TWI788682B - System and method for evidencing and verifying insurance policy through third-party block-chain - Google Patents
System and method for evidencing and verifying insurance policy through third-party block-chain Download PDFInfo
- Publication number
- TWI788682B TWI788682B TW109122469A TW109122469A TWI788682B TW I788682 B TWI788682 B TW I788682B TW 109122469 A TW109122469 A TW 109122469A TW 109122469 A TW109122469 A TW 109122469A TW I788682 B TWI788682 B TW I788682B
- Authority
- TW
- Taiwan
- Prior art keywords
- data
- server
- certificate
- target file
- platform host
- Prior art date
Links
Images
Landscapes
- Storage Device Security (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
一種電子保單存證與驗證之系統及其方法,特別係指一種透過第三方區塊鏈進行保單存證與驗證之系統及方法。A system and method for depositing and verifying an electronic insurance policy, in particular a system and method for depositing and verifying an electronic policy through a third-party blockchain.
由於保存紙本文件需要合適的環境,否則紙本文件容易遭到損壞,而除了環境的因素之外,紙本文件也需要空間來保存,因此,紙本文件的保存需要一定的成本。Since the preservation of paper documents requires a suitable environment, otherwise paper documents are easily damaged, and in addition to environmental factors, paper documents also need space to save, therefore, the preservation of paper documents requires a certain cost.
而隨著資訊處理技術與通信技術的快速發展,由於電子文件不容易因為環境因素而遭到破壞,且幾乎不需要保存空間,這造成紙本文件逐漸轉變為電子文件的趨勢。不過,相對的,電子文件比紙本文件容易被竊取、篡改、或偽造,也就是電子文件的安全性也較紙本文件來得低,不少人或是不少企業都相當關注電子文件之安全性的問題。也因此,目前對於竊取電子文件的防範,可藉由將電子文件進行加密而確保電子文件的安全性,而對於偽造或篡改電子文件的防範,則可利用數位簽章而確保正確性。With the rapid development of information processing technology and communication technology, electronic files are not easy to be damaged due to environmental factors, and almost no storage space is required, which leads to the trend of gradually converting paper files into electronic files. However, relatively, electronic documents are easier to be stolen, tampered with, or forged than paper documents, which means that the security of electronic documents is also lower than that of paper documents. Many people or companies are quite concerned about the security of electronic documents sex issue. Therefore, the current prevention of electronic document theft can ensure the security of the electronic document by encrypting the electronic document, and the prevention of forgery or tampering of the electronic document can ensure the correctness by using digital signatures.
不過,對於部分的文件而言,例如需要擁有人確認內容的文件,比如合約、保單等,使用紙本的形式仍然遠多於使用電子的形式。這是通常因為隨著時間的遞移,電子文件的擁有人無法直接確認文件是否遭到篡改或偽造,因此,仍然使用傳統容易發現被修改之處的紙本文件來記錄內容。However, for some documents, such as documents that require the owner to confirm the content, such as contracts, insurance policies, etc., the use of paper forms is still far more than the use of electronic forms. This is usually because as time goes by, the owner of the electronic file cannot directly confirm whether the file has been tampered with or forged. Therefore, the traditional paper file that is easy to find the place of modification is still used to record the content.
綜上所述,可知先前技術中長期以來一直存在電子文件的擁有人無法信任電子文件是否遭到篡改或偽造的問題,因此有必要提出改進的技術手段,來解決此一問題。To sum up, it can be known that the owner of the electronic file cannot trust whether the electronic file has been tampered or forged for a long time in the prior art. Therefore, it is necessary to propose an improved technical means to solve this problem.
有鑒於先前技術存在電子文件的擁有人無法信任電子文件是否被竄改或偽造的問題,本發明遂揭露一種透過第三方區塊鏈進行保單存證與驗證之系統及方法,其中:In view of the problem in the prior art that the owner of the electronic document cannot trust whether the electronic document has been tampered with or forged, the present invention discloses a system and method for depositing and verifying an insurance policy through a third-party blockchain, wherein:
本發明所揭露之透過第三方區塊鏈進行保單存證之系統,至少包含:平台主機,用以取得目標檔案,並依據目標檔案產生特徵資料,及用以儲存目標檔案之識別資料及特徵資料;存證伺服器,用以取得識別資料及特徵資料;公鏈伺服器,其中更包含:處理模組,用以接收存證伺服器所傳送之特徵資料,並依據特徵資料產生存證資料;區塊鏈模組,用以產生包含存證資料之區塊資料,並將區塊資料發布至區塊鏈中,及取得存證資料於區塊鏈中之索引資料;其中,處理模組更用以儲存索引資料及存證資料,並傳送索引資料至存證伺服器,使存證伺服器依據識別資料儲存索引資料。The system for depositing insurance certificates through a third-party blockchain disclosed in the present invention at least includes: a platform host for obtaining target files, generating characteristic data based on the target files, and storing the identification data and characteristic data of the target files ;Certificate server, used to obtain identification data and characteristic data; public chain server, which further includes: processing module, used to receive the characteristic data sent by the certificate server, and generate certificate data according to the characteristic data; The block chain module is used to generate the block data including the deposit data, publish the block data to the block chain, and obtain the index data of the deposit data in the block chain; wherein, the processing module is more Used to store index data and certificate data, and send the index data to the certificate server, so that the certificate server stores the index data based on the identification data.
本發明所揭露之透過第三方區塊鏈進行保單驗證之系統,至少包含:平台主機依據目標檔案之識別資料查詢索引資料,並傳送索引資料至公鏈伺服器以使處理模組依據索引資料查詢存證資料,及用以接收公鏈伺服器傳送之驗證資料,並依據索引資料至該區塊鏈中取得存證資料,及依據驗證資料驗證存證資料以產生驗證結果。The system for policy verification through a third-party blockchain disclosed in the present invention at least includes: the platform host queries index data according to the identification data of the target file, and sends the index data to the public chain server so that the processing module can query based on the index data The certificate data is used to receive the verification data sent by the public chain server, and to obtain the certificate data in the blockchain according to the index data, and to verify the certificate data according to the verification data to generate the verification result.
