to obtain the sender information by requesting a sender signature transaction to the sender terminal. is initiated

As an example, in the process (III), the processor is configured to: (i) use the second server DID to obtain the second server public key, from the blockchain network, the second server DID corresponding to the second server DID Obtain a second server public key or obtain a second server DID document corresponding to the second server DID from the block chain network using the second server DID through a resolver server, and in the second server DID document 2 to obtain a server public key, (ii) to obtain the sender public key corresponding to the sender DID from the blockchain network using the sender DID to obtain the sender public key, or via a resolver server A virtual asset service providing server is disclosed, wherein the sender public key can be obtained from the sender DID document by using the sender DID to obtain a sender DID document corresponding to the sender DID from the blockchain network. .

In addition to this, a computer-readable recording medium for recording a computer program for executing the method of the present invention is further provided.

According to the present invention, the following effects are obtained.

The present invention is effective in preventing illegal transactions such as money laundering or terrorist financing using virtual assets.

In addition, the present invention has the effect of enabling the asset transaction service providing servers participating in the transaction to easily identify the sender and the receiver of the illegal transaction by authenticating the sender information and the receiver information.

In addition, the present invention has the effect of allowing the authentication and management of sender information and receiver information without exposing the personal information of the sender and receiver who make a virtual asset transaction.

1 schematically shows a virtual asset service providing server and a blockchain network that provide a decentralized ID-based virtual asset service according to an embodiment of the present invention;
2 and 3 schematically show a method of providing a virtual asset service based on a decentralized ID when a prior virtual asset transfer request to a receiver is obtained from a sender according to an embodiment of the present invention;
4 and 5 schematically illustrate a method of providing a decentralized ID-based virtual asset service when virtual transmission is made without a request for virtual asset transmission from the sender to the receiver according to another embodiment of the present invention. .

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS The following detailed description of the present invention refers to the accompanying drawings, which show by way of illustration a specific embodiment in which the present invention may be practiced, in order to clarify the objects, technical solutions and advantages of the present invention. These embodiments are described in sufficient detail to enable those skilled in the art to practice the present invention.

Also, throughout this description and claims, the word "comprises" and variations thereof are not intended to exclude other technical features, additions, components or steps. Other objects, advantages and characteristics of the present invention will become apparent to a person skilled in the art in part from this description and in part from practice of the present invention. The following illustrations and drawings are provided by way of illustration and are not intended to limit the invention.

Moreover, the invention encompasses all possible combinations of the embodiments indicated herein. It should be understood that the various embodiments of the present invention are different but need not be mutually exclusive. For example, certain shapes, structures, and characteristics described herein with respect to one embodiment may be implemented in other embodiments without departing from the spirit and scope of the invention. In addition, it should be understood that the location or arrangement of individual components within each disclosed embodiment may be changed without departing from the spirit and scope of the present invention. Accordingly, the detailed description set forth below is not intended to be taken in a limiting sense, and the scope of the present invention, if properly described, is limited only by the appended claims, along with all scope equivalents as those claimed. Like reference numerals in the drawings refer to the same or similar functions throughout the various aspects.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings in order to enable those of ordinary skill in the art to easily practice the present invention.

1 schematically shows a system for providing a virtual asset service based on a decentralized ID according to an embodiment of the present invention. The system includes user terminals 101, 102, 103, and virtual asset service providing servers ( It may include a Virtual Asset Service Provider (VASP) 201 , 202 , 203 , and a blockchain network 300 . The user terminals 101 , 102 , 103 and the virtual asset service providing servers 201 , 202 , 203 in FIG. 1 are respectively illustrated as three for convenience of description, but the present invention is not limited thereto.

First, the user terminals 101, 102, 103 are terminals owned by users who want to transact virtual assets, and the decentralized identifiers (DIDs) corresponding to the respective users are stored in the blockchain network 300. may be registered in

Next, the virtual asset service providing servers 201 , 202 , 203 200 allow the user terminals 101 , 102 , 103 to use virtual asset services such as virtual asset deposit and withdrawal and virtual asset transfer. By providing an asset service, according to the authentication result of KYC (Know Your Customer) information corresponding to each user, virtual asset addresses of each user are registered and managed as a white list, and information of users who conduct virtual asset transactions is stored. can be acquired and stored. In addition, the virtual asset service providing servers 201 , 202 , and 203 may be in a state in which DIDs corresponding to each are registered in the blockchain network 300 , and the virtual asset service providing servers 201 , 202 and 203 are each They may be servers corresponding to nodes constituting the block chain network 300 or servers managing nodes constituting the block chain network 300 . In addition, each of the virtual asset service providing servers 201, 202, 203 performs an operation for providing a virtual asset service based on a memory in which instructions for providing the virtual asset service are stored and the DID based on the instructions stored in the memory. It may include a processor that performs the At this time, each of the virtual asset service providing servers 201 , 202 , 203 may include a personal computer (PC), a mobile computer, a PDA/EDA, a mobile phone, a smart phone, a tablet, a server, etc., but is not limited thereto. , a portable game machine having a wired/wireless communication function, a digital camera, a personal navigation device, and the like, may include any computing device that performs a computing operation.

Specifically, virtual asset service providing servers 201 , 202 , 203 typically include computing devices (eg, computer processors, memory, storage, input and output devices, and other components of conventional computing devices). devices; electronic communication devices such as routers, switches, etc.; electronic information storage systems such as network attached storage (NAS) and storage area networks (SANs)) and computer software (ie, instructions that cause a computing device to function in a particular way) ) to achieve the desired system performance.

