TWI772721B - System and method using blockchain to manage network devices - Google Patents

System and method using blockchain to manage network devices Download PDF

Info

Publication number
TWI772721B
TWI772721B TW108144712A TW108144712A TWI772721B TW I772721 B TWI772721 B TW I772721B TW 108144712 A TW108144712 A TW 108144712A TW 108144712 A TW108144712 A TW 108144712A TW I772721 B TWI772721 B TW I772721B
Authority
TW
Taiwan
Prior art keywords
data
supply
supply data
module
blockchain
Prior art date
Application number
TW108144712A
Other languages
Chinese (zh)
Other versions
TW202123104A (en
Inventor
洪民翰
龔家瑋
莊謹萍
黃雅泙
陳泓桔
Original Assignee
中華電信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中華電信股份有限公司 filed Critical 中華電信股份有限公司
Priority to TW108144712A priority Critical patent/TWI772721B/en
Publication of TW202123104A publication Critical patent/TW202123104A/en
Application granted granted Critical
Publication of TWI772721B publication Critical patent/TWI772721B/en

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The invention discloses a system and a method using blockchain to manage network devices. First, a provision management module receives or sets provision data of a network device. Then, a provision data module uses a selection function to determine whether the provision data is important. If yes, the provision data module calculates a hash value using a hash function according to the provision data to store the hash value in the blockchain. Thereafter, a block data module uses a consensus decision algorithm to deliver the block to a node of the block chain to construct the block in the node of the block chain. Final, a data verification module verifies content of the provision data and check format of the provision data, and writes the provision data into the blockchain after confirming that the provision data is correct.

Description

運用區塊鏈管理網路設備之系統及方法 System and method for managing network equipment using blockchain

本發明是關於一種網路設備管理技術,特別是指一種運用區塊鏈管理網路設備之系統及方法。 The present invention relates to a network equipment management technology, in particular to a system and method for managing network equipment using a block chain.

近年來,網路設備的保護議題已逐漸為各國所重視,且網路設備之防護完備與否乃攸關資訊安全和企業運作。又,隨著行動裝置、物聯網與雲端服務等新興資訊科技之應用普及,網路與實體世界已逐漸融合,新興資訊科技固然對人類帶來生活的便利,但伴隨而來的卻是衍生的資安風險。 In recent years, the protection of network equipment has gradually been paid attention to by various countries, and the complete protection of network equipment is related to information security and enterprise operation. In addition, with the popularization of the application of emerging information technologies such as mobile devices, the Internet of Things and cloud services, the Internet and the physical world have gradually merged. Although emerging information technologies have brought convenience to human life, they are accompanied by derivatives. Information security risk.

在一現有技術中,提出一種基於區塊鏈的資料處理方法及設備,能為不同處理優先順序的業務資料確定處理量,在向區塊鏈中儲存業務資料時,可獲取不同處理優先順序的業務資料,以實現不同處理優先順序的業務資料能夠被處理。同時,保證了處理優先順序高的業務資料的處理效率,亦保證了處理優先順序低的業務資料的處理效率,在滿足處理優先順序時,增加了區塊鏈中業務資料處理的靈活性,也提升了區塊鏈在業務應用領域的使用價值。 In a prior art, a data processing method and device based on blockchain is proposed, which can determine the processing amount for business data with different processing priorities, and can obtain data with different processing priorities when storing business data in the blockchain. Business data, so that business data with different processing priorities can be processed. At the same time, it ensures the processing efficiency of processing business data with high priority order, and also ensures the processing efficiency of processing business data with low priority order. Improve the use value of blockchain in business applications.

惟,此現有技術僅能分辨資料的處理優先順序,而無法針對重要或權重高的資料寫入區塊鏈中加以保護,亦無法利用選擇函數挑選重要的資料,也無法採用雜湊函數以確保資料進入區塊鏈中非常困難被更改,更無法採用共識決演算法以確保所有節點之資訊即時同步。 However, this existing technology can only distinguish the processing priority of data, and cannot write important or high-weight data into the blockchain for protection, nor can it use a selection function to select important data, and it cannot use a hash function to ensure data. It is very difficult to change into the blockchain, and it is impossible to use a consensus decision algorithm to ensure that the information of all nodes is synchronized in real time.

因此,如何提供一種新穎或創新之技術,以改善現有技術,實已成為本領域技術人員之一大研究課題。 Therefore, how to provide a novel or innovative technology to improve the existing technology has become a major research topic for those skilled in the art.

本發明提供一種新穎或創新之運用區塊鏈管理網路設備之系統及方法,能依選擇函數判斷或選擇重要的資料,或者採用雜湊函數以確保資料進入區塊鏈中非常困難被更改,抑或者採用共識決演算法以確保所有節點之資訊即時同步。 The present invention provides a novel or innovative system and method for using blockchain to manage network devices, which can judge or select important data according to a selection function, or use a hash function to ensure that data entering the blockchain is very difficult to be changed, or The consensus decision algorithm is adopted to ensure that the information of all nodes is synchronized in real time.

本發明中運用區塊鏈管理網路設備之系統包括:一供裝管理模組,係接收或設定網路設備之供裝資料;一供裝資料模組,係透過選擇函數判斷網路設備之供裝資料是否為重要者,若判斷出供裝資料為重要者,則供裝資料模組依據供裝資料使用雜湊函數計算出雜湊值,以將雜湊值儲存於區塊鏈中;一區塊資料模組,係採用共識決演算法將區塊遞送到區塊鏈的節點,以將區塊佈建於區塊鏈的節點中;以及一資料驗證模組,係驗證網路設備之供裝資料的內容與查驗供裝資料的格式,以於確認供裝資料無誤後,將供裝資料寫入區塊鏈中。 The system for managing network equipment using blockchain in the present invention includes: a supply management module, which receives or sets supply data of network equipment; a supply data module, which judges the network equipment through a selection function. Whether the supply data is important, if it is determined that the supply data is important, the supply data module uses the hash function to calculate the hash value according to the supply data, so as to store the hash value in the blockchain; a block A data module, which uses a consensus decision algorithm to deliver blocks to the nodes of the blockchain, so as to deploy the blocks in the nodes of the blockchain; and a data verification module, which verifies the supply and installation of network equipment The content of the data and the format of the supply data are checked, so that after confirming that the supply data is correct, the supply data will be written into the blockchain.

本發明中運用區塊鏈管理網路設備之方法包括:由一供裝管理模組接收或設定網路設備之供裝資料;由一供裝資料模組透過選擇函數 判斷網路設備之供裝資料是否為重要者,若判斷出供裝資料為重要者,則供裝資料模組依據供裝資料使用雜湊函數計算出雜湊值,以將雜湊值儲存於區塊鏈中;由一區塊資料模組採用共識決演算法將區塊遞送到區塊鏈的節點,以將區塊佈建於區塊鏈的節點中;以及由一資料驗證模組驗證網路設備之供裝資料的內容與查驗供裝資料的格式,以於確認供裝資料無誤後,將供裝資料寫入區塊鏈中。 The method of using the blockchain to manage network equipment in the present invention includes: receiving or setting supply data of network equipment by a supply management module; a supply data module through a selection function Determine whether the supply data of the network device is important. If it is determined that the supply data is important, the supply data module uses the hash function to calculate the hash value according to the supply data, so as to store the hash value in the blockchain. in; a block data module uses a consensus decision algorithm to deliver the blocks to the nodes of the blockchain, so that the blocks are deployed in the nodes of the blockchain; and a data verification module verifies the network equipment The content of the supply data and the format of the supply data are checked, so that after confirming that the supply data is correct, the supply data will be written into the blockchain.

為讓本發明之上述特徵和優點能更明顯易懂,下文特舉實施例,並配合所附圖式作詳細說明。在以下描述內容中將部分闡述本發明之額外特徵及優點,且此等特徵及優點將部分自所述描述內容可得而知,或可藉由對本發明之實踐習得。本發明之特徵及優點借助於在申請專利範圍中特別指出的元件及組合來認識到並達到。應理解,前文一般描述與以下詳細描述二者均僅為例示性及解釋性的,且不欲約束本發明所欲主張之範圍。 In order to make the above-mentioned features and advantages of the present invention more obvious and easy to understand, the following specific embodiments are given and described in detail with the accompanying drawings. Additional features and advantages of the present invention will be set forth in part in the description that follows, and in part will be apparent from the description, or may be learned by practice of the invention. The features and advantages of the invention will be realized and attained by means of the elements and combinations particularly pointed out in the scope of the patent application. It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not intended to limit the scope of the invention as claimed.

