這裡將詳細地對示例性實施例進行說明,其示例表示在附圖中。下面的描述涉及附圖時,除非另有表示,不同附圖中的相同數位表示相同或相似的要素。以下示例性實施例中所描述的實施方式並不代表與本說明書一個或多個實施例相一致的所有實施方式。相反,它們僅是與如所附申請專利範圍中所詳述的、本說明書一個或多個實施例的一些態樣相一致的裝置和方法的例子。
需要說明的是:在其他實施例中並不一定按照本說明書示出和描述的順序來執行相應方法的步驟。在一些其他實施例中,其方法所包括的步驟可以比本說明書所描述的更多或更少。此外,本說明書中所描述的單個步驟,在其他實施例中可能被分解為多個步驟進行描述;而本說明書中所描述的多個步驟,在其他實施例中也可能被合併為單個步驟進行描述。
第三方支付機構通常是指具備一定實力和信譽保障的獨立機構,透過促成交易雙方進行交易的網路支付模式,目前使用者可以基於第三方支付完成商品購買異步支付、使用者第三方支付帳戶之間轉帳收款、或使用者的其他金融帳戶與第三方支付帳戶之間轉帳收款等金融。對於第三方支付機構而言,如果使用者出現黑灰交易,第三方支付機構不得不配合司法機構進行調查取證及對受害使用者的賠付;在第三方支付機構基於自身受損進行司法追償訴訟時,其收益往往小於訴訟成本;對此問題,第三方支付機構只能透過不斷追加技術投入以疊加風控策略。
基於以上提出的技術現狀和問題,圖1是本說明書所提供的一實施例所示的基於區塊鏈的存證方法,應用於包括第三方支付服務節點設備的區塊鏈系統
本實施例所述的第三方支付服務機構是指承擔第三方支付的貨款支付、轉帳匯款等功能的金融服務機構;本實施例所述的第三方支付服務節點設備是指上述第三方支付服務機構設置的、連接入區塊鏈網路的終端設備。
本實施例所述的區塊鏈,具體可指一個各節點設備透過共識機制達成的、具有分散式資料儲存結構的P2P網路系統,該區塊鏈內的資料分佈在時間上相連的一個個“區塊(block)”之內,後一區塊包含前一區塊的資料摘要,且根據具體的共識機制(如POW、POS、DPOS或PBFT等)的不同,達成全部或部分節點的資料全備份。本領域的技術人員熟知,由於區塊鏈系統在相應共識機制下運行,已收錄至區塊鏈資料庫內的資料很難被任意的節點竄改,例如採用Pow共識的區塊鏈,至少需要全網51%算力的攻擊才有可能竄改已有資料,因此區塊鏈系統有著其他中心化資料庫系統所無法比擬的保證資料安全、防攻擊竄改的特性。由此可知,在本說明書所提供的實施例中,被收錄至區塊鏈的分散式資料庫中的資料不會被攻擊或竄改,從而保證了上述區塊鏈系統中各節點設備(包括上述第三方支付服務節點設備)向上述區塊鏈存證的資料資訊的真實可靠性。
上述第三方支付服務機構的終端設備,可透過遵循相應節點協議、運行節點協議程式的安裝來加入該區塊鏈,作為該區塊鏈的節點設備。本領域的技術人員通常將具有區塊鏈分散式資料庫的資料全備份的節點設備稱為全節點,將具有區塊鏈分散式資料庫的部分備份資料(如僅有區塊頭的資料)的節點設備稱為輕節點等;在本實施例中所述的第三方支付服務節點設備可以為上述的全節點或輕節點,只要直接或間接連入上述區塊鏈、且可發送或獲取區塊鏈的分散式資料庫的資料的任何設備均可稱為本實施例所述的節點設備。
如圖1所示,上述基於區塊鏈的存證方法包括:
步驟102,所述第三方支付服務節點設備獲取使用者的第三方支付使用資訊,所述第三方支付使用資訊包括所述使用者的第三方支付帳戶資訊和基於所述第三方支付帳戶的資金流轉資訊。
本實施例所述的使用者的第三方支付使用資訊,是指使用者基於自身的第三方支付帳戶使用第三方支付服務的記錄資訊;可包括使用者基於自身的第三方支付帳戶,進行貨款支付(或收取)、轉帳匯款(或收款)等資金流轉的使用資訊。值得注意的是,上述轉帳匯款(或收款)可包括多個使用者的第三方支付帳戶之間的轉帳匯款(或收款),也可包括使用者的第三方支付帳戶與其他金融機構的帳戶(如銀行帳戶)之間的轉帳匯款(或收款),在本說明書中不作限定。
本說明書並不限定上述第三方支付服務節點設備獲取上述使用者的第三方支付使用資訊的具體方式,既可以從使用者的第三方支付服務客戶端獲取上述使用者的第三方支付使用資訊,也可以從第三方支付服務機構的其他伺服器或終端設備獲取上述使用者的第三方支付使用資訊,等等。
步驟104,基於所述第三方支付使用資訊,產生第一存證交易。
在本說明書中所描述的交易(transfer),是指透過區塊鏈的節點設備創建,並需要最終發佈至區塊鏈的分散式資料庫中的一筆資料。其中,區塊鏈中的交易,存在狹義的交易以及廣義的交易之分。狹義的交易是指使用者向區塊鏈發佈的一筆價值轉移;例如,在傳統的比特幣區塊鏈網路中,交易可以是使用者在區塊鏈中發起的一筆轉帳。而廣義的交易是指使用者向區塊鏈發佈的一筆具有業務意圖的業務資料;例如,本說明書的上述實施例所述的由第三方支付服務節點設備產生的、用於為上述使用者的第三方支付使用資訊進行存證的資料即可以為一筆交易;上述第三方支付服務節點設備可將上述第三方支付使用資訊按照預設的資料內容產生規則和交易資料格式整理,從而轉化為一筆交易——即第一存證交易。
