WO2022078396A1 - Account attribute processing method based on blockchain, and device and storage medium - Google Patents

Account attribute processing method based on blockchain, and device and storage medium Download PDF

Info

Publication number
WO2022078396A1
WO2022078396A1 PCT/CN2021/123560 CN2021123560W WO2022078396A1 WO 2022078396 A1 WO2022078396 A1 WO 2022078396A1 CN 2021123560 W CN2021123560 W CN 2021123560W WO 2022078396 A1 WO2022078396 A1 WO 2022078396A1
Authority
WO
WIPO (PCT)
Prior art keywords
security
transaction request
attribute
transaction
account
Prior art date
Application number
PCT/CN2021/123560
Other languages
French (fr)
Chinese (zh)
Inventor
李宁
薄辰龙
Original Assignee
深圳壹账通智能科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳壹账通智能科技有限公司 filed Critical 深圳壹账通智能科技有限公司
Publication of WO2022078396A1 publication Critical patent/WO2022078396A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/04Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange

Definitions

  • the present application relates to the technical field of blockchain, and relates to a method, device and storage medium for processing account attributes based on blockchain.
  • a private key corresponds to an account.
  • the transfer amount and the destination account address are signed with the private key, and the signature and the public key corresponding to the private key are carried in the transfer request.
  • the blockchain node decrypts the signature in the transfer request through the public key carried in the transfer request to obtain the transfer amount and the destination account address.
  • the public key is calculated by an asymmetric encryption algorithm to obtain the user's account address, and then the transfer amount is transferred from the user's account address, and the transfer amount is transferred to the destination account address.
  • the transfer request signed by the private key is decrypted by the public key, and then the amount in the account can be transferred out.
  • the inventor realizes that if the user's private key is stolen, the user's balance can easily be transferred away, causing huge losses to the user and low account security.
  • the present application proposes a blockchain-based account attribute processing method, device and storage medium.
  • the present application sets security attributes and corresponding security rules in a blockchain account to improve account security.
  • Single limit and single day limit can reduce the risk of account balance being transferred in full.
  • the embodiment of the first aspect of the present application proposes a blockchain-based account attribute processing method, which is applied to a blockchain node, including:
  • the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
  • a second aspect of the present application provides a computer device including a memory, a processor, and computer-readable instructions stored on the memory and executable on the processor, the processor executing the computer-readable instructions When implementing the following steps:
  • the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
  • a third aspect of the present application provides a computer-readable storage medium, where computer instructions are stored in the computer-readable storage medium, and when the computer instructions are executed on a computer, the computer is caused to perform the following steps:
  • the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
  • a fourth aspect of this application proposes a blockchain node device, which includes:
  • the receiving module is used to receive the transaction request of the user account sent by the terminal;
  • a judgment module configured to judge whether the transaction request complies with the security rules corresponding to the security attributes of the user account, and the security attributes include one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
  • the notification sending module is configured to send a security prompt notification to the terminal according to the security rule and the transaction request if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, and the security prompt notification uses to prompt the user that the transaction request does not conform to the security rule.
  • security attributes and corresponding security rules are set in the blockchain account.
  • the security rule is executed.
  • the security action corresponding to the rule is improved through the security attributes and the corresponding security rules.
  • the single limit and single day limit can reduce the risk of the account balance being transferred in full.
  • the user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object.
  • the notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
  • FIG. 1 shows a schematic flowchart of a blockchain-based account attribute processing method provided by an embodiment of the present application
  • FIG. 2 shows a schematic structural diagram of a blockchain node device provided by an embodiment of the present application
  • FIG. 3 shows a schematic structural diagram of a computer device provided by an embodiment of the present application
  • FIG. 4 shows a schematic diagram of a storage medium provided by an embodiment of the present application.
  • Some embodiments of the present application provide a blockchain-based account attribute processing method.
  • the method sets a single transaction limit, single-day limit, notification threshold and other security attributes in a blockchain account. To ensure the security of the user's account, if the private key of the account is stolen, the single limit and single-day limit can reduce the risk of the account balance being transferred in full.
  • the notification threshold attribute can notify the actual owner of the account when transferring a higher amount, improving the security of the account.
  • the method also provides the user with the service of confirming the identity of the other party before the user transfers money, so as to avoid losses caused by transferring the wrong object.
  • the method can also set up a backup account corresponding to the account. When the private key is stolen, the user can freeze the account to avoid loss of account balance, and can transfer all the balance in the stolen account to the backup account to improve the security of the user's property. .
  • the user When the user needs to transfer money from the user account to other accounts, the user enters the transfer amount and the destination account address in the transfer interface displayed on the terminal. After the terminal detects that the user has entered the address of the destination account, it performs the identity confirmation of the owner of the destination account through the operations of the following steps S1-S3, including:
  • Step S1 Receive an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address.
  • the terminal When the terminal detects that the user has entered the destination account address in the transfer interface, the terminal sends an identity confirmation request to the blockchain node, and the identity confirmation request includes the destination account address entered by the user.
  • the blockchain node receives the identity confirmation request.
  • Step S2 Obtain the user identity information corresponding to the destination account address.
  • the blockchain node After receiving the identity confirmation request sent by the terminal, the blockchain node obtains the user identity information of the owner of the destination account from the account information of the destination account corresponding to the destination account address according to the destination account address included in the identity confirmation request,
  • the user identity information may be the name or nickname of the owner of the purpose account.
  • Step S3 Send the user identity information to the terminal.
  • the blockchain node sends the obtained user identity information to the terminal. After acquiring the user identity information, the terminal displays the user identity information to the user. The user further confirms whether the owner of the currently input destination account address is the person who wants to transfer money through the user identity information displayed on the terminal. If not, the user can re-enter the destination account address corresponding to the person who wants to transfer money. After the user confirms that the currently entered destination account address is the destination account address corresponding to the person he wants to transfer, the user can trigger the transfer operation by clicking the Confirm Transfer button in the transfer interface.
  • the identity of the owner corresponding to the destination account address is confirmed, which can avoid the situation of the wrong person being transferred due to the wrong input of the destination account address, and avoid the property loss caused by the wrong person for the user.
  • the terminal When the terminal detects that the confirm transfer button in the transfer interface is clicked by the user, the terminal obtains the transfer amount and destination account address entered by the user from the transfer interface, as well as the private key submitted by the user, and the pre-stored public key locally. The transfer amount and destination account address are signed by the user's private key, and the ciphertext of the transfer information is obtained. Then, a transaction request is generated according to the pre-stored public key and the generated ciphertext of the transfer information. The terminal sends the transaction request to the blockchain node. Then, as shown in Figure 1, based on the security attributes of the account, the blockchain node performs secure transaction processing on the transaction request of the account through the operations of the following steps S101-S103, including:
  • Step S101 Receive a transaction request of a user account sent by a terminal.
  • the blockchain node receives the transaction request of the user account sent by the terminal, and obtains the public key and the ciphertext of the transfer information from the transaction request.
  • the ciphertext of the transfer information is decrypted by the public key to obtain the transfer information, and the transfer information includes the transfer amount and the destination account address.
  • the public key is generated according to the user account address through a preset asymmetric encryption algorithm
  • the blockchain node can also perform a reverse operation on the public key through the preset asymmetric encryption algorithm to obtain the user account address.
  • the preset asymmetric encryption algorithm can be RSA (RSA algorithm), DSA (Digital Signature Algorithm, digital signature algorithm), ECC (Elliptic curve cryptography, elliptic encryption algorithm), etc.
  • the transaction request is processed securely through the operations of the following steps S102 and S103.
  • Step S102 Determine whether the transaction request conforms to the security rule corresponding to the security attribute of the user account.
  • the security attributes include one or more of a single transaction quota attribute, a single daily quota attribute, and a notification threshold attribute.
  • Step S103 If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
  • the security attributes set in the blockchain account may include a single limit attribute
  • the security rule corresponding to the single limit attribute may be that the transfer operation is performed only when the transfer amount is less than or equal to the specified single limit.
  • the corresponding security operations are performed based on the single limit attribute through the operations of the following steps A1 and A2, including:
  • Step A1 Determine whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determine that the transaction request does not conform to the security rule corresponding to the single limit attribute.
  • the blockchain node compares the transfer amount included in the transaction request with the single limit specified by the security rule corresponding to the single limit attribute. If the transfer amount is greater than the single limit, it is determined that the transaction request does not conform to the security rule corresponding to the single limit attribute. , and then perform step A2. If the transfer amount is less than or equal to the single limit, it is determined that the transaction request complies with the security rules corresponding to the single limit attribute.
  • Step A2 According to the security rules and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount exceeds a single limit; the first transaction failure notification is sent to the terminal.
  • the blockchain node When the transaction request does not conform to the security rules corresponding to the single limit attribute, the blockchain node sends the first transaction failure notification to the terminal.
  • the first transaction failure notification includes the transfer amount and the single limit, which is used to prompt that the transfer amount is greater than the single transaction limit.
  • step A1 If it is determined in step A1 that the transfer amount is less than or equal to the single limit, normal transfer processing can be performed on the transaction request. Specifically, according to the transfer amount and the user account address, the transfer amount is subtracted from the current balance of the user account. And according to the transfer amount and the destination account address, add the transfer amount to the current balance of the destination account.
  • a successful transfer notification is generated according to the user account address, the transfer amount and the destination account address. Success message. Send a successful transfer notification to the terminal, so that the user can know the balance change of the user's account in real time.
  • a transfer record is also generated according to the transfer amount, destination account address, user account address, timestamp, etc.
  • the correspondence between user account addresses and transfer records is stored in each blockchain node.
  • the transfer records of the user accounts are stored in the blockchain nodes, which can ensure the authenticity of the transfer records of the user accounts and avoid account book fraud.
  • a single-day limit attribute is also set in the blockchain account, and the security rule corresponding to the single-day limit attribute may be that the total amount of transfers in a single day must be less than or equal to the specified single-day limit.
  • the following steps A3-A6 are used to perform corresponding security operations based on the single-day limit attribute, including:
  • Step A3 Obtain the total transfer amount of the day corresponding to the user account.
  • the blockchain node For each blockchain account, the blockchain node will record the total amount of transfers on the day corresponding to the account in the account information. According to the public key included in the transaction request, the blockchain node performs reverse operation through a preset asymmetric encryption algorithm to obtain the user account address corresponding to the user account. According to the user's account address, obtain the total transfer amount of the user's account on the day from the corresponding account information.
  • Step A4 Calculate the sum of the total transfer amount on the day and the transfer amount included in the transaction request.
  • Step A5 Determine whether the sum value is greater than the single-day limit specified by the security rule corresponding to the single-day limit attribute; if so, determine that the transaction request does not conform to the security rule corresponding to the single-day limit attribute.
  • the blockchain node compares the above calculated sum with the single-day limit specified by the security rule corresponding to the single-day limit attribute. If the sum is greater than the single-day limit, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute. , and then perform step A6. If the sum value is less than or equal to the single-day limit, it is determined that the transaction request complies with the security rules corresponding to the single-day limit attribute.
  • Step A6 According to the security rules and the transaction request, a second transaction failure notification is generated, and the second transaction failure notification is used to prompt the transaction request that the total transfer amount on the day will exceed the single-day limit; send the second transaction failure notification to the terminal.
  • the blockchain node When the transaction request does not conform to the security rules corresponding to the single-day limit attribute, the blockchain node sends a second transaction failure notification to the terminal, and the second transaction failure notification includes the transfer amount and the single-day limit, which is used to remind that the transaction request will make the same day. The total amount of the transfer exceeds the daily limit.
  • step A5 If it is determined in step A5 that the calculated sum is less than or equal to the single-day limit, normal transfer processing can be performed on the transaction request.
  • the specific transfer process is the same as the transfer process described above, and will not be repeated here.
  • a notification of successful transfer is sent to the terminal through the relevant operations above, and the correspondence between the user account address and the transaction record corresponding to this transaction is stored in the blockchain node.
  • the above single limit attribute and single day limit attribute can be set in the blockchain node at the same time, and when it is determined through step A1 that the transfer amount included in the transaction request is less than or equal to the single limit, further Determine whether the transfer amount will exceed the single-day limit by the operation of steps A3-A5, and if so, discard the transaction request, and send a second transaction failure notification to the terminal through the operation of step A6. If not, transfer the transaction request.
  • a notification threshold attribute is also set in the blockchain account, and the security rule corresponding to the notification threshold attribute is when the transfer amount is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute Notify the user of the transfer amount. And specifically through the operations of the following steps A7-A9 to perform corresponding security operations based on the notification threshold attribute, including:
  • Step A7 Determine whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the notification threshold attribute.
  • step A1 if it is determined that the transfer amount is less than the single limit, the transfer amount is further compared with the preset amount specified in the security rule corresponding to the notification threshold attribute, and if the transfer amount is greater than the preset amount, it is determined that the transaction request does not meet the requirements The security rule corresponding to the threshold attribute is notified, and step A8 is subsequently performed. If the transfer amount is less than or equal to the preset amount, it is determined that the transaction request complies with the security rule corresponding to the notification threshold attribute.