1:運用區塊鏈管理網路設備之系統 1: A system for managing network devices using blockchain

10:供裝管理模組 10: Supply and install management modules

20:供裝資料模組 20: Supply data modules

21:設備調適器 21: Device Adapter

22:設備調適器管理元件 22: Device Adapter Management Element

30:應用程式介面模組 30: API Modules

40:區塊資料模組 40: Block Data Module

50:資料驗證模組 50:Data verification module

60:查詢模組 60: Query Module

70:區塊鏈 70: Blockchain

80:資料庫 80:Database

A:網路設備 A: Network equipment

C-Node:共識節點 C-Node: Consensus Node

S-Node:同步節點 S-Node: Synchronous node

S11至S13:步驟 S11 to S13: Steps

S21至S24:步驟 S21 to S24: Steps

第1圖為本發明中運用區塊鏈管理網路設備之系統之架構示意圖;第2圖為本發明中將供裝資料寫入區塊鏈或資料庫之流程示意圖;以及第3圖為本發明中運用區塊鏈管理網路設備之方法之流程示意圖。 Figure 1 is a schematic diagram of the structure of a system for managing network equipment using blockchain in the present invention; Figure 2 is a schematic diagram of the process of writing supply data into a blockchain or database in the present invention; and Figure 3 is a schematic diagram of the present invention. A schematic flowchart of the method of using blockchain to manage network devices in the invention.

以下藉由特定的具體實施形態說明本發明之實施方式,熟 悉此技術之人士可由本說明書所揭示之內容了解本發明之其他優點與功效,亦可因而藉由其他不同的具體等同實施形態加以施行或應用。 Embodiments of the present invention will be described below with reference to specific embodiments. Those skilled in the art can understand other advantages and effects of the present invention from the content disclosed in this specification, and thus can also implement or apply it by other different specific equivalent embodiments.

企業客戶或一般客戶之網路設備的設備服務資訊(如CM/PM/FM參數)屬於機密且重要的資訊而需安全地儲存,亦需維持虛擬或實體之網路設備的穩定性任務,其中CM/PM/FM參數分別表示組態管理(Configuration Management;CM)參數、效能管理(Performance Management;PM)參數、障礙管理(Fault Management;FM)參數。 The equipment service information (such as CM/PM/FM parameters) of network equipment of enterprise customers or general customers is confidential and important information and needs to be stored securely, and it is also necessary to maintain the stability of virtual or physical network equipment. The CM/PM/FM parameters represent configuration management (Configuration Management; CM) parameters, performance management (Performance Management; PM) parameters, and fault management (Fault Management; FM) parameters, respectively.

因此,本發明提出一種運用區塊鏈管理網路設備之系統及方法,用以加強網路設備之資訊安全機制架構,內容包括供裝管理模組、供裝資料模組、應用程式介面(Application Programming Interface;API)模組、區塊資料模組等,並結合智慧合約之資料儲存目的以提供多樣化的設備服務資訊(如CM/PM/FM參數),且對於大量的虛擬/實體網路服務供裝及網路管理系統的運作能降低資訊安全風險,俾有效地提高設備服務資訊(如CM/PM/FM參數)之安全。 Therefore, the present invention proposes a system and method for managing network equipment using blockchain to strengthen the information security mechanism structure of network equipment, including a supply management module, a supply data module, an application program interface (Application Programming Interface) Programming Interface; API) modules, block data modules, etc., combined with the data storage purpose of smart contracts to provide diversified equipment service information (such as CM/PM/FM parameters), and for a large number of virtual/physical networks The operation of service provisioning and network management systems can reduce information security risks and effectively improve the security of equipment service information (such as CM/PM/FM parameters).

同時,本發明中運用區塊鏈管理網路設備之系統及方法至少具有下列技術功效:(a)供裝資料模組之設備調適器的結構特性可依選擇函數判斷或選擇供裝資料之重要者以達到強化資訊安全能力;(b)供裝資料模組採用雜湊函數之運算,能確保每項供裝資料一旦被包覆進入區塊鏈時都將非常困難被更改;以及(c)採用應用程式介面模組來管理與支援不同的資料接取技術,以提供多樣化的設備服務資訊(如CM/PM/FM參數)的查詢功能。 At the same time, the system and method for managing network devices using blockchain in the present invention have at least the following technical effects: (a) The structural characteristics of the device adaptor for the data module can be determined according to the selection function or the importance of the data to be installed can be selected. in order to strengthen information security capabilities; (b) the supply data module adopts the operation of the hash function, which can ensure that each supply data will be very difficult to be changed once it is encapsulated into the blockchain; and (c) using The application programming interface module is used to manage and support different data access technologies, so as to provide the query function of various equipment service information (such as CM/PM/FM parameters).

第1圖為本發明中運用區塊鏈管理網路設備之系統1之架 構示意圖。如圖所示,運用區塊鏈管理網路設備之系統1主要包括[1]供裝管理模組10、[2]供裝資料模組20、[3]應用程式介面模組30、[4]區塊資料模組40、[5]資料驗證模組50、[6]查詢模組60,亦可進一步包括區塊鏈70、資料庫80。例如,供裝管理模組10可為供裝管理軟體或供裝管理程式等,應用程式介面模組30可為應用程式介面等,區塊資料模組40可為區塊資料軟體或區塊資料程式等,資料驗證模組50可為資料驗證軟體或資料驗證程式等,查詢模組60可為查詢軟體或查詢程式等。資料庫80可設於硬體之儲存模組中,且儲存模組可為硬碟(如網路硬碟/雲端硬碟)、記憶體、記憶卡、隨身碟、光碟等。但是,本發明並不以此為限。 Figure 1 is the frame of the system 1 for managing network equipment using blockchain in the present invention Schematic diagram. As shown in the figure, the system 1 for managing network equipment using blockchain mainly includes [1] a supply management module 10, [2] a supply data module 20, [3] an application programming interface module 30, [4] ] The block data module 40, [5] the data verification module 50, and [6] the query module 60 may further include a block chain 70 and a database 80. For example, the supply management module 10 may be supply management software or supply management program, etc., the API module 30 may be an application program interface, etc., and the block data module 40 may be block data software or block data The data verification module 50 can be a data verification software or a data verification program, and the query module 60 can be a query software or a query program. The database 80 can be set in a storage module of the hardware, and the storage module can be a hard disk (such as a network hard disk/cloud hard disk), a memory, a memory card, a pen drive, an optical disk, and the like. However, the present invention is not limited to this.

[1]供裝管理模組10:係接收或設定至少一(如複數)網路設備A(用戶端)之供裝資料,並依據供裝資料的內容以指定的通訊協定在限定的連線數量下進行網路設備A之連線與完成供裝設定作業。亦即,供裝管理模組10可接收或設定網路設備A(用戶端)之供裝資料,且供裝資料包括多個需要供裝調度的網路設備A的設備資訊。每個被調度的網路設備A的設備資訊都會被耦合成一供裝資料,再由供裝管理模組10將供裝資料派送至網路設備A以進行供裝作業。在進行供裝作業時,供裝管理模組10會依據供裝資料的內容檢查供裝資料的正確性,並在供裝資料為正確無誤時才會對網路設備A進行供裝作業。前述網路設備A可為用以連接網路之路由器、閘道器、交換器、基地台、伺服器、主機或電腦等,但不以此為限。 [1] Supply management module 10: It receives or sets supply data of at least one (eg, multiple) network device A (client), and uses a specified communication protocol to connect to a limited connection according to the content of the supply data. Connect the network device A under the quantity and complete the supply setting operation. That is, the provisioning management module 10 can receive or set provisioning data of the network device A (client), and the provisioning data includes the device information of a plurality of network devices A that need provisioning scheduling. The device information of each scheduled network device A will be coupled into a supply data, and then the supply management module 10 will send the supply data to the network device A for the supply operation. During the provisioning operation, the provisioning management module 10 will check the correctness of the provisioning data according to the content of the provisioning data, and will only perform the provisioning operation for the network device A when the provisioning data is correct. The aforementioned network device A may be a router, a gateway, a switch, a base station, a server, a host, or a computer for connecting to the network, but not limited thereto.

