WO2023020428A1

WO2023020428A1 - Data verification method and apparatus, and storage medium

Info

Publication number: WO2023020428A1
Application number: PCT/CN2022/112485
Authority: WO
Inventors: 汤珂; 丁津泰
Original assignee: 清华大学
Priority date: 2021-08-20
Filing date: 2022-08-15
Publication date: 2023-02-23
Also published as: CN115708340A; CN115708339A; WO2023020448A1; CN115906109A; CN115708339B

Abstract

The present disclosure relates to a data verification method and apparatus, and a storage medium. The method comprises: a second server receiving first data that is sent by a first server, wherein the first data comprises a hash value of at least one first subset, and the first subset comprises at least one second subset; sending to the first server a random inspection request for second data, wherein the second data comprises at least one first subset, or at least one first subset and at least one second subset; receiving return information that is sent by the first server in response to the random inspection request; and according to the return information and the hash value of the at least one first subset comprised in the second data, verifying the second data, and when the verification is passed, according to the return information, obtaining content comprised in the second data, so as to determine whether to accept the delegation of the first server. Therefore, original data of first data can be prevented from being leaked, and the data verification process is made to be randomized, trustworthy and controllable.

Description

Data verification method, device and storage medium

technical field

The present disclosure relates to the field of data processing, and in particular to a data verification method, device and storage medium.

Background technique

At present, there are more and more scenarios that require data circulation and transactions, and data owners often do not have the energy to conduct data transactions directly, so they need to entrust the data to the entrusted party for transactions, and the entrusted party replaces the data owner to conduct transactions and participate in Income Distribution.

Because digital goods are different from ordinary goods, they are easy to copy and unknowable before the transaction. Under the current technical means, there is no entrustment method that both the entrusting party and the entrusting party trust, and it is impossible to prevent the entrusting party from falsifying data or entrusting Therefore, there is an urgent need for credible and controllable new technical means.

Contents of the invention

In view of this, the present disclosure proposes a data verification method, device and storage medium.

According to an aspect of the present disclosure, a data verification method is provided. The method includes:

Receive the first data sent by the first server, the first data includes the hash value of at least one first subset, the first subset includes at least one second subset, the first data is the transaction that the first server wants to entrust The data;

sending a sampling request for the second data to the first server, where the second data includes at least one first subset, or the second data includes at least one first subset and at least one second subset;

receiving the return information sent by the first server in response to the sampling request;

The second data is verified according to the returned information and the hash value of at least one first subset included in the second data, and the hash value of the at least one first subset included in the second data is based on the at least one hash value included in the first data The hash value of the first subset is determined;

If the verification is passed, the content of at least one first subset included in the second data, or the contents of at least one first subset and at least one second subset included in the second data are obtained according to the returned information, so as to determine whether Accept the entrustment of the first server.

According to the embodiment of the present application, by dividing the data to be entrusted for transaction into at least one first subset, and dividing the first subset into at least one second subset, it can meet the sampling requirements of different data volumes, and the first Subsets, or, the first subset and the second subset are subjected to sampling inspection to realize a more detailed and targeted entrusted transaction sampling inspection process. By making the first data include at least one hash value of the first subset, while simplifying the sampling process, it can meet the sampling requirements of different data volumes and improve the efficiency of sampling. During the sampling process, the second server cannot obtain the original data of the first data. Since the sampling request is made by the second server, the first server cannot determine the second data that will be sampled, so it cannot select data with better quality in advance as the data to be sampled to deceive the second server. Sending the first data first, and then performing random inspection can prevent the first server from intentionally falsifying data in the returned information to cover up the original data, making the sampling inspection process random, credible, and controllable.

In a possible implementation manner, when the number of first subsets included in the first data is greater than a predetermined threshold, the second data includes at least one first subset and at least one second subset.

According to the embodiment of the present application, in the case of a large amount of data, it is possible to prevent the first server from concealing data content or providing incomplete data, resulting in missed detection and false detection, and to achieve more detailed and targeted sampling inspection process.

