WO2018126340A1 - Blockchain-based data processing method, device and system - Google Patents

Abstract

Provided are a blockchain-based data processing method, device and system, the method comprising: a first device establishes a communication connection with a second device, the second device being a device in a blockchain network; the first device determines that first data generated by the first device requires authentication in the blockchain network; the first device sends the first data to the second device, so that the first data is authenticated by devices in the blockchain network. By using the blockchain network to authenticate the data, the blockchain-based data processing method reduces the construction and maintenance costs of a communication system, and improves the security performance of the system. In addition, the second device sends the data of the first device to the devices in the blockchain network for authentication, thereby reducing the capability requirements for the first device.

Description

Data processing method, device and system based on blockchain Technical field

The embodiments of the present application relate to the field of communications, and in particular, to a blockchain-based data processing method, device, and system.

Background technique

As a network extending and expanding on the Internet, the Internet of Things realizes information exchange and communication by applying computer technologies such as intelligent sensing, recognition technology and pervasive computing. According to the prediction of relevant institutions, the number of IoT devices in the world will reach 25 billion units in 2020. With the normal number of devices in the Internet of Things, if the IoT devices are managed in the traditional centralized network mode, huge investment in data center infrastructure construction and maintenance will be brought. In addition, there is a security risk in a centralized network model.

Therefore, it is necessary to provide a data processing method, reduce the construction and maintenance cost of the communication system, and improve the security performance of the system.

Application content

The present application provides a data processing method, device and system based on a blockchain, which can reduce the construction and maintenance cost of the communication system and improve the security performance of the system.

In a first aspect, a data processing method based on a blockchain is provided, including: establishing, by a first device, a communication connection with a second device, where the second device is a device in a blockchain network; The first data generated by the first device needs to be authenticated in the blockchain network; the first device sends the first data to the second device to implement the first data by the The devices in the blockchain network are authenticated.

According to the blockchain-based data processing method of the embodiment of the present application, the first device sends the first data to the second device in the blockchain network when generating the first data that needs to be authenticated in the blockchain network. The second device is caused to send the first data to the device in the blockchain network to implement authentication of the first data. By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the second device sends the data of the first device to the device in the blockchain network for authentication, which can reduce the capability requirement for the first device.

It should be noted that, in the embodiment of the present application, the authentication refers to blockchain consensus authentication or consistency authentication.

Alternatively, the first device may be an Internet of Things device, and the first device is not a device in a blockchain network. The first device does not need to authenticate the data by a formula algorithm.

Optionally, the second device sends the first data to the device in the blockchain network by means of broadcast sending, and all devices (including the second device) in the blockchain network can obtain the authentication right, and perform the first data. Certification.

With reference to the first aspect, in an implementation manner of the first aspect, the first device establishes a communication connection with the second device, where the first device sends the first public key to the second device The first message, the first message includes first information, the first public key is a public key of the second device, and the first information is used to request the second device to be the first Data generated by the device that needs to be authenticated in the blockchain network is sent to a device in the blockchain network for authentication; the first device receives second information sent by the second device, where the The second information is used to indicate that the second device confirms that the data generated by the first device that needs to be authenticated in the blockchain network is sent to a device in the blockchain network for authentication.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the first message further includes a second public key, where the second public key is a public key of the first device.

In combination with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the receiving, by the first device, the second information that is sent by the second device, The second information encrypted by the second public key.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the sending, by the first device, the first data to the second device, a block of the first data; the first device transmits the block to the second device.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, before the first device establishes a communication connection with the second device, the method further includes: the first device receiving the The third information sent by the second device, where the third information includes a first hash HASH value requirement; the first device generates a first HASH value that meets the first HASH value requirement.

Since the first device can only establish a communication connection with the second device after generating a hash value that satisfies the hash value requirement, the collision probability when the plurality of devices establish a communication connection with the second device can be reduced, and the block is made The chain network has better scalability and supports access of devices with different needs.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement , each HASH value in the at least one HASH value requirement Requirement to correspond to at least one type of business;

The method further includes: determining, by the first device, the first device according to the service type corresponding to the first data, before the first device generates the first HASH value that meets the first HASH value requirement. A HASH value.

The hash value of the embodiment of the present application is related to the service type, so that different access delay requirements and authentication delay requirements of the device can be met.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement And each of the at least one HASH value requirement corresponds to at least one device group;

Before the first device generates the first HASH value that meets the first HASH value requirement, the method further includes: determining, by the first device, the first device according to the device group to which the first device belongs A HASH value.

Optionally, when the second device groups the devices, grouping according to the computing capability of the device, or grouping according to the service type of the device.

The hash value of the embodiment of the present application is related to the device group, so that different access delay requirements and authentication delay requirements of the device can be met.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the method further includes: the first device sending, to the third device, a second HASH value related to the first data, The second HASH value is used by the third device to determine the integrity of the second data, and the second data is the data after the first data is authenticated in the blockchain network.

In the embodiment of the present application, the integrity of the data is used to indicate whether the data is lost or tampered with during the authentication process in the blockchain network.

Optionally, the third device is an Internet of Things device, and the third device is not a device in a blockchain network.

Optionally, the first data is data related to the first device and the third device, for example, the first data is transaction data between the first device and the third device. Or the first data is data related to the first device and other IoT devices, for example, the first data is transaction data between the first device and other IoT devices.

Thereby, the confidentiality and integrity of the data can be ensured, and the data stored in the blockchain network has higher reliability.

Optionally, if the first data is not encrypted by the public key of the third device, and the second data is The second device can directly calculate the hash value of the second data, and then compare whether the calculated hash value and the received hash value are consistent.

Alternatively, if the first data is not encrypted by the public key of the third device, but the second data is encrypted by the public key of the third device, after the second device obtains the second data, the second data is first Decryption is performed, and then the hash value of the decrypted data is calculated, and then the calculated hash value is compared with the received hash value.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the first data is encrypted by a public key of the third device.

Optionally, if the second data is encrypted by the public key of the third device, the third device may directly calculate the hash value of the second data, and then compare the calculated hash value with the received hash value. To determine the integrity of the second data.

With reference to the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the method further includes:

The first device determines the second HASH value according to the first data.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the first data is encrypted by a public key of the third device, and the method further includes: the first device The third device sends the first data, so that the third device determines the integrity of the second data according to the second HASH value after determining the second HASH value according to the first data, and second The data is the authenticated data of the first data in the blockchain network.

Optionally, if the second data is encrypted by the public key of the third device, when the third device acquires the second data, the advancedity is decrypted, and then the hash value of the decrypted data is calculated, and then the calculated value is obtained. The hash value of the decrypted data is compared to the second HASH value to determine the integrity of the second data.

Alternatively, if the second data is not encrypted by the public key of the third device, the third device may directly calculate the hash value of the second data, and then compare the calculated hash value with the second HASH value to Determine the integrity of the second data.

Optionally, the first data is not encrypted by the public key of the third device. If the second data is also not encrypted by the public key of the third device, the third device directly calculates the hash value of the second data. The calculated hash value of the second data is then compared with the second HASH value to determine the integrity of the second data.

Or, the first data is not encrypted by the public key of the third device, and the second data is After the public key of the three devices is encrypted, the third device decrypts the second data, and then calculates the hash value of the decrypted data, and then performs the calculated hash value of the encrypted data and the second HASH value. Contrast to determine the integrity of the second data.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the method further includes: the first device receiving fourth information sent by the second device, where the fourth information is used by And indicating that the first data has been authenticated N times in the blockchain network, and the value of N is a preset value.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the method further includes: the first device receiving a Merkel Merkle tree corresponding to the second data sent by the second device Information and block information, the second data is the authenticated data of the first data in the blockchain network, and the block information is used to indicate a region carrying the second data in the blockchain network. Piece.

When the first device receives the Merkle tree information and the block information corresponding to the second data, the first device may learn that the first data has been completely N times authenticated in the blockchain network.

Optionally, the block information is the height of the block or the identity of the block.

In another implementation manner of the first aspect, the method further includes: the first device determining to delete the second data from the blockchain network, where the second data is The first data is authenticated data in the blockchain network; the first device sends fifth information to a device in the blockchain network, and the fifth information is used to indicate the area A device in the blockchain network deletes the second data from the blockchain network.

The blockchain-based data processing method of the embodiment of the present application can delete data stored in the blockchain network according to requirements, thereby reducing network load and reducing transmission bandwidth required for transmission of the blockchain.

With reference to the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the fifth information includes the identifier information and/or the Merkle tree information corresponding to the second data, where the identifier information is used to identify the first Two data.

In conjunction with the first aspect and the foregoing implementation manner, in another implementation manner of the first aspect, the method further includes: deleting, by the first device, the first data that is locally stored by the first device.

Thereby, the storage load of the first device can be reduced.

A second aspect provides a data processing method based on a blockchain, including: establishing, by a second device, a communication connection with a first device, where the second device is a device in a blockchain network; Receiving, by the first device, first data generated by the first device that needs to be authenticated in the blockchain network; the second device sending the information to a device in the blockchain network The first data, the authentication of the first data is implemented.

According to the blockchain-based data processing method of the embodiment of the present application, the second device receives the first data generated by the first device that needs to be authenticated in the blockchain network, and sends the first data to the blockchain network. The device implements the authentication of the first data. By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the second device sends the data of the first device to the device in the blockchain network for authentication, which can reduce the capability requirement for the first device.

With the second aspect, in an implementation manner of the second aspect, the second device establishes a communication connection with the first device, where the second device receives the first public a first message that is encrypted by the key, the first message includes first information, the first public key is a public key of the second device, and the first information is used to request the second device to The data generated by the first device that needs to be authenticated in the blockchain network is sent to the device in the blockchain network for authentication; the second device sends the second information to the first device. The second information is used to indicate that the second device confirms that the data generated by the first device that needs to be authenticated in the blockchain network is sent to a device in the blockchain network for authentication.

In conjunction with the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the first message further includes a second public key, where the second public key is a public key of the first device.

With the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the second device sends the second information to the first device, including: the second device to the first device Sending the second information encrypted by the second public key.

With the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, after the second device establishes a communication connection with the first device, the method further includes: the second device generating a preset The number of digital currencies.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: the second device sending the related information of the digital currency to a device in the blockchain network And if the second device determines that the digital currency has undergone M authentication in the blockchain network, the second device confirms that the digital currency is valid, and the value of M is a preset value.

In conjunction with the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the second device receives, by the first device, the need generated by the first device in the block The first data that is authenticated in the chain network includes: the second device receives a block that is sent by the first device and that carries the first data;

The sending, by the second device, the first data to the device in the blockchain network, the second device sending the bearer the first data to a device in the blockchain network Block.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the second device sends the first data to a device in the blockchain network, including: the second device Generating, according to the block format required by the blockchain network, a block that carries the first data; the second device sends the area that carries the first data to a device in the blockchain network Piece.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, before the second device establishes a communication connection with the first device, the method further includes: determining, by the second device a first hash HASH value request; the second device sends third information to the first device, where the third information includes the first HASH value requirement, so that the first device meets the generation After the first HASH value required by the first HASH value, a communication connection is established with the second device.