供裝資料主要包括供裝設備資訊與服務供裝資源。例如,供裝設備資訊為網路設備A之型號、網際網路協定(Internet Protocol;IP)位址等資訊。服務供裝資源為網路設備A(用戶端)之申裝服務類型、申裝服 務速率、虛擬區域網路識別碼(Virtual Local Area Network Identifier;VLAN ID)、使用的設備埠號(Port)、服務優先權(Priority)、IPTV(Internet Protocol Television;網路協定電視)服務設定等相關設定資訊,且IPTV(網路協定電視)服務設定可包含群播群組(Multicast group)、IGMP(Internet Group Management Protocol;網際網路群組管理協定)snooping(窺探)。 Supply and installation information mainly includes information of supply and installation equipment and service supply and installation resources. For example, the information of the equipment to be installed is information such as the model of the network device A, the Internet Protocol (IP) address, and the like. The service provisioning resource is the application service type and application service of network device A (client). service rate, virtual local area network identifier (Virtual Local Area Network Identifier; VLAN ID), device port number used (Port), service priority (Priority), IPTV (Internet Protocol Television; Internet Protocol Television) service settings, etc. Relevant setting information, and IPTV (Internet Protocol Television) service setting may include multicast group (Multicast group), IGMP (Internet Group Management Protocol; Internet Group Management Protocol) snooping (snooping).

[2]供裝資料模組20:係具有至少一設備調適器21與至少一設備調適器管理元件22,且供裝資料模組20處理供裝管理模組10所接收或設定之網路設備A之供裝資料,再依照供裝資料之重要性設定供裝資料之權重,以將供裝資料之重要者儲存於區塊鏈70中。亦即,供裝資料模組20可從供裝管理模組10讀取網路設備A之供裝資料,以透過選擇函數判斷網路設備A之供裝資料是否為重要者。若判斷出供裝資料為重要者,則供裝資料模組20依據供裝資料使用雜湊函數計算出一個雜湊值,以將供裝資料之重要者與雜湊值儲存於區塊鏈70中作加密保護,再將供裝管理模組10所提供的供裝資料使用雜湊函數計算之後與區塊鏈70中的資料來校驗雜湊值,以確保資料無誤沒有被竄改。 [2] Supply data module 20: It has at least one device adaptor 21 and at least one device adaptor management element 22, and the supply data module 20 processes the network devices received or set by the supply management module 10 For the supply data of A, the weight of the supply data is set according to the importance of the supply data, so that the important ones of the supply data are stored in the blockchain 70 . That is, the supply data module 20 can read the supply data of the network device A from the supply management module 10 to determine whether the supply data of the network device A is important through the selection function. If it is determined that the supply data is important, the supply data module 20 uses the hash function to calculate a hash value according to the supply data, so as to store the important supply data and the hash value in the blockchain 70 for encryption After protection, the supply data provided by the supply management module 10 is calculated using a hash function and the hash value is checked with the data in the blockchain 70 to ensure that the data is correct and has not been tampered with.

詳言之,在系統初始化運作時,供裝資料模組20之設備調適器管理元件22可從供裝管理模組10載入各設備調適器21的服務參數(包括服務類型、服務速率、虛擬區域網路識別碼(VLAN ID)、使用的設備埠號(Port)、服務優先權(Priority)等多組設定),與管理各設備調適器21的功能(包括生成設備調適器、設定設備調適器、刪除設備調適器等功能)。同時,各設備調適器21可依據資料蒐集輪詢周期設定以運行讀取設備資料元件、讀取查測統計資料元件、選擇函數之儲存判斷。 To be more specific, when the system is initialized, the device adaptor management component 22 of the supply data module 20 can load the service parameters (including service type, service rate, virtual device) of each device adaptor 21 from the supply management module 10 . Local area network ID (VLAN ID), device port number (Port), service priority (Priority) and other sets of settings), and the function of managing each device adaptor 21 (including generating device adaptors, setting device adaptors) Adapter, Delete Device Adapter, etc.). At the same time, each device adaptor 21 can be set according to the data collection polling cycle to run the read device data element, the read and check statistical data element, and the storage judgment of the selection function.

供裝資料模組20讀取到供裝資料後,會依據供裝資料的內容重要性評斷供裝資料之重要性參數(如訊務、機敏度、地域、服務優先權(Priority)、承諾訊息速率(Committed Information Rate;CIR)、額外訊息速率(Excess Information Rate;EIR)),並融入權重於供裝資料之控制決策。然後,供裝資料模組20可透過下列選擇函數(Select函數)之儲存判斷,以引入供裝資料後逐一評估供裝資料之參數在供裝資料中的分布程度,並依據供裝資料之參數的分布程度挑選較佳的參數分類,再從參數分類中選擇出供裝資料之重要者,俾將供裝資料之重要者運用單向雜湊演算法計算出唯一的雜湊值,進而將唯一的雜湊值寫入區塊鏈70中。 After the supply data module 20 reads the supply data, it will judge the importance parameters of the supply data (such as communication, alertness, region, service priority, commitment message) according to the importance of the content of the supply data. Rate (Committed Information Rate; CIR), Excess Information Rate (Excess Information Rate; EIR)), and incorporate weights into the control decision of supplying data. Then, the supply data module 20 can use the following selection function (Select function) to store judgment to evaluate the distribution degree of the parameters of the supply data in the supply data one by one after importing the supply data, and according to the parameters of the supply data According to the distribution degree, select the best parameter classification, and then select the important data for the installation from the parameter classification, so that the important data for the installation can use the one-way hash algorithm to calculate the unique hash value, and then the unique hash value is calculated. The value is written to the blockchain 70.

選擇函數Select(供裝資料

Figure 108144712-A0305-02-0009-1
)=重要,普通。選擇函數中,若無法再分支時,即返回gt(x)=Ein-最佳常數;否則,獲得分支條件
Figure 108144712-A0305-02-0009-3
,並依據分支條件將資料D分成2等份,Dc={(xn ,yn):b(xn)=c},且建立子樹Gc←Select(Dc),再回傳
Figure 108144712-A0305-02-0009-4
。前述不純度(D)=1-
Figure 108144712-A0305-02-0009-5
。 Select function Select (for loading data
Figure 108144712-A0305-02-0009-1
) = important, common. In the selection function, if it cannot branch any more, it returns g t (x)=E in - the best constant; otherwise, the branch condition is obtained
Figure 108144712-A0305-02-0009-3
, and divide the data D into 2 equal parts according to the branch conditions, D c ={(x n , y n ): b(x n )=c}, and establish a subtree G c ←Select(D c ), and then return
Figure 108144712-A0305-02-0009-4
. The aforementioned impurity (D)=1-
Figure 108144712-A0305-02-0009-5
.

供裝資料模組20之另一個功能為接收供裝管理模組10送達的供裝查詢資料,以依據供裝查詢資料的內容判斷供裝資料是否存在區塊鏈70中。若供裝資料模組20發現供裝資料存在區塊鏈70中,代表供裝資料的權重較高(如供裝資料之最重要或重要者),則供裝資料模組20會透過應用程式介面模組30請求查詢模組60從區塊鏈70中讀取供裝資料,並由供裝資料模組20比對供裝資料之雜湊值是否與區塊鏈70中的資料一致以確保資料完整,再由供裝資料模組20產生查詢結果格式回傳給供裝管 理模組10。反之,若供裝資料模組20發現供裝資料不存在區塊鏈70中,代表供裝資料的權重較低(如供裝資料之普通、次要或不重要者),則供裝資料模組20會從資料庫80中查詢供裝資料,且若供裝資料模組20發現供裝資料存在資料庫80中,則將讀取供裝資料之查詢結果以產生查詢結果格式回傳給供裝管理模組10。 Another function of the supply data module 20 is to receive the supply query data sent by the supply management module 10, so as to determine whether the supply data exists in the blockchain 70 according to the content of the supply query data. If the supply data module 20 finds that the supply data exists in the blockchain 70, it means that the weight of the supply data is higher (such as the most important or important of the supply data), then the supply data module 20 will pass the application The interface module 30 requests the query module 60 to read the supply data from the blockchain 70, and the supply data module 20 compares whether the hash value of the supply data is consistent with the data in the blockchain 70 to ensure the data Complete, and then the query result format is generated by the supply and installation data module 20 and returned to the supply and installation pipe Management module 10. On the contrary, if the supply data module 20 finds that the supply data does not exist in the blockchain 70, it means that the weight of the supply data is low (such as the common, secondary or unimportant ones of the supply data), then the supply data module The group 20 will query the supply data from the database 80, and if the supply data module 20 finds that the supply data exists in the database 80, the query result of reading the supply data will be returned to the supply in a query result format. Install management module 10.