In a possible implementation manner, the returned information includes third data, and the second data is verified according to the returned information and the hash value of at least one first subset included in the second data, including:

When the number of first subsets included in the first data is greater than a predetermined threshold, judging whether the hash value of the third data is consistent with the hash value of at least one first subset included in the second data;

The second data is verified according to the judgment result.

According to the embodiment of this application, by judging whether the hash value of the third data included in the returned information is consistent with the hash value of the second data, it can be determined whether the first server has provided the data specified in the sampling request, preventing the first server from end provides false data. Moreover, in the above process, the entrusting party cannot obtain the original data of the data that has not been sampled in the first data, which can prevent the original data of the first data from being leaked.

In a possible implementation manner, the first data includes an encrypted first subset and an encrypted second subset, and the returned information includes a key corresponding to the second data. At least one hash value of the first subset, for verifying the second data, includes:

Decrypting the encrypted second data in the encrypted first subset and the encrypted second subset according to the key to obtain fourth data;

The second data is verified according to the fourth data and the hash value of the at least one first subset included in the second data.

According to the embodiment of the present application, by decrypting the encrypted second data in the encrypted first subset and the encrypted second subset according to the key in the returned information, the fourth data is obtained, and the fourth data is judged Whether the hash value of the hash value is consistent with the hash value of the second data can determine whether the first server has provided the data specified in the sampling request, preventing the first server from providing false data.

In a possible implementation manner, verifying the second data according to the fourth data and a hash value of at least one first subset included in the second data includes:

When the number of first subsets included in the first data is greater than a predetermined threshold, judging whether the hash value of the fourth data is consistent with the hash value of at least one first subset included in the second data;

The second data is verified according to the judgment result.

As a result, when the amount of data to be entrusted for transactions is large, it is possible to prevent missed or false detections caused by only one-step inspection, and to achieve more detailed and purposeful inspection of the data to be audited .

In a possible implementation manner, the key includes at least one key corresponding to the first subset and/or the second subset in the second data, and different keys corresponding to the first subset and the second subset The keys are different.

According to the embodiment of this application, by making the keys corresponding to different subsets different, it can be realized that the entrusting party cannot obtain the original data of the data that has not been sampled in the first data during the random inspection process, preventing the original data of the first data was leaked.

In a possible implementation manner, the sampling request includes at least one data location, and the data location is used to indicate the location of the first subset included in the second data in the first data, and/or, the first subset included in the second data The position of the second subset in the first subset.

According to the embodiment of the present application, by including the data position in the sampling request, the arrangement order of each first subset in the first data can be determined, and/or the arrangement order of the second subset in the first subset can be determined. If the original data is obtained during the subsequent transaction, it can be checked whether the hash value of the data at the selected data position is consistent with the hash value of the corresponding position in the first data initially provided by the first server, so as to prevent the first server from Part or all of the data in the first data is replaced before and after the random inspection, so that the first server cannot provide false data during the commissioning process to cope with the random inspection.

In a possible implementation manner, the second data includes at least one second subset, and the method further includes:

The content of at least one second subset included in the second data is obtained according to the returned information, so as to determine whether to accept the entrustment of the first server.

According to the embodiment of the present application, when the amount of data that the first server intends to entrust with the transaction is small, the second server performs sampling inspection on the second subset, which can simplify the data verification process when the amount of data is small, and improve Data Validation Efficiency. And in this process, the second server cannot obtain the original data of the first server, making the process random, credible, and controllable.

In a possible implementation, the method further includes:

Publishing to the non-modifiable database one or more of: the hash value of the first subset included in the first data, the encrypted first subset included in the first data, the encrypted After the second subset, sampling requests.

Therefore, when a dispute arises, the information published in the database can be used to trace the source of the relevant process, so that a traceable data verification process can be realized.