The communication unit of such a computing device may transmit/receive a request and a response to/from another computing device that is interlocked. As an example, such a request and a response may be made by the same TCP session, but is not limited thereto, for example, UDP data It may be transmitted and received as a gram.

In addition, the processor of the computing device may include a hardware configuration such as a micro processing unit (MPU) or a central processing unit (CPU), a cache memory, and a data bus. In addition, the operating system may further include a software configuration of an application for performing a specific purpose.

However, a case in which the computing device includes an integrated processor in which a medium, a processor, and a memory are integrated for implementing the present invention is not excluded.

Next, the blockchain network 300 shares the distributed ledger by a plurality of blockchain nodes, generates a DID according to a request of a user and a computing device, and stores data corresponding to the DID in the distributed ledger. In addition, the blockchain network 300 may configure transactions related to virtual assets into blocks by distributed consensus by blockchain nodes and store them in a distributed ledger.

A method of providing a virtual asset service based on a decentralized ID according to an embodiment of the present invention using the virtual asset service providing server 100 and the block chain network 300 configured as described above is described with reference to FIGS. 2 to 5 . The explanation is as follows.

First, a method of providing a virtual asset service based on a decentralized ID (DID) when a prior virtual asset transmission request is obtained from a sender to a receiver according to an embodiment of the present invention through the system configured as described above in FIG. It will be described with reference to FIG. 3 as follows.

Referring to FIG. 2 , a recipient virtual asset address corresponding to a recipient who will receive a virtual asset to the virtual asset service providing server 201 through the sender terminal 101 , which is a user terminal owned by a sender who wants to transmit a virtual asset When requesting (S1) transmission of a virtual asset including By (S2), the recipient virtual asset address included in the broadcast identity resolution request among the virtual asset service providing servers 202 and 203 participating as a node of the blockchain network 300 is the virtual asset address that it manages. When the virtual asset service providing server 202 that has confirmed the asset address transmits a response to the virtual asset service providing server 201 ( S3 ), the virtual asset service providing server 201 encrypts the sender information to create a virtual asset It is transmitted to the service providing server 202 (S4), and the virtual asset service providing server 202 decrypts the encrypted sender information and, when verification is completed, encrypts the receiver information and transmits it to the virtual asset service providing server 201 ( S5) and the virtual asset service providing server 201 decrypts the encrypted receiver information and when verification is completed, a virtual transfer transaction that transfers the virtual asset from the sender terminal 101 to the receiver terminal 102 is performed on the blockchain network 300 ) to complete the transaction.

When this process is described in detail with reference to FIG. 3 , first, in a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network 300 , the sender terminal 101 of the sender who wants to transmit the virtual asset ), when a virtual asset transfer request including a receiver virtual asset address corresponding to a receiver to receive a virtual asset is obtained (S101), the virtual asset service providing server 201 managing the sender virtual asset address corresponding to the sender, Broadcast (S102) the identity resolution request including the recipient virtual asset address to the blockchain network 300, and at least one or more virtual asset service providing servers 202, each participating as a node in the blockchain network 300, 203) to confirm ( S103 ) whether the recipient virtual asset address is the virtual asset address it manages.

At this time, the virtual asset service providing server 201 may be in a state of registering the sender virtual asset address corresponding to the sender in the white list according to the authentication result of KYC information corresponding to the sender, and broadcasting is static/dynamic list, queue, It can be implemented through various methods such as multicast.

Then, each of the virtual asset service providing servers 202 and 203 participating as a node of the blockchain network 300 has the recipient virtual asset address included in the identity resolution request broadcast to the blockchain network 300 itself. You can check whether this is the managed virtual asset address. In this case, the service providing servers 201 , 201 , and 203 may be in a state of managing virtual asset addresses for users registered in each using a database.

Accordingly, the virtual asset service providing server 202 that has confirmed that the recipient virtual asset address included in the identity resolution request is managed by itself transmits a response corresponding to the identity resolution request to the virtual asset service providing server 201 . (S104) can be done. Meanwhile, the virtual asset service providing server 203 may ignore the identity resolution request because the recipient virtual asset address included in the identity resolution request is not the virtual asset address it manages.

At this time, the virtual asset service providing server 201 further includes the first server authentication signature value and the first server DID that signed the first server VC with the first server private key in the identity resolution request block By broadcasting to the chain network 300, the virtual asset service providing server 202, which has confirmed that it manages the recipient virtual asset address included in the identity resolution request, causes the first server DID included in the identity resolution request to check the first server public key from the blockchain network 300 using 1 to obtain the server DID document, then to verify the first server public key through the first server DID document, to decrypt the first server authentication signature value using the first server public key to obtain the first server VC; It is possible to verify the first server VC through the blockchain network 300 . Here, each of the virtual asset service providing servers 201 , 202 , and 203 including the virtual asset service providing server 201 may be operated through an exchange that performs a virtual asset transaction with a user terminal, respectively. Hereinafter, for convenience of description, it will be described that operations are performed in the virtual asset service providing servers 201 , 202 , and 203 .

In addition, the virtual asset service providing server 202 may additionally include a second server authentication signature value and a second server DID signed by the second server VC with the second server private key in the response, and the virtual asset service providing server 201 confirms the second server public key from the block chain network 300 using the second server DID included in the response, or from the block chain network 300 using the second server DID through the resolver server After obtaining the second server DID document corresponding to the second server DID, the second server public key is verified through the second server DID document, and the second server authentication signature value is decrypted using the second server public key It is possible to obtain 2 server VCs and verify the 2nd server VCs through the blockchain network 300 .