[3]應用程式介面(API)模組30:係接收供裝管理模組10或供裝資料模組20的連線需求,且應用程式介面(API)模組30之資料接取技術採用調適器方式之設計,以提供至少一種或多種不同的應用程式介面,例如可用來檢查供裝規則或區塊資訊的應用程式介面(API)。 [3] Application programming interface (API) module 30: it receives the connection request of the supply management module 10 or the supply data module 20, and the data access technology of the application programming interface (API) module 30 is adapted The device method is designed to provide at least one or more different application programming interfaces, such as application programming interfaces (APIs) that can be used to check provisioning rules or block information.

[4]區塊資料模組40:係提供區塊的組建、遞送及鏈結等功能。此區塊資料模組40可採用共識決演算法,將製作好或系統所產生的區塊透過網路遞送到區塊鏈70的所有節點,以將區塊即時佈建於區塊鏈70的每個節點中,有利確保所有節點之資訊即時同步。又,在區塊鏈70的共識驗證架構上,區塊鏈70之節點包括兩種運算節點,第一種是區塊鏈70中負責執行共識決演算法的共識節點(Consensus-Node;C-Node),且所有區塊的建立或驗證皆透過共識節點(C-Node)來達成,第二種為區塊鏈70中負責同步資料的同步節點(Synchronization-Node;S-Node)。 [4] Block data module 40: It provides functions such as building, delivering and linking blocks. The block data module 40 can adopt a consensus decision algorithm to deliver the blocks produced or generated by the system to all nodes of the blockchain 70 through the network, so that the blocks can be deployed on the blockchain 70 in real time. In each node, it is beneficial to ensure that the information of all nodes is synchronized in real time. In addition, in the consensus verification structure of the blockchain 70, the nodes of the blockchain 70 include two types of computing nodes, the first is the consensus node (Consensus-Node; C-Node) in the blockchain 70 responsible for executing the consensus decision algorithm. Node), and the establishment or verification of all blocks is achieved through a consensus node (C-Node). The second is a synchronization node (Synchronization-Node; S-Node) in the blockchain 70 responsible for synchronizing data.

[5]資料驗證模組50:係透過供裝管理模組10、供裝資料模組20或區塊資料模組40等取得網路設備A之供裝資料,以驗證網路設備A之供裝資料的內容與查驗供裝資料的格式,俾於確認或確保供裝資料無誤後,將供裝資料寫入區塊鏈70中。 [5] Data verification module 50: It obtains the supply data of the network device A through the supply management module 10, the supply data module 20 or the block data module 40, etc. to verify the supply of the network device A The content of the loading data and the format of the loading data are checked, so that after confirming or ensuring that the loading data is correct, the loading data is written into the blockchain 70 .

[6]查詢模組60:係提供該供裝管理模組10或供裝資料模 組20查詢供裝資料。亦即,查詢模組60可接收應用程式介面模組30送達的資料,以依照供裝管理模組10或供裝資料模組20之查詢需求進行區塊鏈70上的資料查詢,並將區塊鏈70上的資料查詢結果正規化後回傳給應用程式介面模組30,再由應用程式介面模組30將資料回傳給供裝管理模組10或供裝資料模組20等呼叫端。 [6] Query module 60: Provides the supply management module 10 or the supply data module Group 20 inquires about supply information. That is, the query module 60 can receive the data sent by the application programming interface module 30, so as to query the data on the blockchain 70 according to the query requirements of the supply management module 10 or the supply data module 20, and The data query result on the blockchain 70 is normalized and sent back to the API module 30, and the API module 30 sends the data back to the calling end such as the supply management module 10 or the supply data module 20 .

[一、供裝資料判斷之實施例] [1. Example of judging the supply data]

首先,由供裝管理模組10接收網路設備A(用戶端)之供裝資料。例如,下列表一所示網路設備A之供裝資料之參數包括設備編號、設備IP、通訊協定、設備型態、地域、服務型態等,但不以此為限。 First, the supply management module 10 receives the supply data of the network device A (client). For example, the parameters for the installation data of network device A shown in Table 1 below include device number, device IP, communication protocol, device type, region, service type, etc., but are not limited thereto.

Figure 108144712-A0305-02-0011-6
Figure 108144712-A0305-02-0011-6

接著,供裝管理模組10將供裝資料發送至供裝資料模組20,以由供裝資料模組20的設備調適器21匯入供裝資料的資料。而且,設備調適器21的配置由設備調適器管理元件22於系統初始化時調度生成,並匯入設備調適器21的相關服務參數。例如,下列表二所示設備調適器21之服務參數可包括服務編號、服務名稱、服務速率、服務優先權、承諾訊息速率(CIR)、額外訊息速率(EIR),亦可進一步包括機敏度、地域(見表三)等, 但不以此為限。 Next, the supply management module 10 sends the supply data to the supply data module 20 , so that the equipment adaptor 21 of the supply data module 20 imports the data of the supply data. Moreover, the configuration of the device adaptor 21 is scheduled and generated by the device adaptor management component 22 during system initialization, and imported into the relevant service parameters of the device adaptor 21 . For example, the service parameters of the device adaptor 21 shown in Table 2 below may include service ID, service name, service rate, service priority, committed message rate (CIR), extra message rate (EIR), and may further include alertness, Region (see Table 3), etc., But not limited to this.

Figure 108144712-A0305-02-0012-7
Figure 108144712-A0305-02-0012-7

繼之,設備調適器21將供裝資料依據所需的服務參數進行彙整,並標註服務參數之相關權重成供裝權重資料。例如,下列表三所示設備調適器21從設備調適器管理元件22彙整及標註的供裝權重資料包括資料編號、服務速率、服務優先權、機敏度、地域、承諾訊息速率(CIR)、額外訊息速率(EIR)等,但不以此為限。 Next, the equipment adaptor 21 assembles the supply data according to the required service parameters, and marks the relevant weights of the service parameters into the supply weight data. For example, the provisioning weight data compiled and marked by the device adaptor 21 from the device adaptor management element 22 shown in Table 3 below include data number, service rate, service priority, alertness, region, committed message rate (CIR), extra message rate (EIR), etc., but not limited thereto.

Figure 108144712-A0305-02-0012-8
Figure 108144712-A0305-02-0012-8

再者,設備調適器21可透過供裝資料模組20之選擇函數計算供裝權重資料之各參數。舉例而言,設備調適器21計算供裝權重資料 之各參數的不純度(impurity)值時,可將服務優先權之參數以3為門檻值分成兩類,而計算出服務優先權之參數的不純度=

Figure 108144712-A0305-02-0013-9
0.390625-0.140625=0.46875。機敏度之參數以3為門檻值,而計算出機敏度之參數的不純度=
Figure 108144712-A0305-02-0013-10
,且地域之參數的不純度=
Figure 108144712-A0305-02-0013-11
。承諾訊息速率(CIR)之參數以50,000為門檻值,而計算出承諾訊息速率(CIR)之參數的不純度=
Figure 108144712-A0305-02-0013-12
。額外訊息速率(EIR)之參數以200,000為門檻值,而計算出額外訊息速率(EIR)之參數的不純度=
Figure 108144712-A0305-02-0013-13
。 Furthermore, the device adaptor 21 can calculate each parameter of the supply weight data through the selection function of the supply data module 20 . For example, when the device adaptor 21 calculates the impurity value of each parameter of the weight data for installation, it can divide the parameter of service priority into two categories with a threshold value of 3, and calculate the parameter of service priority. Impurity =
Figure 108144712-A0305-02-0013-9
0.390625-0.140625=0.46875. The parameter of alertness takes 3 as the threshold value, and the impurity of the parameter of alertness is calculated =
Figure 108144712-A0305-02-0013-10
, and the impurity of the parameters of the region =
Figure 108144712-A0305-02-0013-11
. The committed message rate (CIR) parameter takes 50,000 as the threshold, and the impurity of the committed message rate (CIR) parameter is calculated =
Figure 108144712-A0305-02-0013-12
. The parameter of the extra information rate (EIR) takes 200,000 as the threshold value, and the impurity of the parameter of the extra information rate (EIR) is calculated =
Figure 108144712-A0305-02-0013-13
.