  • Step A8 Obtain the user address corresponding to the user account according to the transaction request.
  • the reverse operation is performed through a preset asymmetric encryption algorithm to obtain the user account address corresponding to the user account.
  • the user address is obtained from the account information of the user account corresponding to the user account address, where the user address is the client URL of the actual owner of the user account.
  • Step A9 According to the security rules and the transaction request, a large-value transaction notification is generated, and the large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; send the large-value transaction notification to the corresponding user address. user terminal.
  • the notification threshold attribute is set in the user account. If the transfer amount in the user's transaction request is greater than the preset amount specified by the notification threshold attribute, the actual owner of the user account will be notified that the transfer amount is greater than the preset amount, so that the user account is blocked. During theft, the actual owner of the user account can be prevented from being informed of the large-amount transfer in his user account in time, which can reduce the loss of the user account.
  • the transaction request is processed by transfer.
  • the user's account can be frozen through the operations of the following steps A10-A12, which specifically include:
  • Step A10 The receiving terminal sends an account freezing request of the user account.
  • the account freezing request is sent to the blockchain node through the terminal, and the account freezing request includes the user account address.
  • the blockchain node receives the account freezing request, and within the preset freezing time period starting from receiving the account freezing request, any transaction request for the received user account corresponding to the user account address, except for the operation of transferring money to the standby account , the blockchain nodes discard these transaction requests and do not respond.
  • Step A11 Within the preset freezing period, if a transaction request corresponding to the user account is received.
  • Step A12 Determine whether the destination account address included in the transaction request is an alternate account address of the user account; if so, perform transfer processing on the transaction request; if not, discard the transaction request.
  • a transaction request corresponding to the user account if a transaction request corresponding to the user account is received, first obtain the destination account address included in the transaction request, and then obtain the backup account corresponding to the user account from the account information of the user account address, compare whether the destination account address of the transaction request is consistent with the alternate account address, if so, perform transfer processing on the transaction request, if not, discard the transaction request.
  • the above-mentioned single limit attribute, single-day limit attribute, notification threshold attribute, etc. may not be set in the backup account, so that the user can transfer the account balance from the backup account to his own account with high security in time.
  • the user account may also be frozen repeatedly within the preset freezing period of the above-mentioned user account, and each time an account freezing request of the user account is received again, the freezing period of the user account is extended by the preset freezing period.
  • the user account When receiving the freezing request of the user account, the user account will be frozen for a preset freezing period. During the preset freezing period, any transaction request except the transfer to the standby account of the user account will be blocked. throw away. In this way, when the user learns that his user account has been stolen, he can avoid losses by freezing the account. Freeze the user account multiple times, and each time the user is requested to freeze, the user account freezing time will be extended by the preset freezing time period, so as to maximize the protection of the user account.
  • the security attributes and their corresponding security rules are set in the blockchain account.
  • When receiving a transaction request from the account first determine whether the transaction request conforms to the security rules corresponding to the security attributes, and if so, execute the security rules corresponding to the security rules. operate. In this way, the security of the user account is improved through the security attributes and the corresponding security rules.
  • the nickname confirmation attribute can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object.
  • the notification threshold can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
  • security attributes and corresponding security rules are set in the blockchain account.
  • the security rule is executed.
  • the security action corresponding to the rule is improved through the security attributes and the corresponding security rules.
  • the single limit and single day limit can reduce the risk of the account balance being transferred in full.
  • the user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object.
  • the notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
  • an embodiment of the present application provides a blockchain node device, which is used to execute the blockchain-based account attribute processing method provided by the above embodiment, and the blockchain node device includes:
  • the receiving module 201 is used for receiving the transaction request of the user account sent by the terminal;
  • the judgment module 202 is used for judging whether the transaction request conforms to the security rule corresponding to the security attribute of the user account, and the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
  • the notification sending module 203 is configured to send a security prompt notification to the terminal according to the security rule and the transaction request if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, and the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
  • the security attribute includes a single limit attribute; the judgment module 202 is used to judge whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determine that the transaction request does not meet the single limit attribute the corresponding security rules;
  • the notification sending module 203 is configured to generate a first transaction failure notification according to the security rules and transaction requests, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit; and send the first transaction failure notification to the terminal.
  • the security attributes include a single-day limit attribute; the judgment module 202 is used to obtain the total amount of transfers on the day corresponding to the user account; calculate the sum of the total amount of transfers on the current day and the transfer amount included in the transaction request; and determine whether the sum is greater than the safety value corresponding to the single-day limit attribute.
  • the single-day limit specified by the rules if so, it is determined that the transaction request does not comply with the security rules corresponding to the single-day limit attribute;
  • the notification sending module 203 is configured to generate a second transaction failure notification according to the security rules and the transaction request, and the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; send the second transaction failure notification to the terminal.
  • the security attribute includes a notification threshold attribute; the judgment module 202 is used to judge whether the transfer amount included in the transaction request is less than a single transaction limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determine that the transaction request does not meet the notification The security rule corresponding to the threshold attribute;
  • the notification sending module 203 is used to obtain the user address corresponding to the user account according to the transaction request; according to the security rules and the transaction request, generate a large-value transaction notification, and the large-value transaction notification is used to prompt the owner of the user account for the transaction request.
  • the transfer amount is greater than the preset amount; send a large transaction notification to the user terminal corresponding to the user address.
  • the blockchain node device further includes: an identity confirmation module for receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; obtaining user identity information corresponding to the destination account address; and sending the user identity information to the terminal.
  • the blockchain node device further includes: a freezing module for receiving an account freezing request sent by the terminal to the user account; within a preset freezing period, if a transaction request corresponding to the user account is received; determining whether the destination account address included in the transaction request is not It is the alternate account address of the user account; if it is, the transaction request will be transferred; if not, the transaction request will be discarded.
  • a freezing module for receiving an account freezing request sent by the terminal to the user account; within a preset freezing period, if a transaction request corresponding to the user account is received; determining whether the destination account address included in the transaction request is not It is the alternate account address of the user account; if it is, the transaction request will be transferred; if not, the transaction request will be discarded.
  • the blockchain node device further includes: a freezing extension module for extending the freezing time of the user account by the preset freezing time every time an account freezing request of the user account is received again within the preset freezing period.
  • security attributes and corresponding security rules are set in the blockchain account.
  • the security rule is executed.
  • the security action corresponding to the rule is improved through the security attributes and the corresponding security rules.
  • the single limit and single day limit can reduce the risk of the account balance being transferred in full.
  • the user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object.
  • the notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
  • An embodiment of the present application provides a computer device, and the computer device may be a blockchain node device.
  • the computer device includes a processor, a non-volatile storage medium, a memory, and a network interface connected through a system bus.
  • the non-volatile storage medium of the computer device stores an operating system, a database and computer-readable instructions
  • the database may store a sequence of control information.
  • the processor can realize a A blockchain-based account attribute processing method.
  • the processor of the computer device is used to provide computing and control capabilities and support the operation of the entire computer device.
  • Computer-readable instructions may be stored in the memory of the computer device, and when executed by the processor, the computer-readable instructions may cause the processor to execute a blockchain-based method for processing account attributes.
  • the network interface of the computer equipment is used for communication with the terminal connection.
  • the computer device includes a memory, a processor, and a computer program stored on the memory and running on the processor.
  • the processor executes the computer program, the processor implements the following steps: receiving a transaction request for a user account sent by a terminal; judging whether the transaction request is Comply with the security rules corresponding to the security attributes of the user account, the security attributes include one or more of a single limit attribute, a single day limit attribute, and a notification threshold attribute; if it is determined that the transaction request does not meet the security If the security rule corresponds to the attribute, a security prompt notification is sent to the terminal according to the security rule and the transaction request, where the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
  • the processor may further implement the following steps: judging whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determining that the transaction request does not meet the The security rule corresponding to the single limit attribute; correspondingly, according to the security rule and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single transaction amount. pen limit; send the first transaction failure notification to the terminal.
  • the following steps may also be implemented: obtaining the total amount of transfers on the day corresponding to the user account; calculating the sum of the total amount of transfers on the day and the transfer amount included in the transaction request; judging whether the sum is greater than all The single-day limit specified by the security rule corresponding to the single-day limit attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute; accordingly, according to the security rule and the transaction request , generating a second transaction failure notification, where the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; and send the second transaction failure notification to the terminal.
  • the processor may further implement the following steps: judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determining whether The transaction request does not conform to the security rule corresponding to the notification threshold attribute; accordingly, the user address corresponding to the user account is obtained according to the transaction request; a large-value transaction is generated according to the security rule and the transaction request The large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; the large-value transaction notification is sent to the user terminal corresponding to the user address.
  • the following steps may also be implemented: receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; acquiring user identity information corresponding to the destination account address; sending the user identity information to the described terminal.
  • the receiving terminal sends an account freezing request of the user account; within a preset freezing time period, if a transaction request corresponding to the user account is received; judging that the transaction request includes Whether the destination account address is the backup account address of the user account; if so, perform transfer processing on the transaction request; if not, discard the transaction request.
  • the processor executes the computer program, the following steps may be further implemented: every time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
  • An embodiment of the present application further provides a storage medium storing computer-readable instructions.
  • the one or more processors when the computer-readable instructions are executed by one or more processors, the one or more processors perform the following steps : Receive the transaction request of the user account sent by the terminal; determine whether the transaction request conforms to the security rule corresponding to the security attribute of the user account, and the security attribute includes a single limit attribute, a single day limit attribute, and a notification threshold attribute.
  • a security prompt notification is sent to the terminal, and the security prompt notification uses to prompt the user that the transaction request does not conform to the security rule.
  • the processor may also perform the following steps: judging whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determining that the transaction request does not meet the single limit
  • the security rule corresponding to the limit attribute correspondingly, according to the security rule and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit; send The first transaction failure is notified to the terminal.
  • the processor may also perform the following steps: obtaining the total amount of transfers on the day corresponding to the user account; calculating the sum of the total amount of transfers on the day and the transfer amount included in the transaction request; judging whether the sum is greater than the single-day limit The single-day limit specified by the security rule corresponding to the attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute; accordingly, according to the security rule and the transaction request, a second A transaction failure notification, where the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; send the second transaction failure notification to the terminal.
  • the processor may also perform the following steps: judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determining the transaction request does not conform to the security rule corresponding to the notification threshold attribute; correspondingly, according to the transaction request, obtain the user address corresponding to the user account; according to the security rule and the transaction request, generate a large transaction notification, the The large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; the large-value transaction notification is sent to the user terminal corresponding to the user address.
  • the processor may further perform the following steps: receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; acquiring user identity information corresponding to the destination account address; and sending the user identity information to the terminal.
  • the processor may also perform the following steps: receiving an account freezing request of the user account sent by the receiving terminal; within a preset freezing period, if a transaction request corresponding to the user account is received; judging whether the destination account address included in the transaction request is not is the alternate account address of the user account; if yes, perform transfer processing on the transaction request; if not, discard the transaction request.
  • the processor may further perform the following step: every time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
  • the realization of all or part of the processes in the methods of the above embodiments can be accomplished by instructing relevant hardware through a computer program, and the computer program can be stored in a computer-readable storage medium, and the program is During execution, it may include the processes of the embodiments of the above-mentioned methods.
  • the aforementioned storage medium may be a non-volatile storage medium such as a magnetic disk, an optical disk, a read-only memory (Read-Only Memory, ROM), or a random access memory (Random Access Memory, RAM) or the like.