Next, when a response corresponding to the identity resolution request is received from the virtual asset service providing server 202, which has confirmed that the recipient virtual asset address is managed by itself, as described above, the virtual asset service providing server 201 sends the sender information A sender authentication transaction including the first server signature value and the first server DID signed with the first server private key may be transmitted to the virtual asset service providing server 202 ( S105 ). Here, the sender information may include the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key, and the sender authentication transaction does not include the sender's personal information, only the sender's DID and signature value In this way, the exposure of personal information can be prevented. In addition, the sender signature value may be a signature of the sender DID and the DID app using the DID service by the sender as a factor of two. In addition, the virtual asset service providing server 201 acquires the sender information from the sender, but obtains the sender information by including the sender information in the virtual asset transmission request from the sender terminal to be transmitted, or a separate sender signature transaction to the sender terminal 101 It can be obtained by request.

Accordingly, the virtual asset service providing server 202 that has obtained the sender authentication transaction obtains the first server public key corresponding to the first server DID from the blockchain network 300 using the first server DID included in the sender authentication transaction. Obtain (S106) and decrypt (S107) the first server signature value included in the sender authentication transaction using the first server public key to obtain sender information, and use the sender DID included in the sender information to network the blockchain Obtain the sender public key corresponding to the sender DID from 300 (S108), decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC, and send the sender through the blockchain network 300 The VC may be verified (S109).

Here, the virtual asset service providing server 202 obtains the first server public key corresponding to the first server DID from the blockchain network 300 using the first server DID to obtain the first server public key, or Obtain the first server DID document corresponding to the first server DID from the blockchain network 300 using the first server DID through the resolver server to obtain the first server public key from the first server DID document, To obtain the sender public key, obtain the sender public key corresponding to the sender DID from the blockchain network 300 using the sender DID, or use the sender DID through the resolver server to obtain the sender DID from the blockchain network 300 The sender public key can be obtained from the sender DID document by acquiring the corresponding sender DID document.

Next, when the sender VC is verified, the virtual asset service providing server 202 includes the second server signature value and the second server DID that signed the receiver information with the second server private key to the virtual asset service providing server 201 A recipient authentication transaction may be transmitted (S110). Here, the receiver information may include a receiver signature value signed by the receiver VC with the receiver private key and a receiver DID. Also, the virtual asset service providing server 202 may obtain recipient information by requesting a recipient signature transaction to the recipient terminal 102 .

Then, the virtual asset service providing server 201 obtains a second server public key corresponding to the second server DID from the blockchain network 300 using the second server DID included in the recipient authentication transaction (S111), Recipient information is obtained by decrypting (S112) the second server signature value included in the recipient authentication transaction using the second server public key, and the recipient DID from the blockchain network 300 using the recipient DID included in the recipient information Obtain the recipient public key corresponding to (S113), decrypt the recipient signature value included in the recipient information using the recipient public key to obtain the recipient VC, verify through the blockchain network 300 (S114), and then verify After the record is saved, it is possible to create an additive transfer transaction for transferring the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network 300 (S115).

At this time, the virtual asset service providing server 201 obtains a second server public key corresponding to the second server DID from the blockchain network 300 using the second server DID to obtain the second server public key, or A second server DID document corresponding to the second server DID may be obtained from the blockchain network 300 using the second server DID through the resolver server, and the second server public key may be obtained from the second server DID document, To obtain the recipient public key, use the recipient DID to obtain the recipient public key corresponding to the recipient DID from the blockchain network 300, or use the recipient DID through a resolver server to obtain the recipient DID from the blockchain network 300 The recipient public key may be obtained from the recipient DID document by acquiring the corresponding recipient DID document.

Next, FIGS. 4 and 5 schematically show a method of providing a decentralized ID-based virtual asset service when virtual transmission is made without a request for transmission of virtual assets from the sender to the receiver according to another embodiment of the present invention. is showing

Referring to FIG. 4 , a sender who wants to transmit a virtual asset to the receiver terminal 101 by using a receiver virtual asset address corresponding to the receiver to receive the virtual asset through the sender terminal 103 , which is a user terminal owned by the sender. When the virtual asset service providing server 201 acquires a virtual asset transaction for the virtual asset transfer (S11) by directly transferring the virtual asset, the virtual asset service providing server 201 sends the virtual asset to the sender Each virtual asset service providing server participating as a node of the blockchain network 300 by broadcasting (S12) the corresponding sender virtual asset address in the identity resolution request to the blockchain network 300 Among the ones 202 and 203 , the virtual asset service providing server 203 that has confirmed that the sender virtual asset address included in the broadcast identity resolution request is the virtual asset address it manages is sent to the virtual asset service providing server 201 . When a response is transmitted (S13), the virtual asset service providing server 201 encrypts the recipient information and transmits it to the virtual asset service providing server 203 (S14), and the virtual asset service providing server 203 decrypts the encrypted receiver information and when verification is complete, encrypts the sender information and transmits it to the virtual asset service providing server 201 (S15) so that the virtual asset service providing server 201 decrypts the encrypted sender information Upon completion, the transaction can be completed by registering the virtual transfer transaction for transferring the virtual asset from the sender terminal 103 to the receiver terminal 101 in the blockchain network 300 .

When this process is described in detail with reference to FIG. 5 , the sender terminal 103 of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network 300 . The virtual asset service providing server 201 that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal 101 using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from When the virtual asset transaction is acquired (S201), the virtual asset service providing server 201 broadcasts (S202) an identity resolution request corresponding to the sender virtual asset address to the blockchain network 300, and the blockchain network ( 300) may cause at least one or more virtual asset service providing servers 202 and 203 participating as nodes to check whether the sender virtual asset address is the virtual asset address they manage (S203).