然後,設備調適器21可挑選不純度之最小值當作根節點,而機敏度之參數的不純度為0.375最小,表示選擇函數選擇出表三中資料編號4與5為相對重要。接下來,選擇函數再從資料編號4與5之間找出最重要的值,且資料編號5的承諾訊息速率(CIR)之參數與額外訊息速率(EIR)之參數分別高於前述門檻值50,000及200,000,故設備調適器21再次計算不純度之後,可獲知資料編號5的權重較高,因此設備調適器21會進行雜湊值之運算,並在依據sha256雜湊值計算之後得到雜湊值「b2832f666f5435b1ac8291c52d8c8fd2b481733406bd26db8d627eb9ca21764a」,進而將雜湊值傳送至區塊資料模組40。 Then, the device adaptor 21 can select the minimum value of impurity as the root node, and the impurity of the parameter of alertness is the minimum value of 0.375, indicating that the selection function selects the data numbers 4 and 5 in Table 3 as relatively important. Next, the selection function finds the most important value between data numbers 4 and 5, and the committed message rate (CIR) parameter and the extra message rate (EIR) parameter of data number 5 are respectively higher than the aforementioned threshold of 50,000 and 200,000, so after calculating the impurity again, the device adaptor 21 can know that the weight of the data number 5 is higher, so the device adaptor 21 will perform the hash value operation, and obtain the hash value “b2832f666f5435b1ac8291c52d8c8fd2b481733406bd26db8d627eb9ca21764a” after calculating the hash value according to the sha256 hash value , and then send the hash value to the block data module 40 .

最後,在將供裝資料存入區塊鏈70的程序中,區塊資料模組40會發佈一個智慧合約至區塊鏈70中,且智慧合約的內容為儲存經過雜湊值計算的權重較高的供裝資料,區塊鏈70的共識節點(C-Node)會負責驗證供裝資料的正確性並建立一個區塊,從而完成將供裝資料存入區塊 鏈70中。 Finally, in the process of storing the supply data in the blockchain 70, the block data module 40 will issue a smart contract to the blockchain 70, and the content of the smart contract is to store the hash value calculated with a higher weight. For the supply and installation data, the consensus node (C-Node) of the blockchain 70 will be responsible for verifying the correctness of the supply and installation data and establish a block, thereby completing the storage of the supply and installation data in the block. chain 70.

[二、供裝資料校驗之實施例] [2. Example of supplying data verification]

首先,供裝管理模組10在供裝編號5(見表一之設備編號5)的供裝資料時,需檢查供裝資料的正確性,再將供裝資料發送至供裝資料模組20。供裝資料模組20接收到編號5之供裝資料以進行校驗時,先判斷編號5(見表三之資料編號5)之供裝資料是否為權重較高的供裝資料。若是權重較高的供裝資料,則供裝資料模組20依據供裝資料的內容計算雜湊值(如sha256雜湊值),再將計算出的雜湊值透過應用程式介面模組30呼叫查詢模組60。然後,查詢模組60依據供裝資料模組20已計算出的雜湊值在區塊鏈70中搜尋(查詢或比對)是否有值,若區塊鏈70中有值,則查詢模組60透過應用程式介面模組30回傳正確結果至供裝資料模組20,再由供裝資料模組20將比對後正確的供裝資料之參數回傳給供裝管理模組10,以利供裝管理模組10進行網路設備A之正確供裝作業。 First of all, when supplying and installing data of No. 5 (see Equipment No. 5 in Table 1), the supply and installation management module 10 needs to check the correctness of the supply and installation data, and then send the supply and installation data to the supply and installation data module 20 . When the supply data module 20 receives the supply data of No. 5 for verification, it first determines whether the supply data of No. 5 (see data No. 5 in Table 3) is the supply data with a higher weight. If the supply data has a higher weight, the supply data module 20 calculates a hash value (such as a sha256 hash value) according to the content of the supply data, and then calls the query module through the application program interface module 30 with the calculated hash value. 60. Then, the query module 60 searches (inquires or compares) whether there is a value in the blockchain 70 according to the hash value calculated by the supply data module 20, and if there is a value in the blockchain 70, the query module 60 The correct result is returned to the supply data module 20 through the application programming interface module 30, and then the supply data module 20 returns the correct parameters of the supply data after the comparison to the supply management module 10, so as to facilitate The provisioning management module 10 performs the correct provisioning operation of the network device A.

第2圖為本發明中將供裝資料寫入區塊鏈70或資料庫80之流程示意圖。如圖所示,在第2圖之步驟S11中,準備將供裝資料寫入區塊鏈70或資料庫80中。在第2圖之步驟S12與步驟S13中,由供裝資料模組20讀取供裝資料以判斷供裝資料之重要性?若供裝資料模組20判斷出供裝資料之重要性為「重要」,則將供裝資料寫入區塊鏈70中;反之,若供裝資料模組20判斷出供裝資料之重要性為「普通、次要、不重要」,則將供裝資料寫入資料庫80中。 FIG. 2 is a schematic flow chart of writing the supply data into the blockchain 70 or the database 80 according to the present invention. As shown in the figure, in step S11 of FIG. 2 , the supply data is prepared to be written into the blockchain 70 or the database 80 . In steps S12 and S13 of FIG. 2, the supply data module 20 reads the supply data to determine the importance of the supply data? If the supply data module 20 determines that the importance of the supply data is "important", the supply data will be written into the blockchain 70; otherwise, if the supply data module 20 determines the importance of the supply data If it is "Normal, Minor, Unimportant", the supply data is written into the database 80.

第3圖為本發明中運用區塊鏈管理網路設備之方法之流程示意圖,且一併參照第1圖予以說明。如第3圖所示,運用區塊鏈管理網 路設備之方法主要包括下列步驟S21至步驟S24之技術內容,其餘內容相同於上述第1圖與第2圖之說明,於此不再重覆敘述。 FIG. 3 is a schematic flowchart of a method for managing network devices using blockchain in the present invention, and is described with reference to FIG. 1 . As shown in Figure 3, using the blockchain management network The method of the road equipment mainly includes the following technical contents of steps S21 to S24 , and the rest of the contents are the same as those described in the above-mentioned Fig. 1 and Fig. 2 , and will not be repeated here.

在第3圖之步驟S21中,由一供裝管理模組10接收或設定網路設備A之供裝資料。 In step S21 of FIG. 3 , the supply data of the network device A is received or set by a supply management module 10 .

在第3圖之步驟S22中,由一供裝資料模組20透過選擇函數判斷網路設備A之供裝資料是否為重要者,若判斷出供裝資料為重要者,則供裝資料模組20依據供裝資料使用雜湊函數計算出雜湊值,以將雜湊值儲存於區塊鏈70中。 In step S22 of FIG. 3, a supply data module 20 determines whether the supply data of the network device A is important through the selection function, and if it is determined that the supply data is important, the supply data module 20 Calculate the hash value using the hash function according to the supply data, so as to store the hash value in the blockchain 70.

在第3圖之步驟S23中,由一區塊資料模組40採用共識決演算法將區塊遞送到區塊鏈70的節點,以將區塊佈建於區塊鏈70的節點中。 In step S23 in FIG. 3 , a block data module 40 uses a consensus decision algorithm to deliver the block to the nodes of the blockchain 70 , so as to deploy the blocks in the nodes of the blockchain 70 .

在第3圖之步驟S24中,由一資料驗證模組50驗證網路設備A之供裝資料的內容與查驗供裝資料的格式,以於確認供裝資料無誤後,將供裝資料寫入區塊鏈70中。 In step S24 in FIG. 3 , a data verification module 50 verifies the content of the supply data of the network device A and the format of the supply data, so as to write the supply data after confirming that the supply data is correct Blockchain 70.

申言之,本發明中運用區塊鏈管理網路設備之系統及方法可包括下列程序P1至程序P5。 In other words, the system and method for managing network devices using blockchain in the present invention may include the following procedures P1 to P5.