本發明所揭露之透過第三方區塊鏈進行保單存證之方法,其步驟至少包括:平台主機取得目標檔案,並依據目標檔案產生特徵資料;平台主機儲存目標檔案之識別資料及特徵資料;存證伺服器取得識別資料及特徵資料,並傳送特徵資料至公鏈伺服器;公鏈伺服器依據特徵資料產生存證資料;公鏈伺服器產生包含存證資料之區塊資料;公鏈伺服器將區塊資料發布至區塊鏈中,並取得存證資料於區塊鏈中之索引資料;公鏈伺服器儲存索引資料及存證資料,並傳送索引資料至存證伺服器;存證伺服器依據識別資料儲存索引資料。The method for depositing certificates of insurance policies through a third-party blockchain disclosed in the present invention, the steps at least include: the platform host obtains the target file, and generates characteristic data according to the target file; the platform host stores the identification data and characteristic data of the target file; The certificate server obtains the identification data and characteristic data, and sends the characteristic data to the public chain server; the public chain server generates the certificate data according to the characteristic data; the public chain server generates the block data containing the certificate data; the public chain server Publish the block data to the blockchain, and obtain the index data of the storage data in the blockchain; the public chain server stores the index data and the storage data, and sends the index data to the storage server; the storage server The server stores index data based on the identification data.
本發明所揭露之透過第三方區塊鏈進行保單驗證之方法,其步驟至少包括:平台主機依據目標檔案之識別資料查詢索引資料;平台主機傳送索引資料至公鏈伺服器;公鏈伺服器依據索引資料查詢驗證資料並傳送驗證資料至平台主機;平台主機依據索引資料至區塊鏈中取得存證資料,並依據驗證資料驗證存證資料以產生驗證結果。The method for policy verification through a third-party blockchain disclosed in the present invention includes at least the following steps: the platform host queries index data according to the identification data of the target file; the platform host sends the index data to the public chain server; the public chain server bases The index data queries the verification data and sends the verification data to the platform host; the platform host obtains the deposit data in the blockchain according to the index data, and verifies the deposit data according to the verification data to generate the verification result.
本發明所揭露之系統與方法如上,與先前技術之間的差異在於本發明透過存證伺服器取得平台主機所產生的識別資料及特徵資料後,由公鏈伺服器將依據特徵資料所產生之存證資料發布至區塊鏈中並取得索引資料,並由存證伺服器依據識別資料儲存索引資料,使得平台主機可以依據識別資料取得索引資料,並依據透過公鏈伺服器所取得之驗證資料驗證透過索引資料取得之存證資料以產生驗證結果,藉以解決先前技術所存在的問題,並可以達成避免雙方對電子文件之內容有所爭議的技術功效。The system and method disclosed in the present invention are as above, and the difference between it and the prior art is that after the present invention obtains the identification data and characteristic data generated by the platform host through the certificate storage server, the public chain server will generate the identification data based on the characteristic data. The certificate storage data is published to the blockchain and the index data is obtained, and the certificate storage server stores the index data based on the identification data, so that the platform host can obtain the index data based on the identification data, and based on the verification data obtained through the public chain server Verifying the evidence stored data obtained through the index data to generate verification results, so as to solve the problems existing in the previous technology, and achieve the technical effect of avoiding disputes between the two parties on the content of the electronic document.
以下將配合圖式及實施例來詳細說明本發明之特徵與實施方式,內容足以使任何熟習相關技藝者能夠輕易地充分理解本發明解決技術問題所應用的技術手段並據以實施,藉此實現本發明可達成的功效。The features and implementation methods of the present invention will be described in detail below in conjunction with the drawings and embodiments, the content is enough to enable anyone familiar with the relevant art to easily and fully understand the technical means used to solve the technical problems of the present invention and implement them accordingly, thereby realizing The effect that the present invention can achieve.
本發明可以透過區塊鏈提供一個在資料之提供者與接收者以外之第三方進行資料存證的平台主機(存證平台),另外,平台主機也可以提供對已存證的資料進行驗證。The present invention can provide a platform host (certificate storage platform) for data storage by a third party other than the data provider and receiver through the block chain. In addition, the platform host can also provide verification of the stored data.
以下先以「第1A圖」本發明所提之透過第三方區塊鏈進行保單存證之系統架構圖及「第1B圖」本發明所提之透過第三方區塊鏈進行保單驗證之系統架構圖來說明本發明的系統運作。如「第1A圖」與「第1B圖」所示,本發明之系統含有資料伺服器110、平台主機120、存證伺服器130、公鏈伺服器150。其中,資料伺服器110、平台主機120、存證伺服器130、及公鏈伺服器150通常為一台計算設備(如伺服器)或由多台計算設備組成(如將不同模組、元件或實體分散在透過有線或無線網路連接之不同計算設備或進行負載平衡的多台計算設備)。The following first uses "Figure 1A" the system architecture diagram of the policy deposit certificate through the third-party blockchain mentioned in the present invention and "Figure 1B" the system architecture of the policy verification through the third-party blockchain proposed in the present invention The figure illustrates the system operation of the present invention. As shown in "Figure 1A" and "Figure 1B", the system of the present invention includes a
本發明所提之計算設備包含但不限於一個或多個處理器、一條或多條記憶體模組、以及連接不同硬體元件(包括記憶體模組和處理器)的匯流排等硬體元件。透過所包含之多個硬體元件,計算設備可以載入並執行作業系統,使作業系統在計算設備上運行,也可以執行軟體或程式。另外,計算設備也包含一個外殼,上述之各個硬體元件設置於外殼內。The computing device mentioned in the present invention includes but is not limited to one or more processors, one or more memory modules, and hardware components such as buses connecting different hardware components (including memory modules and processors) . Through the included multiple hardware components, the computing device can load and execute the operating system, so that the operating system can run on the computing device, and can also execute software or programs. In addition, the computing device also includes a casing, and the above-mentioned hardware components are arranged in the casing.