According to another aspect of the present disclosure, a data verification method is provided. The method includes:

Send the first data to the second server, the first data includes the hash value of at least one first subset, the first subset includes at least one second subset, and the first data is the transaction that the first server wants to entrust data;

Receive a sampling request for the second data sent by the second server, where the second data includes at least one first subset, or the second data includes at least one first subset and at least one second subset;

In response to the sampling request, send return information to the second server, the return information is used by the second server to verify the second data according to the return information and the hash value of at least one first subset included in the second data, the second The hash value of at least one first subset included in the second data is determined according to the hash value of at least one first subset included in the first data, and if the verification is passed, the returned information is used by the second server according to the returned information Obtain the content of at least one first subset included in the second data, or the contents of at least one first subset and at least one second subset included in the second data, so as to determine whether to accept the entrustment of the first server.

In a possible implementation manner, the returned information includes third data, and the second server verifies the second data according to the returned information and the hash value of at least one first subset included in the second data, including:

The second server determines whether the hash value of the third data is consistent with the hash value of at least one first subset included in the second data when the number of first subsets included in the first data is greater than a predetermined threshold;

The second server verifies the second data according to the judgment result.

In a possible implementation manner, the first data includes an encrypted first subset and an encrypted second subset, the returned information includes a key corresponding to the second data, and the second server uses the returned information and the encrypted second The second data includes at least one hash value of the first subset, and the second data is verified, including:

The second server decrypts the encrypted second data in the encrypted first subset and the encrypted second subset according to the key to obtain fourth data;

The second server verifies the second data according to the fourth data and the hash value of at least one first subset included in the second data.

In a possible implementation manner, the second server verifies the second data according to the fourth data and the hash value of at least one first subset included in the second data, including:

When the number of first subsets included in the first data is greater than a predetermined threshold, the second server determines whether the hash value of the fourth data is consistent with the hash value of at least one first subset included in the second data;

The second server verifies the second data according to the judgment result.

In a possible implementation manner, the second data includes at least one second subset, and the returned information is also used by the second server to obtain the content of the at least one second subset included in the second data according to the returned information, so as to determine whether Accept the entrustment of the first server.

According to an aspect of the present disclosure, a data verification device is provided. The unit includes:

The first receiving module is configured to receive the first data sent by the first server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, and the first data is the hash value of the first subset 1. The data that the server wants to entrust to conduct transactions;

The first sending module is configured to send a sampling request for the second data to the first server, the second data includes at least one first subset, or the second data includes at least one first subset and at least one second subset set;

The second receiving module is configured to receive the return information sent by the first server in response to the sampling request;

A verification module, configured to verify the second data according to the returned information and the hash value of at least one first subset included in the second data. The hash value of the at least one first subset included in the second data is based on the first data A hash value determination of the at least one first subset included.

The first determination module is configured to obtain the content of at least one first subset included in the second data, or at least one first subset and at least one second subset included in the second data according to the returned information when the verification is passed. Set content to determine whether to accept the commission from the first server.

In a possible implementation manner, the returned information includes third data, a verification module, configured to:

The second data is verified according to the judgment result.

In a possible implementation manner, the first data includes an encrypted first subset and an encrypted second subset, the returned information includes a key corresponding to the second data, and the verification module is configured to:

In a possible implementation manner, verifying the second data according to the fourth data and the hash value of at least one first subset included in the second data includes:

The second data is verified according to the judgment result.

In a possible implementation manner, the second data includes at least one second subset, and the device further includes:

The second determining module is configured to obtain the content of at least one second subset included in the second data according to the returned information, so as to determine whether to accept the commission from the first server.

In a possible implementation manner, the device also includes:

A publishing module, configured to publish one or more of the following into the non-modifiable database: the hash value of the first subset included in the first data, the encrypted first subset included in the first data, the first subset included in the first data, the A data includes the encrypted second subset, a sampling request.