上述基於第三方支付使用資訊產生第一存證交易的具體方式可以有多種,例如,可將使用者的第三方支付使用資訊直接按照預設的交易資料格式整理成第一存證交易,從而方便區塊鏈上任一節點設備對上述使用者的第三方支付使用資訊的資訊內容獲取。又如,由於使用者的第三方支付使用資訊通常涉及使用者的帳戶資訊、資金流轉資訊等隱私資訊,為保護使用者資訊的安全,可以將上述使用者的第三方支付使用資訊基於預設的加密規則加密後,再產生上述第一存證交易。上述預設的加密規則可以有多種設置方法,如對稱加密或非對稱加密,在本說明書中不作限定。
對資料原文進行數學雜湊化處理以產生資料原文的雜湊摘要(或稱雜湊指紋)是本領域常用的一種對資料原文的存證手段,透過存證雜湊摘要基本上可唯一性地指向資料原文資訊;而且雜湊摘要佔用的資料空間相對於資料原文,尤其是大資料量的資料原文,具有佔用空間小的優點。鑒於以上的技術基礎,本實施例所述的第一存證交易還可包括上述第三方支付使用資訊的雜湊摘要;透過將第三方支付使用資訊的雜湊摘要存證於區塊鏈的分散式資料庫中,可在取證時,驗證上述第三方支付使用資訊是否與被存證的雜湊摘要對應,如果對應,則證明上述第三方支付使用資訊為原始的資訊,未經過竄改,具有作為證據的合法性。
步驟106,將所述第一存證交易發送到區塊鏈的分散式資料庫,以使所述第一存證交易被所述區塊鏈的節點設備共識驗證後,被收錄於所述區塊鏈的分散式資料庫。
本實施例所述的將所述第一存證交易上傳到所述區塊鏈的分散式資料庫中的詳細過程,可依據所述區塊鏈的共識機制及交易規則而具體設定。在一示出的實施例中,將所述第一存證交易上傳到所述區塊鏈的分散式資料庫中,包括:
所述區塊鏈中具有記帳權限的節點設備將所述第一存證交易加入到候選區塊;
從所述具有記帳權限的節點設備中確定滿足所述區塊鏈共識機制的共識記帳節點設備;
所述共識記帳節點向所述區塊鏈的節點設備廣播所述候選區塊;
在所述候選區塊透過所述區塊鏈符合預設數量的節點設備的驗證認可後,所述候選區塊被視為最新區塊,加入到所述區塊鏈的分散式資料庫中。
在上述的實施例中,具有記帳權限的節點設備是指具有產生候選區塊權限的節點設備。根據所述區塊鏈的共識機制,可從所述候選區塊具有記帳權限的節點設備中確定共識記帳節點設備,上述共識機制可以包括工作量證明機制(PoW)、或權利證明機制(PoS)、或股份授權證明機制(DPoS)等。
PoS或DPoS共識機制與PoW類似,均屬於公有區塊鏈中確認共識記帳節點設備所常選用的共識演算法。在又一示出的實施例中,為降低交易或資料的確認時間、提高交易吞吐量、滿足對安全和性能的需求,本說明書所提供的實施例還可選用聯盟鏈架構來構建該區塊鏈。上述第三方支付服務節點設備、或對金融服務業務實行監管的機構、司法機構等可作為該聯盟鏈的預選的聯盟成員節點設備,參與區塊的記帳。聯盟鏈的共識過程也由該預選的節點設備控制,當網路上有超過設定比例(如2/3)的節點設備確認一個區塊,該區塊記錄的交易或資料將得到全網確認。
聯盟鏈通常多採用權益證明或PBFT、RAFT等共識演算法。在實現時,在區塊鏈的每一輪共識開始之前,可以在區塊鏈中的各節點設備中選舉出一台主節點設備,即上述實施例所述的共識記帳節點(比如,每一輪共識都重新選舉出一主節點設備,其它節點設備作為從節點設備),由主節點設備進一步向發起交易的驗證和共識,並負責基於共識透過的交易資料(或目標資料)為區塊鏈創建最新的區塊。
PBFT演算法作為本說明書所提供的聯盟鏈的共識演算法的一種優選的實施方式,是由於採用該種演算法共識的效率高,可滿足高頻交易量的需求,例如在本實施例中第三方支付服務機構基於使用者頻繁發生第三方支付使用行為而產生的第一存證交易;且共識的時延很低,基本達到實時處理的要求,能快速實時地在區塊鏈的新生區塊中收錄上述第一存證交易;而且,將聯盟鏈網路中可信節點作為預選的記帳節點,兼顧了安全性與穩定性;另外,採用PBFT演算法不會消耗過多的電腦算力資源,也不一定需要代幣流通,因此具有良好的可使用性。
基於本實施例提供的存證方法,基於區塊鏈技術的分散式資料庫儲存機制,將基於使用者的第三方支付使用資訊產生的第一存證交易去中心化地記錄在多個區塊鏈節點中,由區塊鏈節點共同維護,實時進行同步,所有記錄可回溯;而且,基於區塊鏈的共識機制,第三方支付服務節點設備提供的第一存證交易不會在提供後被竄改,從而保證了存證資料的真實性和安全性,為基於該第一存證交易進行的對使用者的第三方支付使用行為進行調查取證或其他應用提供了有效的資料基礎;在出現使用者基於第三方支付帳戶進行黑灰交易時,區塊鏈上的任一節點設備(包括第三方支付服務節點設備、或司法機構的節點設備)可從區塊鏈上直接獲取上述第一存證交易,基於區塊鏈的防竄改機制進行取證,從而降低了第三方支付服務機構應對使用者黑灰交易時的訴訟成本。
在又一示出的實施方式中,為進一步加強對第三方支付服務使用者的監管力度,提升對使用者的第三方支付服務使用行為的取證全面性,本說明書提供的存證方法還可包括:獲取所述第三方支付帳戶的使用者註冊資訊,所述使用者註冊資訊包括使用者的身份識別資訊;基於所述註冊資訊產生第二存證交易;將所述第二存證交易發送到區塊鏈的分散式資料庫,以使所述第二存證交易被所述區塊鏈的節點設備共識驗證後,被收錄於所述區塊鏈的分散式資料庫。