本發明所提之計算設備的匯流排可以包含一種或多個類型,例如包含資料匯流排(data bus)、位址匯流排(address bus)、控制匯流排(control bus)、擴充功能匯流排(expansion bus)、及/或局域匯流排(local bus)等類型的匯流排。計算設備的匯流排包括但不限於的工業標準架構(Industry Standard Architecture, ISA)匯流排、周邊元件互連(Peripheral Component Interconnect, PCI)匯流排、視頻電子標準協會(Video Electronics Standards Association, VESA)局域匯流排、以及串列的通用序列匯流排(Universal Serial Bus, USB)、快速周邊元件互連(PCI Express, PCI-E/PCIe)匯流排等。The bus of the computing device mentioned in the present invention can include one or more types, such as data bus (data bus), address bus (address bus), control bus (control bus), expansion function bus ( expansion bus), and/or local bus (local bus) and other types of bus. Buses for computing devices include, but are not limited to, Industry Standard Architecture (ISA) buses, Peripheral Component Interconnect (PCI) buses, Video Electronics Standards Association (VESA) boards Domain bus, and serial universal serial bus (Universal Serial Bus, USB), fast peripheral component interconnection (PCI Express, PCI-E/PCIe) bus, etc.
本發明所提之計算設備的處理器與匯流排耦接。處理器包含暫存器(Register)組或暫存器空間,暫存器組或暫存器空間可以完全的被設置在處理晶片上,或全部或部分被設置在處理晶片外並經由專用電氣連接及/或經由匯流排耦接至處理器。處理器可為處理單元、微處理器或任何合適的處理元件。若計算設備為多處理器設備,也就是計算設備包含多個處理器,則計算設備所包含的處理器都相同或類似,且透過匯流排耦接與通訊。處理器可以解釋一個電腦指令或一連串的多個電腦指令以進行特定的運算或操作,例如,數學運算、邏輯運算、資料比對、複製/移動資料等,藉以驅動計算設備中的其他硬體元件或運行作業系統或執行各種程式及/或模組。The processor of the computing device mentioned in the present invention is coupled to the bus. Processors contain register banks or register spaces that can be entirely located on the processing die, or wholly or partially located off the processing die and via dedicated electrical connections And/or coupled to the processor via a bus. A processor may be a processing unit, a microprocessor, or any suitable processing element. If the computing device is a multi-processor device, that is, the computing device includes multiple processors, the processors included in the computing device are all the same or similar, and are coupled and communicated through a bus. A processor can interpret a computer instruction or a series of multiple computer instructions to perform specific calculations or operations, such as mathematical operations, logical operations, data comparison, copying/moving data, etc., to drive other hardware components in computing devices Or run the operating system or execute various programs and/or modules.
計算設備中通常也包含一個或多個晶片組(Chipset)。計算設備的處理器可以與晶片組耦接或透過匯流排與晶片組電性連接。晶片組是由一個或多個積體電路(Integrated Circuit, IC)組成,包含記憶體控制器以及周邊輸出入(I/O)控制器等,也就是說,記憶體控制器以及周邊輸出入控制器可以包含在一個積體電路內,也可以使用兩個或更多的積體電路實現。晶片組通常提供了輸出入和記憶體管理功能、以及提供多個通用及/或專用暫存器、計時器等,其中,上述之通用及/或專用暫存器與計時器可以讓耦接或電性連接至晶片組的一個或多個處理器存取或使用。Computing devices usually also contain one or more chipsets (Chipsets). The processor of the computing device can be coupled to the chipset or electrically connected to the chipset through a bus. The chipset is composed of one or more integrated circuits (Integrated Circuit, IC), including memory controllers and peripheral input/output (I/O) controllers, etc., that is, memory controllers and peripheral I/O controllers A circuit breaker can be contained in one integrated circuit or implemented using two or more integrated circuits. Chipsets usually provide input/output and memory management functions, and provide multiple general and/or special registers, timers, etc., wherein the above general and/or special registers and timers can be coupled or Accessed or used by one or more processors electrically connected to the chipset.
計算設備的處理器也可以透過記憶體控制器存取安裝於計算設備上的記憶體模組和大容量儲存區中的資料。上述之記憶體模組包含任何類型的揮發性記憶體(volatile memory)及/或非揮發性(non-volatile memory, NVRAM)記憶體,例如靜態隨機存取記憶體(Static Random Access Memory, SRAM)、動態隨機存取記憶體(Dynamic Random Access Memory, DRAM)、唯讀記憶體(Read-Only Memory, ROM)、快閃記憶體(Flash memory)等。上述之大容量儲存區可以包含任何類型的儲存裝置或儲存媒體,例如,硬碟機、光碟(optical disc)、隨身碟(flash drive)、記憶卡(memory card)、固態硬碟(Solid State Disk, SSD)、或任何其他儲存裝置等。也就是說,記憶體控制器可以存取靜態隨機存取記憶體、動態隨機存取記憶體、快閃記憶體、硬碟機、固態硬碟中的資料。The processor of the computing device can also access the data in the memory module and the mass storage area installed on the computing device through the memory controller. The above-mentioned memory modules include any type of volatile memory (volatile memory) and/or non-volatile (non-volatile memory, NVRAM) memory, such as static random access memory (Static Random Access Memory, SRAM) , Dynamic Random Access Memory (Dynamic Random Access Memory, DRAM), Read-Only Memory (Read-Only Memory, ROM), Flash memory (Flash memory), etc. The above-mentioned large-capacity storage area can include any type of storage device or storage medium, such as hard disk drive, optical disc (optical disc), flash drive (flash drive), memory card (memory card), solid state hard disk (Solid State Disk) , SSD), or any other storage device, etc. That is to say, the memory controller can access data in SRAM, DRAM, flash memory, hard disk drive, and solid-state hard disk.