According to another aspect of the present disclosure, a data verification device is provided. The unit includes:

The second sending module is configured to send the first data to the second server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, and the first data is the first The data that the server wants to entrust for transactions;

The third receiving module is configured to receive a sampling request for the second data sent by the second server, the second data includes at least one first subset, or the second data includes at least one first subset and at least one second Subset;

The sending module is configured to send return information to the second server in response to the sampling request, and the return information is used for the second server to send the hash value of at least one first subset included in the return information and the second data to the second server. The data is verified, and the hash value of at least one first subset included in the second data is determined according to the hash value of at least one first subset included in the first data. If the verification is passed, the returned information is used for the second The server obtains the content of at least one first subset included in the second data, or the content of at least one first subset and at least one second subset included in the second data according to the returned information, so as to determine whether to accept the content of the first server. entrust.

The second server verifies the second data according to the judgment result.

According to another aspect of the present disclosure, there is provided a data verification device, including: a processor; a memory for storing instructions executable by the processor; wherein the processor is configured to execute the instructions stored in the memory , to implement the above method.

According to another aspect of the present disclosure, there is provided a non-volatile computer-readable storage medium on which computer program instructions are stored, wherein the computer program instructions implement the above method when executed by a processor.

According to another aspect of the present disclosure, a computer program product is provided, including computer readable codes, or a non-volatile computer readable storage medium carrying computer readable codes, when the computer readable codes are stored in an electronic device When running in the processor of the electronic device, the processor in the electronic device executes the above method.

Other features and aspects of the present disclosure will become apparent from the following detailed description of exemplary embodiments with reference to the accompanying drawings.

Description of drawings

The accompanying drawings, which are incorporated in and constitute a part of the specification, illustrate exemplary embodiments, features, and aspects of the disclosure and, together with the specification, serve to explain the principles of the disclosure.

Fig. 1 shows a schematic diagram of an application scenario according to an embodiment of the present application.

Fig. 2 shows a flowchart of a data verification method according to an embodiment of the present application.

Fig. 3 shows a flowchart of a data verification method according to an embodiment of the present application.

Fig. 4 shows a structural diagram of a data verification device according to an embodiment of the present application.

Fig. 5 shows a structural diagram of a data verification device according to an embodiment of the present application.

Fig. 6 is a block diagram of an apparatus 1900 for data verification according to an exemplary embodiment.

Detailed ways

Various exemplary embodiments, features, and aspects of the present disclosure will be described in detail below with reference to the accompanying drawings. The same reference numbers in the figures indicate functionally identical or similar elements. While various aspects of the embodiments are shown in drawings, the drawings are not necessarily drawn to scale unless specifically indicated.

The word "exemplary" is used exclusively herein to mean "serving as an example, embodiment, or illustration." Any embodiment described herein as "exemplary" is not necessarily to be construed as superior or better than other embodiments.

In addition, in order to better illustrate the present disclosure, numerous specific details are given in the following specific implementation manners. It will be understood by those skilled in the art that the present disclosure may be practiced without some of the specific details. In some instances, methods, means, components and circuits that are well known to those skilled in the art have not been described in detail so as to obscure the gist of the present disclosure.

At present, there are more and more scenarios that require data circulation and transactions, and data owners often do not have the energy to conduct data transactions directly, so they need to entrust the data to the entrusted party for transactions, and the entrusted party replaces the data owner to conduct transactions and participate in Income Distribution. Because digital goods are different from ordinary goods, they are easy to copy and unknowable before the transaction. Under the current technical means, there is no entrustment method that both the entrusting party and the entrusting party trust, and it is impossible to prevent the entrusting party from falsifying data or entrusting Therefore, there is an urgent need for credible and controllable new technical means.

In view of this, the present application provides a data verification method, in which the first user (that is, the owner of the data) can divide the data to be entrusted for transaction into at least one first subset, wherein the first subset At least one second subset may be included. Adapting to different data volumes, the trustee of the data (which may be referred to as the second user) can conduct spot checks on some of the first data (that is, the second data), by receiving the return information sent by the first user in response to the spot check request , the returned information can be used to verify the second data, so as to prevent the first user from concealing data or providing incomplete data, so as to determine whether to accept the entrustment of the first user. During this process, the first user cannot forge the data to pass the random inspection, and the second user cannot obtain the original data of the other data in the first data except the second data, which prevents the data from being resold and abused, making this process possible Trustworthy and manageable.