類似地,上述使用者註冊資訊既可以從使用者的第三方支付服務客戶端獲取,也可以從第三方支付服務機構的其他伺服器或終端設備獲取,等等,在本說明書中不作限定。
上述使用者的身份識別資訊可包括個人使用者的身份證件資訊、或企業使用者的營業執照資訊,還可包括個人使用者的生物學識別資訊、或企業使用者的相關責任人的生物學識別資訊等等。使用者的第三方支付服務客戶端可以透過各種採集方式獲取使用者的人臉資訊、或指紋資訊、或聲紋資訊等生物學身份識別資訊,或者,可以透過掃描刷卡或手動錄入的方式,獲取使用者的證件資訊等,並將採集到的上述資訊發送到上述第三方支付服務機構的伺服器或終端設備。
由於使用者的身份識別資訊通常為隱私資訊,如果直接將使用者的身份識別資訊的明文備份於區塊鏈的分散式資料庫中進行存證,其他節點設備均可獲取到上述身份識別資訊的明文,有可能會帶來身份資訊洩露的安全隱患。因此與第一存證交易類似,上述各實施例所述的第二存證交易可以包括上述使用者註冊資訊的原文、或上述使用者註冊資訊的加密密文、或上述使用者註冊資訊的雜湊摘要等資訊的一種或多種。採用將身份識別資訊加密或將身份識別資訊的轉化為雜湊摘要的方式,既可以為上述身份識別資訊的原文進行存證,又可以防止資訊洩露。
上述實施例所述的將所述第二存證交易收錄到區塊鏈的分散式資料庫的具體過程,可以與上述第一存證交易被收錄到區塊鏈的分散式資料庫的過程類似,在此不再贅述。
本領域的技術人員應知,使用者在使用第三方支付服務時,有時會涉及第三方支付帳戶與外部金融帳戶之間的資金流轉,因此為了完善對使用者的第三方支付服務使用情況的調查取證,建立完整的證據鏈,上述區塊鏈還包括關聯金融機構的節點設備,所述關聯金融機構是指與上述第三方支付服務機構具有資金流通關係的金融機構,可包括各銀行機構;而且,所述區塊鏈的分散式資料庫還收錄有所述關聯金融機構節點設備發送的第三存證交易,所述第三存證交易用以為所述第三方支付帳戶的資金流轉資訊提供憑證,例如,第三存證交易可以為使用者在關聯金融機構的帳戶變動資訊,用以為上述使用者的第三方支付使用資訊所包括的,基於所述第三方支付帳戶的資金流轉資訊提供到帳通知、或資金劃出通知等。
上述實施例所述的將所述第三存證交易收錄到區塊鏈的分散式資料庫的具體過程,可以與上述第一存證交易被收錄到區塊鏈的分散式資料庫的過程類似,在此不再贅述。值得注意的是,當上述區塊鏈為聯盟鏈時;上述第三方支付服務節點設備、和上述關聯金融機構節點設備均可為所述聯盟鏈的聯盟成員節點設備,參與構建上述聯盟鏈;還可作為上述聯盟鏈預選的節點設備,參與到對上述第一存證交易、第二存證交易、或第三存證交易的共識記帳中。
與上述流程實現對應,本說明書的實施例還提供了基於區塊鏈的存證裝置20。該裝置20可以透過軟件實現,也可以透過硬體或者軟硬體結合的方式實現。以軟件實現為例,作為邏輯意義上的裝置,是透過所在設備的CPU(Central Process Unit,中央處理器)將對應的電腦程式指令讀取到內部記憶體中運行形成的。從硬體層面而言,除了圖3所示的CPU、內部記憶體以及記憶體之外,網路風險業務的實現裝置所在的設備通常還包括用於進行無線信號收發的晶片等其他硬體,及/或用於實現網路通信功能的板卡等其他硬體。
圖2所示為本說明書還提供了一種基於區塊鏈的存證裝置20,應用於包括第三方支付服務節點設備的區塊鏈系統;所述裝置20包括:
獲取單元202,用於獲取使用者的第三方支付使用資訊,所述第三方支付使用資訊包括所述使用者的第三方支付帳戶資訊和基於所述第三方支付帳戶的資金流轉資訊;
產生單元204,用於基於所述第三方支付使用資訊,產生第一存證交易;
發送單元206,用於將所述第一存證交易發送到區塊鏈的分散式資料庫,以使所述第一存證交易被所述區塊鏈的節點設備共識驗證後,被收錄於所述區塊鏈的分散式資料庫。
在又一示出的實施方式中,所述獲取單元202,進一步用於獲取所述第三方支付帳戶的使用者註冊資訊,所述使用者註冊資訊包括使用者的身份識別資訊;
所述產生單元204,進一步用於基於所述註冊資訊產生第二存證交易;
所述發送單元206,進一步用於將所述第二存證交易發送到區塊鏈的分散式資料庫,以使所述第二存證交易被所述區塊鏈的節點設備共識驗證後,被收錄於所述區塊鏈的分散式資料庫。
在又一示出的實施方式中,所述區塊鏈還包括與關聯金融機構節點設備;所述區塊鏈的分散式資料庫還收錄有所述關聯金融機構節點設備發送的第三存證交易,所述第三存證交易用以為所述第三方支付帳戶的資金流轉資訊提供憑證。
在又一示出的實施方式中,所述第一存證交易包括所述第三方支付使用資訊的雜湊摘要。
在又一示出的實施方式中,所述第二存證交易包括所述使用者註冊資訊的雜湊摘要。
在又一示出的實施方式中,所述區塊鏈為聯盟鏈;所述第三方支付服務節點設備、和所述關聯金融機構節點設備為所述聯盟鏈的聯盟成員節點設備。
上述裝置20中各個單元的功能和作用的實現過程具體詳見上述方法中對應步驟的實現過程,相關之處參見方法實施例的部分說明即可,在此不再贅述。
以上所描述的裝置實施例僅僅是示意性的,其中所述作為分離部件說明的單元可以是或者也可以不是實體上分開的,作為單元顯示的部件可以是或者也可以不是實體模組,即可以位於一個地方,或者也可以分佈到多個網路模組上。可以根據實際的需要選擇其中的部分或者全部單元或模組來實現本說明書方案的目的。本領域普通技術人員在不付出進步性勞動的情況下,即可以理解並實施。