程序P1:由第1圖中供裝管理模組10統一接收網路設備A(用戶端)之供裝資料。 Procedure P1: The supply and installation management module 10 in Fig. 1 uniformly receives the supply and installation data of the network device A (client).

程序P2:由供裝資料模組20標註網路設備A之供裝資料。例如,供裝資料模組20可採用權重來標註網路設備A之供裝資料,且各種供裝資料於初始時可依據所關注的重要性來標註權重,以將供裝資料(如服務優先權、機敏度、地域等)之參數依照重要性標註為1至5來產生供裝 權重資料。 Procedure P2: The supply data of the network device A is marked by the supply data module 20 . For example, the supply data module 20 can use weights to label the supply data of the network device A, and various supply data can be initially weighted according to the importance concerned, so that the supply data (such as service priority) can be marked with weights at the beginning. (weight, alertness, region, etc.) parameters are marked as 1 to 5 according to the importance to generate the supply weight data.

程序P3:由供裝資料模組20(設備調適器21)採用選擇函數以選擇供裝資料之重要者。例如,供裝資料模組20(設備調適器21)在讀取到供裝資料後,可依據供裝資料的內容重要性(評斷重要性參數,如訊務、機敏度、地域、服務優先權、承諾訊息速率(CIR)、額外訊息速率(EIR)),透過選擇函數逐一評估供裝資料之參數在供裝資料中的分布程度,以依據供裝資料之參數的分布程度挑選較佳的參數分類,再從參數分類中選擇出供裝資料之重要者。 Procedure P3: The selection function is used by the supply data module 20 (equipment adaptor 21) to select the important ones of the supply data. For example, after the supply data module 20 (equipment adaptor 21 ) reads the supply data, it can judge the importance parameters according to the content importance of the supply data (such as information, alertness, region, service priority, etc.) , Committed Information Rate (CIR), Extra Information Rate (EIR)), evaluate the distribution degree of the parameters of the supply data in the supply data one by one through the selection function, so as to select the best parameters according to the distribution degree of the parameters of the supply data Classification, and then select the important ones for the installation data from the parameter classification.

程序P4:由供裝資料模組20將供裝資料之重要者計算雜湊值與存入區塊鏈。例如,供裝資料模組20可將供裝資料之重要者運用單向雜湊函數計算出唯一的雜湊值,以將供裝資料的唯一雜湊值寫入區塊鏈70中。 Procedure P4: The important person of the supply data is calculated by the supply data module 20 to hash the value and stored in the blockchain. For example, the supply data module 20 can use the one-way hash function to calculate the unique hash value of the important person of the supply data, so as to write the unique hash value of the supply data into the blockchain 70 .

程序P5:由查詢模組60比對供裝資料並由供裝資料模組20進行異動通知。例如,當重要的網路設備A需要校驗供裝資料時,查詢模組60可比對供裝資料模組20所計算之供裝資料的雜湊函數與區塊鏈70上的值兩者是否一致;若有出現兩者不一致的狀況,表示來自供裝資料模組20的供裝資料與區塊鏈70所儲存的供裝資料有異動,則查詢模組60進行告警以通報網路設備A之管理者。 Procedure P5: The query module 60 compares the supply data and the supply data module 20 performs a change notification. For example, when the important network device A needs to verify the supply data, the query module 60 can compare whether the hash function of the supply data calculated by the supply data module 20 is consistent with the value on the blockchain 70 ; If there is a situation of inconsistency between the two, it means that the supply data from the supply data module 20 and the supply data stored in the blockchain 70 are different, the query module 60 will issue an alarm to notify the network device A of the managers.

綜上,本發明中運用區塊鏈管理網路設備之系統及方法可至少具有下列特色、優點或技術功效。 To sum up, the system and method for managing network devices using blockchain in the present invention can at least have the following features, advantages or technical effects.

一、本發明採用供裝資料的參數,使供裝資料模組能依選擇函數判斷或選擇供裝資料之重要者以達到強化資訊安全能力。 1. The present invention adopts the parameters of the supply data, so that the supply data module can judge or select the important ones of the supply data according to the selection function, so as to strengthen the information security capability.

二、本發明之供裝資料模組採用雜湊函數之運算,能確保每項供裝資料一旦被包覆進入區塊鏈都將非常困難被更改。同時,本發明能確保最高的資訊安全等級,以保障資料的不被任意竄改。 2. The supply data module of the present invention adopts the operation of the hash function, which can ensure that once each supply data is encapsulated and entered into the blockchain, it will be very difficult to be changed. At the same time, the present invention can ensure the highest level of information security, so as to protect the data from being arbitrarily tampered with.

三、本發明採用共識決演算法為基礎的資料同步機制,能藉由共識決演算法將系統所產生的區塊即時佈建於區塊鏈的每個節點中,以利確保所有節點之資訊即時同步。 3. The present invention adopts a data synchronization mechanism based on a consensus decision algorithm, which can instantly deploy the blocks generated by the system in each node of the blockchain through the consensus decision algorithm, so as to ensure the information of all nodes. Instant sync.

四、本發明採用智慧合約,能強化系統資訊安全、資訊系統及網路設備的穩定性。 Fourth, the present invention adopts smart contracts, which can strengthen the system information security, the stability of the information system and network equipment.

五、本發明採用應用程式介面模組來管理與支援不同的資料接取技術,以利提供多樣化的設備服務資訊(如CM/PM/FM參數)的查詢功能。 5. The present invention adopts the application program interface module to manage and support different data access technologies, so as to provide the query function of diversified equipment service information (such as CM/PM/FM parameters).

六、本發明可能應用之產業為例如網際網路服務產業等,且可能應用之產品為例如網路設備之管理或監控產品等。 6. The industries to which the present invention may be applied are, for example, the Internet service industry, and the products that may be applied are, for example, management or monitoring products of network equipment.

上述實施形態僅例示性說明本發明之原理、特點及其功效,並非用以限制本發明之可實施範疇,任何熟習此項技藝之人士均能在不違背本發明之精神及範疇下,對上述實施形態進行修飾與改變。任何使用本發明所揭示內容而完成之等效改變及修飾,均仍應為申請專利範圍所涵蓋。因此,本發明之權利保護範圍,應如申請專利範圍所列。 The above-mentioned embodiments are only illustrative of the principles, features and effects of the present invention, and are not intended to limit the applicable scope of the present invention. Modifications and changes are made to the implementation form. Any equivalent changes and modifications made by using the contents disclosed in the present invention should still be covered by the scope of the patent application. Therefore, the scope of protection of the right of the present invention should be listed in the scope of the patent application.

1:運用區塊鏈管理網路設備之系統 1: A system for managing network devices using blockchain

10:供裝管理模組 10: Supply and install management modules

20:供裝資料模組 20: Supply data modules

21:設備調適器 21: Device Adapter

22:設備調適器管理元件 22: Device Adapter Management Element

30:應用程式介面模組 30: API Modules

40:區塊資料模組 40: Block Data Module

50:資料驗證模組 50:Data verification module

60:查詢模組 60: Query Module

70:區塊鏈 70: Blockchain

80:資料庫 80:Database

A:網路設備 A: Network equipment

C-Node:共識節點 C-Node: Consensus Node

S-Node:同步節點 S-Node: Synchronous node

Claims (20)