計算設備的處理器也可以透過周邊輸出入控制器經由周邊輸出入匯流排與周邊輸出裝置、周邊輸入裝置、通訊介面、及GPS接收器等周邊裝置或介面連接並通訊。周邊輸入裝置可以是任何類型的輸入裝置,例如鍵盤、滑鼠、軌跡球、觸控板、搖桿等,周邊輸出裝置可以是任何類型的輸出裝置,例如顯示器、印表機等,周邊輸入裝置與周邊輸出裝置也可以是同一裝置,例如觸控螢幕等。通訊介面可以包含無線通訊介面及/或有線通訊介面,無線通訊介面可以包含支援紅外線、近場通訊(Near-field communication, NFC)、藍牙、無線區域網路(如Wi-Fi、Zigbee等)、3G/4G/5G等行動通訊網路(蜂巢式網路)或其他無線資料傳輸協定的介面,有線通訊介面可為乙太網路裝置、DSL數據機、纜線(Cable)數據機、非同步傳輸模式(Asynchronous Transfer Mode, ATM)裝置、或光纖通訊介面及/或元件等。處理器可以週期性地輪詢(polling)各種周邊裝置與介面,使得計算設備能夠透過各種周邊裝置與介面進行資料的輸入與輸出,也能夠與具有上面描述之硬體元件的另一個計算設備進行通訊。The processor of the computing device can also connect and communicate with peripheral devices or interfaces such as peripheral output devices, peripheral input devices, communication interfaces, and GPS receivers through the peripheral I/O controller through the peripheral I/O bus. The peripheral input device can be any type of input device, such as keyboard, mouse, trackball, touch pad, joystick, etc., and the peripheral output device can be any type of output device, such as display, printer, etc., peripheral input device It can also be the same device as the peripheral output device, such as a touch screen. The communication interface may include a wireless communication interface and/or a wired communication interface. The wireless communication interface may include support for infrared rays, near-field communication (Near-field communication, NFC), Bluetooth, wireless local area network (such as Wi-Fi, Zigbee, etc.), 3G/4G/5G and other mobile communication network (cellular network) or other wireless data transmission protocol interface, wired communication interface can be Ethernet device, DSL modem, cable (Cable) modem, asynchronous transmission Mode (Asynchronous Transfer Mode, ATM) device, or optical fiber communication interface and/or components, etc. The processor can periodically poll (polling) various peripheral devices and interfaces, so that the computing device can input and output data through various peripheral devices and interfaces, and can also communicate with another computing device that has the hardware components described above. communication.
請回到「第1A圖」,資料伺服器110與平台主機120之間、資料伺服器110與存證伺服器130、資料伺服器110與公鏈伺服器150之間、平台主機120與存證伺服器130之間、平台主機120與服務主機101之間、存證伺服器130與公鏈伺服器150之間都可以透過有線網路或無線網路連接,藉以傳遞資料或訊號給對方,及接收對方所傳送的資料或訊號。上述之有線網路包含但不限於乙太網路或光纖網路等;上述之無線網路例如行動通訊網路、無線區域網路、藍牙、紅外線、近場通訊等,但本發明並不以此為限。Please go back to "Figure 1A", between the
資料伺服器110可以儲存資料。一般而言,資料伺服器110可以提供資料庫以儲存資料,但本發明並不以此為限。資料伺服器110可以提供不同的資料庫給不同的計算設備存取,例如提供存證資料庫113給平台主機120及存證伺服器130存取,並提供公鏈資料庫115給公鏈伺服器150存取,但本發明並不以此為限,例如,資料伺服器110也可以只提供一個資料庫給平台主機120、存證伺服器130及公鏈伺服器150使用。The
資料伺服器110可以接收平台主機120、存證伺服器130、及公鏈伺服器150所傳送的記錄資料及查詢資料。記錄資料中包含需儲存的資料項目;查詢資料中包含須滿足的資料項目與需讀取的資料項目。在部分的實施例中,記錄資料與查詢資料也可能包含儲存資料項目之資料庫的資料庫識別資料及/或資料表的識別資料。其中,資料庫/資料表的識別資料通常為資料庫/資料表的名稱,但本發明並不以此為限。The
資料伺服器110也可以儲存記錄資料中的資料項目。當記錄資料中包含資料庫識別資料及資料表識別資料時,資料伺服器110可以依據資料庫識別資料及/或資料表識別資料選擇相對應之資料庫中的特定資料表儲存記錄資料中的各個資料項目;而當記錄資料中沒有包含資料庫識別資料或資料表識別資料時,資料伺服器110可以將記錄資料中的資料項目儲存到預定資料庫中的預定資料表中。但資料伺服器儲存資料項目的方式並不以上述為限。The