上述實施例闡明的裝置、單元、模組,具體可以由電腦晶片或實體實現,或者由具有某種功能的產品來實現。一種典型的實現設備為電腦,電腦的具體形式可以是個人電腦、膝上型電腦、蜂巢式電話、相機電話、智慧型電話、個人數位助理、媒體播放器、導航設備、電子郵件收發設備、遊戲控制台、平板電腦、可穿戴設備或者這些設備中的任意幾種設備的組合。
與上述方法實施例相對應,本說明書的實施例還提供了一種電腦設備,如圖3所示,該電腦設備包括記憶體和處理器。其中,記憶體上儲存有能夠由處理器運行的電腦程式;處理器在運行儲存的電腦程式時,執行本說明書實施例中第三方支付服務節點設備所執行的基於區塊鏈的存證方法的各個步驟。對上述第三方支付服務節點設備所執行的基於區塊鏈的存證方法的各個步驟的詳細描述請參見之前的內容,不再重複。
與上述方法實施例相對應,本說明書的實施例還提供了一種電腦可讀儲存媒體,該儲存媒體上儲存有電腦程式,這些電腦程式在被處理器運行時,執行本說明書實施例中第三方支付服務節點設備所執行的基於區塊鏈的存證方法的各個步驟。對上述第三方支付服務節點設備所執行的基於區塊鏈的存證方法的各個步驟的詳細描述請參見之前的內容,不再重複。
以上所述僅為本說明書的較佳實施例而已,並不用以限制本說明書,凡在本說明書的精神和原則之內,所做的任何修改、等同替換、改進等,均應包含在本說明書保護的範圍之內。
在一個典型的配置中,電腦設備包括一個或多個處理器(CPU)、輸入/輸出介面、網路介面和內部記憶體。
內部記憶體可能包括電腦可讀媒體中的非永久性記憶體,隨機存取記憶體(RAM)及/或非揮發性內部記憶體等形式,如唯讀記憶體(ROM)或快閃記憶體(flash RAM)。內部記憶體是電腦可讀媒體的示例。
電腦可讀媒體包括永久性和非永久性、可移動和非可移動媒體可以由任何方法或技術來實現資訊儲存。資訊可以是電腦可讀指令、資料結構、程式的模組或其他資料。
電腦的儲存媒體的例子包括,但不限於相變內部記憶體(PRAM)、靜態隨機存取記憶體(SRAM)、動態隨機存取記憶體(DRAM)、其他類型的隨機存取記憶體(RAM)、唯讀記憶體(ROM)、電可抹除可編程唯讀記憶體(EEPROM)、快閃記憶體或其他內部記憶體技術、唯讀光碟唯讀記憶體(CD-ROM)、數位多功能光碟(DVD)或其他光學儲存、磁盒式磁帶,磁帶式磁碟儲存器或其他磁性儲存設備或任何其他非傳輸媒體,可用於儲存可以被電腦設備存取的資訊。按照本文中的界定,電腦可讀媒體不包括暫存電腦可讀媒體(transitory media),如調變的資料信號和載波。
還需要說明的是,術語“包括”、“包含”或者其任何其他變體意在涵蓋非排他性的包含,從而使得包括一系列要素的過程、方法、商品或者設備不僅包括那些要素,而且還包括沒有明確列出的其他要素,或者是還包括為這種過程、方法、商品或者設備所固有的要素。在沒有更多限制的情況下,由語句“包括一個……”限定的要素,並不排除在包括所述要素的過程、方法、商品或者設備中還存在另外的相同要素。
本領域中具有通常知識者應明白,本說明書的實施例可提供為方法、系統或電腦程式產品。因此,本說明書的實施例可採用完全硬體實施例、完全軟件實施例或結合軟件和硬體態樣的實施例的形式。而且,本說明書的實施例可採用在一個或多個其中包含有電腦可用程式碼的電腦可用儲存媒體(包括但不限於磁碟記憶體、CD-ROM、光學記憶體等)上實施的電腦程式產品的形式。Here, exemplary embodiments will be described in detail, and examples thereof are shown in the accompanying drawings. When the following description refers to the accompanying drawings, unless otherwise indicated, the same digits in different drawings represent the same or similar elements. The implementation manners described in the following exemplary embodiments do not represent all implementation manners consistent with one or more embodiments of this specification. On the contrary, they are only examples of devices and methods consistent with some aspects of one or more embodiments of this specification as detailed in the scope of the appended application.