Abstract

Provided are an account attribute processing method based on a blockchain, and a device and a storage medium. The method comprises: receiving a transaction request of a user account sent by a terminal; determining whether the transaction request conforms to a security rule corresponding to a security attribute of the user account; and if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, sending a security prompt notification to the terminal according to the security rule and the transaction request. In the present application, a security attribute and a security rule corresponding thereto are set in a blockchain account, thereby improving the account security. The risk of an account balance being completely transferred can be reduced by means of a single limit and a daily limit. Before account transfer, a user confirms the identity of the other party, and a loss caused by transfer to a wrong object is prevented. A user is notified when a relatively high amount is transferred, thereby improving the security of an account. An account is frozen when a private key is stolen, the loss of an account balance is prevented, and the account balance of the stolen account is completely transferred to a standby account, thereby improving the property security of a user.

Description

基于区块链的账户属性处理方法、设备及存储介质Blockchain-based account attribute processing method, device and storage medium
本申请要求于2020年10月15日提交中国专利局、申请号为202011105751.1、发明名称为“基于区块链的账户属性处理方法、设备及存储介质”的中国专利申请的优先权,其全部内容通过引用结合在申请中。This application claims the priority of the Chinese patent application filed on October 15, 2020 with the application number 202011105751.1 and the invention titled "Blockchain-based account attribute processing method, equipment and storage medium", the entire content of which is Incorporated in the application by reference.
技术领域technical field
本申请涉及区块链技术领域,涉及了一种基于区块链的账户属性处理方法、设备及存储介质。The present application relates to the technical field of blockchain, and relates to a method, device and storage medium for processing account attributes based on blockchain.
背景技术Background technique
目前,区块链账户中,一个私钥对应一个账户,用户发起转账请求时,通过私钥对转账金额和目的账户地址进行签名,在转账请求中携带该签名以及私钥对应的公钥。区块链节点接收到该转账请求后,通过该转账请求携带的公钥对转账请求中的签名进行解密,得到转账金额及目的账户地址。然后通过非对称加密算法对该公钥进行运算,得到用户的账户地址,然后从用户的账户地址中转出该转账金额,并在目的账户地址中转入该转账金额。Currently, in a blockchain account, a private key corresponds to an account. When a user initiates a transfer request, the transfer amount and the destination account address are signed with the private key, and the signature and the public key corresponding to the private key are carried in the transfer request. After receiving the transfer request, the blockchain node decrypts the signature in the transfer request through the public key carried in the transfer request to obtain the transfer amount and the destination account address. Then, the public key is calculated by an asymmetric encryption algorithm to obtain the user's account address, and then the transfer amount is transferred from the user's account address, and the transfer amount is transferred to the destination account address.
上述相关技术中通过公钥对私钥签名的转账请求解密,之后就可以将账户中的金额转出。发明人意识到若用户的私钥被盗,则用户的余额很容易就能被转走,从而给用户造成巨大损失,账户安全性不高。In the above-mentioned related art, the transfer request signed by the private key is decrypted by the public key, and then the amount in the account can be transferred out. The inventor realizes that if the user's private key is stolen, the user's balance can easily be transferred away, causing huge losses to the user and low account security.
发明内容SUMMARY OF THE INVENTION
本申请提出一种基于区块链的账户属性处理方法、设备及存储介质,本申请在区块链账户中设置安全属性及其对应的安全规则,提高账户安全性。单笔限额和单日限额能减少账户余额被全部转移的风险。转账前使用户确认对方身份,避免转错对象造成损失。进行较高金额转账时通知用户,提高账户的安全性。在私钥被盗时冻结账户,避免账户余额损失,将被盗账户的余额全部转移到备用账户中,提高用户财产安全。The present application proposes a blockchain-based account attribute processing method, device and storage medium. The present application sets security attributes and corresponding security rules in a blockchain account to improve account security. Single limit and single day limit can reduce the risk of account balance being transferred in full. Make the user confirm the identity of the other party before the transfer, so as to avoid losses caused by the wrong object. Notify users when transferring higher amounts to improve account security. Freeze the account when the private key is stolen to avoid loss of account balance, and transfer all the balance of the stolen account to the backup account to improve user property security.
本申请第一方面实施例提出了一种基于区块链的账户属性处理方法,应用于区块链节点,包括:The embodiment of the first aspect of the present application proposes a blockchain-based account attribute processing method, which is applied to a blockchain node, including:
接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
本申请第二方面提供了一种计算机设备,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机可读指令,所述处理器执行所述计算机可读指令时实现如下步骤:A second aspect of the present application provides a computer device including a memory, a processor, and computer-readable instructions stored on the memory and executable on the processor, the processor executing the computer-readable instructions When implementing the following steps:
接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
本申请第三方面提供了一种计算机可读存储介质,所述计算机可读存储介质中存储计算机指令,当所述计算机指令在计算机上运行时,使得计算机执行如下步骤:A third aspect of the present application provides a computer-readable storage medium, where computer instructions are stored in the computer-readable storage medium, and when the computer instructions are executed on a computer, the computer is caused to perform the following steps:
接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
本申请第四方面提出了一种区块链节点设备,其中,包括:A fourth aspect of this application proposes a blockchain node device, which includes:
接收模块,用于接收终端发送的用户账户的交易请求;The receiving module is used to receive the transaction request of the user account sent by the terminal;
判断模块,用于判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;a judgment module, configured to judge whether the transaction request complies with the security rules corresponding to the security attributes of the user account, and the security attributes include one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
通知发送模块,用于若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。The notification sending module is configured to send a security prompt notification to the terminal according to the security rule and the transaction request if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, and the security prompt notification uses to prompt the user that the transaction request does not conform to the security rule.
本申请实施例在区块链账户中设置了安全属性及其对应的安全规则,接收到账户的交易请求时,先判断该交易请求是否符合安全属性对应的安全规则,如果是,则执行该安全规则对应的安全操作。如此通过安全属性和其对应的安全规则来提高用户账户的安全性。In this embodiment of the application, security attributes and corresponding security rules are set in the blockchain account. When receiving a transaction request from the account, it is first judged whether the transaction request conforms to the security rule corresponding to the security attribute, and if so, the security rule is executed. The security action corresponding to the rule. In this way, the security of the user account is improved through the security attributes and the corresponding security rules.
若账户的私钥被盗,单笔限额和单日限额能够减少账户余额被全部转移的风险。目的账户的用户身份确认能够在用户转账之前使用户确认对方身份,避免转错对象造成损失。通知阈值属性能够在进行较高金额的转账时通知用户,提高账户的安全性。冻结和备用账户则可以在私钥被盗时冻结账户,避免账户余额损失,并可以将被盗的账户中的余额全部转移到备用账户中,提高用户财产的安全性。If the private key of the account is stolen, the single limit and single day limit can reduce the risk of the account balance being transferred in full. The user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object. The notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
本申请附加的方面和优点将在下面的描述中部分给出,部分将从下面的描述中变的明显,或通过本申请的实践了解到。Additional aspects and advantages of the present application will be set forth, in part, from the following description, and in part will become apparent from the following description, or may be learned by practice of the present application.
附图说明Description of drawings
图1示出了本申请一实施例所提供的一种基于区块链的账户属性处理方法的流程示意图;FIG. 1 shows a schematic flowchart of a blockchain-based account attribute processing method provided by an embodiment of the present application;
图2示出了本申请一实施例所提供的一种区块链节点设备的结构示意图;FIG. 2 shows a schematic structural diagram of a blockchain node device provided by an embodiment of the present application;
图3示出了本申请一实施例所提供的一种计算机设备的结构示意图;FIG. 3 shows a schematic structural diagram of a computer device provided by an embodiment of the present application;
图4示出了本申请一实施例所提供的一种存储介质的示意图。FIG. 4 shows a schematic diagram of a storage medium provided by an embodiment of the present application.
具体实施方式Detailed ways
为了使本申请的目的、技术方案及优点更加清楚明白,以下结合附图及实施例,对本申请进行进一步详细说明。应当理解,此处所描述的具体实施例仅仅用以解释本申请,并不用于限定本申请。In order to make the purpose, technical solutions and advantages of the present application more clearly understood, the present application will be described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are only used to explain the present application, but not to limit the present application.
可以理解,本申请所使用的术语“第一”、“第二”等可在本文中用于描述各种元件,但这些元件不受这些术语限制。这些术语仅用于将第一个元件与另一个元件区分。It will be understood that the terms "first", "second", etc. used in this application may be used herein to describe various elements, but these elements are not limited by these terms. These terms are only used to distinguish a first element from another element.
本申请的一些实施例提供了一种基于区块链的账户属性处理方法,该方法在区块链账户中设置了单笔限额、单日限额、通知阈值等多个安全属性,通过安全属性来确保用户账户的安全,若账户的私钥被盗,单笔限额和单日限额能够减少账户余额被全部转移的风险。通知阈值属性能够在进行较高金额的转账时通知账户的实际拥有者,提高账户的安全性。该方法还在用户转账之前提供给用户确认对方身份的服务,避免转错对象造成损失。该方法还可以设置账户对应的备用账户,在私钥被盗时用户可以冻结账户,避免账户余额损失,并可以将被盗的账户中的余额全部转移到备用账户中,提高用户财产的安全性。Some embodiments of the present application provide a blockchain-based account attribute processing method. The method sets a single transaction limit, single-day limit, notification threshold and other security attributes in a blockchain account. To ensure the security of the user's account, if the private key of the account is stolen, the single limit and single-day limit can reduce the risk of the account balance being transferred in full. The notification threshold attribute can notify the actual owner of the account when transferring a higher amount, improving the security of the account. The method also provides the user with the service of confirming the identity of the other party before the user transfers money, so as to avoid losses caused by transferring the wrong object. The method can also set up a backup account corresponding to the account. When the private key is stolen, the user can freeze the account to avoid loss of account balance, and can transfer all the balance in the stolen account to the backup account to improve the security of the user's property. .
当用户需要从用户账户向其他账户转账时,用户在终端显示的转账界面中输入转账金额和目的账户地址。终端检测到用户输入目的账户地址之后,通过如下步骤S1-S3的操作来对目的账户的拥有者进行身份确认,具体包括:When the user needs to transfer money from the user account to other accounts, the user enters the transfer amount and the destination account address in the transfer interface displayed on the terminal. After the terminal detects that the user has entered the address of the destination account, it performs the identity confirmation of the owner of the destination account through the operations of the following steps S1-S3, including:
步骤S1:接收终端发送的身份确认请求,该身份确认请求包括目的账户地址。Step S1: Receive an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address.
当终端检测到用户在转账界面中输入目的账户地址后,终端发送身份确认请求给区块链节点,该身份确认请求包括用户输入的目的账户地址。区块链节点接收该身份确认请求。When the terminal detects that the user has entered the destination account address in the transfer interface, the terminal sends an identity confirmation request to the blockchain node, and the identity confirmation request includes the destination account address entered by the user. The blockchain node receives the identity confirmation request.
步骤S2:获取目的账户地址对应的用户身份信息。Step S2: Obtain the user identity information corresponding to the destination account address.
区块链节点接收到终端发送的身份确认请求后,根据该身份确认请求包括的目的账户地址,从该目的账户地址对应的目的账户的账户信息中获取该目的账户的拥有者的用户身份信息,该用户身份信息可以为该目的账户的拥有者的姓名或昵称等。After receiving the identity confirmation request sent by the terminal, the blockchain node obtains the user identity information of the owner of the destination account from the account information of the destination account corresponding to the destination account address according to the destination account address included in the identity confirmation request, The user identity information may be the name or nickname of the owner of the purpose account.
步骤S3:发送用户身份信息给终端。Step S3: Send the user identity information to the terminal.
区块链节点将获取的用户身份信息发送给终端。终端获取到该用户身份信息后,将该用户身份信息显示给用户。用户通过终端显示的该用户身份信息来进一步确认当前输入的目的账户地址的拥有者是否为自己想要转账的人,如果不是,则用户可以重新输入自己想要转账的人对应的目的账户地址。当用户确认当前输入的目的账户地址为自己想要转账的人对应的目的账户地址后,通过点击转账界面中的确认转账按钮触发转账操作。The blockchain node sends the obtained user identity information to the terminal. After acquiring the user identity information, the terminal displays the user identity information to the user. The user further confirms whether the owner of the currently input destination account address is the person who wants to transfer money through the user identity information displayed on the terminal. If not, the user can re-enter the destination account address corresponding to the person who wants to transfer money. After the user confirms that the currently entered destination account address is the destination account address corresponding to the person he wants to transfer, the user can trigger the transfer operation by clicking the Confirm Transfer button in the transfer interface.
通过上述方式在发送交易请求之前,先对目的账户地址对应的拥有者进行身份确认,能够避免因目的账户地址输错导致转错人的情况,避免因转错人为用户带来的财产损失。Through the above method, before sending a transaction request, the identity of the owner corresponding to the destination account address is confirmed, which can avoid the situation of the wrong person being transferred due to the wrong input of the destination account address, and avoid the property loss caused by the wrong person for the user.