資料伺服器110也可以搜尋與需滿足之資料項目相同或相符之一筆記錄,並由所搜尋到之記錄中讀出需讀取的資料項目。與上述相似的,當記錄資料中包含資料庫識別資料及資料表識別資料時,資料伺服器110可以依據資料庫識別資料及/或資料表識別資料選擇搜尋相對應之資料庫中的特定資料表;而當記錄資料中沒有包含資料庫識別資料或資料表識別資料時,資料伺服器110可以搜尋預定資料庫中的預定資料表。但資料伺服器讀取資料項目的方式並不以上述為限。The
平台主機120負責取得目標檔案(也就是將被存證的檔案)。平台主機120可以接收服務主機101所傳送之經過簽章的原始檔案以取得目標檔案,平台主機120也可以將服務主機101所傳送之未經簽章的原始檔案簽章而產生目標檔案。The
在部分的實施例中,平台主機120還可以再次對所取得之經過服務主機101或平台主機120簽章的目標檔案簽章,並將再次簽章後的目標檔案做為新的目標檔案來進行本發明。In some embodiments, the
平台主機120也負責依據所取得的目標檔案產生特徵資料。一般而言,平台主機120可以對目標檔案進行特定運算而產生特徵資料。上述之特定運算可以是雜湊(Hash)運算,也可以是讀取目標檔案中之特定位元或位元組後以預定順序排列所讀出之位元或位元組,但本發明並不以此為限。The
平台主機120也負責產生所取得之目標檔案的識別資料。舉例來說,平台主機120可以使用流水號、日期與時間、檔案雜湊值等方式產生目標檔案的識別資料,但本發明並不以此為限。The
平台主機120也負責產生包含識別資料與特徵資料等資料項目的記錄資料,並將所產生的記錄資料傳送到資料伺服器110。其中,平台主機120所產生的記錄資料中除了包含資料項目之外,也可能包含儲存資料記錄的資料庫識別資料及/或資料表識別資料。The
平台主機120也負責將所產生的識別資料提供給存證伺服器130。一般而言,平台主機120可以透過存證伺服器130所提供的應用程式介面(API)將識別資料提供給存證伺服器130,但本發明並不以此為限。平台主機120除了可以提供識別資料給存證伺服器130之外,也可以將所產生之記錄資料中的一個或多個資料項目提供給存證伺服器130,例如,平台主機120也可以將各個資料項目的項目名稱及對應的資料內容寫入檔案後,再將寫入資料項目的檔案傳送給存證伺服器130。The
平台主機120可以取得客戶端190所傳送之目標檔案的識別資料,並可以依據目標檔案之識別資料查詢對應的索引資料。平台主機120可以產生包含識別資料的查詢資料,並將所產生的查詢資料傳送給資料伺服器110,藉以透過資料伺服器110查詢與目標檔案的識別資料相對應的索引資料。The
平台主機120也可以透過公鏈伺服器150所提供的應用程式介面(API)將所取得的索引資料傳送給公鏈伺服器150,並可以透過API接收公鏈伺服器150傳送的驗證資料。The
平台主機120也可以依據所取得的索引資料至區塊鏈400中取得相對應的存證資料,及依據取得自公鏈伺服器150的驗證資料驗證取得自區塊鏈400的存證資料以產生相對應的驗證結果。例如,平台主機120可以比對驗證資料與存證資料是否相同而產生驗證結果,也可以執行預先安裝/儲存的驗證程式對驗證資料及/或存證資料進行運算而產生驗證結果,但平台主機依據驗證資料驗證存證資料的方式並不以上述為限。The
存證伺服器130負責取得平台主機120所產生的識別資料。一般而言,存證伺服器130可以提供一組應用程式介面(API),並可以透過所提供的應用程式介面接收平台主機120所傳送之目標檔案的識別資料。實際上,存證伺服器130所提供的應用程式介面可以提供平台主機120在傳送目標檔案的識別資料時,一併傳送事件資料。上述之事件資料包含但不限於資料表識別資料、欄位識別資料(通常為欄位名稱)、動作類型等。The
存證伺服器130也負責取得平台主機120所產生的特徵資料。存證伺服器130可以產生包含所接收到之識別資料的查詢資料,並可以將查詢資料傳送給資料伺服器110,藉以透過資料伺服器110查詢與所接到之識別資料儲存為同一筆記錄的特徵資料。其中,查詢資料也可以包含部分的事件資料,例如資料表識別資料、欄位識別資料等,但本發明並不以此為限。在部分的實施例中,存證伺服器130也可以透過API提供平台主機120傳送特徵,但存證伺服器130取得識別資料與特徵資料的方式並不以上述為限。The
存證伺服器130也負責透過有線或無線網路將所取得的特徵資料傳送到公鏈伺服器150。存證伺服器130也負責接收公鏈伺服器150所傳送的索引資料。The
存證伺服器130也負責依據平台主機120所傳送的識別資料儲存公鏈伺服器150所傳送的索引資料。例如,存證伺服器130可以產生包含識別資料與索引資料的記錄資料,並將記錄資料傳送給資料伺服器110以儲存識別資料與索引資料。The
公鏈伺服器150負責產生存證資料,並將所產生的存證資料發布至區塊鏈400中。其中,公鏈伺服器150可以包含處理模組151及區塊鏈模組153,但本發明並不以此為限。The
處理模組151負責接收存證伺服器130所傳送的特徵資料,並依據所接收到的特徵資料產生存證資料。處理模組151可以對特徵資料使用特定運算以產生存證資料;處理模組151也可以先依據特徵資料取得目標檔案或目標檔案之相關資料,再對所取得之目標檔案或相關資料使用特定運算產生存證資料。The
處理模組151也負責將所產生的存證資料及區塊鏈模組153所取得的索引資料傳送給存證伺服器130,並負責儲存存證資料及索引資料。例如,處理模組151可以產生包含存證資料及索引資料的記錄資料,並將所產生的記錄資料傳送至資料伺服器110以儲存存證資料及索引資料。The
處理模組151可以接收平台主機120所傳送的索引資料,並依據所接收到的索引資料至資料伺服器110查詢驗證資料。例如,處理模組151可以產生包含索引資料的查詢資料,並將所產生的查詢資料傳送至資料伺服器110,界以透過資料伺服器110查詢與索引資料對應的驗證資料。The
區塊鏈模組153負責取得處理模組151所產生的存證資料,並負責產生包含所取得之存證資料的區塊資料,及將包含所產生之區塊資料發布至區塊鏈400中。其中,區塊鏈模組153產生資料區塊與發布資料區塊至區塊鏈中之方式與習知相同,故不多加描述。The
區塊鏈模組153也負責在將區塊資料發布至區塊鏈400後取得被發布到區塊鏈400中之存證資料的索引資料。區塊鏈模組153所取得的索引資料包含但不限於包含存證資料之區塊資料在區塊鏈400中的索引值及存證資料在包含存證資料之區塊資料中的順序。The