It should be noted that in other embodiments, the steps of the corresponding method may not be executed in the order shown and described in this specification. In some other embodiments, the method includes more or fewer steps than described in this specification. In addition, a single step described in this specification may be decomposed into multiple steps for description in other embodiments; and multiple steps described in this specification may also be combined into a single step in other embodiments. description.
The third-party payment institution usually refers to an independent institution with certain strength and reputation guarantee. Through the online payment mode that facilitates the transaction between the two parties, the user can complete the asynchronous payment for the purchase of goods based on the third-party payment. Financial transfers and collections between other financial accounts of users and third-party payment accounts. For third-party payment institutions, if users have black-and-white transactions, the third-party payment institutions have to cooperate with the judicial institutions to investigate and collect evidence and compensate the victim users; when the third-party payment institutions conduct judicial recovery proceedings based on their own losses , Its benefits are often less than the cost of litigation; in this regard, third-party payment institutions can only superimpose risk control strategies through continuous additional technical input.
Based on the technical status and problems raised above, Figure 1 is a blockchain-based deposit method shown in an embodiment provided in this specification, which is applied to a blockchain system including a third-party payment service node device
The third-party payment service institution described in this embodiment refers to a financial service institution that undertakes the functions of payment for goods paid by a third party, transfer and remittance, etc.; the third-party payment service node device described in this embodiment refers to the aforementioned third-party payment service institution A terminal device set up and connected to the blockchain network.
The blockchain described in this embodiment can specifically refer to a P2P network system with a distributed data storage structure that is reached by each node device through a consensus mechanism. The data in the blockchain is distributed over time and connected to each other. Within a "block", the next block contains the data summary of the previous block, and according to the specific consensus mechanism (such as POW, POS, DPOS or PBFT, etc.), all or part of the node data is reached Full backup. Those skilled in the art are well aware that since the blockchain system operates under the corresponding consensus mechanism, the data that has been included in the blockchain database is difficult to be tampered with by any node. For example, a blockchain using Pow consensus requires at least full It is possible to tamper with existing data only if 51% of the network’s computing power is attacked. Therefore, the blockchain system has the characteristics of ensuring data security and preventing attack and tampering that other centralized database systems cannot match. It can be seen that, in the embodiments provided in this specification, the data included in the distributed database of the blockchain will not be attacked or tampered with, thereby ensuring that each node device in the above-mentioned blockchain system (including the above-mentioned The authenticity and reliability of the data information deposited by the third-party payment service node equipment on the above-mentioned blockchain.
The terminal devices of the above-mentioned third-party payment service institutions can join the blockchain by following the corresponding node protocol and running the installation of the node protocol program as the node device of the blockchain. Those skilled in the art usually refer to a node device with full backup of the data of the blockchain distributed database as a full node, and will have partial backup data of the blockchain distributed database (such as data with only the block header) The node device is called a light node, etc.; in this embodiment, the third-party payment service node device can be the above-mentioned full node or light node, as long as it is directly or indirectly connected to the above-mentioned blockchain and can send or obtain blocks Any device of the data of the chain's distributed database can be called the node device described in this embodiment.
As shown in Figure 1, the above-mentioned blockchain-based evidence deposit method includes:
Step 102: The third-party payment service node device obtains the third-party payment usage information of the user. The third-party payment usage information includes the third-party payment account information of the user and the fund flow based on the third-party payment account. News.
The third-party payment usage information of the user in this embodiment refers to the record information of the user using the third-party payment service based on his own third-party payment account; it may include the user's payment for goods based on his own third-party payment account (Or collection), transfer and remittance (or collection) and other information on the use of funds flow. It’s worth noting that the above-mentioned transfer and remittance (or collection) can include the transfer and remittance (or collection) between the third-party payment accounts of multiple users, or the third-party payment account of the user and other financial institutions. The transfer and remittance (or collection) between accounts (such as bank accounts) are not limited in this manual.