At this time, the virtual asset service providing server 201 may be in a state of registering the recipient virtual asset address corresponding to the recipient in the white list according to the authentication result of KYC information corresponding to the recipient, and broadcasting is static/dynamic list, queue, It can be implemented through various methods such as multicast.

Then, each of the virtual asset service providing servers 202 and 203 participating as a node of the blockchain network 300 has the sender virtual asset address included in the identity resolution request broadcast to the blockchain network 300 itself. You can check whether this is the managed virtual asset address. In this case, the service providing servers 201 , 201 , and 203 may be in a state of managing virtual asset addresses for users registered in each using a database.

Accordingly, the virtual asset service providing server 203 that has confirmed that the sender's added asset address included in the identity resolution request is the virtual asset address it manages is the virtual asset service providing server 201, which responds to the identity resolution request. The phone may be transmitted (S204). Meanwhile, the virtual asset service providing server 202 may ignore the identity resolution request because the sender virtual asset address included in the identity resolution request is not the virtual asset address it manages.

At this time, the virtual asset service providing server 201 additionally includes the first server authentication signature value and the first server DID that signed the first server VC with the first server private key in the identity resolution request to the blockchain network 300 The virtual asset service providing server 203 that has confirmed that it is managing the sender virtual asset address included in the identity resolution request by broadcasting to the blockchain using the first server DID included in the identity resolution request Check the first server public key from the network 300 or obtain the first server DID document corresponding to the first server DID from the blockchain network 300 using the first server DID through the resolver server By verifying the first server public key through the first server DID document, the first server authentication signature value is decrypted using the first server public key to obtain the first server VC, and the first server VC is obtained through the blockchain network 300 1 Server VC can be verified. Here, each of the virtual asset service providing servers 201 , 202 , and 203 including the virtual asset service providing server 201 may be operated through an exchange that performs a virtual asset transaction with a user terminal, respectively. Hereinafter, for convenience of description, it will be described that operations are performed in the virtual asset service providing servers 201 , 202 , and 203 .

In addition, the virtual asset service providing server 203 may additionally include the second server authentication signature value and the second server DID that signed the second server VC with the second server private key in the response, and the virtual asset service providing server 201 confirms the second server public key from the block chain network 300 using the second server DID included in the response, or from the block chain network 300 using the second server DID through the resolver server After obtaining the second server DID document corresponding to the second server DID, the second server public key is verified through the second server DID document, and the second server authentication signature value is decrypted using the second server public key It is possible to obtain 2 server VCs and verify the 2nd server VCs through the blockchain network 300 .

Next, when a response corresponding to the identity resolution request is received from the virtual asset service providing server 203 that has confirmed that the sender virtual asset address is managed by itself as described above, the virtual asset service providing server 201 receives the receiver information A recipient authentication transaction including the first server signature value and the first server DID signed with the first server private key may be transmitted to the virtual asset service providing server 203 ( S205 ). Here, the recipient information may include the recipient's signature value and the recipient's DID that signed the recipient's VC (Verifiable Credential) with the recipient's private key, and the recipient authentication transaction does not include the recipient's personal information, only the recipient's DID and signature value In this way, the exposure of personal information can be prevented. In addition, the receiver signature value may be signed with the receiver DID and the DID app using the DID service by the receiver as a factor of two. In addition, the virtual asset service providing server 201 may obtain receiver information by requesting a receiver signature transaction to the receiver terminal 101 .

Accordingly, the virtual asset service providing server 203 that has obtained the recipient authentication transaction obtains the first server public key corresponding to the first server DID from the blockchain network 300 using the first server DID included in the recipient authentication transaction. Obtaining (S206), using the first server public key to decrypt the first server signature value included in the recipient information VC (S207) to obtain the recipient information, and using the recipient DID included in the recipient information to use the blockchain network Obtain the recipient public key corresponding to the recipient DID from 300 (S208), decrypt the recipient signature value included in the recipient information using the recipient public key to obtain the recipient VC, and receive the recipient through the blockchain network 300 VC may be verified (S209).

Here, the virtual asset service providing server 203 obtains a first server public key corresponding to the first server DID from the blockchain network 300 by using the first server DID to obtain the first server public key, or Obtain the first server DID document corresponding to the first server DID from the blockchain network 300 using the first server DID through the resolver server to obtain the first server public key from the first server DID document, In order to obtain the recipient public key, the recipient public key corresponding to the recipient DID is obtained from the blockchain network 300 using the recipient DID, or the recipient DID from the blockchain network 300 using the recipient DID through a resolver server. The recipient public key can be obtained from the recipient DID document by obtaining the recipient DID document corresponding to .

Next, when the receiver VC is verified, the virtual asset service providing server 203 includes the second server signature value and the second server DID that signed the sender information with the second server private key to the virtual asset service providing server 201 The sender authentication transaction may be transmitted (S210). Here, the sender information may include a sender signature value and a sender DID in which the sender VC (Verifiable Credential) is signed with the sender private key. Also, the virtual asset service providing server 203 may obtain sender information by requesting a sender signature transaction to the sender terminal 103 .

Then, the virtual asset service providing server 201 obtains a second server public key corresponding to the second server DID from the blockchain network 300 using the second server DID included in the sender authentication transaction (S211), The second server signature value included in the sender authentication transaction is decrypted (S212) by using the second server public key to obtain sender information, and the sender DID from the blockchain network 300 using the sender DID included in the sender information Acquire the sender public key corresponding to (S213), decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC, verify through the blockchain network 300 (S214), and then verify After saving the record, an additive transfer transaction may be registered (S215) in the blockchain network 300 so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address.