Since the first device can only establish a communication connection with the second device after generating a hash value that satisfies the hash value requirement, the collision probability when the plurality of devices establish a communication connection with the second device can be reduced, and the block is made The chain network has better scalability and supports access of devices with different needs.

In conjunction with the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement And each of the at least one HASH value requirement corresponds to at least one service type;

The determining, by the second device, the first hash HASH value request includes: determining, by the second device, the at least one HASH value requirement.

The hash value of the embodiment of the present application is related to the service type, so that different access delay requirements and authentication delay requirements of the device can be met.

In conjunction with the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement And each of the at least one HASH value requirement corresponds to at least one device group;

The second device determines a first hash HASH value requirement, including: the second device Determining the at least one HASH value requirement.

Optionally, when the second device groups the devices, grouping according to the computing capability of the device, or grouping according to the service type of the device.

The hash value of the embodiment of the present application is related to the device group, so that different access delay requirements and authentication delay requirements of the device can be met.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: the second device receiving, by the first device, a second information related to the first data that is sent by the first device a HASH value, the second HASH value is used by the third device to determine the integrity of the second data, and the second data is the authenticated data of the first data in the blockchain network; Sending the second HASH value to the third device.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the first data is encrypted by a public key of the third device.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the second HASH value is determined by the first device according to the first data.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the first data is encrypted by a public key of the third device, the method further includes: receiving, by the second device The first data is sent by the second device to the third device, so that the third device, according to the first data, determines the second HASH value, according to the second data. The HASH value determines the integrity of the second data, and the second data is the authenticated data of the first data in the blockchain network.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: if the second device determines that the first data has passed the N in the blockchain network The second device sends the second data corresponding to the Merkel tree information and the block information to the third device, where the block information is used to indicate that the second chain is carried in the blockchain network. The block of data, the second data is the authenticated data of the first data in the blockchain network, wherein the value of N is a preset value.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: if the second device determines that the first data has passed the N in the blockchain network The second device sends the fourth information to the first device, where the fourth information is used to indicate that the first data has been authenticated N times in the blockchain network, where The value is the default value.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: if the second device determines that the first data has passed the N in the blockchain network The second device sends the Merkle tree information and the block information corresponding to the second data to the first device, where the block information is used to indicate the block that carries the second data in the blockchain network. The second data is the authenticated data of the first data in the blockchain network, where the value of N is a preset value.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the method further includes: receiving, by the second device, fifth information sent by the first device, where the fifth information is used by The device in the blockchain network is instructed to delete the second data from the blockchain network, where the second data is the authenticated data of the first data in the blockchain network.

With reference to the second aspect and the foregoing implementation manner, in another implementation manner of the second aspect, the fifth information includes the identifier information and/or the Merkle tree information corresponding to the second data, where the identifier information is used to identify the location The second data is described.

In a third aspect, a data processing method based on a blockchain is provided, including: acquiring, by a third device, Merkel tree information and block information corresponding to the second data, where the block information is used to indicate a blockchain a block in the network that carries the second data, where the second data is the data that the first data has been authenticated in the blockchain network, and the first data is a required area generated by the first device. Data for authentication in the blockchain network; the third device acquires second data from the block carrying the second data according to the Merkle tree information; and the third device determines the integrity of the second data.

According to the blockchain-based data processing method of the present application, the third device may acquire, according to the received Merkle tree information and the block information, the need generated by the first device stored in the blockchain network in the blockchain network. And performing second data corresponding to the first data of the authentication, and confirming the integrity of the second data. Thereby, the confidentiality and integrity of the data can be ensured, and the data stored in the blockchain network has higher reliability.

With reference to the third aspect, in an implementation manner of the third aspect, if the third device confirms that the second data is complete, the method further includes: sending, by the third device, a device in the blockchain network A confirmation message is used to indicate that the second data is complete.

In the embodiment of the present application, the confirmation information sent by the third device may be authenticated in the blockchain network.

With reference to the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the third device acquires Merkel tree information and block information corresponding to the second data, including: The third device receives the Merkle tree information and the block information sent by the second device, where the second device is a device in the blockchain network.

Optionally, the third device may receive the Merkle tree information and the block information sent by the multiple devices in the blockchain network, thereby avoiding the potential risk caused by the device in the blockchain network being attacked.

In conjunction with the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the second device is a device that sends the first data to the blockchain network for authentication.

In conjunction with the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the method further includes: determining, by the third device, a second hash HASH value related to the first data;

The third device determines the integrity of the second data, including: the third device determines the integrity of the second data according to the consistency of the third HASH value and the second HASH value associated with the second data. Sex.

With reference to the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the third device determines, by the third device, a second hash HASH value that is related to the first data, The second HASH value, wherein the second HASH value is determined by the first device according to the first data.

In conjunction with the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the first data is encrypted by a public key of the third device.

In conjunction with the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the first data is encrypted by a public key of the third device, and the method further includes: the third Receiving, by the device, the first data sent by the first device; and determining, by the third device, the second HASH value according to the first data.

With reference to the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the method further includes: the third device determines to delete the second data from the blockchain network; The device sends fifth information to the device in the blockchain network, where the fifth information is used to indicate that the device in the blockchain network deletes the second data from the blockchain network.

With reference to the third aspect and the foregoing implementation manner, in another implementation manner of the third aspect, the fifth information includes the identifier information and/or the Merkle tree information corresponding to the second data, where the identifier information is used to identify the first Two data.

In a fourth aspect, an apparatus is provided for performing the method of any of the above-described first aspect or any of the possible implementations of the first aspect. Specifically, the device includes means for performing the first aspect described above or A functional module of a method in any of the possible implementations of the first aspect.

In a fifth aspect, an apparatus is provided for performing the method of any of the above-described second aspect or any of the possible implementations of the second aspect. In particular, the apparatus comprises functional modules for performing the method of any of the possible implementations of the second aspect or the second aspect described above.

In a sixth aspect, an apparatus is provided for performing the method of any of the above-described third aspect or any of the possible implementations of the third aspect. In particular, the apparatus comprises functional modules for performing the method of any of the above-described third or third aspects of the third aspect.

In a seventh aspect, an apparatus is provided comprising a processor, a memory, and a transceiver. The processor, the memory, and the transceiver communicate with each other through an internal connection path, transmitting control and/or data signals, such that the device performs the first aspect or any of the possible implementations of the first aspect Methods.

In an eighth aspect, an apparatus is provided comprising a processor, a memory, and a transceiver. The processor, the memory, and the transceiver communicate with each other through an internal connection path, transmitting control and/or data signals, such that the device performs any of the second or second aspects of the foregoing possible implementations. Methods.

In a ninth aspect, an apparatus is provided comprising a processor, a memory and a transceiver. The processor, the memory, and the transceiver communicate with each other through an internal connection path, transmitting control and/or data signals, such that the device performs any of the third or third aspects of the foregoing possible implementations. Methods.

In a tenth aspect, a communication system is provided, comprising the apparatus of the fourth aspect, the fifth aspect, and the sixth aspect. Or the apparatus of the seventh aspect, the eighth aspect, and the ninth aspect.

In an eleventh aspect, a computer readable medium is provided for storing a computer program, the computer program comprising instructions for performing the first aspect or any of the possible implementations of the first aspect.

According to a twelfth aspect, a computer readable medium for storing a computer program, the computer program comprising instructions for performing any of the second aspect or the second aspect of the second aspect.

A thirteenth aspect, a computer readable medium for storing a computer program, the computer program comprising instructions for performing any of the possible implementations of the third or third aspect above.

DRAWINGS

FIG. 1 is a schematic diagram of an application scenario of an embodiment of the present application;

2 is a schematic flowchart of a blockchain-based data processing method according to an embodiment of the present application;

3 is a schematic flowchart of a method for establishing a communication connection by a device according to an embodiment of the present application;

4 is a schematic flowchart of a blockchain-based data processing method according to another embodiment of the present application;

FIG. 5 is a schematic flowchart of a blockchain-based data processing method according to still another embodiment of the present application; FIG.

FIG. 6 is a schematic flowchart of a blockchain-based data processing method according to still another embodiment of the present application; FIG.

FIG. 7 is a schematic flowchart of a blockchain-based data processing method according to still another embodiment of the present application; FIG.

FIG. 8 is a schematic block diagram of an apparatus according to an embodiment of the present application; FIG.

Figure 9 is a schematic illustration of an apparatus in accordance with another embodiment of the present application;

FIG. 10 is a schematic block diagram of an apparatus according to still another embodiment of the present application; FIG.

11 is a schematic block diagram of an apparatus according to still another embodiment of the present application;

FIG. 12 is a schematic block diagram of an apparatus according to still another embodiment of the present application; FIG.

FIG. 13 is a schematic block diagram of an apparatus in accordance with still another embodiment of the present application.

detailed description

The technical solutions in the embodiments of the present application will be clearly and completely described in the following with reference to the accompanying drawings in the embodiments.

FIG. 1 is a schematic diagram of an application scenario of an embodiment of the present application. As shown in Figure 1, nodes in the dotted line form a blockchain network, IoT devices are not in the blockchain network, and block nodes in the blockchain network can act as proxy nodes for IoT devices. The data generated by the IoT device that needs to be propagated and verified in the blockchain network is sent to the nodes in the blockchain network to implement data verification. It should be noted that “node” and “device” have the same meaning in the embodiment of the present application.

In the embodiment of the present application, the block node in the blockchain network may be a private node, an operator network node (for example, a base station device), or may be a certain industry organization, group, and individual deployment. Site (Station).

In the embodiment of the present application, the Internet of Things device may include, but is not limited to, a mobile station (Mobile Station, MS), a mobile terminal (Mobile Terminal), a mobile phone (Mobile Telephone), a user equipment (User Equipment, UE), a mobile phone (handset). And a portable device, a vehicle, etc., for example, the terminal device may be a mobile phone (or "cellular" phone), a computer having a wireless communication function, etc., and the terminal device may also be portable, pocket-sized , handheld, computer built-in or in-vehicle mobile devices.

Moreover, there is no centralized hardware or management mechanism in the blockchain network, and the rights and obligations between any nodes are equal, and the damage or loss of any node does not affect the operation of the entire blockchain network. Blockchain networks are characterized by decentralization. Data exchange between each node in the blockchain network does not need to trust each other. The operation rules of the entire blockchain network are open and transparent, and all data content is public, so the rule scope of the blockchain network And within the time range, nodes can not and can not deceive other nodes, therefore, the blockchain network has the feature of trust. The total block of the blockchain network is maintained by all nodes with maintenance functions in the entire system, and any node with maintenance functions can participate. Therefore, the blockchain network has the characteristics of collective maintenance. The blockchain network allows each participating node to obtain a copy of the complete database in the form of a sub-database. Unless you can control more than 51% of the nodes in the entire network at the same time, the modification of the database on a single node is invalid, and it cannot affect the data content on other nodes. Therefore, the blockchain network has a reliable database.

Since the blockchain network has the above characteristics and the number of devices in the Internet of Things will increase dramatically, the blockchain network and the Internet of Things can be combined to realize the self-governance of the Internet of Things and improve the security performance of the Internet of Things.

However, the computing power of most IoT devices is very limited, so IoT devices cannot be directly added to the blockchain network. It is necessary to provide a data processing method, which combines the blockchain network and the Internet of Things to reduce the construction and maintenance costs of the communication system and improve the security performance of the system.