This manual does not limit the specific method for the above-mentioned third-party payment service node device to obtain the third-party payment usage information of the above-mentioned user. It can obtain the third-party payment usage information of the above-mentioned user from the user’s third-party payment service client or The third-party payment usage information of the above-mentioned users can be obtained from other servers or terminal devices of third-party payment service institutions, and so on.
Step 104: Generate a first deposit certificate transaction based on the third-party payment usage information.
The transfer described in this manual refers to a piece of data that is created through the node device of the blockchain and needs to be finally released to the distributed database of the blockchain. Among them, transactions in the blockchain are divided into narrow transactions and broad transactions. A transaction in a narrow sense refers to a transfer of value issued by a user to the blockchain; for example, in a traditional Bitcoin blockchain network, a transaction can be a transfer initiated by the user in the blockchain. In a broad sense, a transaction refers to a piece of business data with business intent released by a user to the blockchain; for example, the third-party payment service node device described in the above embodiment of this specification is used to provide the user’s The third-party payment usage information can be recorded as a transaction; the third-party payment service node device can organize the third-party payment usage information according to the preset data content generation rules and transaction data format to convert it into a transaction ——The first deposit certificate transaction.
There can be many specific ways to generate the first deposit transaction based on the third-party payment usage information. For example, the user's third-party payment usage information can be directly organized into the first deposit transaction according to the preset transaction data format, so as to facilitate Any node device on the blockchain obtains the information content of the third-party payment usage information of the above-mentioned user. In another example, since the user’s third-party payment usage information usually involves the user’s account information, fund transfer information and other privacy information, to protect the security of the user’s information, the user’s third-party payment usage information can be based on the default After the encryption rules are encrypted, the first deposit certificate transaction is generated. The aforementioned preset encryption rules can have multiple setting methods, such as symmetric encryption or asymmetric encryption, which are not limited in this specification.
Mathematically hashing the original data to generate a hash abstract (or hash fingerprint) of the original data is a commonly used method in the field to record the original data. Through the evidence, the hash abstract can basically point to the original information uniquely. ; And the data space occupied by the hash summary is compared with the original data, especially the original data with a large amount of data, which has the advantage of taking up less space. In view of the above technical basis, the first deposit transaction described in this embodiment can also include the hashed summary of the third-party payment usage information; by depositing the hashed summary of the third-party payment usage information in the distributed data of the blockchain In the database, when obtaining evidence, it can be verified whether the third-party payment usage information corresponds to the hashed summary of the deposited certificate. If it corresponds, it can be proved that the third-party payment usage information is original information, which has not been tampered with, and is legal as evidence. Sex.
Step 106: Send the first certificate transaction to the distributed database of the blockchain, so that the first certificate transaction is included in the area after being verified by the node device consensus of the blockchain Decentralized database of blockchain.
The detailed process of uploading the first deposit transaction to the distributed database of the blockchain described in this embodiment can be specifically set according to the consensus mechanism and transaction rules of the blockchain. In an illustrated embodiment, uploading the first deposit transaction to the distributed database of the blockchain includes:
Adding the first deposit certificate transaction to the candidate block by a node device with accounting authority in the blockchain;
Determine a consensus accounting node device that satisfies the blockchain consensus mechanism from the node devices with accounting authority;
The consensus accounting node broadcasts the candidate block to the node device of the blockchain;
After the candidate block meets the verification and approval of the preset number of node devices through the blockchain, the candidate block is regarded as the latest block and added to the distributed database of the blockchain.
In the foregoing embodiment, the node device with the accounting authority refers to the node device with the authority to generate candidate blocks. According to the consensus mechanism of the blockchain, the consensus accounting node device can be determined from the node devices with accounting authority in the candidate block. The above consensus mechanism may include a proof of work mechanism (PoW) or a proof of right mechanism (PoS) , Or Share Authorization Proof Mechanism (DPoS), etc.
The PoS or DPoS consensus mechanism is similar to PoW, and both belong to the consensus algorithm commonly used by the public blockchain to confirm the consensus accounting node equipment. In another illustrated embodiment, in order to reduce the confirmation time of transactions or data, increase transaction throughput, and meet the requirements for security and performance, the embodiments provided in this specification can also use the alliance chain architecture to construct the block chain. The above-mentioned third-party payment service node devices, or institutions that supervise financial service businesses, judicial institutions, etc., can serve as pre-selected alliance member node devices of the alliance chain to participate in block accounting. The consensus process of the alliance chain is also controlled by the pre-selected node device. When there are more than a set ratio (such as 2/3) of node devices on the network to confirm a block, the transaction or data recorded in the block will be confirmed by the entire network.
Consortium chains usually use proof of rights or consensus algorithms such as PBFT and RAFT. In implementation, before the start of each round of consensus in the blockchain, a master node device can be selected from each node device in the blockchain, that is, the consensus accounting node described in the above embodiment (for example, each round of consensus A master node device is re-elected, and other node devices are used as slave node devices. The master node device further initiates transaction verification and consensus, and is responsible for creating the latest blockchain based on the transaction data (or target data) passed by the consensus. Block.