接著以一個實施例來解說本發明的運作系統與方法,並請先參照「第2A圖」本發明所提之透過第三方區塊鏈進行保單存證之方法流程圖。在本實施例中,假設服務主機101由保險公司所提供,但本發明並不以此為限。Next, an embodiment is used to explain the operating system and method of the present invention, and please refer to "Fig. 2A" for the flow chart of the method for depositing certificates of insurance through a third-party blockchain proposed by the present invention. In this embodiment, it is assumed that the
在保險公司需要將與保戶簽訂的電子保單透過第三方存證時,服務主機101可以將與保戶簽訂的電子保單傳送給平台主機120,使得平台主機120取得目標檔案(步驟201)。在本實施例中,假設服務主機101可以選擇是否對原始的電子保單簽章,若是,則服務主機101可以在使用保險公司所申請的私鑰對原始的電子保單簽章而產生包含簽章值的電子保單後,將所產生之包含簽章值的電子保單傳送給平台主機120,使得平台主機120取得包含簽章值的電子保單(目標檔案);而若服務主機101選擇讓平台主機120對原始的電子保單簽章而不對原始的電子保單簽章時,服務主機101可以將原始的電子保單傳送給平台主機120,平台主機120在接收到原始的電子保單後,可以對所接收到之原始的電子保單簽章以產生包含簽章值的電子保單,使得平台主機120取得包含簽章值的電子保單(目標檔案)。另外,平台主機120在取得包含簽章值的電子保單後,還可以再次對包含簽章值的電子保單簽章,並將包含兩次簽章值的電子保單做為最終的目標檔案。When the insurance company needs to deposit the electronic policy signed with the policyholder through a third party, the
在平台主機120取得目標檔案(步驟201)後,平台主機120可以依據所取得之目標檔案產生特徵資料,並將所產生之特徵資料及目標檔案的識別資料儲存至資料伺服器110中(步驟210)。在本實施例中,假設平台主機120可以對目標檔案進行雜湊運算以產生雜湊值,並將所產生的雜湊值作為特徵資料;並假設資料伺服器110可以提供存證資料庫113給平台主機120儲存平台主機120所取得的識別資料及所產生的特徵資料,例如,平台主機120可以產生包含識別資料及特徵資料的一筆記錄,並將該筆記錄儲存在存證資料庫113之MyTable資料表中,使得識別資料與特徵資料分別被儲存在MyID及MyCharacteristic的欄位中。After the
在平台主機120儲存目標檔案之識別資料及特徵資料後,存證伺服器130可以取得平台主機120所產生的識別資料與特徵資料,並可以將所取得的特徵資料傳送給公鏈伺服器150(步驟220)。在本實施例中,假設存證伺服器130可以提供網頁形式的API,平台主機120可以透過POST的方式使用存證伺服器130所提供的API將目標檔案的識別資料及其他的事件資料傳送給存證伺服器130,其中,事件資料包含資料表識別資料、欄位(包含記錄特徵資料之欄位)識別資料、事件動作類型。存證伺服器130在接收到平台主機120透過API所傳送之識別資料及事件資料後,可以由資料伺服器110所提供之存證資料庫113中資料表名稱與事件資料中之資料表識別資料相同的資料表中欄位名稱與事件資料中之欄位識別資料相同的欄位中讀出特徵資料,例如,當事件資料中包含MyTable的資料表識別資料及MyCharacteristic的欄位識別資料,則存證伺服器130可以由名稱為MyTable的資料表中之MyCharacteristic的欄位中讀出特徵資料。After the
在公鏈伺服器150的處理模組151接收到存證伺服器130所傳送之特徵資料後,可以依據所接收到的特徵資料產生存證資料(步驟230)。在本實施例中,假設處理模組151可以對特徵資料再次進行雜湊運算而產生存證資料。After the
在公鏈伺服器150產生存證資料後,公鏈伺服器150的區塊鏈模組153可以產生包含存證資料的資料區塊(步驟241),並可以將所產生的資料區塊發布到區塊鏈400中,及可以在成功發布包含存證資料的資料區塊後取得存證資料在區塊鏈400中的索引資料(步驟245)。在本實施例中,區塊鏈模組153所取得之索引資料包含記錄存證資料之區塊資料在區塊鏈400中的索引值及存證資料在記錄存證資料之區塊資料中的順序。After the
在公鏈伺服器150取得存證資料於區塊鏈400中的索引資料(步驟245)後,公鏈伺服器150的處理模組151可以將存證資料及索引資料儲存到資料伺服器110中(步驟250)。在本實施例中,資料伺服器110可以提供公鏈資料庫115給公鏈伺服器150儲存存證資料及索引資料。After the
同樣在公鏈伺服器150取得存證資料於區塊鏈400中的索引資料(步驟245)後,公鏈伺服器150的處理模組151可以將所取得之索引資料傳回存證伺服器130(步驟261)。其中,處理模組151將索引資料傳回存證伺服器130(步驟261)及將存證資料及索引資料儲存到資料伺服器110中(步驟250)並沒有先後次序的關係,也就是說,處理模組151也可以先將索引資料傳回存證伺服器130(步驟261)後,在將存證資料及索引資料儲存到資料伺服器110中(步驟250)。Similarly, after the
在存證伺服器130接收到公鏈伺服器150所傳送的索引資料後,可以依據接收自平台主機120之目標檔案的識別資料將所接收到的索引資料儲存至資料伺服器110中(步驟265)。在本實施例中,假設存證伺服器130可以將索引資料寫入存證資料庫113中之MyTable資料表中的MyIndex欄位中,其中,存證伺服器130可以透過update的語法將索引資料更新至MyTable資料表之MyID欄位儲存相同識別資料的記錄中。After the
在存證伺服器130將索引資料儲存後,可以透過平台主機120所使用的API將表示成功完成的執行結果傳回平台主機120。如此,透過本發明,保險公司所提供的服務主機101便可以透過第三方的平台主機120存證與保戶簽訂的電子保單。After the
接著,請繼續參照「第2B圖」本發明所提之透過第三方區塊鏈進行保單驗證之方法流程圖。Next, please continue to refer to "Figure 2B" for the flow chart of the method for policy verification through a third-party blockchain proposed by the present invention.