In order to facilitate the understanding of the present application, before describing the method of the present application in conjunction with FIG. 1, firstly, several elements in the blockchain network and the working methods of the block nodes in the blockchain network are specifically described herein.

It should be noted that, in the embodiment of the present application, the data generated by the device includes data related to the device and its peer device and common data. When describing the elements in the blockchain network and the working methods of the block nodes in the blockchain network, taking the data related to the device and its peer device as an example, The data is described by taking the data related to the device and its peer device as transaction data, but this does not limit the scope of the embodiments of the present application. among them:

A block is a containerized data structure of data that is contained in a blockchain. It consists of a block header containing metadata and a long list of transactions that immediately follow the body of the block. The block specifically includes: a block size field, usually 4 bytes; a block header field, usually 80 bytes; a transaction counter field, generally 1-9 bytes, recording the number of transactions; a transaction field, usually Variable length, record transaction details.

The block header consists of three sets of metadata, first a set of data that references the hash value of the parent block, which is used to connect the block to the previous block in the blockchain. The second set of metadata includes difficulty, timestamp, and number used once (Number used once, simply "Nonce"). The third set of metadata is the Merkle number (a data structure used to effectively summarize all transactions in the block). The block header specifically includes the following fields: the version field, usually 4 bytes; the parent block hash value field, usually 32 bytes, used to reference the hash value of the parent block in the blockchain; the Merkle root field, The hash value of the Merkle root of the transaction in the block; the timestamp field, usually 4 fields, is used to identify the approximate time generated by the block, accurate to the second; the Nonce field is used for the workload proof algorithm. counter.

Each block can reference the previous block through the "parent block hash value field" of its block header. That is, each block header contains the hash value of its parent block. And each block has only one parent block, but there can be multiple sub-blocks temporarily. The case where multiple sub-blocks appear in one block is called "block chain fork". A blockchain fork indicates a temporary state, and eventually only one sub-block becomes part of the blockchain.

A blockchain is a data structure in which blocks are sequentially linked from the back to the front, and each block points to the previous block. It can be stored as a file containing non-relative relationship records or stored in a simple database. You can think of a blockchain as a stack, with a height indicating the distance between the block and the first block, and a top or top indicating the most recent block. Encryption of each block header (for example, Secure Hash Algorithm ("SHA")) can generate a hash value. The corresponding block in the blockchain can be identified by this hash value.

For the entire blockchain network, the goal is to have all nodes agree to a certain piece of information and update it to the total shared ledger. To this end, a consensus mechanism is introduced in the blockchain network. Two typical algorithms in the consensus mechanism are workload proof and equity proof. among them:

Proof Of Work ("PoW"), the essence is to join the information transfer Cost, reduce the rate of information transmission, and add a random element to ensure that only one node in a time period can have the right to broadcast information. This random element is for the node to calculate a random hash value. Specifically, the block node calculates a string of 64-bit random numbers and letters according to the obtained input data, but only the node that obtains the hash value satisfying the hash value can be accepted as the workload by the blockchain network. prove. And the hash algorithm of the workload proof also realizes the wear of historical information by using the information in each new block as the input value of the next hash algorithm, forming a traceable chain (blockchain). .

Proof of interest, the purpose is to achieve blockchain protection by those with financial interests, this method is to achieve the proof of equity through the number of coins destroyed in each transaction (Coindays). The existing proof of equity system, such as Peercoin, is based on evidence blocks in which the target that the miner must achieve is inversely related to the number of days of destruction. People with Peercoin must choose a miner called a proof of equity and contribute a portion of their currency over a period of time to protect the blockchain network.

A blockchain-based data processing method according to an embodiment of the present application will be described in detail below in conjunction with the above description. FIG. 2 illustrates a blockchain-based data processing method in accordance with an embodiment of the present application. As shown in FIG. 2, the method 100 includes:

S101. The first device establishes a communication connection with the second device, where the second device is a device in the blockchain network.

S102. The first device generates data that needs to be authenticated in the blockchain network.

S103. The second device receives data that is sent by the first device and needs to be authenticated in the blockchain network.

S104. The second device sends the data to a device in the blockchain network to implement authentication of the data.

It should be noted that the authentication in the embodiment of the present application refers to performing blockchain consensus authentication or consistency authentication.

Optionally, in the method 100, the first device is a device in the Internet of Things device, and the computing capability of the first device is limited. The second device sends the data of the first device to the device in the blockchain network, which can be understood as the proxy device of the first device.

Specifically, in some embodiments, the first device and the second device can establish a communication connection according to the method illustrated in FIG. The first device is described as an Internet of Things device. As shown in FIG. 3, the method 200 includes:

S201. The IoT device receives the public key information sent by the second device.

In S201, the Internet of Things device can receive public key information sent by all devices in the blockchain network that have the function of serving the Internet of Things device, and then the IoT device can determine the selected blockchain network according to parameters such as the receiving quality of the information. The device acts as its own proxy device and sends its own data that needs to be authenticated in the blockchain network to the devices in the blockchain network.

S202. After determining, by the IoT device, the second device, as the proxy device, determining an access sequence for accessing the second device.

It should be noted that the second device is a proxy device of the Internet of Things device, and the second device is also a device associated with the Internet of Things device.

Optionally, the access sequence in S202 may be a random access sequence in an existing (Long Term Evolution, hereinafter referred to as “LTE”). For example, it can be a Zadoff-Chu (ZC) sequence.

S203. The IoT device synchronizes with the second device.

Optionally, when the distance between the IoT device and the second device is greater than a preset value, synchronization between the IoT device and the second device is required. At this time, the second device may not broadcast the public key information in the broadcast message, but carry the public key information through the related message in the synchronization process.

However, it should be noted that when the IoT device and the second device do not need to synchronize, for example, when the distance between the IoT device and the second device is less than or equal to a preset value. The second device needs to broadcast its own public key information to the Internet of Things device in S201.

S204. The IoT device sends an initial access message encrypted by the public key of the second device to the second device.

The first information is included in the initial access message, where the first information is used to request the second device to send data of the Internet of Things device to the device in the blockchain network for authentication. The first information here may be the indication information that is displayed, or may be the information that is implicitly indicated. For example, the first information may specifically be the block information, and when the second device determines that the initial access message includes the block information, the first The second device confirms that the physical network device requests to forward the data of the IoT device to other devices in the blockchain network.

Or, further, the public key information of the Internet of Things device is further included in the initial access message.

S205. The second device determines whether the data generated by the IoT device that needs to be authenticated in the blockchain network is forwarded.

Optionally, after receiving the initial access message sent by the IoT device, the second device encrypts the initial access message with its own private key, and then confirms whether to accept the request of the IoT device according to its own admission capability.

Alternatively, the second device first determines whether the request of the IoT device can be received, and when determining that the IoT device can be accepted, encrypting the initial access message by using its private key, it can be understood that, in this manner, the foregoing A message needs to be included in the header of the initial access message.

S206. The second device sends feedback information to the Internet of Things device.

In S206, the feedback information is used to notify the IoT device that the second device can send the data generated by the IoT device that needs to be authenticated in the blockchain network to the device in the blockchain network to implement data authentication.

Optionally, when the initial access message in the S204 includes the public key information of the Internet of Things device, the second device encrypts the feedback information to the Internet of Things device by using the public key of the Internet of Things device, and then sends the encrypted information to the Internet of Things device. Feedback.

S207. The Internet of Things device establishes a communication connection with the second device according to the feedback information.

Further, after the IoT device establishes a communication connection with the second device, when the IoT device generates data that needs to be authenticated in the blockchain network, the data is first sent to the second device, and the second device broadcasts the data to the region. Authentication and dissemination in a blockchain network.

As described in the foregoing, data generated by IoT devices includes transaction data and general data. For example, the Internet of Things device may be a smart washing machine, and the smart washing machine may automatically purchase the washing liquid, and the data generated during the transaction is transaction data. Or the Internet of Things device is a smart faucet at home. The faucet can automatically purchase water from the water plant. Different faucets can purchase different water sources, such as purified water, washing water, toilet water, etc. Different faucets can be independently traded and sold. Transaction data.

Or some key components of many electrical appliances can be added with specific IoT sensors. Users can pay the manufacturer through the use time of this component. When the components may have hidden troubles, the manufacturer will take the initiative to repair or replace them. In the scenario, the data generated by the IoT device is ordinary data, that is, non-transaction data. For example, in the home air purifier, the detected PM2.5 data is also ordinary data.

In the embodiment of the present application, after the second device receives the Internet of Things device, the second device may have the right to generate a certain amount of digital currency. Therefore, the method 200 further includes:

S208. The second device generates a preset number of digital currencies.

Alternatively, the generation rule of the digital currency may be set in advance, for example, one digital currency may be generated every 10 minutes in advance.

S209. The second device broadcasts the phase of the digital currency generated by the second device to the other devices in the blockchain network. Information

Optionally, the relevant information of the digital currency includes the number of digital currencies.

Optionally, while the second device broadcasts the digital currency generated by the second device, the related information of the Internet of Things device may be broadcast to other devices in the blockchain network, where the related information of the IoT device is used to notify the block. Other devices in the chain network These digital currencies are generated because they are connected to IoT devices. For example, the related information of the Internet of Things device may include public key information of the Internet of Things device, or other specific information of the Internet of Things device, for example, IoT device identifier information, and the like.

S210. The second node confirms that the digital currency generated by the second node is M-authenticated in the blockchain network, and the second device confirms that the digital currency generated by the second device is valid.

Alternatively, the value of M in S210 may be preset. For example, the value of M is 6.

Thus, the IoT device and the second device establish a communication connection in accordance with method 200. Thereafter, when the IoT device generates data that needs to be authenticated in the blockchain network, it can communicate with the second device according to the method shown in FIG. As shown in FIG. 4, method 300 includes:

S301. The Internet of Things device generates data that needs to be authenticated in the blockchain network;

S302. The IoT device sends the data to the second device.

Optionally, the IoT device may directly send the data to the IoT device, or the IoT device generates a block including the data, and sends the block to the second device.

S303. The second device broadcasts the received data to the blockchain network for authentication.

Optionally, the second device generates a block that carries the data according to a block format in the blockchain network, and broadcasts the block into the blockchain. Alternatively, if the second device receives the block that carries the data sent by the IoT device in S302, the second device directly broadcasts the received block to the blockchain network.

S304. The device in the blockchain network authenticates the data.

Optionally, the method for authenticating the data in the device in the blockchain network may use the workload proof method or the equity proof method described above. To avoid repetition, no further details are provided herein.

S305. The second device determines that the data has been authenticated N times.

The second device can determine whether the data has been authenticated N times according to the depth of the blockchain broadcasted in the current network.

S306. The second device sends an authentication completion message to the Internet of Things device.

The authentication completion message is used to notify the IoT device that the data generated by the IoT device has passed N times. certificate;

S307. The Internet of Things device deletes the stored data.

Optionally, after receiving the authentication completion message sent by the second device, the IoT device confirms that the generated data has been authenticated N times by the device in the blockchain network, and all the IoT devices delete the locally stored data.