The PBFT algorithm, as a preferred implementation of the consensus algorithm of the alliance chain provided in this specification, is due to the high efficiency of adopting this algorithm consensus and can meet the needs of high-frequency trading volume. For example, in this embodiment, the first Three-party payment service institutions are based on the first deposit transaction generated by users frequently using third-party payment; and the consensus delay is very low, which basically meets the requirements of real-time processing, and can quickly and in real time in the new block of the blockchain The above-mentioned first deposit transaction is included in the above; moreover, the trusted node in the alliance chain network is used as the pre-selected accounting node, which takes into account security and stability; in addition, the use of the PBFT algorithm will not consume too much computer computing resources. It does not necessarily require token circulation, so it has good usability.
Based on the deposit method provided in this embodiment, the distributed database storage mechanism based on blockchain technology decentrally records the first deposit transaction generated based on the user's third-party payment usage information in multiple blocks In the chain nodes, they are jointly maintained by the blockchain nodes, synchronized in real time, and all records can be traced back; moreover, based on the consensus mechanism of the blockchain, the first deposit transaction provided by the third-party payment service node device will not be Falsification, thereby ensuring the authenticity and security of the deposit data, provides an effective data basis for the investigation and collection of evidence or other applications of the user’s third-party payment usage based on the first deposit transaction; When a third-party payment account is used for a black-and-grey transaction, any node device on the blockchain (including a third-party payment service node device or a node device of a judicial institution) can directly obtain the above first deposit certificate from the blockchain For transactions, evidence is obtained based on the anti-tampering mechanism of the blockchain, thereby reducing the litigation costs of third-party payment service institutions when dealing with users' black and gray transactions.
In another embodiment shown, in order to further strengthen the supervision of users of third-party payment services and improve the comprehensiveness of evidence collection for users’ use of third-party payment services, the deposit method provided in this manual may also include : Obtain user registration information of the third-party payment account, where the user registration information includes user identification information; generate a second deposit transaction based on the registration information; send the second deposit transaction to The distributed database of the blockchain, so that the second deposit transaction is included in the distributed database of the blockchain after being verified by the node device consensus of the blockchain.
Similarly, the above-mentioned user registration information can be obtained from the user's third-party payment service client, or from other servers or terminal devices of the third-party payment service organization, etc., which is not limited in this specification.
The above-mentioned user’s identification information may include the personal user’s identity document information, or the business license information of the enterprise user, as well as the biological identification information of the individual user, or the biological identification of the relevant responsible person of the enterprise user Information and more. The user’s third-party payment service client can obtain the user’s facial information, fingerprint information, or voiceprint information and other biological identification information through various collection methods, or it can be obtained by scanning a card or manual entry. The user’s certificate information, etc., and the collected information is sent to the server or terminal device of the third-party payment service organization.
Since the user's identification information is usually private information, if the plaintext of the user's identification information is directly backed up in the distributed database of the blockchain for storage, other node devices can obtain the above identification information. Plain text may bring security risks to the disclosure of identity information. Therefore, similar to the first deposit transaction, the second deposit transaction described in the above embodiments may include the original text of the user registration information, or the encrypted cipher text of the user registration information, or the hash of the user registration information. One or more types of information such as abstracts. Using the method of encrypting the identification information or converting the identification information into a hashed abstract can not only record the original text of the above identification information, but also prevent information leakage.
The specific process of recording the second deposit transaction in the distributed database of the blockchain described in the above embodiment may be similar to the process of recording the first deposit transaction in the distributed database of the blockchain. , I won’t repeat it here.
Those skilled in the art should know that when users use third-party payment services, they sometimes involve the transfer of funds between third-party payment accounts and external financial accounts. Therefore, in order to improve the user’s use of third-party payment services Investigate and collect evidence and establish a complete evidence chain. The aforementioned blockchain also includes node devices of associated financial institutions. The associated financial institution refers to a financial institution that has a fund circulation relationship with the aforementioned third-party payment service institution, and may include various banking institutions; Moreover, the distributed database of the blockchain also contains the third certificate deposit transaction sent by the node device of the associated financial institution, and the third certificate deposit transaction is used to provide the fund flow information of the third-party payment account. Evidence, for example, the third deposit certificate transaction can be the user’s account change information in the associated financial institution, which is used to provide the third-party payment usage information for the above-mentioned user based on the capital flow information of the third-party payment account. Notice of account, or notice of transfer of funds, etc.
The specific process of including the third certificate transaction in the distributed database of the blockchain described in the above embodiment may be similar to the process of including the first certificate transaction in the distributed database of the blockchain. , I won’t repeat it here. It is worth noting that when the above-mentioned blockchain is an alliance chain; the above-mentioned third-party payment service node equipment and the above-mentioned associated financial institution node equipment can be alliance member node equipment of the alliance chain and participate in the construction of the above-mentioned alliance chain; It can be used as the node device pre-selected by the aforementioned alliance chain to participate in the consensus accounting of the aforementioned first deposit certificate transaction, second deposit certificate transaction, or third deposit certificate transaction.
Corresponding to the implementation of the above process, the embodiment of this specification also provides a blockchain-based certificate storage device 20. The device 20 can be implemented through software, or through hardware or a combination of software and hardware. Taking software implementation as an example, as a logical device, it is formed by reading the corresponding computer program instructions into the internal memory through the CPU (Central Process Unit, central processing unit) of the device where it is located. From the perspective of hardware, in addition to the CPU, internal memory, and memory shown in Figure 3, the equipment where the network risk business is implemented usually includes other hardware such as chips for wireless signal transmission and reception. And/or other hardware such as boards used to implement network communication functions.