At this time, the virtual asset service providing server 201 obtains a second server public key corresponding to the second server DID from the blockchain network 300 using the second server DID to obtain the second server public key, or A second server DID document corresponding to the second server DID may be obtained from the blockchain network 300 using the second server DID through the resolver server, and the second server public key may be obtained from the second server DID document, To obtain the sender public key, use the sender DID to obtain the sender public key corresponding to the sender DID from the blockchain network 300, or use the sender DID through the resolver server to obtain the sender from the blockchain network 300 The sender public key can be obtained from the sender DID document by obtaining the sender DID document corresponding to the DID.

In addition, the embodiments according to the present invention described above may be implemented in the form of program instructions that can be executed through various computer components and recorded in a computer-readable recording medium. The computer-readable recording medium may include program instructions, data files, data structures, etc. alone or in combination. The program instructions recorded on the computer-readable recording medium may be specially designed and configured for the present invention, or may be known and available to those skilled in the computer software field. Examples of the computer-readable recording medium include hard disks, magnetic media such as floppy disks and magnetic tapes, optical recording media such as CD-ROMs and DVDs, and magneto-optical media such as floppy disks. media), and hardware devices specially configured to store and execute program instructions, such as ROM, RAM, flash memory, and the like. Examples of program instructions include not only machine language codes such as those generated by a compiler, but also high-level language codes that can be executed by a computer using an interpreter or the like. The hardware device may be configured to operate as one or more software modules for carrying out the processing according to the present invention, and vice versa.

In the above, the present invention has been described with specific matters such as specific components and limited embodiments and drawings, but these are provided to help a more general understanding of the present invention, and the present invention is not limited to the above embodiments. , various modifications and variations can be devised from these descriptions by those of ordinary skill in the art to which the present invention pertains.

Accordingly, the spirit of the present invention should not be limited to the above-described embodiments, and not only the claims described below, but also all modifications equivalently or equivalently to the claims described below belong to the scope of the spirit of the present invention. will do it

101, 102, 103: a user terminal;
201, 202, 203: virtual asset service providing server;
300: Blockchain Network

Claims (28)