当终端检测到转账界面中的确认转账按钮被用户点击时,终端从转账界面中获取用户输入的转账金额及目的账户地址,以及获取用户提交的私钥,并从本地获取预存的公钥。通过用户的私钥对转账金额和目的账户地址进行签名,得到转账信息密文。然后根据预存的公钥和生成的转账信息密文,生成交易请求。终端发送该交易请求给区块链节点。之后如图1所示,区块链节点基于账户的安全属性,通过如下步骤S101-S103的操作来对账户的交易请求进行安全交易处理,包括:When the terminal detects that the confirm transfer button in the transfer interface is clicked by the user, the terminal obtains the transfer amount and destination account address entered by the user from the transfer interface, as well as the private key submitted by the user, and the pre-stored public key locally. The transfer amount and destination account address are signed by the user's private key, and the ciphertext of the transfer information is obtained. Then, a transaction request is generated according to the pre-stored public key and the generated ciphertext of the transfer information. The terminal sends the transaction request to the blockchain node. Then, as shown in Figure 1, based on the security attributes of the account, the blockchain node performs secure transaction processing on the transaction request of the account through the operations of the following steps S101-S103, including:
步骤S101:接收终端发送的用户账户的交易请求。Step S101: Receive a transaction request of a user account sent by a terminal.
区块链节点接收终端发送的用户账户的交易请求,从该交易请求中获取公钥及转账信息密文。通过该公钥对转账信息密文进行解密,得到转账信息,该转账信息包括转账金额及目的账户地址。由于公钥是根据用户账户地址通过预设非对称加密算法进行运算生成的,因此区块链节点还可以通过预设非对称加密算法对公钥进行反向运算,得到用户账户地址。预设非对称加密算法可以为RSA(RSA algorithm)、DSA(Digital Signature Algorithm,数字签名算法)、ECC(Elliptic curve cryptography,椭圆加密算法)等。The blockchain node receives the transaction request of the user account sent by the terminal, and obtains the public key and the ciphertext of the transfer information from the transaction request. The ciphertext of the transfer information is decrypted by the public key to obtain the transfer information, and the transfer information includes the transfer amount and the destination account address. Since the public key is generated according to the user account address through a preset asymmetric encryption algorithm, the blockchain node can also perform a reverse operation on the public key through the preset asymmetric encryption algorithm to obtain the user account address. The preset asymmetric encryption algorithm can be RSA (RSA algorithm), DSA (Digital Signature Algorithm, digital signature algorithm), ECC (Elliptic curve cryptography, elliptic encryption algorithm), etc.
通过上述方式获得当前的交易请求对应的转账金额、目的账户地址及用户账户地址之后,通过如下步骤S102和S103的操作对该交易请求进行安全交易处理。After obtaining the transfer amount, destination account address and user account address corresponding to the current transaction request in the above manner, the transaction request is processed securely through the operations of the following steps S102 and S103.
步骤S102:判断该交易请求是否符合用户账户的安全属性对应的安全规则。Step S102: Determine whether the transaction request conforms to the security rule corresponding to the security attribute of the user account.
在本申请实施例中,安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种。In this embodiment of the present application, the security attributes include one or more of a single transaction quota attribute, a single daily quota attribute, and a notification threshold attribute.
步骤S103:若确定交易请求不符合安全属性对应的安全规则,则根据安全规则和交易请求,发送安全提示通知给所述终端,安全提示通知用于提示用户交易请求不符合安全规则。Step S103: If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
在本申请实施例中,区块链账户中设置的安全属性可以包括单笔限额属性,该单笔限额属性对应的安全规则可以为转账金额小于或等于规定的单笔限额时才进行转账操作。具体通过如下步骤A1和A2的操作来基于单笔限额属性进行相应的安全操作,包括:In the embodiment of the present application, the security attributes set in the blockchain account may include a single limit attribute, and the security rule corresponding to the single limit attribute may be that the transfer operation is performed only when the transfer amount is less than or equal to the specified single limit. Specifically, the corresponding security operations are performed based on the single limit attribute through the operations of the following steps A1 and A2, including:
步骤A1:判断交易请求包括的转账金额是否大于单笔限额属性对应的安全规则规定的单笔限额;如果是,则确定交易请求不符合单笔限额属性对应的安全规则。Step A1: Determine whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determine that the transaction request does not conform to the security rule corresponding to the single limit attribute.
区块链节点将交易请求包括的转账金额与单笔限额属性对应的安全规则规定的单笔限额进行比较,若转账金额大于单笔限额,则确定交易请求不符合单笔限额属性对应的安全规则,后续执行步骤A2。若转账金额小于或等于单笔限额,则确定交易请求符合单笔限额属性对应的安全规则。The blockchain node compares the transfer amount included in the transaction request with the single limit specified by the security rule corresponding to the single limit attribute. If the transfer amount is greater than the single limit, it is determined that the transaction request does not conform to the security rule corresponding to the single limit attribute. , and then perform step A2. If the transfer amount is less than or equal to the single limit, it is determined that the transaction request complies with the security rules corresponding to the single limit attribute.
步骤A2:根据安全规则和交易请求,生成第一交易失败通知,第一交易失败通知用于提示转账金额超过单笔限额;发送第一交易失败通知给终端。Step A2: According to the security rules and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount exceeds a single limit; the first transaction failure notification is sent to the terminal.
在交易请求不符合单笔限额属性对应的安全规则时,区块链节点发送第一交易失败通知给终端,第一交易失败通知中包括转账金额及单笔限额,用于提示转账金额大于单笔限额。When the transaction request does not conform to the security rules corresponding to the single limit attribute, the blockchain node sends the first transaction failure notification to the terminal. The first transaction failure notification includes the transfer amount and the single limit, which is used to prompt that the transfer amount is greater than the single transaction limit.
若步骤A1判断出转账金额小于或等于单笔限额,则可以对该交易请求进行正常的转账处理。具体地,根据转账金额和用户账户地址,从用户账户的当前余额中减去该转账金额。以及根据转账金额和目的账户地址,在目的账户的当前余额的基础上加上该转账金额。If it is determined in step A1 that the transfer amount is less than or equal to the single limit, normal transfer processing can be performed on the transaction request. Specifically, according to the transfer amount and the user account address, the transfer amount is subtracted from the current balance of the user account. And according to the transfer amount and the destination account address, add the transfer amount to the current balance of the destination account.
通过上述方式从用户账户向目的账户转账之后,根据用户账户地址、转账金额和目的账户地址,生成转账成功通知,该转账成功通知中包括用户账户地址、转账金额、目的账户地址以及用于提示转账成功的提示信息。向终端发送转账成功通知,以便用户能实时获知用户账户的余额变动情况。After transferring money from the user account to the destination account through the above method, a successful transfer notification is generated according to the user account address, the transfer amount and the destination account address. Success message. Send a successful transfer notification to the terminal, so that the user can know the balance change of the user's account in real time.
通过上述方式完成转账之后,还根据转账金额、目的账户地址、用户账户地址、时间戳等,生成转账记录。在各个区块链节点中存储用户账户地址与转账记录的对应关系。基于区块链的可追溯、不可篡改的特性,将用户账户的转账记录存储在区块链节点中,能够确保用户账户的转账记录的真实性,避免账本作假。After the transfer is completed in the above manner, a transfer record is also generated according to the transfer amount, destination account address, user account address, timestamp, etc. The correspondence between user account addresses and transfer records is stored in each blockchain node. Based on the traceability and non-tampering characteristics of the blockchain, the transfer records of the user accounts are stored in the blockchain nodes, which can ensure the authenticity of the transfer records of the user accounts and avoid account book fraud.
在本申请的另一些实施例中,还在区块链账户中设置了单日限额属性,该单日限额属性对应的安全规则可以为单日的转账总额须小于或等于规定的单日限额。具体通过如下步骤A3-A6的操作来基于单日限额属性进行相应的安全操作,包括:In other embodiments of the present application, a single-day limit attribute is also set in the blockchain account, and the security rule corresponding to the single-day limit attribute may be that the total amount of transfers in a single day must be less than or equal to the specified single-day limit. Specifically, the following steps A3-A6 are used to perform corresponding security operations based on the single-day limit attribute, including:
步骤A3:获取用户账户对应的当日转账总额。Step A3: Obtain the total transfer amount of the day corresponding to the user account.
对于每个区块链账户,区块链节点中都会在账户信息中记录账户对应的当日转账总额。区块链节点根据该交易请求中包括的公钥,通过预设非对称加密算法进行反向运算,得到用户账户对应的用户账户地址。根据用户账户地址,从对应的账户信息中获取该用户账户的当日转账总额。For each blockchain account, the blockchain node will record the total amount of transfers on the day corresponding to the account in the account information. According to the public key included in the transaction request, the blockchain node performs reverse operation through a preset asymmetric encryption algorithm to obtain the user account address corresponding to the user account. According to the user's account address, obtain the total transfer amount of the user's account on the day from the corresponding account information.
步骤A4:计算当日转账总额与交易请求包括的转账金额的和值。Step A4: Calculate the sum of the total transfer amount on the day and the transfer amount included in the transaction request.
步骤A5:判断该和值是否大于单日限额属性对应的安全规则规定的单日限额;如果是,则确定交易请求不符合单日限额属性对应的安全规则。Step A5: Determine whether the sum value is greater than the single-day limit specified by the security rule corresponding to the single-day limit attribute; if so, determine that the transaction request does not conform to the security rule corresponding to the single-day limit attribute.
区块链节点将上述计算的和值与单日限额属性对应的安全规则规定的单日限额进行比较,若该和值大于单日限额,则确定交易请求不符合单日限额属性对应的安全规则,后续执行步骤A6。若该和值小于或等于单日限额,则确定交易请求符合单日限额属性对应的安全规则。The blockchain node compares the above calculated sum with the single-day limit specified by the security rule corresponding to the single-day limit attribute. If the sum is greater than the single-day limit, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute. , and then perform step A6. If the sum value is less than or equal to the single-day limit, it is determined that the transaction request complies with the security rules corresponding to the single-day limit attribute.
步骤A6:根据安全规则和交易请求,生成第二交易失败通知,第二交易失败通知用于提示交易请求将使当日转账总额超过单日限额;发送第二交易失败通知给终端。Step A6: According to the security rules and the transaction request, a second transaction failure notification is generated, and the second transaction failure notification is used to prompt the transaction request that the total transfer amount on the day will exceed the single-day limit; send the second transaction failure notification to the terminal.
在交易请求不符合单日限额属性对应的安全规则时,区块链节点发送第二交易失败通知给终端,第二交易失败通知中包括转账金额及单日限额,用于提示交易请求将使当日转账总额超过单日限额。When the transaction request does not conform to the security rules corresponding to the single-day limit attribute, the blockchain node sends a second transaction failure notification to the terminal, and the second transaction failure notification includes the transfer amount and the single-day limit, which is used to remind that the transaction request will make the same day. The total amount of the transfer exceeds the daily limit.
若步骤A5判断出计算出的和值小于或等于单日限额,则可以对该交易请求进行正常的转账处理。具体地转账处理过程与上文中描述的转账过程相同,在此不再赘述。且转账完成之后也通过上文中的相关操作向终端发送转账成功通知,以及在区块链节点中存储用户账户地址与本次交易对应的交易记录的对应关系。If it is determined in step A5 that the calculated sum is less than or equal to the single-day limit, normal transfer processing can be performed on the transaction request. The specific transfer process is the same as the transfer process described above, and will not be repeated here. After the transfer is completed, a notification of successful transfer is sent to the terminal through the relevant operations above, and the correspondence between the user account address and the transaction record corresponding to this transaction is stored in the blockchain node.
在本申请的一些实施例中,可以在区块链节点中同时设置上述单笔限额属性和单日限额属性,通过步骤A1判断出该交易请求包括的转账金额小于或等于单笔限额时,进一步通过步骤A3-A5的操作判断该转账金额是否会使当日转账总额超过单日限额,如果是,则 丢弃该交易请求,并通过步骤A6的操作发送第二交易失败通知给终端。如果否,则对该交易请求进行转账处理。In some embodiments of the present application, the above single limit attribute and single day limit attribute can be set in the blockchain node at the same time, and when it is determined through step A1 that the transfer amount included in the transaction request is less than or equal to the single limit, further Determine whether the transfer amount will exceed the single-day limit by the operation of steps A3-A5, and if so, discard the transaction request, and send a second transaction failure notification to the terminal through the operation of step A6. If not, transfer the transaction request.
在本申请的一些实施例中,区块链账户中还设置有通知阈值属性,通知阈值属性对应的安全规则为转账金额小于单笔限额且大于通知阈值属性对应的安全规则规定的预设金额时将转账金额通知用户。并具体通过如下步骤A7-A9的操作来基于通知阈值属性进行相应的安全操作,包括:In some embodiments of the present application, a notification threshold attribute is also set in the blockchain account, and the security rule corresponding to the notification threshold attribute is when the transfer amount is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute Notify the user of the transfer amount. And specifically through the operations of the following steps A7-A9 to perform corresponding security operations based on the notification threshold attribute, including:
步骤A7:判断交易请求包括的转账金额是否小于单笔限额且大于通知阈值属性对应的安全规则规定的预设金额;如果是,则确定交易请求不符合通知阈值属性对应的安全规则。Step A7: Determine whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the notification threshold attribute.
在步骤A1中若判断出转账金额小于单笔限额,则进一步将转账金额与通知阈值属性对应的安全规则规定的预设金额进行比较,若转账金额大于该预设金额,则确定交易请求不符合通知阈值属性对应的安全规则,后续执行步骤A8。若转账金额小于或等于该预设金额,则确定交易请求符合通知阈值属性对应的安全规则。In step A1, if it is determined that the transfer amount is less than the single limit, the transfer amount is further compared with the preset amount specified in the security rule corresponding to the notification threshold attribute, and if the transfer amount is greater than the preset amount, it is determined that the transaction request does not meet the requirements The security rule corresponding to the threshold attribute is notified, and step A8 is subsequently performed. If the transfer amount is less than or equal to the preset amount, it is determined that the transaction request complies with the security rule corresponding to the notification threshold attribute.
步骤A8:根据交易请求,获取用户账户对应的用户地址。Step A8: Obtain the user address corresponding to the user account according to the transaction request.
根据交易请求中包括的公钥,通过预设非对称加密算法进行反向运算,得到用户账户对应的用户账户地址。从该用户账户地址对应的用户账户的账户信息中获取用户地址,该用户地址为该用户账户的实际拥有者的客户端URL。According to the public key included in the transaction request, the reverse operation is performed through a preset asymmetric encryption algorithm to obtain the user account address corresponding to the user account. The user address is obtained from the account information of the user account corresponding to the user account address, where the user address is the client URL of the actual owner of the user account.