It can be seen that the data is processed by the methods in the methods 100 to 300, and the requirements of the devices in the blockchain network for the IoT devices can be made because the IoT devices can establish communication connections with devices in the blockchain network. The authenticated data is broadcast to the blockchain network and the data is authenticated by devices in the blockchain network. Therefore, the computing power requirement of the Internet of Things device can be effectively reduced, especially for a low-cost, low-power IoT device.

However, when the number of IoT devices is large, multiple IoT devices may choose to establish communication connections with the same device in the blockchain network, so that access conflicts may occur, and different data may have different access. Delay and authentication delay requirements, therefore, based on the above methods 100 to 300, it is necessary to reduce the collision probability of multiple IoT devices when accessing, and meet the requirements of different data for access delay and authentication delay.

FIG. 5 illustrates a data processing method based on a blockchain according to still another embodiment of the present application. The first device is an Internet of Things device. As shown in FIG. 5, the method 400 includes:

S401. The second device determines a hash value requirement.

Optionally, the second device determines a hash value requirement according to the number of IoT devices that are currently establishing a communication connection with the second device, or the second device determines the hash value requirement according to the predicted access request amount during a certain access peak period. For example, when the second device determines that the number of IoT devices that are currently in communication connection with the device is large, the hash value that is difficult to broadcast is required, and the difficulty here is understood to be the number of bits that require the generated low bit to be zero. Exceeded a certain threshold. For example, the generated hash value requirement may be a low order number of bits of the hash value of zero or a preset amount.

S402. The second device broadcasts its determined hash value request.

S403. The IoT device generates a hash value that meets a hash value requirement, and then establishes a communication connection with the second device.

The method for establishing a communication connection between the IoT device and the second device in S403 is the same as that in the method 200. To avoid repetition, details are not described herein again.

S404. The IoT device sends data to the second device that needs to be authenticated in the blockchain network.

S405. The second device broadcasts the received data to the blockchain network for authentication.

Optionally, when the second device broadcasts the data to the blockchain network, the authentication right may be acquired at the same time. When the second device obtains the authentication right, the second device is configured according to the data of all the Internet of Things devices existing in the current blockchain network. A new block is generated and the resulting block is concatenated in the current blockchain, after which the blockchain is broadcast into the blockchain network.

S406. The second device updates the hash value requirement.

Optionally, the second device may adjust the hash value according to the access amount of the IoT device, or according to the predicted access request amount during a certain access peak period, or the access collision probability. For example, when the second device determines that the current access request is less, or the access collision probability is less, the second device determines that it is difficult to be a smaller hash value requirement.

S407. The second device sends the updated hash value request to the Internet of Things device.

S408, a hash value requirement of the second device of the IoT device update record;

S409: When the IoT device again needs data to be authenticated in the blockchain network, send data to the second device to implement data authentication.

Optionally, in S401 or S406, the second device may determine different hash value requirements according to different service types. Correspondingly, in S402 or S407, the second device sends multiple hash value requests to the Internet of Things device. When the IoT device generates data that needs to be authenticated in the blockchain network, the IoT device determines the hash value that the generated hash value needs to satisfy according to the service type of the data, and generates a hash value that satisfies the hash value requirement. After the hash value, a communication connection is established with the second device to implement data authentication.

Alternatively, in S401 or S406, the second device groups the IoT devices (eg, may be grouped according to the capabilities of the IoT device), and generates different hash value requirements according to different packets. Correspondingly, in S402 or S407, the second device sends multiple hash value requests to the Internet of Things device. When the IoT device generates data that needs to be authenticated in the blockchain network, the IoT device determines the hash value that the generated hash value needs to satisfy according to the group to which it belongs, and generates a hash value that satisfies the hash value requirement. After the hash value, a communication connection is established with the second device to implement data authentication. The second device may carry the grouping information of the Internet of Things device in the broadcast message, and the Internet of Things device determines the group to which it belongs according to the grouping information.

Thus, according to the method of processing data in the method 400, the flexibility of the IoT device to establish a communication connection with the device in the blockchain network can be ensured, so that the communication system has good scalability.

In the embodiment of the present application, when the data generated by the Internet of Things device is transaction data, it needs to be guaranteed. The confidentiality and integrity of the transaction data of the Internet of Things device requires the peer device of the IoT device to verify the authenticity of the relevant transaction data in time. Taking the peer device of the Internet of Things device as an example of the Internet of Things device as an example, a blockchain-based data processing method according to still another embodiment of the present application is described. For convenience of description, the interactive IoT devices are respectively marked as the Internet of Things. Device A and IoT Device B. As shown in FIG. 6, method 500 includes:

S501, when the IoT device A determines that the transaction data needs to be authenticated in the blockchain network, the IoT device A sends a hash value related to the transaction data to the IoT device B;

It should be noted that the transaction data determined by the Internet of Things device A may be transaction data between the Internet of Things device A and the Internet of Things device B, and may also be transaction data of the Internet of Things device A and other Internet of Things devices.

Optionally, the hash value associated with the transaction data is generated by the Internet of Things device A according to the transaction data, where the transaction data may be encrypted by the public key of the Internet of Things device B, or may not be through the Internet of Things device. B's public key has been encrypted. The method for generating a hash value is not limited in the embodiment of the present application.

Alternatively, the IoT device A may send a hash value related to the transaction data to the IoT device B through its proxy node (eg, the second device in FIG. 6) or other communication node.

S502. The Internet of Things device A sends transaction data to the second device.

Optionally, the transaction data sent by the Internet of Things device A to the second device may be transaction data that has not been encrypted. Or the transaction data sent by the Internet of Things device A is transaction data encrypted by using only the public key of the Internet of Things device B. Or the transaction data sent by the Internet of Things device A is encrypted by using the public key of the Internet of Things device B, and then the encrypted data is encrypted by using the private key of the second device. In this case, the second device receives the transaction data. At the time, the transaction data is decrypted by the public key of the second device to ensure the legality of the transaction data sent by the Internet of Things device A to the second device, and then the second device broadcasts the transaction data encrypted by the public key of the Internet of Things device B to the transaction data. In the blockchain network, authentication is performed.

S503. The second device broadcasts the transaction data to the blockchain network for authentication.

S504: The second device confirms that the transaction data has completed N times of authentication in the blockchain network.

S505. The second device sends an authentication completion message to the Internet of Things device A.

Optionally, the authentication completion message includes Merkle tree information and block information of data corresponding to the transaction data in the blockchain network, and the block information is used to indicate a block in the blockchain network that carries data corresponding to the transaction data. Here, the data corresponding to the transaction data in the blockchain network is essentially a transaction. Data after N times of authentication in the blockchain network.

Alternatively, in S505, the second device directly sends the Merkle tree information and the block information of the data corresponding to the transaction data in the blockchain network to the Internet of Things device A, and the IoT device A can receive the two information when Make sure the transaction data has been certified by N.

S506. The second device or other blockchain device sends the Merkle tree information and the block information of the data corresponding to the transaction data stored in the blockchain network to the Internet of Things device B.

Optionally, multiple devices in the blockchain network can simultaneously send Merkle tree information and block information to the IoT device B, and the IoT device B can compare the received multiple information, thereby further improving the communication system. reliability.

Optionally, the Internet of Things device B receives the Merkle tree information and the block information sent by its proxy node. Or the Merkle tree information and the block information received by the Internet of Things device B are sent by different devices.

S507, the Internet of Things device B verifies the integrity of the data corresponding to the transaction data in the blockchain network;

Optionally, the Internet of Things device B determines, according to the block information, a block that carries data corresponding to the transaction data, and then the IoT device B finds the transaction data from the block according to the Merkle tree information of the data corresponding to the transaction data. Corresponding data. The block information here is the height or identity of the block.

Optionally, if the hash value related to the transaction data in S501 is generated by the Internet of Things device A according to the transaction data encrypted without using the public key of the Internet of Things device B, and in S502, the Internet of Things device A is directed to The transaction data sent by the second device is not encrypted by the public key of the Internet of Things device B. When the IoT device B obtains the data corresponding to the transaction data from the block, the hash of the acquired data corresponding to the transaction data is calculated. The value, after which the calculated hash value is consistent with the received hash value. If they are consistent, the IoT device B considers that the acquired data is complete. Otherwise, the IoT device B considers that the acquired data is incomplete.

Alternatively, if the hash value associated with the transaction data in S501 is generated by the Internet of Things device A based on the transaction data encrypted without using the public key of the Internet of Things device B, and in S502, the Internet of Things device A goes to the second The transaction data sent by the device is encrypted by the public key of the Internet of Things device B. When the IoT device B obtains the data of the corresponding transaction data from the block, the IoT device decrypts the acquired data first, and calculates The hash value of the decrypted data, and then compares whether the calculated hash value is consistent with the received hash value. If consistent, IoT device B considers the acquired data. It is complete, otherwise, IoT device B believes that the acquired data is incomplete.

Alternatively, if the hash value associated with the transaction data in S501 is generated by the Internet of Things device A based on the transaction data encrypted using the public key of the Internet of Things device B, and in S502, the Internet of Things device A is directed to the second device. The sent transaction data is encrypted by the public key of the Internet of Things device B. When the IoT device B obtains the data corresponding to the transaction data from the block, the hash value of the acquired data corresponding to the transaction data is calculated, and then Compares the calculated hash value with the received hash value. If they are consistent, the IoT device B considers that the acquired data is complete. Otherwise, the IoT device B considers that the acquired data is incomplete.

S508. If the IoT device B verifies that the data corresponding to the transaction data is complete, the confirmation information is sent, and the confirmation information is used to indicate that the data corresponding to the transaction data is complete.

Optionally, the confirmation information sent by the Internet of Things device B may also be authenticated by devices in the blockchain network.

Optionally, in S501, the Internet of Things device A does not send a hash value to the Internet of Things device B, but sends transaction data to the Internet of Things device B. When the Internet of Things device B receives the transaction data, the Internet of Things device B determines to receive. The hash value of the transaction data to be obtained, and then the hash value of the calculated transaction data is compared with the hash value of the data corresponding to the transaction data obtained from the block to determine whether the acquired data is complete.

For example, if the transaction data sent by the Internet of Things device A to the Internet of Things device B is encrypted by the public key of the Internet of Things device B in S501, and the transaction data sent by the Internet of Things device A to the second device is also passed in S502. The public key of the Internet of Things device B is encrypted. The IoT device B directly calculates the hash value of the transaction data sent by the IoT device A received, and the hash value of the acquired data, and then the two hashes. The value is compared.

Alternatively, if the transaction data sent by the Internet of Things device A to the Internet of Things device B is encrypted by the public key of the Internet of Things device B in S501, and the transaction data sent by the Internet of Things device A to the second device is not in S502. After the public key of the Internet of Things device B is encrypted, the Internet of Things device B decrypts the received transaction data sent by the Internet of Things A, and then calculates the hash value of the decrypted data, and the IoT device obtains the obtained data. After the hash of the data, compare the two hash values.

Alternatively, if the transaction data sent by the Internet of Things device A to the Internet of Things device B in S501 is not encrypted by the public key of the Internet of Things device B, and the transaction data sent by the Internet of Things device A to the second device in S502 is also IoT device B without being encrypted by the public key of IoT device B The hash value of the transaction data sent by the received IoT device A and the hash value of the acquired data are directly calculated, and then the two hash values are compared.