Figure 2 shows that this specification also provides a blockchain-based deposit device 20, which is applied to a blockchain system including a third-party payment service node device; the device 20 includes:
The obtaining unit 202 is configured to obtain third-party payment usage information of the user, where the third-party payment usage information includes the user's third-party payment account information and fund flow information based on the third-party payment account;
The generating unit 204 is configured to generate a first deposit certificate transaction based on the third-party payment usage information;
The sending unit 206 is configured to send the first deposit transaction to the distributed database of the blockchain, so that the first deposit transaction is included in the blockchain after the consensus verification of the node device The distributed database of the blockchain.
In another embodiment shown, the acquiring unit 202 is further configured to acquire user registration information of the third-party payment account, and the user registration information includes user identification information;
The generating unit 204 is further configured to generate a second deposit certificate transaction based on the registration information;
The sending unit 206 is further configured to send the second deposit transaction to the distributed database of the blockchain, so that after the second deposit transaction is verified by the node device consensus of the blockchain, It is included in the distributed database of the blockchain.
In another illustrated embodiment, the blockchain further includes a node device associated with a financial institution; the distributed database of the blockchain also includes a third deposit certificate sent by the node device of the associated financial institution Transaction, the third deposit certificate transaction is used to provide evidence for the capital flow information of the third-party payment account.
In another illustrated embodiment, the first deposit transaction includes a hashed summary of the third-party payment usage information.
In another illustrated embodiment, the second deposit transaction includes a hashed summary of the user registration information.
In another illustrated embodiment, the blockchain is an alliance chain; the third-party payment service node device and the associated financial institution node device are alliance member node devices of the alliance chain.
For the implementation process of the functions and roles of each unit in the above-mentioned device 20, please refer to the implementation process of the corresponding steps in the above-mentioned method. For related parts, please refer to the part of the description of the method embodiment, which will not be repeated here.
The device embodiments described above are merely illustrative, and the units described as separate components may or may not be physically separate, and the components displayed as units may or may not be physical modules, that is, Located in one place, or it can be distributed to multiple network modules. Some or all of the units or modules can be selected according to actual needs to achieve the purpose of the solution in this specification. Those of ordinary skill in the art can understand and implement it without making progressive work.
The devices, units, and modules described in the foregoing embodiments may be specifically implemented by computer chips or entities, or implemented by products with certain functions. A typical implementation device is a computer. The specific form of the computer can be a personal computer, a laptop computer, a cellular phone, a camera phone, a smart phone, a personal digital assistant, a media player, a navigation device, an email receiving and sending device, and a game. Console, tablet, wearable device, or a combination of any of these devices.
Corresponding to the foregoing method embodiment, the embodiment of this specification also provides a computer device. As shown in FIG. 3, the computer device includes a memory and a processor. Among them, the memory stores a computer program that can be run by the processor; when the processor runs the stored computer program, it executes the blockchain-based deposit method executed by the third-party payment service node device in the embodiment of this specification Various steps. For a detailed description of each step of the blockchain-based deposit method executed by the third-party payment service node device, please refer to the previous content and will not be repeated.
Corresponding to the above method embodiments, the embodiments of this specification also provide a computer-readable storage medium on which computer programs are stored. These computer programs execute the third-party Each step of the blockchain-based deposit method executed by the payment service node device. For a detailed description of each step of the blockchain-based deposit method executed by the third-party payment service node device, please refer to the previous content and will not be repeated.
The above descriptions are only preferred embodiments of this specification and are not intended to limit this specification. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of this specification shall be included in this specification Within the scope of protection.
In a typical configuration, the computer equipment includes one or more processors (CPUs), input/output interfaces, network interfaces, and internal memory.
Internal memory may include non-permanent memory in computer-readable media, random access memory (RAM) and/or non-volatile internal memory, such as read-only memory (ROM) or flash memory (flash RAM). Internal memory is an example of computer-readable media.
Computer-readable media includes permanent and non-permanent, removable and non-removable media, and information storage can be realized by any method or technology. Information can be computer-readable instructions, data structures, program modules, or other data.
Examples of computer storage media include, but are not limited to, phase change internal memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), and other types of random access memory (RAM). ), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory or other internal memory technology, read-only CD-ROM (CD-ROM), digital multi Functional discs (DVD) or other optical storage, magnetic cassette tapes, magnetic tape storage or other magnetic storage devices or any other non-transmission media that can be used to store information that can be accessed by computer equipment. According to the definition in this article, computer-readable media does not include transitory media, such as modulated data signals and carrier waves.
It should also be noted that the terms "include", "include" or any other variants thereof are intended to cover non-exclusive inclusion, so that a process, method, commodity or equipment including a series of elements not only includes those elements, but also includes Other elements that are not explicitly listed, or include elements inherent to this process, method, commodity, or equipment. If there are no more restrictions, the element defined by the sentence "including a..." does not exclude the existence of other identical elements in the process, method, commodity or equipment including the element.
Those skilled in the art should understand that the embodiments of this specification can be provided as methods, systems, or computer program products. Therefore, the embodiments of this specification may adopt the form of a complete hardware embodiment, a complete software embodiment, or an embodiment combining software and hardware aspects. Moreover, the embodiments of this specification can adopt computer programs implemented on one or more computer-usable storage media (including but not limited to magnetic disk memory, CD-ROM, optical memory, etc.) containing computer-usable program codes. The form of the product.