步骤A9:根据安全规则和交易请求,生成大额交易通知,大额交易通知用于提示所述用户账户的拥有者交易请求的转账金额大于预设金额;发送大额交易通知给用户地址对应的用户终端。Step A9: According to the security rules and the transaction request, a large-value transaction notification is generated, and the large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; send the large-value transaction notification to the corresponding user address. user terminal.
发送大额交易通知给用户地址对应的用户终端,该大额交易通知中包括转账金额,用于提示用户账户的实际拥有者该交易请求的转账金额大于预设金额。Send a large-value transaction notification to the user terminal corresponding to the user address, where the large-value transaction notification includes the transfer amount, which is used to prompt the actual owner of the user account that the transfer amount requested by the transaction is greater than the preset amount.
用户账户中设置通知阈值属性,若用户交易请求中的转账金额大于通知阈值属性规定的预设金额,则将转账金额大于预设金额这一情况通知用户账户的实际拥有者,从而在用户账户被盗时能够避使用户账户的实际拥有者及时获知自己的用户账户出现大额转账的情况,能够减少用户账户的损失。The notification threshold attribute is set in the user account. If the transfer amount in the user's transaction request is greater than the preset amount specified by the notification threshold attribute, the actual owner of the user account will be notified that the transfer amount is greater than the preset amount, so that the user account is blocked. During theft, the actual owner of the user account can be prevented from being informed of the large-amount transfer in his user account in time, which can reduce the loss of the user account.
上述判断出转账金额小于单笔限额且大于通知阈值属性对应的预设金额,以及判断出转账金额小于或等于通知阈值属性对应的预设金额的情况下,均对该交易请求进行转账处理。When it is determined that the transfer amount is less than the single limit and greater than the preset amount corresponding to the notification threshold attribute, and it is determined that the transfer amount is less than or equal to the preset amount corresponding to the notification threshold attribute, the transaction request is processed by transfer.
在本申请实施例中,若用户认为自己的账户存在被盗取的情况,可以通过以下步骤A10-A12的操作对用户账户进行冻结操作,具体包括:In the embodiment of the present application, if the user believes that his account has been stolen, the user's account can be frozen through the operations of the following steps A10-A12, which specifically include:
步骤A10:接收终端发送用户账户的账户冻结请求。Step A10: The receiving terminal sends an account freezing request of the user account.
当用户需要对用户账户进行冻结操作时,通过终端发送账户冻结请求给区块链节点,该账户冻结请求包括用户账户地址。区块链节点接收该账户冻结请求,在接收到该账户冻结请求开始的预设冻结时长内,对于接收到的该用户账户地址对应的用户账户的除向备用账户转账的操作外的任何交易请求,区块链节点均丢弃这些交易请求,不进行响应。When the user needs to freeze the user account, the account freezing request is sent to the blockchain node through the terminal, and the account freezing request includes the user account address. The blockchain node receives the account freezing request, and within the preset freezing time period starting from receiving the account freezing request, any transaction request for the received user account corresponding to the user account address, except for the operation of transferring money to the standby account , the blockchain nodes discard these transaction requests and do not respond.
步骤A11:在预设冻结时长内,若接收到用户账户对应的交易请求。Step A11: Within the preset freezing period, if a transaction request corresponding to the user account is received.
步骤A12:判断交易请求包括的目的账户地址是否为用户账户的备用账户地址;如果是,则对交易请求进行转账处理;如果否,则丢弃交易请求。Step A12: Determine whether the destination account address included in the transaction request is an alternate account address of the user account; if so, perform transfer processing on the transaction request; if not, discard the transaction request.
在该用户账户的预设冻结时长内,若接收到该用户账户对应的交易请求,首先获取该交易请求包括的目的账户地址,然后从该用户账户的账户信息中获取该用户账户对应的备用账户地址,比较该交易请求的目的账户地址是否与该备用账户地址一致,如果是,则对该交易请求进行转账处理,如果否,则丢弃该交易请求。Within the preset freezing period of the user account, if a transaction request corresponding to the user account is received, first obtain the destination account address included in the transaction request, and then obtain the backup account corresponding to the user account from the account information of the user account address, compare whether the destination account address of the transaction request is consistent with the alternate account address, if so, perform transfer processing on the transaction request, if not, discard the transaction request.
在本申请实施例中,备用账户可不设置上述单笔限额属性、单日限额属性及通知阈值属性等,以便用户能够从备用账户及时将账户余额转移至自己安全性高的账户中。In the embodiment of the present application, the above-mentioned single limit attribute, single-day limit attribute, notification threshold attribute, etc. may not be set in the backup account, so that the user can transfer the account balance from the backup account to his own account with high security in time.
在上述用户账户的预设冻结时长内还可以对该用户账户进行重复冻结,每再次接收到用户账户的账户冻结请求,将用户账户的冻结时间延长预设冻结时长。The user account may also be frozen repeatedly within the preset freezing period of the above-mentioned user account, and each time an account freezing request of the user account is received again, the freezing period of the user account is extended by the preset freezing period.
为用户账户设置冻结属性,在接收到用户账户的冻结请求时,将用户账户冻结预设冻结时长,在预设冻结时长内,除向该用户账户的备用账户转账外的任何交易请求都将被丢弃。如此在用户获知自己的用户账户被盗取的情况下,可以通过冻结账户来避免损失。多次冻结用户账户,每请求冻结一次,就将用户账户的冻结时间延长预设冻结时长,从而能够最大限度的保护用户账户。Set the freezing attribute for the user account. When receiving the freezing request of the user account, the user account will be frozen for a preset freezing period. During the preset freezing period, any transaction request except the transfer to the standby account of the user account will be blocked. throw away. In this way, when the user learns that his user account has been stolen, he can avoid losses by freezing the account. Freeze the user account multiple times, and each time the user is requested to freeze, the user account freezing time will be extended by the preset freezing time period, so as to maximize the protection of the user account.
在区块链账户中设置了安全属性及其对应的安全规则,接收到账户的交易请求时,先判断该交易请求是否符合安全属性对应的安全规则,如果是,则执行该安全规则对应的安全操作。如此通过安全属性和其对应的安全规则来提高用户账户的安全性。The security attributes and their corresponding security rules are set in the blockchain account. When receiving a transaction request from the account, first determine whether the transaction request conforms to the security rules corresponding to the security attributes, and if so, execute the security rules corresponding to the security rules. operate. In this way, the security of the user account is improved through the security attributes and the corresponding security rules.
若账户的私钥被盗,单笔限额和单日限额能够减少账户余额被全部转移的风险。昵称确认属性能够在用户转账之前使用户确认对方身份,避免转错对象造成损失。通知阈值能够在进行较高金额的转账时通知用户,提高账户的安全性。冻结和备用账户则可以在私钥被盗时冻结账户,避免账户余额损失,并可以将被盗的账户中的余额全部转移到备用账户中,提高用户财产的安全性。If the private key of the account is stolen, the single limit and single day limit can reduce the risk of the account balance being transferred in full. The nickname confirmation attribute can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object. The notification threshold can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
本申请实施例在区块链账户中设置了安全属性及其对应的安全规则,接收到账户的交易请求时,先判断该交易请求是否符合安全属性对应的安全规则,如果是,则执行该安全规则对应的安全操作。如此通过安全属性和其对应的安全规则来提高用户账户的安全性。In this embodiment of the application, security attributes and corresponding security rules are set in the blockchain account. When receiving a transaction request from the account, it is first judged whether the transaction request conforms to the security rule corresponding to the security attribute, and if so, the security rule is executed. The security action corresponding to the rule. In this way, the security of the user account is improved through the security attributes and the corresponding security rules.
若账户的私钥被盗,单笔限额和单日限额能够减少账户余额被全部转移的风险。目的账户的用户身份确认能够在用户转账之前使用户确认对方身份,避免转错对象造成损失。通知阈值属性能够在进行较高金额的转账时通知用户,提高账户的安全性。冻结和备用账户则可以在私钥被盗时冻结账户,避免账户余额损失,并可以将被盗的账户中的余额全部转移到备用账户中,提高用户财产的安全性。If the private key of the account is stolen, the single limit and single day limit can reduce the risk of the account balance being transferred in full. The user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object. The notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
如图2所示,本申请实施例提供了一种区块链节点设备,该设备用于执行上述实施例提供的基于区块链的账户属性处理方法,该区块链节点设备包括:As shown in FIG. 2 , an embodiment of the present application provides a blockchain node device, which is used to execute the blockchain-based account attribute processing method provided by the above embodiment, and the blockchain node device includes:
接收模块201,用于接收终端发送的用户账户的交易请求;The receiving module 201 is used for receiving the transaction request of the user account sent by the terminal;
判断模块202,用于判断交易请求是否符合用户账户的安全属性对应的安全规则,安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;The judgment module 202 is used for judging whether the transaction request conforms to the security rule corresponding to the security attribute of the user account, and the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
通知发送模块203,用于若确定交易请求不符合安全属性对应的安全规则,则根据安全规则和交易请求,发送安全提示通知给终端,安全提示通知用于提示用户交易请求不符合安全规则。The notification sending module 203 is configured to send a security prompt notification to the terminal according to the security rule and the transaction request if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, and the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
安全属性包括单笔限额属性;判断模块202,用于判断交易请求包括的转账金额是否大于单笔限额属性对应的安全规则规定的单笔限额;如果是,则确定交易请求不符合单笔限额属性对应的安全规则;The security attribute includes a single limit attribute; the judgment module 202 is used to judge whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determine that the transaction request does not meet the single limit attribute the corresponding security rules;
相应地,通知发送模块203,用于根据安全规则和交易请求,生成第一交易失败通知,第一交易失败通知用于提示转账金额大于单笔限额;发送第一交易失败通知给终端。Correspondingly, the notification sending module 203 is configured to generate a first transaction failure notification according to the security rules and transaction requests, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit; and send the first transaction failure notification to the terminal.
安全属性包括单日限额属性;判断模块202,用于获取用户账户对应的当日转账总额;计算当日转账总额与交易请求包括的转账金额的和值;判断和值是否大于单日限额属性对应的安全规则规定的单日限额;如果是,则确定交易请求不符合单日限额属性对应的安全规则;The security attributes include a single-day limit attribute; the judgment module 202 is used to obtain the total amount of transfers on the day corresponding to the user account; calculate the sum of the total amount of transfers on the current day and the transfer amount included in the transaction request; and determine whether the sum is greater than the safety value corresponding to the single-day limit attribute. The single-day limit specified by the rules; if so, it is determined that the transaction request does not comply with the security rules corresponding to the single-day limit attribute;
相应地,通知发送模块203,用于根据安全规则和交易请求,生成第二交易失败通知,第二交易失败通知用于提示交易请求将使当日转账总额超过单日限额;发送第二交易失败通知给终端。Correspondingly, the notification sending module 203 is configured to generate a second transaction failure notification according to the security rules and the transaction request, and the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; send the second transaction failure notification to the terminal.
安全属性包括通知阈值属性;判断模块202,用于判断交易请求包括的转账金额是否小于单笔限额且大于通知阈值属性对应的安全规则规定的预设金额;如果是,则确定交易请求不符合通知阈值属性对应的安全规则;The security attribute includes a notification threshold attribute; the judgment module 202 is used to judge whether the transfer amount included in the transaction request is less than a single transaction limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determine that the transaction request does not meet the notification The security rule corresponding to the threshold attribute;
相应地,通知发送模块203,用于根据交易请求,获取用户账户对应的用户地址;根据安全规则和交易请求,生成大额交易通知,大额交易通知用于提示用户账户的拥有者交易请求的转账金额大于预设金额;发送大额交易通知给用户地址对应的用户终端。Correspondingly, the notification sending module 203 is used to obtain the user address corresponding to the user account according to the transaction request; according to the security rules and the transaction request, generate a large-value transaction notification, and the large-value transaction notification is used to prompt the owner of the user account for the transaction request. The transfer amount is greater than the preset amount; send a large transaction notification to the user terminal corresponding to the user address.
该区块链节点设备还包括:身份确认模块,用于接收终端发送的身份确认请求,身份确认请求包括目的账户地址;获取目的账户地址对应的用户身份信息;发送用户身份信息给终端。The blockchain node device further includes: an identity confirmation module for receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; obtaining user identity information corresponding to the destination account address; and sending the user identity information to the terminal.
该区块链节点设备还包括:冻结模块,用于接收终端发送用户账户的账户冻结请求;在预设冻结时长内,若接收到用户账户对应的交易请求;判断交易请求包括的目的账户地址是否为用户账户的备用账户地址;如果是,则对交易请求进行转账处理;如果否,则丢弃交易请求。The blockchain node device further includes: a freezing module for receiving an account freezing request sent by the terminal to the user account; within a preset freezing period, if a transaction request corresponding to the user account is received; determining whether the destination account address included in the transaction request is not It is the alternate account address of the user account; if it is, the transaction request will be transferred; if not, the transaction request will be discarded.
该区块链节点设备还包括:冻结延长模块,用于在预设冻结时长内每再次接收到用户账户的账户冻结请求,将用户账户的冻结时间延长预设冻结时长。The blockchain node device further includes: a freezing extension module for extending the freezing time of the user account by the preset freezing time every time an account freezing request of the user account is received again within the preset freezing period.
本申请实施例在区块链账户中设置了安全属性及其对应的安全规则,接收到账户的交易请求时,先判断该交易请求是否符合安全属性对应的安全规则,如果是,则执行该安全规则对应的安全操作。如此通过安全属性和其对应的安全规则来提高用户账户的安全性。In this embodiment of the application, security attributes and corresponding security rules are set in the blockchain account. When receiving a transaction request from the account, it is first judged whether the transaction request conforms to the security rule corresponding to the security attribute, and if so, the security rule is executed. The security action corresponding to the rule. In this way, the security of the user account is improved through the security attributes and the corresponding security rules.