一種運用區塊鏈管理網路設備之系統,包括:一供裝管理模組,係接收或設定網路設備之供裝資料;一供裝資料模組,係依據該網路設備之該供裝資料是否存在區塊鏈中以判斷該供裝資料是否為重要者,若該供裝資料存在該區塊鏈中而判斷出該供裝資料為重要者,則該供裝資料模組依據該供裝資料使用雜湊函數計算出雜湊值,以將該雜湊值儲存於該區塊鏈中;一區塊資料模組,係採用共識決演算法將區塊遞送到該區塊鏈的節點,以將該區塊佈建於該區塊鏈的節點中;以及一資料驗證模組,係驗證該網路設備之該供裝資料的內容與查驗該供裝資料的格式。 A system for managing network equipment using blockchain, comprising: a supply management module, which receives or sets supply data of network equipment; a supply data module, which is based on the supply and installation of the network equipment Whether the data exists in the blockchain is used to determine whether the supply data is important. If the supply data exists in the blockchain and it is determined that the supply data is important, the supply data module will be based on the supply data. The loaded data uses a hash function to calculate a hash value to store the hash value in the blockchain; a block data module uses a consensus decision algorithm to deliver the block to the nodes of the blockchain to store the hash value in the blockchain. The block is arranged in the node of the blockchain; and a data verification module is used to verify the content of the supply data of the network device and check the format of the supply data. 如申請專利範圍第1項所述之系統,其中,該供裝資料包括供裝設備資訊與服務供裝資源,該供裝設備資訊為該網路設備之型號或網際網路協定(IP)位址,且該服務供裝資源為該網路設備之申裝服務類型、申裝服務速率、虛擬區域網路識別碼(VLAN ID)、使用的設備埠號、服務優先權或IPTV(網路協定電視)服務設定。 The system described in item 1 of the scope of application, wherein the provisioning data includes provisioning device information and service provisioning resources, and the provisioning device information is the model of the network device or the Internet Protocol (IP) bit address, and the service provisioning resource is the application service type, application rate, virtual local area network identifier (VLAN ID), device port number, service priority or IPTV (Internet Protocol) of the network device. TV) service settings. 如申請專利範圍第1項所述之系統,其中,該供裝資料模組更處理該供裝管理模組所接收或設定之該網路設備之該供裝資料,再依照該供裝資料之重要性設定該供裝資料之權重,以將該供裝資料之重要者儲存於該區塊鏈中。 The system described in item 1 of the claimed scope, wherein the supply data module further processes the supply data of the network device received or set by the supply management module, and then according to the supply data Importance sets the weight of the supply data to store the important ones of the supply data in the blockchain. 如申請專利範圍第1項所述之系統,其中,該供裝資料模組係透過選擇函數評估該供裝資料之參數在該供裝資料中的分布程度,以依 據該供裝資料之參數的分布程度挑選較佳的參數分類,再從該參數分類中選擇出該供裝資料之重要者,俾將該供裝資料之重要者運用單向雜湊演算法計算出唯一的該雜湊值,進而將唯一的該雜湊值寫入該區塊鏈中。 The system as described in item 1 of the scope of application, wherein the supply data module evaluates the distribution degree of the parameters of the supply data in the supply data through a selection function, so as to determine the distribution degree of the parameters of the supply data in the supply data according to the selection function. According to the distribution degree of the parameters of the supply data, a better parameter classification is selected, and then the important parameters of the supply data are selected from the parameter classification, so that the important parameters of the supply data can be calculated by the one-way hash algorithm. The unique hash value, and then the unique hash value is written into the blockchain. 如申請專利範圍第1項所述之系統,其中,該供裝資料模組係具有至少一設備調適器與至少一設備調適器管理元件,該設備調適器管理元件從該供裝管理模組載入該設備調適器的服務參數與管理該設備調適器的功能,且該設備調適器依據資料蒐集輪詢周期設定以運行選擇函數之儲存判斷。 The system as described in claim 1, wherein the supply data module has at least one device adaptor and at least one device adaptor management component, and the device adaptor management component is loaded from the supply management module The service parameters of the device adaptor are entered and the function of the device adaptor is managed, and the device adaptor is set according to the data collection polling cycle to execute the storage judgment of the selection function. 如申請專利範圍第5項所述之系統,其中,該設備調適器更透過該選擇函數計算供裝權重資料之參數的不純度,且該供裝權重資料包括服務速率、服務優先權、機敏度、地域、承諾訊息速率(CIR)或額外訊息速率(EIR)。 The system as described in claim 5, wherein the device adaptor further calculates the impurity of the parameters of the provisioning weight data through the selection function, and the provisioning weight data includes service rate, service priority, and agility , Region, Committed Information Rate (CIR) or Extra Information Rate (EIR). 如申請專利範圍第1項所述之系統,其中,該供裝資料模組更接收該供裝管理模組送達的供裝查詢資料,以依據該供裝查詢資料的內容判斷該供裝資料是否存在該區塊鏈中,若該供裝資料模組發現該供裝資料不存在該區塊鏈中,則從資料庫中查詢該供裝資料,且若該供裝資料模組發現該供裝資料存在該資料庫中,則從該資料庫中讀取該供裝資料之查詢結果以產生查詢結果格式回傳給該供裝管理模組。 The system described in item 1 of the scope of the patent application, wherein the supply data module further receives the supply query data sent by the supply management module, so as to judge whether the supply data is not based on the content of the supply query data Exist in the blockchain, if the supply data module finds that the supply data does not exist in the blockchain, it will query the supply data from the database, and if the supply data module finds the supply data If the data is stored in the database, the query result of the supply data is read from the database to generate a query result format and return it to the supply management module. 如申請專利範圍第1項所述之系統,其中,該區塊鏈之節點包括該區塊鏈中負責執行該共識決演算法的共識節點與該區塊鏈中負責同步資料的同步節點,且該區塊的建立或驗證皆透過該共識節點來達成。 The system described in item 1 of the scope of the application, wherein the nodes of the blockchain include a consensus node in the blockchain responsible for executing the consensus decision algorithm and a synchronization node in the blockchain responsible for synchronizing data, and The establishment or verification of the block is achieved through the consensus node. 如申請專利範圍第1項所述之系統,更包括一應用程式介面模組,係接收該供裝管理模組或該供裝資料模組的連線需求以提供至少一種的應用程式介面,且該應用程式介面模組支援不同的資料接取技術以提供多樣化的設備服務資訊的查詢功能。 The system described in item 1 of the scope of the application further comprises an application programming interface module, which receives the connection request of the supply management module or the supply data module to provide at least one application programming interface, and The API module supports different data access technologies to provide a variety of device service information query functions. 如申請專利範圍第1項所述之系統,更包括一查詢模組,係依照該供裝管理模組或該供裝資料模組之查詢需求進行該區塊鏈上的資料查詢,以將該區塊鏈上的資料查詢結果正規化後回傳給該供裝管理模組或該供裝資料模組。 The system described in item 1 of the scope of the application further includes a query module, which performs data query on the blockchain according to the query requirements of the supply management module or the supply data module, so as to obtain the The data query results on the blockchain are normalized and then sent back to the supply management module or the supply data module. 如申請專利範圍第10項所述之系統,其中,該查詢模組更比對該供裝資料模組所計算之該供裝資料的雜湊函數與該區塊鏈上的值兩者是否一致,若有出現兩者不一致的狀況,則該查詢模組進行告警以通報該網路設備之管理者。 The system of claim 10, wherein the query module further compares whether the hash function of the supply data calculated by the supply data module is consistent with the value on the blockchain, If there is any inconsistency between the two, the query module will issue an alarm to notify the administrator of the network device. 如申請專利範圍第1項所述之系統,其中,在將該供裝資料存入該區塊鏈的程序中,該區塊資料模組發佈智慧合約至該區塊鏈中,且該智慧合約的內容為儲存經過該雜湊值計算的權重較高的該供裝資料,以供該區塊鏈的共識節點驗證該供裝資料的正確性與建立一個區塊。 The system as described in item 1 of the scope of application, wherein, in the process of storing the supply data in the blockchain, the block data module publishes a smart contract in the blockchain, and the smart contract The content of is to store the supply data with a higher weight calculated by the hash value, so that the consensus node of the blockchain can verify the correctness of the supply data and create a block. 一種運用區塊鏈管理網路設備之方法,包括:由一供裝管理模組接收或設定網路設備之供裝資料;由一供裝資料模組依據該網路設備之該供裝資料是否存在區塊鏈中以判斷該供裝資料是否為重要者,若該供裝資料存在該區塊鏈中而判斷出該供裝資料為重要者,則該供裝資料模組依據該供裝資料使用雜湊函數計算出雜湊值,以將該雜湊值儲存於該區塊鏈中; 由一區塊資料模組採用共識決演算法將區塊遞送到該區塊鏈的節點,以將該區塊佈建於該區塊鏈的節點中;以及由一資料驗證模組驗證該網路設備之該供裝資料的內容與查驗該供裝資料的格式。 A method for managing network equipment using blockchain, comprising: receiving or setting supply data of network equipment by a supply management module; Existing in the blockchain to determine whether the supply data is important, if the supply data exists in the blockchain and it is determined that the supply data is important, the supply data module will be based on the supply data. Calculate a hash value using a hash function to store the hash value in the blockchain; A block data module uses a consensus decision algorithm to deliver the block to the node of the block chain, so as to deploy the block in the node of the block chain; and a data verification module verifies the network The content of the supply data for road equipment and the format for checking the supply data. 如申請專利範圍第13項所述之方法,更包括由該供裝資料模組處理該供裝管理模組所接收或設定之該網路設備之該供裝資料,再依照該供裝資料之重要性設定該供裝資料之權重,以將該供裝資料之重要者儲存於該區塊鏈中。 The method described in item 13 of the scope of the application further comprises processing, by the supply data module, the supply data of the network device received or set by the supply management module, and then according to the supply data Importance sets the weight of the supply data to store the important ones of the supply data in the blockchain. 如申請專利範圍第13項所述之方法,更包括由該供裝資料模組透過選擇函數評估該供裝資料之參數在該供裝資料中的分布程度,以依據該供裝資料之參數的分布程度挑選較佳的參數分類,再從該參數分類中選擇出該供裝資料之重要者,俾將該供裝資料之重要者運用單向雜湊演算法計算出唯一的該雜湊值,進而將唯一的該雜湊值寫入該區塊鏈中。 The method described in item 13 of the scope of the application, further comprising evaluating, by the supply data module, the degree of distribution of the parameters of the supply data in the supply data through a selection function, so as to determine the distribution of the parameters of the supply data according to the parameters of the supply data. The distribution degree selects a better parameter classification, and then selects the important part of the supply data from the parameter classification, so that the important part of the supply data can use the one-way hash algorithm to calculate the unique hash value, and then use the one-way hash algorithm to calculate the unique hash value. The unique hash value is written to the blockchain. 如申請專利範圍第13項所述之方法,其中,該供裝資料模組係具有至少一設備調適器與至少一設備調適器管理元件,該設備調適器管理元件從該供裝管理模組載入該設備調適器的服務參數與管理該設備調適器的功能,且該設備調適器依據資料蒐集輪詢周期設定以運行選擇函數之儲存判斷。 The method of claim 13, wherein the supply data module has at least one device adaptor and at least one device adaptor management component, and the device adaptor management component is loaded from the supply management module The service parameters of the device adaptor are entered and the function of the device adaptor is managed, and the device adaptor is set according to the data collection polling cycle to execute the storage judgment of the selection function. 如申請專利範圍第13項所述之方法,更包括由該供裝資料模組接收供裝管理模組送達的供裝查詢資料,以依據該供裝查詢資料的內容判斷該供裝資料是否存在該區塊鏈中,若該供裝資料模組發現該供裝資料不存在該區塊鏈中,則從資料庫中查詢該供裝資料,且若該供裝資料模 組發現該供裝資料存在該資料庫中,則從該資料庫中讀取該供裝資料之查詢結果以產生查詢結果格式回傳給該供裝管理模組。 The method described in item 13 of the scope of the patent application further includes receiving, by the supply data module, the supply query data sent by the supply management module, so as to determine whether the supply data exists according to the content of the supply query data In the blockchain, if the supply data module finds that the supply data does not exist in the blockchain, it will query the supply data from the database, and if the supply data module When the group finds that the supply data exists in the database, it reads the query result of the supply data from the database to generate a query result format and send it back to the supply management module. 如申請專利範圍第13項所述之方法,更包括由一應用程式介面模組接收該供裝管理模組或該供裝資料模組的連線需求以提供至少一種的應用程式介面,且該應用程式介面模組支援不同的資料接取技術以提供多樣化的設備服務資訊的查詢功能。 The method as described in item 13 of the scope of application, further comprising receiving, by an application programming interface module, a connection request of the supply management module or the supply data module to provide at least one application programming interface, and the The API module supports different data access technologies to provide a variety of device service information query functions. 如申請專利範圍第13項所述之方法,更包括由一查詢模組依照該供裝管理模組或該供裝資料模組之查詢需求進行該區塊鏈上的資料查詢,以將該區塊鏈上的資料查詢結果正規化後回傳給該供裝管理模組或該供裝資料模組。 The method described in item 13 of the scope of the application, further comprising performing a data query on the blockchain by a query module according to the query requirement of the supply management module or the supply data module, so as to obtain the area The data query results on the blockchain are normalized and then sent back to the supply management module or the supply data module. 如申請專利範圍第13項所述之方法,更包括在將該供裝資料存入該區塊鏈的程序中,由該區塊資料模組發佈智慧合約至該區塊鏈中,且該智慧合約的內容為儲存經過該雜湊值計算的權重較高的該供裝資料,以供該區塊鏈的共識節點驗證該供裝資料的正確性與建立一個區塊。 The method described in item 13 of the scope of the application further includes that in the process of storing the supply data in the blockchain, the block data module issues a smart contract to the blockchain, and the smart contract is The content of the contract is to store the supply data with a higher weight calculated by the hash value, so that the consensus node of the blockchain can verify the correctness of the supply data and create a block.
TW108144712A 2019-12-06 2019-12-06 System and method using blockchain to manage network devices TWI772721B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW108144712A TWI772721B (en) 2019-12-06 2019-12-06 System and method using blockchain to manage network devices