Alternatively, if the transaction data sent by the Internet of Things device A to the Internet of Things device B in S501 is not encrypted by the public key of the Internet of Things device B, and the transaction data sent by the Internet of Things device A to the second device in S502 is After the public key of the Internet of Things device B is encrypted, the IoT device B first decrypts the acquired data, and then calculates the hash value of the decrypted data, and the IoT device receives the received IoT device B and sends it. After hashing the transaction data, compare the two hash values.

It should be noted that the data acquired by the Internet of Things device B is complete, indicating that the data acquired by the Internet of Things device B is the same as the transaction data, that is, the transaction data has been authenticated N times in the blockchain network. After that, it was not maliciously modified.

In all of the above embodiments, the different data generated by the IoT device may have different storage requirements, so the data may be further processed according to the storage requirements of the data. Taking the peer device of the Internet of Things device as an example of the Internet of Things device as an example, a blockchain-based data processing method according to still another embodiment of the present application is described. For convenience of description, the interactive IoT devices are respectively marked as the Internet of Things. Device A and IoT Device B. As shown in FIG. 7, method 600 includes:

S601, the Internet of Things device A and the Internet of Things device B determine that the transaction data of both parties has been recorded in the blockchain network;

Optionally, on the one hand, the Internet of Things device A and the Internet of Things device B determine that the transaction data of both parties has been recorded in the blockchain network, and on the other hand, the Internet of Things device A and the Internet of Things device B can further obtain corresponding to the transaction data. Merkle tree information and block information for the data. Specifically, the proxy node A sends the indication information that the transaction completes the verification through the blockchain network to the IoT device A, and carries the Merkle tree information and the block information. In addition, the proxy node A or the proxy node B transmits the information of the transaction completion verification to the Internet of Things device B, and carries the Merkle tree information and the block information.

S602, the Internet of Things device A and/or the Internet of Things device B determines that data corresponding to the transaction data can be deleted from the blockchain network;

Optionally, the IoT device A determines that the data corresponding to the transaction data may be deleted from the blockchain network according to the preset storage duration of the transaction data, or the IoT device B determines the correspondence with the transaction data according to the preset storage duration of the transaction data. The data can be deleted from the blockchain network, or the IoT device A and the IoT device B can determine by negotiation that the data corresponding to the transaction data can be from the blockchain. Deleted in the network.

S603. The Internet of Things device A and/or the Internet of Things device B send deletion indication information to devices in the blockchain network.

Optionally, the deletion indication information may include Merkle tree information and block information corresponding to the data corresponding to the transaction data.

Optionally, the IoT device A sends the deletion indication information to the device in the blockchain network by using the second device to implement data deletion. It should be noted that, although the second device sends the deletion indication information to the device in the blockchain network, the second device may obtain the verification right to delete the data, just like other devices in the blockchain network.

S604. The device in the blockchain network that receives the deletion indication information sent by the Internet of Things device A or the Internet of Things device B broadcasts the deletion indication information in the blockchain network to implement deletion of data corresponding to the transaction data.

Optionally, after the deletion indication information broadcasts in the blockchain network, the devices in the blockchain network start to compete for the authentication right, and the device that obtains the authentication right confirms that the transaction data can be deleted when generating a new blockchain. corresponding. For example, according to the Merkle tree information and the block information in the deletion indication information, the specific location of the data corresponding to the transaction data in the block is determined, and the data corresponding to the transaction data is deleted when the blockchain is generated, or The indication information is deleted as special transaction data. After the authentication by the N devices in the blockchain network, the device that obtains the authentication right by the Nth deletes the data corresponding to the transaction data.

It should be noted that other devices in the blockchain network in the method 600 can be considered as referring to the proxy device of the Internet of Things device B.

Thereby, the storage load of the blockchain network can be reduced, and the transmission bandwidth required for the transmission of the blockchain can be reduced.

The block-based data processing method according to the embodiment of the present application is described in detail with reference to FIG. 2 to FIG. 7. The device according to the embodiment of the present application is described in detail below with reference to FIG. 8. As shown in FIG. 8, the device 10 includes:

The processing module 11 is configured to establish a communication connection between the device and the second device, where the second device is a device in a blockchain network;

The processing module 11 is further configured to generate and determine that the first data needs to be authenticated in the blockchain network;

The transceiver module 12 is configured to send the first data to the second device to implement the first The data is authenticated by devices in the blockchain network.

Therefore, when the device according to the embodiment of the present application generates the first data that needs to be authenticated in the blockchain network, the first data is sent to the second device in the blockchain network, so that the second device sends the first data. The device in the blockchain network is authenticated by the first data. By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the second device sends the data of the device to the device in the blockchain network for authentication, which can reduce the capability requirement for the device.

In the embodiment of the present application, the transceiver module 12 is specifically configured to: send, to the second device, a first message encrypted by using a first public key, where the first message includes first information, The first public key is a public key of the second device, and the first information is used to request the second device to send data generated by the device that needs to be authenticated in the blockchain network to The device in the blockchain network performs authentication; receiving second information sent by the second device, where the second information is used to indicate that the second device confirms that the device needs to be generated in the area The data authenticated in the blockchain network is sent to devices in the blockchain network for authentication.

In the embodiment of the present application, optionally, the first message further includes a second public key, where the second public key is a public key of the device.

In the embodiment of the present application, the transceiver module 12 is specifically configured to: receive the second information that is sent by the second device and that is encrypted by using the second public key.

In the embodiment of the present application, the processing module 11 is further configured to: generate a block that carries the first data;

The transceiver module 12 is specifically configured to send the block to the second device.

In the embodiment of the present application, the transceiver module 12 is further configured to: receive third information sent by the second device, where the third information includes a first hash HASH value requirement;

The processing module 11 is further configured to generate a first HASH value that meets the first HASH value requirement.

In the embodiment of the present application, optionally, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value is required to correspond to at least one type of service;

The processing module 11 is further configured to: determine the first HASH value according to the service type corresponding to the first data.

In the embodiment of the present application, optionally, the third information includes at least one HASH value. The requesting, the at least one HASH value requirement includes the first HASH value requirement, and each of the at least one HASH value requirement is required to correspond to at least one device group;

The processing module 11 is further configured to: determine, according to the device group to which the device belongs, the first HASH value.

In the embodiment of the present application, the transceiver module 12 is further configured to: send, to the third device, a second HASH value related to the first data, where the second HASH value is used in the third The device determines the integrity of the second data, and the second data is the authenticated data of the first data in the blockchain network.

In the embodiment of the present application, optionally, the first data is encrypted by a public key of the third device.

In the embodiment of the present application, the processing module is further configured to: determine the second HASH value according to the first data.

In the embodiment of the present application, optionally, the first data is encrypted by a public key of the third device, and the transceiver module 12 is further configured to: send the first data to the third device, After the third device determines the second HASH value according to the first data, determining the integrity of the second data according to the second HASH value, where the second data is the first data in the block. The authenticated data in the chain network.

In the embodiment of the present application, the transceiver module 12 is further configured to: receive fourth information sent by the second device, where the fourth information is used to indicate that the first data is already in the area After N times of authentication in the blockchain network, the value of N is a preset value.

In the embodiment of the present application, the transceiver module 12 is further configured to: receive the Merkel tree information and the block information corresponding to the second data sent by the second device, where the second data is The first data is authenticated data in the blockchain network, and the block information is used to indicate a block carrying the second data in the blockchain network.

In the embodiment of the present application, optionally, the processing module 11 is further configured to: determine to delete the second data from the blockchain network, where the second data is the first data in the blockchain network The certified data;

The transceiver module 12 is further configured to send fifth information to a device in the blockchain network, where the fifth information is used to indicate that a device in the blockchain network is deleted from the blockchain network. Second data.

In the embodiment of the present application, optionally, the fifth information includes identification information and/or a second number. The identification information is used to identify the second data according to the corresponding Merkle tree information.

In the embodiment of the present application, the processing module 11 is further configured to: delete the first data stored locally by the device.

It should be understood that the device 10 in the embodiment of the present invention is embodied in the form of a functional unit. In an alternative example, those skilled in the art may understand that the device 10 may correspond to the first device in some of the foregoing embodiments, and may be used to perform various processes and/or corresponding to the first device in the foregoing method embodiments. Steps, to avoid repetition, will not be repeated here.

Specifically, in the embodiment of the present invention, the processing module 11 can be implemented by a processor. The transceiver module 12 can be implemented by a transceiver. It should be understood that the transceiver can be a device having both a receiving function and a transmitting function, or a component device having a receiving function and a transmitting device having a transmitting function.

FIG. 9 shows a device according to another embodiment of the present application. As shown in FIG. 9, the device 20 includes:

The processing module 21 is configured to establish a communication connection between the device and the first device, where the device is a device in a blockchain network;

The transceiver module 22 is configured to receive, by the first device, the first data generated by the first device that needs to be authenticated in the blockchain network;

The transceiver module 22 is further configured to send the first data to a device in the blockchain network to implement authentication of the first data.

Therefore, the device according to the embodiment of the present application receives the first data generated by the first device that needs to be authenticated in the blockchain network, and sends the first data to the device in the blockchain network to implement authentication of the first data. . By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the device sends the data of the first device to the device in the blockchain network for authentication, which can reduce the capability requirement for the first device.

In the embodiment of the present application, the transceiver module 22 is specifically configured to: receive the first message that is sent by the first device and that is encrypted by using the first public key, where the first message includes the first information. The first public key is a public key of the device, and the first information is used to request the device to send data generated by the first device that needs to be authenticated in the blockchain network to the device. The device in the blockchain network performs authentication; the second information is sent to the first device, where the second information is used to indicate that the device confirms that the first device needs to be generated in the blockchain The data authenticated in the network is sent to devices in the blockchain network for authentication.

In the embodiment of the present application, optionally, the first message further includes a second public key, where the The second public key is the public key of the first device.

In the embodiment of the present application, the transceiver module 22 is specifically configured to: send, to the first device, the second information encrypted by using the second public key.

In the embodiment of the present application, the processing module 21 is further configured to: generate a preset number of digital currencies.

In the embodiment of the present application, optionally, the transceiver module 22 is further configured to: send information about the digital currency to a device in the blockchain network;

The processing module 21 is further configured to: if it is determined that the digital currency has undergone M authentication in the blockchain network, confirm that the digital currency is valid, and the value of M is a preset value.

In the embodiment of the present application, the transceiver module 22 is specifically configured to: receive a block that is sent by the first device and that carries the first data; and send the device to a device in the blockchain network. A block carrying the first data.

In the embodiment of the present application, the processing module 21 is further configured to: generate a block that carries the first data according to a block format required by the blockchain network;

The transceiver module 22 is further configured to send the block that carries the first data to a device in the blockchain network.

In the embodiment of the present application, the processing module 21 is further configured to: determine a first hash HASH value requirement;

The transceiver module 22 is configured to send the third information to the first device, where the third information includes the first HASH value requirement, so that the first device generates the first HASH value that is satisfied. After the required first HASH value, a communication connection is established with the device.

In the embodiment of the present application, optionally, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value is required to correspond to at least one type of service;

The processing module 21 is specifically configured to: determine the at least one HASH value requirement.