若账户的私钥被盗,单笔限额和单日限额能够减少账户余额被全部转移的风险。目的账户的用户身份确认能够在用户转账之前使用户确认对方身份,避免转错对象造成损失。通知阈值属性能够在进行较高金额的转账时通知用户,提高账户的安全性。冻结和备用账户则可以在私钥被盗时冻结账户,避免账户余额损失,并可以将被盗的账户中的余额全部转移到备用账户中,提高用户财产的安全性。If the private key of the account is stolen, the single limit and single day limit can reduce the risk of the account balance being transferred in full. The user identity confirmation of the destination account can enable the user to confirm the identity of the other party before the user transfers, so as to avoid losses caused by the wrong object. The notification threshold attribute can notify the user when a higher amount of transfer is made, improving the security of the account. Freezing and standby accounts can freeze accounts when the private key is stolen to avoid loss of account balances, and can transfer all the balances in the stolen accounts to the standby accounts to improve the security of user property.
本申请实施例提供了一种计算机设备,该计算机设备可以为区块链节点设备。如图3所示,该计算机设备包括通过系统总线连接的处理器、非易失性存储介质、存储器和网络接口。其中,该计算机设备的非易失性存储介质存储有操作系统、数据库和计算机可读指令,数据库中可存储有控件信息序列,该计算机可读指令被处理器执行时,可使得处理器实现一种基于区块链的账户属性处理方法。该计算机设备的处理器用于提供计算和控制能力,支撑整个计算机设备的运行。该计算机设备的存储器中可存储有计算机可读指令,该计算机可读指令被处理器执行时,可使得处理器执行一种基于区块链的账户属性处理方法。该计算机设备的网络接口用于与终端连接通信。本领域技术人员可以理解,图3中示出的结构,仅仅是与本申请方案相关的部分结构的框图,并不构成对本申请方案所应用于其上的计算机设备的限定,具体的计算机设备可以包括比图中所示更多或更少的部件,或者组合某些部件,或者具有不同的部件布置。An embodiment of the present application provides a computer device, and the computer device may be a blockchain node device. As shown in FIG. 3, the computer device includes a processor, a non-volatile storage medium, a memory, and a network interface connected through a system bus. Wherein, the non-volatile storage medium of the computer device stores an operating system, a database and computer-readable instructions, and the database may store a sequence of control information. When the computer-readable instructions are executed by the processor, the processor can realize a A blockchain-based account attribute processing method. The processor of the computer device is used to provide computing and control capabilities and support the operation of the entire computer device. Computer-readable instructions may be stored in the memory of the computer device, and when executed by the processor, the computer-readable instructions may cause the processor to execute a blockchain-based method for processing account attributes. The network interface of the computer equipment is used for communication with the terminal connection. Those skilled in the art can understand that the structure shown in FIG. 3 is only a block diagram of a partial structure related to the solution of the present application, and does not constitute a limitation on the computer equipment to which the solution of the present application is applied. Include more or fewer components than shown in the figures, or combine certain components, or have a different arrangement of components.
该计算机设备包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,处理器执行计算机程序时实现以下步骤:接收终端发送的用户账户的交易请求;判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。The computer device includes a memory, a processor, and a computer program stored on the memory and running on the processor. When the processor executes the computer program, the processor implements the following steps: receiving a transaction request for a user account sent by a terminal; judging whether the transaction request is Comply with the security rules corresponding to the security attributes of the user account, the security attributes include one or more of a single limit attribute, a single day limit attribute, and a notification threshold attribute; if it is determined that the transaction request does not meet the security If the security rule corresponds to the attribute, a security prompt notification is sent to the terminal according to the security rule and the transaction request, where the security prompt notification is used to prompt the user that the transaction request does not conform to the security rule.
处理器执行计算机程序时还可以实现以下步骤:判断所述交易请求包括的转账金额是否大于所述单笔限额属性对应的安全规则规定的单笔限额;如果是,则确定所述交易请求不符合所述单笔限额属性对应的安全规则;相应地,根据所述安全规则和所述交易请求, 生成第一交易失败通知,所述第一交易失败通知用于提示所述转账金额大于所述单笔限额;发送所述第一交易失败通知给所述终端。When executing the computer program, the processor may further implement the following steps: judging whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determining that the transaction request does not meet the The security rule corresponding to the single limit attribute; correspondingly, according to the security rule and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single transaction amount. pen limit; send the first transaction failure notification to the terminal.
处理器执行计算机程序时还可以实现以下步骤:获取所述用户账户对应的当日转账总额;计算所述当日转账总额与所述交易请求包括的转账金额的和值;判断所述和值是否大于所述单日限额属性对应的安全规则规定的单日限额;如果是,则确定所述交易请求不符合所述单日限额属性对应的安全规则;相应地,根据所述安全规则和所述交易请求,生成第二交易失败通知,所述第二交易失败通知用于提示所述交易请求将使当日转账总额超过单日限额;发送所述第二交易失败通知给所述终端。When the processor executes the computer program, the following steps may also be implemented: obtaining the total amount of transfers on the day corresponding to the user account; calculating the sum of the total amount of transfers on the day and the transfer amount included in the transaction request; judging whether the sum is greater than all The single-day limit specified by the security rule corresponding to the single-day limit attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute; accordingly, according to the security rule and the transaction request , generating a second transaction failure notification, where the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; and send the second transaction failure notification to the terminal.
处理器执行计算机程序时还可以实现以下步骤:判断所述交易请求包括的转账金额是否小于所述单笔限额且大于所述通知阈值属性对应的安全规则规定的预设金额;如果是,则确定所述交易请求不符合所述通知阈值属性对应的安全规则;相应地,根据所述交易请求,获取所述用户账户对应的用户地址;根据所述安全规则和所述交易请求,生成大额交易通知,所述大额交易通知用于提示所述用户账户的拥有者所述交易请求的转账金额大于所述预设金额;发送所述大额交易通知给所述用户地址对应的用户终端。When executing the computer program, the processor may further implement the following steps: judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determining whether The transaction request does not conform to the security rule corresponding to the notification threshold attribute; accordingly, the user address corresponding to the user account is obtained according to the transaction request; a large-value transaction is generated according to the security rule and the transaction request The large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; the large-value transaction notification is sent to the user terminal corresponding to the user address.
处理器执行计算机程序时还可以实现以下步骤:接收终端发送的身份确认请求,所述身份确认请求包括目的账户地址;获取所述目的账户地址对应的用户身份信息;发送所述用户身份信息给所述终端。When the processor executes the computer program, the following steps may also be implemented: receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; acquiring user identity information corresponding to the destination account address; sending the user identity information to the described terminal.
处理器执行计算机程序时还可以实现以下步骤:接收终端发送所述用户账户的账户冻结请求;在预设冻结时长内,若接收到所述用户账户对应的交易请求;判断所述交易请求包括的目的账户地址是否为所述用户账户的备用账户地址;如果是,则对所述交易请求进行转账处理;如果否,则丢弃所述交易请求。When the processor executes the computer program, the following steps may also be implemented: the receiving terminal sends an account freezing request of the user account; within a preset freezing time period, if a transaction request corresponding to the user account is received; judging that the transaction request includes Whether the destination account address is the backup account address of the user account; if so, perform transfer processing on the transaction request; if not, discard the transaction request.
处理器执行计算机程序时还可以实现以下步骤:在所述预设冻结时长内每再次接收到所述用户账户的账户冻结请求,将所述用户账户的冻结时间延长所述预设冻结时长。When the processor executes the computer program, the following steps may be further implemented: every time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
本申请实施例还提出了一种存储有计算机可读指令的存储介质,如图4所示,该计算机可读指令被一个或多个处理器执行时,使得一个或多个处理器执行以下步骤:接收终端发送的用户账户的交易请求;判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。An embodiment of the present application further provides a storage medium storing computer-readable instructions. As shown in FIG. 4 , when the computer-readable instructions are executed by one or more processors, the one or more processors perform the following steps : Receive the transaction request of the user account sent by the terminal; determine whether the transaction request conforms to the security rule corresponding to the security attribute of the user account, and the security attribute includes a single limit attribute, a single day limit attribute, and a notification threshold attribute. One or more; if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, then according to the security rule and the transaction request, a security prompt notification is sent to the terminal, and the security prompt notification uses to prompt the user that the transaction request does not conform to the security rule.
处理器还可以执行以下步骤:判断所述交易请求包括的转账金额是否大于所述单笔限额属性对应的安全规则规定的单笔限额;如果是,则确定所述交易请求不符合所述单笔限额属性对应的安全规则;相应地,根据所述安全规则和所述交易请求,生成第一交易失败通知,所述第一交易失败通知用于提示所述转账金额大于所述单笔限额;发送所述第一交易失败通知给所述终端。The processor may also perform the following steps: judging whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute; if so, determining that the transaction request does not meet the single limit The security rule corresponding to the limit attribute; correspondingly, according to the security rule and the transaction request, a first transaction failure notification is generated, and the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit; send The first transaction failure is notified to the terminal.
处理器还可以执行以下步骤:获取所述用户账户对应的当日转账总额;计算所述当日转账总额与所述交易请求包括的转账金额的和值;判断所述和值是否大于所述单日限额属性对应的安全规则规定的单日限额;如果是,则确定所述交易请求不符合所述单日限额属性对应的安全规则;相应地,根据所述安全规则和所述交易请求,生成第二交易失败通知,所述第二交易失败通知用于提示所述交易请求将使当日转账总额超过单日限额;发送所述第二交易失败通知给所述终端。The processor may also perform the following steps: obtaining the total amount of transfers on the day corresponding to the user account; calculating the sum of the total amount of transfers on the day and the transfer amount included in the transaction request; judging whether the sum is greater than the single-day limit The single-day limit specified by the security rule corresponding to the attribute; if so, it is determined that the transaction request does not conform to the security rule corresponding to the single-day limit attribute; accordingly, according to the security rule and the transaction request, a second A transaction failure notification, where the second transaction failure notification is used to prompt that the transaction request will make the total transfer amount on the day exceed the single-day limit; send the second transaction failure notification to the terminal.
处理器还可以执行以下步骤:判断所述交易请求包括的转账金额是否小于所述单笔限额且大于所述通知阈值属性对应的安全规则规定的预设金额;如果是,则确定所述交易请求不符合所述通知阈值属性对应的安全规则;相应地,根据所述交易请求,获取所述用户 账户对应的用户地址;根据所述安全规则和所述交易请求,生成大额交易通知,所述大额交易通知用于提示所述用户账户的拥有者所述交易请求的转账金额大于所述预设金额;发送所述大额交易通知给所述用户地址对应的用户终端。The processor may also perform the following steps: judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute; if so, determining the transaction request does not conform to the security rule corresponding to the notification threshold attribute; correspondingly, according to the transaction request, obtain the user address corresponding to the user account; according to the security rule and the transaction request, generate a large transaction notification, the The large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount; the large-value transaction notification is sent to the user terminal corresponding to the user address.
处理器还可以执行以下步骤:接收终端发送的身份确认请求,所述身份确认请求包括目的账户地址;获取所述目的账户地址对应的用户身份信息;发送所述用户身份信息给所述终端。The processor may further perform the following steps: receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes a destination account address; acquiring user identity information corresponding to the destination account address; and sending the user identity information to the terminal.
处理器还可以执行以下步骤:接收终端发送所述用户账户的账户冻结请求;在预设冻结时长内,若接收到所述用户账户对应的交易请求;判断所述交易请求包括的目的账户地址是否为所述用户账户的备用账户地址;如果是,则对所述交易请求进行转账处理;如果否,则丢弃所述交易请求。The processor may also perform the following steps: receiving an account freezing request of the user account sent by the receiving terminal; within a preset freezing period, if a transaction request corresponding to the user account is received; judging whether the destination account address included in the transaction request is not is the alternate account address of the user account; if yes, perform transfer processing on the transaction request; if not, discard the transaction request.
处理器还可以执行以下步骤:在所述预设冻结时长内每再次接收到所述用户账户的账户冻结请求,将所述用户账户的冻结时间延长所述预设冻结时长。The processor may further perform the following step: every time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
本领域普通技术人员可以理解实现上述实施例方法中的全部或部分流程,是可以通过计算机程序来指令相关的硬件来完成,该计算机程序可存储于一计算机可读取存储介质中,该程序在执行时,可包括如上述各方法的实施例的流程。其中,前述的存储介质可为磁碟、光盘、只读存储记忆体(Read-Only Memory,ROM)等非易失性存储介质,或随机存储记忆体(Random Access Memory,RAM)等。Those of ordinary skill in the art can understand that the realization of all or part of the processes in the methods of the above embodiments can be accomplished by instructing relevant hardware through a computer program, and the computer program can be stored in a computer-readable storage medium, and the program is During execution, it may include the processes of the embodiments of the above-mentioned methods. Wherein, the aforementioned storage medium may be a non-volatile storage medium such as a magnetic disk, an optical disk, a read-only memory (Read-Only Memory, ROM), or a random access memory (Random Access Memory, RAM) or the like.
以上所述实施例的各技术特征可以进行任意的组合,为使描述简洁,未对上述实施例中的各个技术特征所有可能的组合都进行描述,然而,只要这些技术特征的组合不存在矛盾,都应当认为是本说明书记载的范围。The technical features of the above-described embodiments can be combined arbitrarily. For the sake of brevity, all possible combinations of the technical features in the above-described embodiments are not described. However, as long as there is no contradiction between the combinations of these technical features, All should be regarded as the scope described in this specification.
以上所述实施例仅表达了本申请的几种实施方式,其描述较为具体和详细,但并不能因此而理解为对本申请专利范围的限制。应当指出的是,对于本领域的普通技术人员来说,在不脱离本申请构思的前提下,还可以做出若干变形和改进,这些都属于本申请的保护范围。因此,本申请专利的保护范围应以所附权利要求为准。The above-mentioned embodiments only represent several embodiments of the present application, and the descriptions thereof are relatively specific and detailed, but should not be construed as a limitation on the scope of the patent of the present application. It should be pointed out that for those skilled in the art, without departing from the concept of the present application, several modifications and improvements can be made, which all belong to the protection scope of the present application. Therefore, the scope of protection of the patent of the present application shall be subject to the appended claims.