In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (b),
The first virtual asset service providing server is configured to cause the second virtual asset service providing server to (i) obtain the first server public key from the blockchain network by using the first server DID. Obtain the first server public key corresponding to the server DID, or obtain the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key from the first server DID document, and (ii) use the sender DID to obtain the sender public key, the sender public corresponding to the sender DID from the blockchain network obtain a key, or obtain a sender DID document corresponding to the sender DID from the blockchain network using the sender DID through a resolver server to obtain the sender public key from the sender DID document How to characterize. delete In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (a),
The first virtual asset service providing server further includes a first server authentication signature value that signed a first server VC with the first server private key and the first server DID in the identity resolution request to the blockchain network By broadcasting to the second virtual asset service providing server, which has confirmed that it manages the recipient virtual asset address included in the identity resolution request, the first server DID included in the identity resolution request to verify the first server public key from the block chain network using, or obtain a first server DID document corresponding to the first server DID from the block chain network using the first server DID through a resolver server and then confirm the first server public key through the first server DID document, decrypt the first server authentication signature value using the first server public key to obtain the first server VC, and A method characterized in that the first server VC is verified through a blockchain network. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (b),
The first virtual asset service providing server causes the second virtual asset service providing server to include a second server authentication signature value and the second server DID, which signed the second server VC with the second server private key, to the response. To further include, when the response is received, the second server public key is checked from the block chain network using the second server DID included in the response, or the second server through a resolver server Obtaining a second server DID document corresponding to the second server DID from the block chain network using DID, and then verifying the second server public key through the second server DID document to determine the second server public key to obtain the second server VC by decrypting the second server authentication signature value using In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (b),
The first virtual asset service providing server acquires the sender information from the sender, by including the sender information in the virtual asset transmission request from the sender terminal to be transmitted, or a separate sender signature to the sender terminal A method characterized in that the transaction is obtained by requesting it. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (b),
The method of claim 1, wherein the first virtual asset service providing server causes the second virtual asset service providing server to obtain the recipient information by requesting a recipient signature transaction from a recipient terminal. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual asset address corresponding to a recipient who will receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset is included When a virtual asset transfer request is obtained, the first virtual asset service providing server managing the sender virtual asset address corresponding to the sender broadcasts the identity resolution request including the recipient virtual asset address to the blockchain network allowing at least one or more virtual asset service providing servers participating as nodes in the block chain network, respectively, to check whether the recipient virtual asset address is a virtual asset address managed by them;
(b) When a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the recipient virtual asset address is managed by itself, the first virtual asset service providing server includes sender information - The sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - Sender authentication including the first server signature value and the first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the sender authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the sender authentication transaction using the first server public key to obtain the sender information, and include in the sender information Obtain the sender public key corresponding to the sender DID from the block chain network using the sender DID, and decrypt the sender signature value included in the sender information using the sender public key to obtain the sender VC Obtain and verify the sender VC through the blockchain network, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - to the second server private transmitting a recipient authentication transaction including a second server signature value signed with the key and a second server DID; and
(c) upon receiving the recipient authentication transaction, the first virtual asset service providing server uses the second server DID included in the recipient authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, and obtain the recipient DID included in the recipient information to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the storing the verification record after verification through , and then registering in the blockchain network by generating an additive transmission transaction for transmitting the virtual asset from the sender virtual asset address to the recipient virtual asset address;
including,
In step (c),
The first virtual asset service providing server is configured to: (i) use the second server DID to obtain the second server public key, and the second server public key corresponding to the second server DID from the blockchain network or by using the second server DID through a resolver server to obtain a second server DID document corresponding to the second server DID from the block chain network to obtain the second server public key from the second server DID document (ii) to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID to obtain the recipient public key, or by using the recipient DID through a resolver server The method of claim 1, wherein the recipient public key can be obtained from the recipient DID document by obtaining a recipient DID document corresponding to the recipient DID from the blockchain network. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network When the first virtual asset service providing server that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server to cause the second virtual asset service providing server to access the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 Obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing the verification record after verifying through , and then registering an additive transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (b),
The first virtual asset service providing server is configured to cause the second virtual asset service providing server to (i) obtain the first server public key from the blockchain network by using the first server DID. Obtain the first server public key corresponding to the server DID, or obtain the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key from the first server DID document, and (ii) use the recipient DID to obtain the recipient public key, the recipient public corresponding to the recipient DID from the blockchain network Obtain the key or obtain the recipient DID document corresponding to the recipient DID from the blockchain network using the recipient DID through a resolver server to obtain the recipient public key from the recipient DID document How to characterize. delete In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network When the first virtual asset service providing server that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server to cause the second virtual asset service providing server to access the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 Obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing the verification record after verifying through , and then registering an additive transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (a),
The first virtual asset service providing server further includes a first server authentication signature value that signed a first server VC with the first server private key and the first server DID in the identity resolution request to the blockchain network by broadcasting to the second virtual asset service providing server, which has confirmed that it manages the sender virtual asset address included in the identity resolution request, to retrieve the first server DID included in the identity resolution request to verify the first server public key from the block chain network using, or obtain a first server DID document corresponding to the first server DID from the block chain network using the first server DID through a resolver server and then confirm the first server public key through the first server DID document, decrypt the first server authentication signature value using the first server public key to obtain the first server VC, and A method characterized in that the first server VC is verified through a blockchain network. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network When the first virtual asset service providing server that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server to cause the second virtual asset service providing server to access the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 Obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing the verification record after verifying through , and then registering an additive transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (b),
The first virtual asset service providing server causes the second virtual asset service providing server to include a second server authentication signature value and the second server DID, which signed the second server VC with the second server private key, to the response. In addition, upon receiving the response, the second server public key is checked from the block chain network using the second server DID included in the response, or the second server through a resolver server Obtaining a second server DID document corresponding to the second server DID from the block chain network using DID, and then verifying the second server public key through the second server DID document to determine the second server public key to obtain the second server VC by decrypting the second server authentication signature value using In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network to transmit the virtual asset to the recipient terminal, when the first virtual asset service providing server managing the recipient virtual asset address acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server to cause the second virtual asset service providing server to access the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 Obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing the verification record after verifying through , and then registering an additive transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (b),