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108144712A TWI772721B (en) 2019-12-06 2019-12-06 System and method using blockchain to manage network devices

Publications (2)

Publication Number Publication Date
TW202123104A TW202123104A (en) 2021-06-16
TWI772721B true TWI772721B (en) 2022-08-01

Family

ID=77516934

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108144712A TWI772721B (en) 2019-12-06 2019-12-06 System and method using blockchain to manage network devices

Country Status (1)

Country Link
TW (1) TWI772721B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI785688B (en) * 2021-07-20 2022-12-01 聚騰科技股份有限公司 How to manage network connections

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190044703A1 (en) * 2017-12-28 2019-02-07 Ned M. Smith Device identity and algorithm management blockchains
US20190207813A1 (en) * 2017-06-16 2019-07-04 Internetworking & Broadband Consulting Co., Ltd. Device provisioning system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190207813A1 (en) * 2017-06-16 2019-07-04 Internetworking & Broadband Consulting Co., Ltd. Device provisioning system
US20190044703A1 (en) * 2017-12-28 2019-02-07 Ned M. Smith Device identity and algorithm management blockchains

Also Published As

Publication number Publication date
TW202123104A (en) 2021-06-16

Similar Documents

Publication Publication Date Title
CN108305072B (en) Method, apparatus, and computer storage medium for deploying a blockchain network
CN105429780B (en) A method of virtualization network service business automatically generates and dynamic monitors
EP2675127B1 (en) Method and device for automatically migrating system configuration item
CN108322345A (en) A kind of dissemination method and server of fault restoration data packet
CN109981279B (en) Block chain system, communication method, device, equipment and medium
CN110784495B (en) Block chain-based discovery and configuration information management method for big data cluster system
CN114666333B (en) Control method for cloud computing resource scheduling problem based on multi-tenant theory
JP2002108728A (en) Method for inserting fault information and provider facility
CN112702402A (en) System, method, device, processor and storage medium for realizing government affair information resource sharing and exchange based on block chain technology
CN101217368A (en) A network logging on system and the corresponding configuration method and methods for logging on the application system
CN103179099B (en) A kind ofly access the uniform authentication method of open website platform and a kind of website platform
CN107819891A (en) Data processing method, device, computer equipment and storage medium
CN110048855A (en) Introducing method and call method and device, equipment, the Fabric platform of national secret algorithm
CN112101942A (en) Transaction request processing method, system, device and equipment based on block chain
CN109831322B (en) Multi-system account permission centralized management method, equipment and storage medium
CN110263581A (en) Contract signs method, system, terminal device and storage medium
US10839090B2 (en) Digital data processing system for efficiently storing, moving, and/or processing data across a plurality of computing clusters
CN101360111A (en) Customer managing method, apparatus and system
CN113919821A (en) Service transfer method, device, computer equipment and storage medium
TWI772721B (en) System and method using blockchain to manage network devices
CN109614190A (en) Resources configuration management method and platform
CN106357430A (en) Method and system for service state monitoring of cloud computing cluster
CN109189431A (en) A kind of client side upgrading method, device, equipment and readable storage medium storing program for executing
CN106506182A (en) A kind of method and system of configuration PTN business
CN103546528A (en) Distributed message pushing method and system