In the embodiment of the present application, optionally, the third information includes at least one HASH value requirement, where the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value is required to correspond to at least one device group;

The processing module 21 is specifically configured to: determine the at least one HASH value requirement.

In the embodiment of the present application, the transceiver module 22 is further configured to: receive a second HASH value that is sent by the first device and is related to the first data, where the second HASH value is used. The third device determines the integrity of the second data, where the second data is the authenticated data of the first data in the blockchain network; and the second HASH value is sent to the third device.

In the embodiment of the present application, optionally, the first data is encrypted by a public key of the third device.

In the embodiment of the present application, optionally, the second HASH value is determined by the first device according to the first data.

In the embodiment of the present application, optionally, the first data is encrypted by a public key of the third device, and the transceiver module 22 is further configured to: receive the first data; and send the third device to the third device Transmitting the first data, so that the third device determines the integrity of the second data according to the second HASH value after determining the second HASH value according to the first data, where the second data is the A data is authenticated in the blockchain network.

In the embodiment of the present application, the transceiver module 22 is further configured to: if the processing module 21 determines that the first data has been authenticated N times in the blockchain network, to the The third device sends the second data corresponding to the Merkel tree information and the block information, where the block information is used to indicate the block in the blockchain network that carries the second data, and the second data is the A data is authenticated in the blockchain network.

In the embodiment of the present application, the transceiver module 22 is further configured to: if the processing module 21 determines that the first data has been authenticated N times in the blockchain network, to the A device sends a fourth information, where the fourth information is used to indicate that the first data has been authenticated N times in the blockchain network, where the value of N is a preset value.

In the embodiment of the present application, the transceiver module 22 is further configured to: if the processing module 21 determines that the first data has been authenticated N times in the blockchain network, to the a device sends the Merkle tree information and the block information corresponding to the second data, where the block information is used to indicate a block carrying the second data in the blockchain network, and the second data is the first data in the The authenticated data in the blockchain network.

In the embodiment of the present application, the transceiver module 22 is further configured to: receive fifth information sent by the first device, where the fifth information is used to indicate that the device in the blockchain network is The second data is deleted in the blockchain network, and the second data is the authenticated data of the first data in the blockchain network.

In the embodiment of the present application, optionally, the fifth information includes the identification information and/or the Merkle tree information corresponding to the second data, where the identifier information is used to identify the second data.

It should be understood that the device 20 in the embodiment of the present invention is embodied in the form of a functional unit. In an alternative example, those skilled in the art may understand that the device 20 may correspond to the second device in some of the foregoing embodiments, and may be used to perform various processes and/or corresponding to the second device in the foregoing method embodiments. Steps, to avoid repetition, will not be repeated here.

Specifically, in the embodiment of the present invention, the processing module 21 can be implemented by a processor. The transceiver module 22 can be implemented by a transceiver. It should be understood that the transceiver may be a device having both a receiving function and a transmitting function, or a component device having a receiving function and a transmitting device having a transmitting function.

FIG. 10 shows a device according to still another embodiment of the present application. As shown in FIG. 10, the device 30 includes:

The transceiver module 31 is configured to acquire Merck's Merkle tree information and block information corresponding to the second data, where the block information is used to indicate a block in the blockchain network that carries the second data, where the second data is The first data is authenticated data in the blockchain network, and the first data is data generated by the first device that needs to be authenticated in the blockchain network;

The transceiver module 31 is further configured to acquire second data from a block that carries the second data according to the Merkle tree information;

The processing module 32 is configured to determine the integrity of the second data.

Therefore, the device according to the present application can obtain, according to the received Merkle tree information and the block information, a first stored in the blockchain network corresponding to the first data generated by the first device that needs to be authenticated in the blockchain network. Two data and confirm the integrity of the second data. Thereby, the confidentiality and integrity of the data can be ensured, and the data stored in the blockchain network has higher reliability.

In the embodiment of the present application, optionally, if the second data is complete, the transceiver module 31 is further configured to: send confirmation information to a device in the blockchain network, where the confirmation information is used to indicate The second data is complete.

In the embodiment of the present application, the transceiver module 31 is specifically configured to: receive the Merkle tree information and the block information sent by the second device, where the second device is the block A device in a chain network.

In the embodiment of the present application, optionally, the second device is a device that sends the first data to the blockchain network for recognition.

In the embodiment of the present application, the processing module 32 is further configured to: determine a second hash HASH value associated with the first data; and according to a third HASH value associated with the second data The consistency of the second HASH value determines the integrity of the second data.

In the embodiment of the present application, the processing module 32 is specifically configured to: receive the second HASH value, where the second HASH value is determined by the first device according to the first data. of.

In the embodiment of the present application, optionally, the first data is encrypted by a public key of the device.

In the embodiment of the present application, optionally, the first data is encrypted by the public key of the device, and the transceiver module 31 is further configured to: receive the first data sent by the first device. ;

The processing module 32 is specifically configured to: determine the second HASH value according to the first data.

In the embodiment of the present application, the processing module 32 is further configured to: determine to delete the second data from the blockchain network;

The transceiver module 31 is further configured to send, to the device in the blockchain network, fifth information, where the fifth information is used to indicate that a device in the blockchain network is deleted from the blockchain network. Second data.

In the embodiment of the present application, optionally, the fifth information includes the identification information and/or the Merkle tree information corresponding to the second data, where the identifier information is used to identify the second data.

It should be understood that the device 30 in the embodiment of the present invention is embodied in the form of a functional unit. In an alternative example, those skilled in the art may understand that the device 30 may correspond to the Internet of Things device B in some embodiments described above, and may be used to perform various processes corresponding to the Internet of Things device B in the foregoing method embodiments. / or steps, in order to avoid repetition, will not repeat them here.

Specifically, in the embodiment of the present invention, the processing module 32 can be implemented by a processor. The transceiver module 31 can be implemented by a transceiver. It should be understood that the transceiver may be a device having both a receiving function and a transmitting function, or a component device having a receiving function and a transmitting device having a transmitting function.

Figure 11 illustrates an apparatus in accordance with yet another embodiment of the present application. As shown in FIG. 11, the device 100 includes a processor 110 and a transceiver 120. The processor 110 is coupled to the transceiver 120. Optionally, the device 100 further includes a memory 130 coupled to the processor 110. The processor 110, the memory 130, and the transceiver 120 can communicate with each other through an internal connection path. The processor 110 is configured to establish a communication connection between the device and the second device, where the second device is a device in a blockchain network, and the processor 110 is further configured to generate and determine that the first data needs to be in the In the blockchain network And the transceiver 120 is configured to send the first data to the second device, so that the first data is authenticated by a device in the blockchain network.

Therefore, when the device according to the embodiment of the present application generates the first data that needs to be authenticated in the blockchain network, the first data is sent to the second device in the blockchain network, so that the second device sends the first data. The device in the blockchain network is authenticated by the first data. By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the second device sends the data of the device to the device in the blockchain network for authentication, which can reduce the capability requirement for the device.

The device 100 according to the embodiment of the present application may refer to the device 10 corresponding to the embodiment of the present application, and the respective units/modules in the device and the other operations and/or functions described above are respectively for the corresponding processes in the foregoing methods, for the sake of brevity, This will not be repeated here.

FIG. 12 is a schematic block diagram of a device according to still another embodiment of the present application. As shown in FIG. 12, the device 200 includes a processor 210 and a transceiver 220. The processor 210 and the transceiver 220 are connected, optionally, The device 200 also includes a memory 230 that is coupled to the processor 210. The processor 210, the memory 230, and the transceiver 220 can communicate with each other through an internal connection path. The processor 210 is configured to establish a communication connection between the device and the first device, where the device is a device in a blockchain network, and the transceiver 220 is configured to receive the sending by the first device. The first data generated by the first device that needs to be authenticated in the blockchain network; the transceiver 220 is further configured to send the first data to a device in the blockchain network, to implement Authentication of the first data.

Therefore, the device according to the embodiment of the present application receives the first data generated by the first device that needs to be authenticated in the blockchain network, and sends the first data to the device in the blockchain network to implement authentication of the first data. . By using the blockchain network to authenticate data, the construction and maintenance costs of the communication system can be reduced, and the security performance of the system can be improved. And the device sends the data of the first device to the device in the blockchain network for authentication, which can reduce the capability requirement for the first device.

The device 200 according to the embodiment of the present application may refer to the device 20 corresponding to the embodiment of the present application, and each unit/module in the device and the other operations and/or functions described above are respectively for the corresponding processes in the foregoing method, for the sake of brevity, This will not be repeated here.

FIG. 13 is a schematic block diagram of a device according to still another embodiment of the present application. As shown in FIG. 13, the device 300 includes a processor 310 and a transceiver 320. The processor 310 is connected to the transceiver 320, optionally, The device 300 also includes a memory 330 that is coupled to the processor 310. The processor 310, the memory 330, and the transceiver 320 can communicate with each other through an internal connection path. The transceiver 320 is configured to acquire Merck's Merkle tree information and block information corresponding to the second data, where the block information is used to indicate a block in the blockchain network that carries the second data. The second data is the authenticated data of the first data in the blockchain network, and the first data is data generated by the first device that needs to be authenticated in the blockchain network; The transceiver 320 is further configured to obtain the second data from the block that carries the second data according to the Merkle tree information, where the processor 310 is configured to determine the integrity of the second data.

Therefore, the device according to the present application can obtain, according to the received Merkle tree information and the block information, a first stored in the blockchain network corresponding to the first data generated by the first device that needs to be authenticated in the blockchain network. Two data and confirm the integrity of the second data. Thereby, the confidentiality and integrity of the data can be ensured, and the data stored in the blockchain network has higher reliability.

The device 300 according to the embodiment of the present application may refer to the device 30 corresponding to the embodiment of the present application, and each unit/module in the device and the other operations and/or functions described above are respectively for the corresponding processes in the foregoing method, for the sake of brevity, This will not be repeated here.

It can be understood that the processor in the embodiment of the present application may be an integrated circuit chip with signal processing capability. The processor may be a general-purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a Field Programmable Gate Array (FPGA), or the like. Programming logic devices, discrete gates or transistor logic devices, discrete hardware components. The methods, steps, and logical block diagrams disclosed in the embodiments of the present application can be implemented or executed. The general purpose processor may be a microprocessor or the processor or any conventional processor or the like.

The memory in the embodiments of the present application may be a volatile memory or a non-volatile memory, or may include both volatile and non-volatile memory. The non-volatile memory may be a read-only memory (ROM), a programmable read only memory (PROM), an erasable programmable read only memory (Erasable PROM, EPROM), or an electric Erase programmable read only memory (EEPROM) or flash memory. The volatile memory can be a Random Access Memory (RAM) that acts as an external cache. By way of example and not limitation, many forms of RAM are available, such as static random access memory (SRAM), dynamic random access memory (DRAM), synchronous dynamic random access memory (Synchronous DRAM). SDRAM), double data rate synchronous dynamic random access memory (Double Data Rate SDRAM, DDR SDRAM), Enhanced Synchronous Dynamic Random Access Memory (ESDRAM), Synchronous Connection Dynamic Random Access Memory (SDRAM), and Direct Memory Bus (DR RAM). It should be noted that the memories of the systems and methods described herein are intended to comprise, without being limited to, these and any other suitable types of memory.

Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the various examples described in connection with the embodiments disclosed herein can be implemented in electronic hardware or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the solution. A person skilled in the art can use different methods to implement the described functions for each particular application, but such implementation should not be considered to be beyond the scope of the present application.

A person skilled in the art can clearly understand that for the convenience and brevity of the description, the specific working process of the system, the device and the unit described above can refer to the corresponding process in the foregoing method embodiment, and details are not described herein again.

In the several embodiments provided by the present application, it should be understood that the disclosed systems, devices, and methods may be implemented in other manners. For example, the device embodiments described above are merely illustrative. For example, the division of the unit is only a logical function division. In actual implementation, there may be another division manner, for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in an electrical, mechanical or other form.

The units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.

The functions may be stored in a computer readable storage medium if implemented in the form of a software functional unit and sold or used as a standalone product. Based on such understanding, the technical solution of the present application or the part contributing to the prior art or the part of the technical solution may be embodied in the form of a software product stored in a storage medium. A number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in various embodiments of the present application. The foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .

The foregoing is only a specific embodiment of the present application, but the scope of protection of the present application is not limited thereto, and any person skilled in the art can easily think of changes or substitutions within the technical scope disclosed in the present application. It should be covered by the scope of protection of this application. Therefore, the scope of protection of the present application should be determined by the scope of the claims.

Claims (95)

1. A blockchain-based data processing method, comprising:

   The first device establishes a communication connection with the second device, where the second device is a device in the blockchain network;

   Determining, by the first device, that the first data generated by the first device needs to be authenticated in the blockchain network;

   The first device sends the first data to the second device, so that the first data is authenticated by a device in the blockchain network.
2. The method according to claim 1, wherein the first device establishes a communication connection with the second device, including:

   Transmitting, by the first device, the first message that is encrypted by using the first public key to the second device, where the first message includes first information, where the first public key is a public key of the second device The first information is used to request the second device to send data generated by the first device that needs to be authenticated in the blockchain network to a device in the blockchain network for authentication;

   The first device receives the second information sent by the second device, where the second information is used to indicate that the second device confirms that the need generated by the first device is performed in the blockchain network. The authenticated data is sent to devices in the blockchain network for authentication.
3. The method according to claim 2, wherein the first message further comprises a second public key, and the second public key is a public key of the first device.
4. The method according to claim 3, wherein the receiving, by the first device, the second information sent by the second device comprises:

   The first device receives the second information that is sent by the second device and is encrypted by using the second public key.
5. The method according to any one of claims 1 to 4, wherein the transmitting, by the first device, the first data to the second device comprises:

   The first device generates a block that carries the first data;

   The first device sends the block to the second device.
6. The method according to any one of claims 1 to 5, wherein before the establishing a communication connection between the first device and the second device, the method further comprises:

   Receiving, by the first device, third information sent by the second device, where the third information includes a first hash HASH value requirement;

   The first device generates a first HASH value that satisfies the first HASH value requirement.
7. The method according to claim 6, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one type of service;

   The method further includes: before the first device generates the first HASH value that meets the requirement of the first HASH value, the method further includes:

   The first device determines the first HASH value according to the service type corresponding to the first data.
8. The method according to claim 6, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one device group;

   The method further includes: before the first device generates the first HASH value that meets the requirement of the first HASH value, the method further includes:

   The first device determines the first HASH value according to the device group to which the first device belongs.
9. The method according to any one of claims 1 to 8, wherein the method further comprises:

   Transmitting, by the first device, a second HASH value related to the first data to a third device, where the second HASH value is used by the third device to determine integrity of the second data, where the second data is The first data is authenticated data in the blockchain network.
10. The method of claim 9 wherein said first data is encrypted via a public key of said third device.
11. The method according to claim 9 or 10, wherein the method further comprises:

    The first device determines the second HASH value according to the first data.
12. The method according to any one of claims 1 to 8, wherein the first data is encrypted by a public key of a third device, the method further comprising:

    The first device sends the first data to the third device, so that the third device determines the second data according to the second HASH value after determining the second HASH value according to the first data. Integrity, the second data is that the first data is authenticated in the blockchain network The data.
13. The method according to any one of claims 1 to 12, further comprising:

    The first device receives the fourth information sent by the second device, where the fourth information is used to indicate that the first data has been authenticated N times in the blockchain network, and the value of N is preset. value.
14. The method according to any one of claims 1 to 12, further comprising:

    Receiving, by the first device, Merkel tree information and block information corresponding to the second data sent by the second device, where the second data is that the first data is authenticated in the blockchain network Data, the block information is used to indicate a block carrying the second data in the blockchain network.
15. The method according to any one of claims 1 to 14, wherein the method further comprises:

    Determining, by the first device, the second data from the blockchain network, where the second data is data that is authenticated by the first data in the blockchain network;

    The first device sends fifth information to the device in the blockchain network, where the fifth information is used to indicate that the device in the blockchain network deletes the second data from the blockchain network.
16. The method according to claim 15, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, and the identification information is used to identify the second data.
17. The method according to any one of claims 1 to 16, wherein the method further comprises:

    The first device deletes the first data stored locally by the first device.
18. A blockchain-based data processing method, comprising:

    The second device establishes a communication connection with the first device, where the second device is a device in the blockchain network;

    Receiving, by the second device, the first data that is generated by the first device and needs to be authenticated in the blockchain network;

    The second device sends the first data to a device in the blockchain network to implement authentication of the first data.
19. The method of claim 18, wherein the establishing, by the second device, the communication connection with the first device comprises:

    The second device receives the first message that is sent by the first device and is encrypted by using the first public key, where the first message includes the first information, and the first public key is the public of the second device. Key, the first information is used to request the second device to send data generated by the first device that needs to be authenticated in the blockchain network to a device in the blockchain network for authentication;

    The second device sends the second information to the first device, where the second information is used to indicate that the second device confirms that the first device needs to be authenticated in the blockchain network. The data is sent to devices in the blockchain network for authentication.
20. The method according to claim 19, wherein the first message further comprises a second public key, and the second public key is a public key of the first device.
21. The method according to claim 20, wherein the sending, by the second device, the second information to the first device comprises:

    The second device sends the second information encrypted by the second public key to the first device.
22. The method according to any one of claims 18 to 21, wherein after the second device establishes a communication connection with the first device, the method further comprises:

    The second device generates a preset number of digital currencies.
23. The method of claim 22, wherein the method further comprises:

    Transmitting, by the second device, related information of the digital currency to a device in the blockchain network;

    If the second device determines that the digital currency has undergone M authentication in the blockchain network, the second device confirms that the digital currency is valid, and the value of M is a preset value.
24. The method according to any one of claims 18 to 23, wherein the second device receives, by the first device, that is generated by the first device and needs to be authenticated in the blockchain network. The first data, including:

    Receiving, by the second device, a block that is sent by the first device and that carries the first data;

    The sending, by the second device, the first data to a device in the blockchain network, including:

    The second device sends the block carrying the first data to a device in the blockchain network.
25. The method according to any one of claims 18 to 23, wherein the transmitting, by the second device, the first data to a device in the blockchain network comprises:

    The second device generates a block that carries the first data according to a block format required by the blockchain network;

    The second device sends the block carrying the first data to a device in the blockchain network.
26. The method according to any one of claims 18 to 25, wherein before the second device establishes a communication connection with the first device, the method further comprises:

    The second device determines a first hash HASH value requirement;

    The second device sends the third information to the first device, where the third information includes the first HASH value requirement, so that the first device generates the first one that meets the first HASH value requirement. After the HASH value, a communication connection is established with the second device.
27. The method according to claim 26, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one type of service;

    The second device determines a first hash HASH value requirement, including:

    The second device determines the at least one HASH value requirement.
28. The method according to claim 26, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one device group;

    The second device determines a first hash HASH value requirement, including:

    The second device determines the at least one HASH value requirement.
29. The method according to any one of claims 18 to 28, wherein the method further comprises:

    The second device receives a second HASH value that is sent by the first device and is related to the first data, where the second HASH value is used by the third device to determine the integrity of the second data, where the second data is Determining the authenticated data of the first data in the blockchain network;

    The second device sends the second HASH value to the third device.
30. The method of claim 29 wherein said first data is encrypted via a public key of said third device.
31. The method according to claim 29 or 30, wherein said second HASH The value is determined by the first device based on the first data.
32. The method according to any one of claims 18 to 27, wherein the first data is encrypted by a public key of the third device, the method further comprising:

    The second device receives the first data;

    The second device sends the first data to the third device, so that the third device determines the second data according to the second HASH value after determining the second HASH value according to the first data. The integrity of the second data is the authenticated data of the first data in the blockchain network.
33. The method according to any one of claims 18 to 32, wherein the method further comprises:

    If the second device determines that the first data has been authenticated N times in the blockchain network, the second device sends the second data corresponding to the Merkel tree information and area to the third device. Block information, the block information is used to indicate a block that carries the second data in the blockchain network, and the second data is data that is authenticated by the first data in the blockchain network. Where N is the default value.
34. The method according to any one of claims 18 to 33, wherein the method further comprises:

    If the second device determines that the first data has been authenticated N times in the blockchain network, the second device sends fourth information to the first device, where the fourth information is used to indicate The first data has been authenticated N times in the blockchain network, where the value of N is a preset value.
35. The method according to any one of claims 18 to 33, wherein the method further comprises:

    If the second device determines that the first data has been authenticated N times in the blockchain network, the second device sends the Merkle tree information and the block information corresponding to the second data to the first device. The block information is used to indicate a block that carries the second data in the blockchain network, and the second data is the authenticated data of the first data in the blockchain network, where, The value is the default value.
36. The method according to any one of claims 18 to 35, wherein the method further comprises:

    The second device receives the fifth information sent by the first device, where the fifth information is used to refer to The device in the blockchain network deletes the second data from the blockchain network, and the second data is the authenticated data of the first data in the blockchain network.
37. The method according to claim 36, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, and the identification information is used to identify the second data.
38. A blockchain-based data processing method, comprising:

    The third device acquires the Merkel tree information and the block information corresponding to the second data, where the block information is used to indicate the block in the blockchain network that carries the second data, where the second data is the Data that is authenticated in the blockchain network, the first data being data generated by the first device that needs to be authenticated in the blockchain network;

    The third device acquires second data from the block that carries the second data according to the Merkle tree information;

    The third device determines the integrity of the second data.
39. The method according to claim 38, wherein if the third device confirms that the second data is complete, the method further includes:

    The third device sends an acknowledgement message to the device in the blockchain network, where the acknowledgement information is used to indicate that the second data is complete.
40. The method according to claim 38 or 39, wherein the third device acquires the Merkel tree information and the block information corresponding to the second data, including:

    The third device receives the Merkle tree information and the block information sent by the second device, where the second device is a device in the blockchain network.
41. The method according to claim 40, wherein said second device is a device for transmitting said first data to said blockchain network for authentication.
42. The method according to any one of claims 38 to 41, wherein the method further comprises:

    The third device determines a second hash HASH value associated with the first data;

    The third device determines the integrity of the second data, including:

    The third device determines the integrity of the second data according to the consistency of the third HASH value and the second HASH value associated with the second data.
43. The method according to claim 42, wherein the third device determines a second hash HASH value associated with the first data, comprising:

    The third device receives the second HASH value, where the second HASH value is determined by the first device according to the first data.
44. The method of claim 43 wherein said first data is encrypted via a public key of said third device.
45. The method according to claim 42, wherein the first data is encrypted by a public key of the third device, the method further comprising:

    Receiving, by the third device, the first data sent by the first device;

    The third device determines a second hash HASH value associated with the first data, including:

    The third device determines the second HASH value according to the first data.
46. The method according to any one of claims 38 to 45, wherein the method further comprises:

    The third device determines to delete the second data from the blockchain network;

    The third device sends fifth information to the device in the blockchain network, where the fifth information is used to indicate that the device in the blockchain network deletes the second data from the blockchain network.
47. The method according to claim 46, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, and the identification information is used to identify the second data.
48. An apparatus, comprising:

    a processing module, configured to establish a communication connection between the device and the second device, where the second device is a device in a blockchain network;

    The processing module is further configured to generate and determine that the first data needs to be authenticated in the blockchain network;

    And a transceiver module, configured to send the first data to the second device, to implement that the first data is authenticated by a device in the blockchain network.
49. The device according to claim 48, wherein the transceiver module is specifically configured to:

    Transmitting, by the second device, a first message that is encrypted by using a first public key, where the first message includes first information, where the first public key is a public key of the second device, the first The information is used to request the second device to send data generated by the device that needs to be authenticated in the blockchain network to a device in the blockchain network for authentication;

    Receiving, by the second device, second information, where the second information is used to indicate that the second device confirms that data generated by the device that needs to be authenticated in the blockchain network is sent to the The devices in the blockchain network are authenticated.
50. The device according to claim 49, wherein the first message further comprises a second public key, and the second public key is a public key of the device.
51. The device according to claim 50, wherein the transceiver module is specifically configured to:

    Receiving, by the second device, the second information encrypted by using the second public key.
52. The device according to any one of claims 48 to 51, wherein the processing module is further configured to: generate a block that carries the first data;

    The transceiver module is specifically configured to send the block to the second device.
53. The device according to any one of claims 48 to 52, wherein the transceiver module is further configured to:

    Receiving, by the second device, third information, where the third information includes a first hash HASH value requirement;

    The processing module is further configured to generate a first HASH value that meets the first HASH value requirement.
54. The device according to claim 53, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one type of service;

    The processing module is further configured to:

    Determining the first HASH value according to the service type corresponding to the first data.
55. The device according to claim 53, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one device group;

    The processing module is further configured to:

    Determining the first HASH value according to the device group to which the device belongs.
56. The device according to any one of claims 49 to 55, wherein the transceiver module is further configured to:

    Sending, to the third device, a second HASH value related to the first data, where the second HASH value is used by the third device to determine integrity of the second data, where the second data is The authenticated data in the blockchain network.
57. The device according to claim 56, wherein said first data is encrypted by a public key of said third device.
58. The device according to claim 56 or 57, wherein the processing module is further configured to: determine the second HASH value according to the first data.
59. The device according to any one of claims 49 to 55, wherein the first data is encrypted by a public key of the third device, and the transceiver module is further configured to:

    Transmitting the first data to the third device, so that the third device determines the integrity of the second data according to the second HASH value after determining the second HASH value according to the first data, The two data is the authenticated data of the first data in the blockchain network.
60. The device according to any one of claims 48 to 59, wherein the transceiver module is further configured to:

    Receiving fourth information sent by the second device, where the fourth information is used to indicate that the first data has been authenticated N times in the blockchain network, and the value of N is a preset value.
61. The device according to any one of claims 48 to 59, wherein the transceiver module is further configured to:

    Receiving Merkel's Merkle tree information and block information corresponding to the second data sent by the second device, where the second data is the authenticated data of the first data in the blockchain network, the area The block information is used to indicate a block carrying the second data in the blockchain network.
62. The device according to any one of claims 48 to 61, wherein the processing module is further configured to: determine to delete second data from the blockchain network, the second data being the first data The authenticated data in the blockchain network;

    The transceiver module is further configured to send fifth information to a device in the blockchain network, where the fifth information is used to indicate that a device in the blockchain network is deleted from the blockchain network. Two data.
63. The device according to claim 62, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, and the identification information is used to identify the second data.
64. Apparatus according to any one of claims 48 to 63, wherein said The management module is further configured to: delete the first data stored locally by the device.
65. An apparatus, comprising:

    a processing module, configured to establish a communication connection between the device and the first device, where the device is a device in a blockchain network;

    a transceiver module, configured to receive, by the first device, first data generated by the first device and required to be authenticated in the blockchain network;

    The transceiver module is further configured to send the first data to a device in the blockchain network to implement authentication of the first data.
66. The device according to claim 65, wherein the transceiver module is specifically configured to:

    Receiving, by the first device, a first message that is encrypted by using a first public key, where the first message includes first information, where the first public key is a public key of the device, and the first information is And configured to request the device to send, by the first device, data that needs to be authenticated in the blockchain network to a device in the blockchain network for authentication;

    Transmitting, to the first device, second information, where the second information is used to indicate that the device confirms that data generated by the first device that needs to be authenticated in the blockchain network is sent to the area Devices in the blockchain network are authenticated.
67. The device according to claim 66, wherein the first message further comprises a second public key, and the second public key is a public key of the first device.
68. The device according to claim 67, wherein the transceiver module is specifically configured to: send, to the first device, the second information encrypted by using the second public key.
69. The device according to any one of claims 65 to 68, wherein the processing module is further configured to generate a preset number of digital currencies.
70. The device according to claim 69, wherein the transceiver module is further configured to: send information about the digital currency to a device in the blockchain network;

    The processing module is further configured to: if it is determined that the digital currency has undergone M authentication in the blockchain network, confirm that the digital currency is valid, and the value of M is a preset value.
71. The device according to any one of claims 65 to 70, wherein the transceiver module is specifically configured to:

    Receiving, by the first device, a block that carries the first data;

    Transmitting the block carrying the first data to a device in the blockchain network.
72. The device according to any one of claims 65 to 70, wherein the processing module is further configured to: generate a block that carries the first data according to a block format required by the blockchain network ;

    The transceiver module is further configured to send the block that carries the first data to a device in the blockchain network.
73. The device according to any one of claims 65 to 72, wherein the processing module is further configured to: determine a first hash HASH value requirement;

    The transceiver module is configured to send the third information to the first device, where the third information includes the first HASH value requirement, so that the first device meets the requirement that the first HASH value is met. After the first HASH value, a communication connection is established with the device.
74. The device according to claim 73, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one type of service;

    The processing module is specifically configured to: determine the at least one HASH value requirement.
75. The device according to claim 73, wherein the third information includes at least one HASH value requirement, the at least one HASH value requirement includes the first HASH value requirement, and the at least one HASH value requirement Each HASH value in the request corresponds to at least one device group;

    The processing module is specifically configured to: determine the at least one HASH value requirement.
76. The device according to any one of claims 65 to 75, wherein the transceiver module is further configured to:

    Receiving, by the first device, a second HASH value related to the first data, where the second HASH value is used by the third device to determine integrity of the second data, where the second data is The authenticated data in the blockchain network;

    Sending the second HASH value to the third device.
77. The device according to claim 76, wherein said first data is encrypted by a public key of said third device.
78. The apparatus according to claim 76 or 77, wherein said second HASH value is determined by said first device based on said first data.
79. Apparatus according to any one of claims 65 to 74, wherein said A data is encrypted by a public key of the third device, and the transceiver module is further configured to:

    Receiving the first data;

    Transmitting the first data to the third device, so that the third device determines the integrity of the second data according to the second HASH value after determining the second HASH value according to the first data, The two data is the authenticated data of the first data in the blockchain network.
80. The device according to any one of claims 65 to 79, wherein the transceiver module is further configured to:

    And if the processing module determines that the first data has been authenticated N times in the blockchain network, sending, by the third device, second data corresponding to Merkel Merkle tree information and block information, the area The block information is used to indicate the block in the blockchain network that carries the second data, and the second data is the data in which the first data is authenticated in the blockchain network, where The value is the default value.
81. The device according to any one of claims 65 to 80, wherein the transceiver module is further configured to:

    If the processing module determines that the first data has been authenticated N times in the blockchain network, sending fourth information to the first device, where the fourth information is used to indicate that the first data has been The authentication is performed N times in the blockchain network, where the value of N is a preset value.
82. The device according to any one of claims 65 to 80, wherein the transceiver module is further configured to:

    If the processing module determines that the first data has been authenticated N times in the blockchain network, sending the Merkle tree information and the block information corresponding to the second data to the first device, the block information And the second data is the authenticated data of the first data in the blockchain network, where the value of N is preset. value.
83. The device according to any one of claims 65 to 82, wherein the transceiver module is further configured to:

    Receiving, by the first device, the fifth information, where the fifth information is used to indicate that the device in the blockchain network deletes the second data from the blockchain network, where the second data is the first The data is authenticated in the blockchain network.
84. The device according to claim 83, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, where the identification information is used to identify the Second data.
85. An apparatus, comprising:

    a transceiver module, configured to acquire Merck's Merkle tree information and block information corresponding to the second data, where the block information is used to indicate a block in the blockchain network that carries the second data, where the second data is Determining, by the first data, the authenticated data in the blockchain network, where the first data is data generated by the first device and required to be authenticated in the blockchain network;

    The transceiver module is further configured to acquire second data from a block that carries the second data according to the Merkle tree information;

    a processing module for determining integrity of the second data.
86. The device according to claim 85, wherein if the second data is complete, the transceiver module is further configured to:

    An acknowledgment message is sent to the device in the blockchain network, the acknowledgment information being used to indicate that the second data is complete.
87. The device according to claim 85 or 86, wherein the transceiver module is specifically configured to:

    Receiving the Merkle tree information and the block information sent by the second device, where the second device is a device in the blockchain network.
88. The device according to claim 87, wherein said second device is a device for transmitting said first data to said blockchain network for authentication.
89. The device according to any one of claims 85 to 88, wherein the processing module is further configured to:

    Determining a second hash HASH value associated with the first data;

    And determining the integrity of the second data according to the consistency of the third HASH value and the second HASH value associated with the second data.
90. The device according to claim 89, wherein the processing module is specifically configured to:

    Receiving the second HASH value, wherein the second HASH value is determined by the first device according to the first data.
91. The device of claim 90 wherein said first data is encrypted via a public key of said device.
92. The device according to claim 89, wherein said first data is passed The public key of the device is encrypted, and the transceiver module is further configured to:

    Receiving the first data sent by the first device;

    The processing module is specifically configured to: determine the second HASH value according to the first data.
93. The device according to any one of claims 85 to 92, wherein the processing module is further configured to:

    Determining to delete the second data from the blockchain network;

    The transceiver module is further configured to send fifth information to a device in the blockchain network, where the fifth information is used to indicate that a device in the blockchain network is deleted from the blockchain network. Two data.
94. The device according to claim 93, wherein the fifth information includes identification information and/or Merkle tree information corresponding to the second data, and the identification information is used to identify the second data.
95. A communication system, comprising: the apparatus of any one of claims 48 to 64, the apparatus of any one of claims 65 to 84, and any one of claims 85 to 94 device of.

Images