The method of claim 1, wherein the first virtual asset service providing server obtains the recipient information by requesting a recipient signature transaction to the recipient terminal. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network When the first virtual asset service providing server that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the recipient authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing a verification record after verifying through , and then registering an add-on transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (b),
The method of claim 1, wherein the first virtual asset service providing server causes the second virtual asset service providing server to request a sender signature transaction to the sender terminal to obtain the sender information. In the method of providing a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
(a) Using the recipient virtual asset address corresponding to the recipient to receive the virtual asset from the sender terminal of the sender who wants to transmit the virtual asset while the DIDs of users and virtual asset service providing servers are registered in the blockchain network When the first virtual asset service providing server that manages the recipient virtual asset address by transmitting the virtual asset to the recipient terminal acquires a virtual asset transaction for the transfer of the virtual asset, the first virtual asset service providing server, By broadcasting the identity resolution request corresponding to the sender virtual asset address to the blockchain network, at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, the sender virtual asset address checking whether it is a managed virtual asset address;
(b) when a response corresponding to the identity resolution request is received from a second virtual asset service providing server that has confirmed that the sender virtual asset address is managed by the sender virtual asset address, the first virtual asset service providing server includes recipient information - The receiver information includes a receiver signature value and a receiver DID that signed the receiver Verifiable Credential (VC) with the receiver private key - Recipient authentication including a first server signature value and a first server DID signed with the first server private key Transmitting a transaction to the second virtual asset service providing server so that the second virtual asset service providing server uses the first server DID included in the recipient authentication transaction from the blockchain network to the first server DID obtain a corresponding first server public key, decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and Obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID, and use the recipient public key to decrypt the recipient signature value included in the recipient information to obtain the recipient VC to verify the receiver VC through the blockchain network, and when the verification is completed, sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key transmitting a sender authentication transaction including a second server signature value and a second server DID signed with the second server private key; and
(c) upon receiving the sender authentication transaction, the first virtual asset service providing server uses the second server DID included in the sender authentication transaction to receive a second server DID corresponding to the second server DID from the blockchain network. 2 obtain a server public key, decrypt the second server signature value included in the sender authentication transaction using the second server public key to obtain the sender information, and obtain the sender DID included in the sender information to obtain the sender public key corresponding to the sender DID from the blockchain network using the storing a verification record after verifying through , and then registering an add-on transfer transaction in the blockchain network so that the virtual asset is transferred from the sender virtual asset address to the receiver virtual asset address;
including,
In step (c),
The first virtual asset service providing server is configured to: (i) use the second server DID to obtain the second server public key, and the second server public key corresponding to the second server DID from the blockchain network or by using the second server DID through a resolver server to obtain a second server DID document corresponding to the second server DID from the block chain network to obtain the second server public key from the second server DID document (ii) to obtain the sender public key corresponding to the sender DID from the blockchain network using the sender DID to obtain the sender public key, or to obtain the sender DID through a resolver server The method of claim 1, wherein the sender public key can be obtained from the sender DID document by obtaining a sender DID document corresponding to the sender DID from the block chain network using In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain the first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and The sender VC is verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to the 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (II) above,
The processor is configured to: (i) use the first server DID to cause the other virtual asset service providing server to obtain the first server public key, and the first server DID corresponding to the first server DID from the blockchain network. In the first server DID document by obtaining a server public key or by obtaining a first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key; (ii) obtain the sender public key corresponding to the sender DID from the blockchain network using the sender DID to obtain the sender public key, or a resolver A virtual asset service providing server, characterized in that by using the sender DID through a server to obtain a sender DID document corresponding to the sender DID from the block chain network, and to obtain the sender public key from the sender DID document. delete In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain the first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and The sender VC is verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to the 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (I) above,
The processor further includes the first server authentication signature value and the first server DID that signed the first server VC with the first server private key in the identity resolution request to broadcast to the blockchain network, Allow the other virtual asset service providing server, which has confirmed that it manages the recipient virtual asset address included in the identity resolution request, from the blockchain network using the first server DID included in the identity resolution request. Confirm the first server public key, or obtain the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server, and then the first server By verifying the first server public key through the DID document, the first server authentication signature value is decrypted using the first server public key to obtain the first server VC, and the first server VC is obtained through the block chain network. 1 Virtual asset service providing server, characterized in that to verify the server VC. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and Let the sender VC be verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction by using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (II) above,
The processor causes the other virtual asset service providing server to further include, in the response, a second server authentication signature value and the second server DID for signing a second server VC with the second server private key, When a response is received, the second server public key is checked from the block chain network using the second server DID included in the response, or the block chain using the second server DID through a resolver server After obtaining a second server DID document corresponding to the second server DID from the network, the second server public key is checked through the second server DID document, and the second server using the second server public key A virtual asset service providing server, characterized in that by decrypting the authentication signature value to obtain the second server VC, and verifying the second server VC through the block chain network. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and Let the sender VC be verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction by using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (II) above,
The processor obtains the sender information from the sender, by including the sender information in the virtual asset transmission request from the sender terminal to be transmitted, or by requesting a separate sender signature transaction to the sender terminal to obtain Virtual asset service providing server, characterized in that. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and Let the sender VC be verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction by using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (II) above,
and the processor is configured to cause the other virtual asset service providing server to obtain the recipient information by requesting a recipient signature transaction from a recipient terminal. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When a virtual asset transfer request including an asset address is obtained, an identity resolution request including the recipient virtual asset address is broadcast to the blockchain network, and at least one or more virtual assets each participating as a node in the blockchain network a process for causing service providing servers to verify that the recipient virtual asset address is a virtual asset address managed by them; (II) from another virtual asset service providing server confirming that the recipient virtual asset address is managed When a response corresponding to the identity resolution request is received, the sender information - the sender information includes the sender signature value and the sender DID that signed the sender VC (Verifiable Credential) with the sender private key - signed with the first server private key A sender authentication transaction including a first server signature value and a first server DID is transmitted to the other virtual asset service providing server to cause the other virtual asset service providing server to retrieve the first server DID included in the sender authentication transaction. to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server public key to decrypt the first server signature value included in the sender authentication transaction using the first server public key obtain the sender information, and obtain a sender public key corresponding to the sender DID from the blockchain network using the sender DID included in the sender information, and use the sender public key to access the sender information Decrypt the included sender signature value to obtain the sender VC, and Let the sender VC be verified, and when the verification is completed, the receiver information - the receiver information includes the receiver signature value and the receiver DID that signed the receiver VC with the receiver private key - A second server signature value signed with the second server private key, and a process for sending a recipient authentication transaction comprising a second server DID; and (III) upon receiving the recipient authentication transaction, the second server DID included in the recipient authentication transaction is used to send the second server DID from the blockchain network. Obtaining a second server public key corresponding to 2 server DID, and decrypting the second server signature value included in the recipient authentication transaction by using the second server public key to obtain the recipient information, the recipient information Obtain a recipient public key corresponding to the recipient DID from the block chain network using the recipient DID included in the recipient VC, and decrypt the recipient signature value included in the recipient information using the recipient public key After obtaining and verifying through the blockchain network, store the verification record, and then create an additional transfer transaction to transfer the virtual asset from the sender virtual asset address to the receiver virtual asset address and register it in the blockchain network carry out the process, but