當保戶需要驗證與保險公司所簽署的電子保單時,保戶可以操作客戶端190將電子保單上傳到平台主機120,平台主機120在接收到客戶端190所傳送的電子保單(目標檔案)後,可以產生電子保單的識別資料。When the policyholder needs to verify the electronic policy signed with the insurance company, the policyholder can operate the
之後,平台主機120可以依據所產生的識別資料至資料伺服器110查詢索引資料,並可以將所查詢到的索引資料傳送給公鏈伺服器150(步驟270)。在本實施例中,平台主機120可以由存證資料庫113之MyTable資料表中查詢MyID欄位包含相同識別資料之記錄中之MyIndex欄位所儲存的索引資料,並可以透過公鏈伺服器150所提供的API將所查詢到的索引資料傳送給公鏈伺服器150。Afterwards, the
在公鏈伺服器150的處理模組151接收到平台主機120所傳送的索引資料後,可以依據所接收到的索引資料至資料伺服器110中查詢驗證資料(步驟280),並可以將查詢到之驗證資料傳回平台主機120。在本實施例中,處理模組151可以由資料伺服器110所提供之公鏈資料庫115之特定資料表中查詢包含相同索引資料之記錄中的存證資料,並將所查詢到的存證資料作為驗證資料,及以平台主機120所使用之API將所查詢到之驗證資料傳回平台主機120。After the
同樣在平台主機120依據所產生的識別資料至資料伺服器110查詢到索引資料後,平台主機120可以依據所查詢到之索引資料至區塊鏈400中取得存證資料(步驟291)。在本實施例中,也就是先依據索引資料中所記錄之區塊資料在區塊鏈400中的索引值由區塊鏈400中取得記錄存證資料的資料區塊後,再依據索引資料中所記錄之存證資料在區塊資料中的順序由區塊資料中讀出存證資料。Similarly, after the
在平台主機120接收到公鏈伺服器150所傳回之驗證資料及由區塊鏈400中取得存證資料後,平台主機120可以依據驗證資料驗證存證資料(步驟295)。在本實施例中,假設平台主機120可以執行驗證程式,使驗證程式依據驗證資料與存證資料產生相對應的驗證結果,並可以將驗證結果傳回客戶端190,使得客戶端190顯示驗證結果。After the
如此,透過本發明,保戶便可以透過第三方的平台主機120對保險公司所提供的電子保單進行驗證,藉以確認保戶所持有之電子保單是否與保險公司所持有之電子保單的內容是否相同,避免保戶所持有之電子保單與保險公司所持有的電子保單之內容不同。In this way, through the present invention, the policyholder can verify the electronic policy provided by the insurance company through the
綜上所述,可知本發明與先前技術之間的差異在於具有由存證伺服器取得平台主機所產生的識別資料及特徵資料後,由公鏈伺服器將依據特徵資料所產生之存證資料發布至區塊鏈中並取得索引資料,並由存證伺服器依據識別資料儲存索引資料,使得平台主機可以依據識別資料取得索引資料,並依據透過公鏈伺服器所取得之驗證資料驗證透過索引資料取得之存證資料以產生驗證結果之技術手段,藉由此一技術手段可以來解決先前技術所存在電子文件的擁有人無法信任電子文件是否被竄改或偽造的問題,進而達成避免雙方對電子文件之內容有所爭議的技術功效。To sum up, it can be seen that the difference between the present invention and the prior art lies in that after the identification data and characteristic data generated by the platform host are obtained by the certificate storage server, the certificate storage data generated by the public chain server according to the characteristic data Publish to the blockchain and obtain index data, and store the index data based on the identification data by the certificate storage server, so that the platform host can obtain the index data based on the identification data, and verify the pass index based on the verification data obtained through the public chain server It is a technical means to generate verification results by depositing evidence for data acquisition. This technical means can solve the problem that the owner of the electronic document in the prior art cannot trust whether the electronic document has been tampered with or forged, and then achieve a goal of preventing both parties from The technical efficacy of the content of the document is disputed.
再者,本發明之透過第三方區塊鏈進行保單存證與驗證之方法,可實現於硬體、軟體或硬體與軟體之組合中,亦可在電腦系統中以集中方式實現或以不同元件散佈於若干互連之電腦系統的分散方式實現。Furthermore, the method of depositing and verifying the insurance policy through the third-party blockchain of the present invention can be implemented in hardware, software, or a combination of hardware and software, and can also be implemented in a computer system in a centralized manner or in different ways. A distributed implementation in which components are spread across several interconnected computer systems.
雖然本發明所揭露之實施方式如上,惟所述之內容並非用以直接限定本發明之專利保護範圍。任何本發明所屬技術領域中具有通常知識者,在不脫離本發明所揭露之精神和範圍的前提下,對本發明之實施的形式上及細節上作些許之更動潤飾,均屬於本發明之專利保護範圍。本發明之專利保護範圍,仍須以所附之申請專利範圍所界定者為準。Although the embodiments disclosed in the present invention are as above, the content described is not intended to directly limit the scope of protection of the present invention. Anyone with ordinary knowledge in the technical field of the present invention, without departing from the spirit and scope disclosed in the present invention, makes some changes and modifications to the form and details of the implementation of the present invention, all of which belong to the patent protection of the present invention scope. The scope of patent protection of the present invention shall still be defined by the scope of the attached patent application.
101:服務主機 110:資料伺服器 113:存證資料庫 115:公鏈資料庫 120:平台主機 130:存證伺服器 150:公鏈伺服器 151:處理模組 153:區塊鏈模組 190:客戶端 400:區塊鏈 步驟201:平台主機取得目標檔案 步驟210:平台主機依據目標檔案產生特徵資料,並儲存目標檔案之識別資料及特徵資料 步驟220:存證伺服器取得識別資料與特徵資料,並傳送特徵資料至公鏈伺服器 步驟230:公鏈伺服器依據特徵資料產生存證資料 步驟241:公鏈伺服器產生包含存證資料之區塊資料 步驟245:公鏈伺服器將區塊資料發布至區塊鏈中,並取得存證資料於區塊鏈中之索引資料 步驟250:公鏈伺服器儲存索引資料及存證資料 步驟261:公鏈伺服器傳送索引資料至存證伺服器 步驟265:存證伺服器依據識別資料儲存索引資料 步驟270:平台主機依據識別資料查詢索引資料,並傳送索引資料至公鏈伺服器 步驟280:公鏈伺服器依據索引資料查詢驗證資料,並傳送存證資料至平台主機 步驟291:平台主機依據索引資料至區塊鏈中取得存證資料 步驟295:平台主機依據驗證資料驗證存證資料以產生驗證結果101: service host 110: data server 113: Evidence database 115: Public chain database 120: Platform host 130:Certificate server 150: public chain server 151: Processing module 153:Blockchain module 190: client 400: Blockchain Step 201: the platform host obtains the target file Step 210: The platform host generates characteristic data according to the target file, and stores the identification data and characteristic data of the target file Step 220: The certificate storage server obtains the identification data and feature data, and sends the feature data to the public chain server Step 230: The public chain server generates certificate data according to the characteristic data Step 241: The public chain server generates block data containing certificate data Step 245: The public chain server publishes the block data to the block chain, and obtains the index data of the deposit data in the block chain Step 250: The public chain server stores index data and certificate data Step 261: The public chain server sends the index data to the certificate storage server Step 265: The certificate storage server stores the index data according to the identification data Step 270: The platform host queries the index data according to the identification data, and sends the index data to the public chain server Step 280: The public chain server queries the verification data based on the index data, and sends the certificate storage data to the platform host Step 291: The platform host obtains the certificate deposit data from the blockchain according to the index data Step 295: The platform host verifies the stored data according to the verification data to generate a verification result
第1A圖為本發明所提之透過第三方區塊鏈進行保單存證之系統架構圖。 第1B圖為本發明所提之透過第三方區塊鏈進行保單驗證之系統架構圖。 第2A圖為本發明所提之透過第三方區塊鏈進行保單存證之方法流程圖。 第2B圖為本發明所提之透過第三方區塊鏈進行保單驗證之方法流程圖。Figure 1A is a system architecture diagram of the policy deposit certificate through the third-party blockchain mentioned in the present invention. Figure 1B is a system architecture diagram of the policy verification through the third-party blockchain proposed by the present invention. Figure 2A is a flow chart of the method for depositing certificates of insurance through a third-party blockchain proposed by the present invention. FIG. 2B is a flow chart of the method for policy verification through a third-party blockchain proposed by the present invention.