Claims (20)

  1. 一种基于区块链的账户属性处理方法,其中,应用于区块链节点,包括:A blockchain-based account attribute processing method, which is applied to blockchain nodes, including:
    接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
    判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
    若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
  2. 根据权利要求1所述的方法,其中,所述安全属性包括单笔限额属性;所述判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,包括:The method according to claim 1, wherein the security attribute includes a single limit attribute; the judging whether the transaction request conforms to the security rule corresponding to the security attribute of the user account comprises:
    判断所述交易请求包括的转账金额是否大于所述单笔限额属性对应的安全规则规定的单笔限额;Determine whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute;
    如果是,则确定所述交易请求不符合所述单笔限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第一交易失败通知,所述第一交易失败通知用于提示所述转账金额大于所述单笔限额;generating a first transaction failure notification according to the security rule and the transaction request, where the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit;
    发送所述第一交易失败通知给所述终端。Send the first transaction failure notification to the terminal.
  3. 根据权利要求1所述的方法,其中,所述安全属性包括单日限额属性;所述判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,包括:The method according to claim 1, wherein the security attribute includes a single-day limit attribute; and the judging whether the transaction request conforms to the security rule corresponding to the security attribute of the user account comprises:
    获取所述用户账户对应的当日转账总额;Obtain the total amount of transfers on the day corresponding to the user account;
    计算所述当日转账总额与所述交易请求包括的转账金额的和值;Calculate the sum of the total transfer amount on the day and the transfer amount included in the transaction request;
    判断所述和值是否大于所述单日限额属性对应的安全规则规定的单日限额;Determine whether the sum value is greater than the single-day limit specified by the security rule corresponding to the single-day limit attribute;
    如果是,则确定所述交易请求不符合所述单日限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single-day limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第二交易失败通知,所述第二交易失败通知用于提示所述交易请求将使当日转账总额超过单日限额;generating a second transaction failure notification according to the security rule and the transaction request, where the second transaction failure notification is used to prompt that the transaction request will cause the total transfer amount on the day to exceed the single-day limit;
    发送所述第二交易失败通知给所述终端。Send the second transaction failure notification to the terminal.
  4. 根据权利要求2所述的方法,其中,所述安全属性包括通知阈值属性;所述判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,包括:The method according to claim 2, wherein the security attribute includes a notification threshold attribute; and the judging whether the transaction request conforms to the security rule corresponding to the security attribute of the user account comprises:
    判断所述交易请求包括的转账金额是否小于所述单笔限额且大于所述通知阈值属性对应的安全规则规定的预设金额;Judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute;
    如果是,则确定所述交易请求不符合所述通知阈值属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the notification threshold attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述交易请求,获取所述用户账户对应的用户地址;obtaining the user address corresponding to the user account according to the transaction request;
    根据所述安全规则和所述交易请求,生成大额交易通知,所述大额交易通知用于提示所述用户账户的拥有者所述交易请求的转账金额大于所述预设金额;According to the security rule and the transaction request, a large-value transaction notification is generated, and the large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount;
    发送所述大额交易通知给所述用户地址对应的用户终端。Send the large-value transaction notification to the user terminal corresponding to the user address.
  5. 根据权利要求1所述的方法,其中,所述接收终端发送的用户账户的交易请求之前,还包括:The method according to claim 1, wherein before the receiving the transaction request of the user account sent by the terminal, the method further comprises:
    接收终端发送的身份确认请求,所述身份确认请求包括目的账户地址;receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes the destination account address;
    获取所述目的账户地址对应的用户身份信息;Obtain the user identity information corresponding to the destination account address;
    发送所述用户身份信息给所述终端。Send the user identity information to the terminal.
  6. 根据权利要求1-5任一项所述的方法,其中,所述方法还包括:The method according to any one of claims 1-5, wherein the method further comprises:
    接收终端发送所述用户账户的账户冻结请求;The receiving terminal sends the account freezing request of the user account;
    在预设冻结时长内,若接收到所述用户账户对应的交易请求;Within the preset freezing period, if a transaction request corresponding to the user account is received;
    判断所述交易请求包括的目的账户地址是否为所述用户账户的备用账户地址;Determine whether the destination account address included in the transaction request is the alternate account address of the user account;
    如果是,则对所述交易请求进行转账处理;If so, perform transfer processing on the transaction request;
    如果否,则丢弃所述交易请求。If not, the transaction request is discarded.
  7. 根据权利要求6所述的方法,其中,所述方法还包括:The method of claim 6, wherein the method further comprises:
    在所述预设冻结时长内每再次接收到所述用户账户的账户冻结请求,将所述用户账户的冻结时间延长所述预设冻结时长。Each time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
  8. 一种计算机设备,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机可读指令,所述处理器执行所述计算机可读指令时实现如下步骤:A computer device, comprising a memory, a processor, and computer-readable instructions stored on the memory and executable on the processor, the processor implementing the following steps when executing the computer-readable instructions:
    接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
    判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
    若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
  9. 根据权利要求8所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to claim 8, wherein the processor further implements the following steps when executing the computer program:
    判断所述交易请求包括的转账金额是否大于所述单笔限额属性对应的安全规则规定的单笔限额;Determine whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute;
    如果是,则确定所述交易请求不符合所述单笔限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第一交易失败通知,所述第一交易失败通知用于提示所述转账金额大于所述单笔限额;generating a first transaction failure notification according to the security rule and the transaction request, where the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit;
    发送所述第一交易失败通知给所述终端。Send the first transaction failure notification to the terminal.
  10. 根据权利要求8所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to claim 8, wherein the processor further implements the following steps when executing the computer program:
    获取所述用户账户对应的当日转账总额;Obtain the total amount of transfers on the day corresponding to the user account;
    计算所述当日转账总额与所述交易请求包括的转账金额的和值;Calculate the sum of the total transfer amount on the day and the transfer amount included in the transaction request;
    判断所述和值是否大于所述单日限额属性对应的安全规则规定的单日限额;Determine whether the sum value is greater than the single-day limit specified by the security rule corresponding to the single-day limit attribute;
    如果是,则确定所述交易请求不符合所述单日限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single-day limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第二交易失败通知,所述第二交易失败通知用于提示所述交易请求将使当日转账总额超过单日限额;generating a second transaction failure notification according to the security rule and the transaction request, where the second transaction failure notification is used to prompt that the transaction request will cause the total transfer amount on the day to exceed the single-day limit;
    发送所述第二交易失败通知给所述终端。Send the second transaction failure notification to the terminal.
  11. 根据权利要求9所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to claim 9, wherein the processor further implements the following steps when executing the computer program:
    判断所述交易请求包括的转账金额是否小于所述单笔限额且大于所述通知阈值属性对应的安全规则规定的预设金额;Judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute;
    如果是,则确定所述交易请求不符合所述通知阈值属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the notification threshold attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述交易请求,获取所述用户账户对应的用户地址;obtaining the user address corresponding to the user account according to the transaction request;
    根据所述安全规则和所述交易请求,生成大额交易通知,所述大额交易通知用于提示所述用户账户的拥有者所述交易请求的转账金额大于所述预设金额;According to the security rule and the transaction request, a large-value transaction notification is generated, and the large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount;
    发送所述大额交易通知给所述用户地址对应的用户终端。Send the large-value transaction notification to the user terminal corresponding to the user address.
  12. 根据权利要求8所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to claim 8, wherein the processor further implements the following steps when executing the computer program:
    接收终端发送的身份确认请求,所述身份确认请求包括目的账户地址;receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes the destination account address;
    获取所述目的账户地址对应的用户身份信息;Obtain the user identity information corresponding to the destination account address;
    发送所述用户身份信息给所述终端。Send the user identity information to the terminal.
  13. 根据权利要求8-12中任一项所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to any one of claims 8-12, wherein the processor further implements the following steps when executing the computer program:
    接收终端发送所述用户账户的账户冻结请求;The receiving terminal sends the account freezing request of the user account;
    在预设冻结时长内,若接收到所述用户账户对应的交易请求;Within the preset freezing period, if a transaction request corresponding to the user account is received;
    判断所述交易请求包括的目的账户地址是否为所述用户账户的备用账户地址;Determine whether the destination account address included in the transaction request is the alternate account address of the user account;
    如果是,则对所述交易请求进行转账处理;If so, perform transfer processing on the transaction request;
    如果否,则丢弃所述交易请求。If not, the transaction request is discarded.
  14. 根据权利要求13所述的计算机设备,所述处理器执行所述计算机程序时还实现以下步骤:The computer device according to claim 13, wherein the processor further implements the following steps when executing the computer program:
    在所述预设冻结时长内每再次接收到所述用户账户的账户冻结请求,将所述用户账户的冻结时间延长所述预设冻结时长。Each time an account freezing request of the user account is received again within the preset freezing period, the freezing period of the user account is extended by the preset freezing period.
  15. 一种计算机可读存储介质,所述计算机可读存储介质中存储计算机指令,当所述计算机指令在计算机上运行时,使得计算机执行如下步骤:A computer-readable storage medium, storing computer instructions in the computer-readable storage medium, when the computer instructions are executed on a computer, the computer is made to perform the following steps:
    接收终端发送的用户账户的交易请求;Receive the transaction request of the user account sent by the terminal;
    判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;Judging whether the transaction request complies with the security rule corresponding to the security attribute of the user account, the security attribute includes one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
    若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。If it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, send a security prompt notification to the terminal according to the security rule and the transaction request, and the security prompt notification is used to prompt the user for the transaction The request does not meet the stated security rules.
  16. 根据权利要求15所述的计算机可读存储介质,所述处理器执行所述计算机程序时还实现以下步骤:The computer-readable storage medium of claim 15, wherein the processor further implements the following steps when executing the computer program:
    判断所述交易请求包括的转账金额是否大于所述单笔限额属性对应的安全规则规定的单笔限额;Determine whether the transfer amount included in the transaction request is greater than the single limit specified by the security rule corresponding to the single limit attribute;
    如果是,则确定所述交易请求不符合所述单笔限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第一交易失败通知,所述第一交易失败通知用于提示所述转账金额大于所述单笔限额;generating a first transaction failure notification according to the security rule and the transaction request, where the first transaction failure notification is used to prompt that the transfer amount is greater than the single limit;
    发送所述第一交易失败通知给所述终端。Send the first transaction failure notification to the terminal.
  17. 根据权利要求15所述的计算机可读存储介质,所述处理器执行所述计算机程序时还实现以下步骤:The computer-readable storage medium of claim 15, wherein the processor further implements the following steps when executing the computer program:
    获取所述用户账户对应的当日转账总额;Obtain the total amount of transfers on the day corresponding to the user account;
    计算所述当日转账总额与所述交易请求包括的转账金额的和值;Calculate the sum of the total transfer amount on the day and the transfer amount included in the transaction request;
    判断所述和值是否大于所述单日限额属性对应的安全规则规定的单日限额;Determine whether the sum value is greater than the single-day limit specified by the security rule corresponding to the single-day limit attribute;
    如果是,则确定所述交易请求不符合所述单日限额属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the single-day limit attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述安全规则和所述交易请求,生成第二交易失败通知,所述第二交易失败通知用于提示所述交易请求将使当日转账总额超过单日限额;generating a second transaction failure notification according to the security rule and the transaction request, where the second transaction failure notification is used to prompt that the transaction request will cause the total transfer amount on the day to exceed the single-day limit;
    发送所述第二交易失败通知给所述终端。Send the second transaction failure notification to the terminal.
  18. 根据权利要求16所述的计算机可读存储介质,所述处理器执行所述计算机程序时还实现以下步骤:The computer-readable storage medium of claim 16, wherein the processor further implements the following steps when executing the computer program:
    判断所述交易请求包括的转账金额是否小于所述单笔限额且大于所述通知阈值属性对应的安全规则规定的预设金额;Judging whether the transfer amount included in the transaction request is less than the single limit and greater than the preset amount specified by the security rule corresponding to the notification threshold attribute;
    如果是,则确定所述交易请求不符合所述通知阈值属性对应的安全规则;If so, determine that the transaction request does not conform to the security rule corresponding to the notification threshold attribute;
    相应地,所述根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,包括:Correspondingly, the sending a security prompt notification to the terminal according to the security rule and the transaction request includes:
    根据所述交易请求,获取所述用户账户对应的用户地址;obtaining the user address corresponding to the user account according to the transaction request;
    根据所述安全规则和所述交易请求,生成大额交易通知,所述大额交易通知用于提示所述用户账户的拥有者所述交易请求的转账金额大于所述预设金额;According to the security rule and the transaction request, a large-value transaction notification is generated, and the large-value transaction notification is used to prompt the owner of the user account that the transfer amount of the transaction request is greater than the preset amount;
    发送所述大额交易通知给所述用户地址对应的用户终端。Send the large-value transaction notification to the user terminal corresponding to the user address.
  19. 根据权利要求15所述的计算机可读存储介质,所述处理器执行所述计算机程序时还实现以下步骤:The computer-readable storage medium of claim 15, wherein the processor further implements the following steps when executing the computer program:
    接收终端发送的身份确认请求,所述身份确认请求包括目的账户地址;receiving an identity confirmation request sent by the terminal, where the identity confirmation request includes the destination account address;
    获取所述目的账户地址对应的用户身份信息;Obtain the user identity information corresponding to the destination account address;
    发送所述用户身份信息给所述终端。Send the user identity information to the terminal.
  20. 一种区块链节点设备,其中,包括:A blockchain node device, including:
    接收模块,用于接收终端发送的用户账户的交易请求;The receiving module is used to receive the transaction request of the user account sent by the terminal;
    判断模块,用于判断所述交易请求是否符合所述用户账户的安全属性对应的安全规则,所述安全属性包括单笔限额属性、单日限额属性、通知阈值属性中的一种或多种;a judgment module, configured to judge whether the transaction request complies with the security rules corresponding to the security attributes of the user account, and the security attributes include one or more of a single limit attribute, a single daily limit attribute, and a notification threshold attribute;
    通知发送模块,用于若确定所述交易请求不符合所述安全属性对应的安全规则,则根据所述安全规则和所述交易请求,发送安全提示通知给所述终端,所述安全提示通知用于提示用户所述交易请求不符合所述安全规则。The notification sending module is configured to send a security prompt notification to the terminal according to the security rule and the transaction request if it is determined that the transaction request does not conform to the security rule corresponding to the security attribute, and the security prompt notification uses to prompt the user that the transaction request does not conform to the security rule.
PCT/CN2021/123560 2020-10-15 2021-10-13 Account attribute processing method based on blockchain, and device and storage medium WO2022078396A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202011105751.1 2020-10-15
CN202011105751.1A CN112069526A (en) 2020-10-15 2020-10-15 Block chain-based account attribute processing method and device and storage medium