In the process (III) above,
The processor is configured to: (i) obtain the second server public key corresponding to the second server DID from the blockchain network using the second server DID to obtain the second server public key, or a resolver server obtaining a second server DID document corresponding to the second server DID from the blockchain network using the second server DID through ) to obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID to obtain the recipient public key, or from the blockchain network using the recipient DID through a resolver server The virtual asset service providing server of claim 1, wherein the receiver public key can be obtained from the receiver DID document by acquiring a receiver DID document corresponding to the receiver DID. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver VC (Verifiable Credential) ) including the receiver signature value and the receiver DID signed by the receiver private key to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the blockchain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in the receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network, and when the validation is complete, sender information - the sender information is a sender VC (Verifiable Credential) sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypts the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (II) above,
The processor is configured to: (i) use the first server DID to cause the other virtual asset service providing server to obtain the first server public key, and the first server DID corresponding to the first server DID from the blockchain network. In the first server DID document by obtaining a server public key or by obtaining a first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server obtain the first server public key; (ii) obtain the recipient public key corresponding to the recipient DID from the blockchain network using the recipient DID to obtain the recipient public key, or a resolver A virtual asset service characterized in that it is possible to obtain the recipient public key from the recipient DID document by obtaining the recipient DID document corresponding to the recipient DID from the blockchain network using the recipient DID through a server server. delete In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver VC (Verifiable Credential) ) including the receiver signature value and the receiver DID signed by the receiver private key to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the blockchain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypts the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (I) above,
The processor further includes the first server authentication signature value and the first server DID that signed the first server VC with the first server private key in the identity resolution request to broadcast to the blockchain network, The other virtual asset service providing server, which has confirmed that it manages the sender virtual asset address included in the identity resolution request, uses the first server DID included in the identity resolution request from the blockchain network. Confirm the first server public key, or obtain the first server DID document corresponding to the first server DID from the blockchain network using the first server DID through a resolver server, and then the first server By verifying the first server public key through the DID document, the first server authentication signature value is decrypted using the first server public key to obtain the first server VC, and the first server VC is obtained through the block chain network. 1 Virtual asset service providing server, characterized in that to verify the server VC. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver VC (Verifiable Credential) ) including the receiver signature value and the receiver DID signed with the receiver private key - Send the receiver authentication transaction including the first server signature value and the first server DID signed with the first server private key to the other virtual asset service providing server to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the block chain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypts the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (II) above,
The processor causes the other virtual asset service providing server to further include, in the response, a second server authentication signature value and the second server DID for signing a second server VC with the second server private key, When a response is received, the second server public key is checked from the block chain network using the second server DID included in the response, or the block chain using the second server DID through a resolver server After obtaining a second server DID document corresponding to the second server DID from the network, the second server public key is checked through the second server DID document, and the second server using the second server public key A virtual asset service providing server, characterized in that by decrypting the authentication signature value to obtain the second server VC, and verifying the second server VC through the block chain network. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver VC (Verifiable Credential) ) including the receiver signature value and the receiver DID signed with the receiver private key - Send the receiver authentication transaction including the first server signature value and the first server DID signed with the first server private key to the other virtual asset service providing server to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the block chain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypts the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (II) above,
The processor, Virtual asset service providing server, characterized in that to obtain the receiver information by requesting a receiver signature transaction to the receiver terminal. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which the DIDs of users and virtual asset service providing servers are registered in the blockchain network, a receiver virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver VC (Verifiable Credential) ) including the receiver signature value and the receiver DID signed with the receiver private key - Send the receiver authentication transaction including the first server signature value and the first server DID signed with the first server private key to the other virtual asset service providing server to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the block chain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypts the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (II) above,
and the processor causes the other virtual asset service providing server to obtain the sender information by requesting a sender signature transaction to the sender terminal. In the virtual asset service providing server that provides a virtual asset service based on a decentralized ID (Decentralized Identifier; DID),
a memory in which instructions for providing a DID-based virtual asset service are stored; and
a processor that performs an operation for providing the DID-based virtual asset service according to the instructions stored in the memory;
including,
The processor is configured to: (I) In a state in which DIDs of users and virtual asset service providing servers are registered in the blockchain network, a recipient virtual When the processor managing the recipient virtual asset address by sending the virtual asset to the recipient terminal using the asset address obtains a virtual asset transaction for the transfer of the virtual asset, an identity resolution request corresponding to the sender virtual asset address is broadcast to the blockchain network so that at least one or more virtual asset service providing servers participating as nodes in the blockchain network, respectively, check whether the sender virtual asset address is the virtual asset address they manage , (II) When a response corresponding to the identity resolution request is received from another virtual asset service providing server that has confirmed that the sender virtual asset address is managed by itself, receiver information - the receiver information is a receiver Verifiable Credential (VC) ) including the receiver signature value and the receiver DID signed with the receiver private key - Send the receiver authentication transaction including the first server signature value and the first server DID signed with the first server private key to the other virtual asset service providing server to cause the other virtual asset service providing server to obtain a first server public key corresponding to the first server DID from the blockchain network using the first server DID included in the recipient authentication transaction, Decrypt the first server signature value included in the recipient information VC using the first server public key to obtain the recipient information, and use the recipient DID included in the recipient information from the blockchain network to obtain a recipient public key corresponding to the recipient DID, and use the recipient public key to Decrypt the receiver signature value included in the receiver information to obtain the receiver VC to verify the receiver VC through the blockchain network, and when the validation is complete, sender information - the sender information is a sender VC (Verifiable Credential) sending a sender authentication transaction comprising a second server signature value and a second server DID signed with a second server private key, the process comprising: a sender signature value and a sender DID signed with the sender private key; Upon receiving the sender authentication transaction, a second server public key corresponding to the second server DID is obtained from the blockchain network using the second server DID included in the sender authentication transaction, and the second server public key Decrypting the second server signature value included in the sender authentication transaction using Obtain a public key, use the sender public key to decrypt the sender signature value included in the sender information to obtain the sender VC, verify through the blockchain network, store the verification record, and then store the virtual performing a process of registering an add-on transfer transaction in the blockchain network so that an asset is transferred from the sender virtual asset address to the receiver virtual asset address;
In the process (III) above,
The processor is configured to: (i) obtain the second server public key corresponding to the second server DID from the blockchain network using the second server DID to obtain the second server public key, or a resolver server obtaining a second server DID document corresponding to the second server DID from the blockchain network using the second server DID through ) to obtain the sender public key corresponding to the sender DID from the blockchain network using the sender DID to obtain the sender public key, or use the sender DID through a resolver server to obtain the sender DID and obtaining a sender DID document corresponding to the sender DID from the sender DID document to obtain the sender public key from the sender DID document.

Images