步驟201:平台主機取得目標檔案Step 201: the platform host obtains the target file
步驟210:平台主機依據目標檔案產生特徵資料,並儲存目標檔案之識別資料及特徵資料Step 210: The platform host generates characteristic data according to the target file, and stores the identification data and characteristic data of the target file
步驟220:存證伺服器取得識別資料與特徵資料,並傳送特徵資料至公鏈伺服器Step 220: The certificate storage server obtains the identification data and feature data, and sends the feature data to the public chain server
步驟230:公鏈伺服器依據特徵資料產生存證資料Step 230: The public chain server generates certificate data according to the characteristic data
步驟241:公鏈伺服器產生包含存證資料之區塊資料Step 241: The public chain server generates block data containing certificate data
步驟245:公鏈伺服器將區塊資料發布至區塊鏈中,並取得存證資料於區塊鏈中之索引資料Step 245: The public chain server publishes the block data to the block chain, and obtains the index data of the deposit data in the block chain
步驟250:公鏈伺服器儲存索引資料及存證資料Step 250: The public chain server stores index data and certificate data
步驟261:公鏈伺服器傳送索引資料至存證伺服器Step 261: The public chain server sends the index data to the certificate storage server
步驟265:存證伺服器依據識別資料儲存索引資料Step 265: The certificate storage server stores the index data according to the identification data
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109122469A TWI788682B (en) | 2020-07-02 | 2020-07-02 | System and method for evidencing and verifying insurance policy through third-party block-chain |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109122469A TWI788682B (en) | 2020-07-02 | 2020-07-02 | System and method for evidencing and verifying insurance policy through third-party block-chain |
Publications (2)
Publication Number | Publication Date |
---|---|
TW202203129A TW202203129A (en) | 2022-01-16 |
TWI788682B true TWI788682B (en) | 2023-01-01 |
Family
ID=80787625
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW109122469A TWI788682B (en) | 2020-07-02 | 2020-07-02 | System and method for evidencing and verifying insurance policy through third-party block-chain |
Country Status (1)
Country | Link |
---|---|
TW (1) | TWI788682B (en) |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109658273A (en) * | 2019-01-24 | 2019-04-19 | 易保互联医疗信息科技(北京)有限公司 | Business insurance based on block chain is quickly settled a claim method, storage medium and equipment |
-
2020
- 2020-07-02 TW TW109122469A patent/TWI788682B/en active
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109658273A (en) * | 2019-01-24 | 2019-04-19 | 易保互联医疗信息科技(北京)有限公司 | Business insurance based on block chain is quickly settled a claim method, storage medium and equipment |
Also Published As
Publication number | Publication date |
---|---|
TW202203129A (en) | 2022-01-16 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11049080B2 (en) | File vault and cloud based document notary service | |
US10013573B2 (en) | Personal ledger blockchain | |
CN112100460B (en) | Block chain-based network page evidence storing method, device, medium and electronic equipment | |
TWI725709B (en) | Data storage method, device and equipment | |
CN113012008A (en) | Identity management method, device and equipment based on trusted hardware | |
US20190238560A1 (en) | Systems and methods to provide secure storage | |
CN101305359A (en) | Service for determining whether digital certificate has been revoked | |
US20080313475A1 (en) | Methods and systems for tamper resistant files | |
JP7409190B2 (en) | Computer-implemented methods for cross-chain interoperability | |
TWM602765U (en) | System for attesting and verifying insurance policy through third-party blockchain | |
WO2022179120A1 (en) | Gateway interception method and apparatus, electronic device and storage medium | |
TWI788682B (en) | System and method for evidencing and verifying insurance policy through third-party block-chain | |
US11886316B2 (en) | Platform measurement collection mechanism | |
TWM592629U (en) | System to obtain appended data and execute corresponding operation when identity is confirmed | |
TWI690192B (en) | System for providing signature entities to sign electronic document in order for generating signed document and method thereof | |
US11501002B2 (en) | Protocol security system | |
TWM583978U (en) | System of using physical carrier to store digital certificate for performing online transaction | |
CN114861200B (en) | Data processing method, device, equipment and storage medium | |
TWI691859B (en) | System for identifying according to instruction to execute service and method thereof | |
CN112242904B (en) | File information processing method and equipment | |
US11334245B1 (en) | Native memory semantic remote memory access system | |
TWM613287U (en) | System for verifying image files in IoT | |
TWI767113B (en) | System for using certificate stored in carrier to conduct online transactions and method thereof | |
TWI845063B (en) | System and method for providing server to sign calculation data generated from article to be sign | |
TWI798511B (en) | Device for downloading medical data for applying insurance business and method thereof |