Publications (1)

Publication Number Publication Date
WO2022078396A1 true WO2022078396A1 (en) 2022-04-21

Family

ID=73655161

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/123560 WO2022078396A1 (en) 2020-10-15 2021-10-13 Account attribute processing method based on blockchain, and device and storage medium

Country Status (2)

Country Link
CN (1) CN112069526A (en)
WO (1) WO2022078396A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112633895A (en) * 2021-01-05 2021-04-09 交通银行股份有限公司 Risk control method and system for bank online website business digital currency transaction
CN113269642B (en) * 2021-05-24 2023-03-28 深圳壹账通智能科技有限公司 Transaction processing method, device, equipment and storage medium based on block chain
CN113723944B (en) * 2021-09-14 2024-03-26 中国银行股份有限公司 Method and device for setting transfer limit, electronic equipment and computer storage medium
CN113570373B (en) * 2021-09-23 2022-02-11 北京理工大学 Responsibility pursuing transaction method and system based on block chain
CN114020253A (en) * 2021-10-28 2022-02-08 四川启睿克科技有限公司 Method for detecting validity of EOS block chain address

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102201143A (en) * 2011-04-08 2011-09-28 张应刚 Bank card transaction system and method based on real-time interaction of short-message platform
CN108711105A (en) * 2018-05-16 2018-10-26 四川吉鼎科技有限公司 A kind of Secure Transaction verification method and system based on block chain
CN110543781A (en) * 2019-09-07 2019-12-06 刘付荣 Method for realizing financial security transaction based on block chain
CN111626848A (en) * 2020-06-04 2020-09-04 中国银行股份有限公司 Data processing method and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102201143A (en) * 2011-04-08 2011-09-28 张应刚 Bank card transaction system and method based on real-time interaction of short-message platform
CN108711105A (en) * 2018-05-16 2018-10-26 四川吉鼎科技有限公司 A kind of Secure Transaction verification method and system based on block chain
CN110543781A (en) * 2019-09-07 2019-12-06 刘付荣 Method for realizing financial security transaction based on block chain
CN111626848A (en) * 2020-06-04 2020-09-04 中国银行股份有限公司 Data processing method and system

Also Published As

Publication number Publication date
CN112069526A (en) 2020-12-11

Similar Documents

Publication Publication Date Title
WO2022078396A1 (en) Account attribute processing method based on blockchain, and device and storage medium
US11966916B2 (en) Resource transfer method and apparatus, storage medium, and computer device
EP3812992B1 (en) Block chain transaction method and apparatus
US11037164B2 (en) Event processing method, apparatus and electronic device based on blockchain technology
EP3639469B1 (en) Systems and methods for addressing security-related vulnerabilities arising in relation to off-blockchain channels in the event of failures in a network
CN110958110B (en) Block chain private data management method and system based on zero knowledge proof
WO2022078398A1 (en) Blockchain-based sub-account transaction processing method and system, device and medium
JP2020505799A (en) System and method for replay attack detection
US20160197904A1 (en) Account association systems and methods
WO2021184878A1 (en) Node management method for block chain system, node, and computational device
WO2020083112A1 (en) Numerical value transfer method, device, and system
US20210359859A1 (en) Systems and methods for detecting device location and usage
KR20180052527A (en) Systems and methods to verify ownership of a telephone number and to track ownership reassignments
US20200204338A1 (en) Securing public key cryptographic algorithms
WO2006054047A1 (en) Provision of personal data in a data communcations network
US8423656B2 (en) Push gateway systems and methods
US20190251249A1 (en) Methods and Systems for Securing and Recovering a User Passphrase
CN110807209B (en) Data processing method, device and storage medium
WO2022206438A1 (en) Method and apparatus for providing cross-chain message
CN111612591A (en) Network-switching user credit rating method and device, control equipment and storage medium
US20190303935A1 (en) System and methods for preventing reverse transactions in a distributed environment
WO2022100381A1 (en) Blockchain-based crowdfunding joint account creation method, and devices and storage medium
CN110784318B (en) Group key updating method, device, electronic equipment, storage medium and communication system
WO2022095426A1 (en) Blockchain-based joint account creation method, system, device, and storage medium
CN115348082A (en) Data desensitization method and device, computer equipment and storage medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21879439

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 18/07/2023)

122 Ep: pct application non-entry in european phase

Ref document number: 21879439

Country of ref document: EP

Kind code of ref document: A1