Fig. 1 shows a schematic diagram of an application scenario according to an embodiment of the present application. As shown in Figure 1, the data verification method provided by the embodiment of the present application can be used in the scenario where the first user wants to entrust the data owned by the second user to conduct data transactions. The first user can be understood as the party who owns the data to be entrusted for transaction (the original data of the first data), and the second user can be understood as the party who wants to verify the data to be entrusted for transaction to determine whether to accept the entrustment. The second user can be a data trust platform or other third-party organizations, which is not limited in this application. This application does not limit the specific types of data to be entrusted for transactions, for example, it can be labeled data sets (ie, a collection of labeled data, which can be used in scenarios such as model training), algorithm model codes, etc.

In a possible implementation, there may also be an unmodifiable database, which may be set on a platform operated by a second user, or the platform may be operated by another second user other than the first user and the second user. operated by three parties. The database can be used to publish relevant information uploaded by the first user or the second user through the platform. The information may include relevant information when verifying data during the delegation process and information in other related processes (such as transactions), and the information may also be a hash value of the original information. The platform can regularly sign the above-mentioned uploaded information, so as to ensure that its content cannot be tampered with once uploaded, and its source can be traced. In one possible implementation, the database may be a blockchain-based database.

The first user and the second user can also have their own public key and private key. The public key and private key of the first user and the second user can be authenticated by a legal third party and obtain corresponding certificates, and the first user, The authenticated public key and corresponding certificate information of the second user may also be published in the above-mentioned database. Among them, the public keys of the first user and the second user can be used to verify the files signed with the private key respectively, and in the process of entrusting data transactions, the first user and the second user can also use their respective private keys Sign the relevant operation content to prevent others from tampering, and make it impossible for the first user and the second user to deny their own operation content.

In this way, the process of verifying the data to be entrusted for transactions and the process of entrusting data transactions can be guaranteed to be credible and traceable.

Hereinafter, the data verification method of the embodiment of the present application will be described in detail on the basis of FIG. 1 . Referring to FIG. 2 , FIG. 2 shows a flow chart of the data verification method according to an embodiment of the present application. The method can be used in a second server, and the second server can be applied to the above-mentioned second user, for example, the second user can implement the method in this embodiment through a terminal device or a server. As shown in Figure 2, the method includes:

Step S201, receiving first data sent by a first server.

The first data sent by the first user (ie the first server end) may be received by the second user (ie the second server end). Wherein, the first data may include hash values of at least one first subset, and the first subset includes at least one second subset. The first data may be the data that the first user intends to entrust for the transaction.

For example, the data that the first user wants to entrust to conduct transactions (may be called D) can be split into k subsets (that is, the first subset), and any first subset after splitting D can be called Doc _i , i may represent the sequence number of the corresponding first subset, then the data set corresponding to D after splitting may include the first subsets Doc ₁ , Doc ₂ , Doc ₃ . . . _Dock . The present application does not limit the number k of the split first subsets.

These first subsets can also be further stratified, so as to be randomly checked by the entrusting party (ie, the second user) subsequently. In a possible implementation manner, any second subset obtained after splitting the first subset of each item may be called Item _ij , where i may represent the sequence number of the first subset corresponding to the second subset , j can represent the sequence number of the second subset, after splitting, Doc ₁ can include, for example, the second subset Item ₁₁ , Item ₁₂ ...Item _1n1 , and Doc ₂ can include, for example, the second subset Item ₂₁ , Item ₂₂ ... Item _2n2 , Dock _k may include, for example, second subsets Item _k1 , Item _{k2 .} . . Item _knk , wherein n1, n2 . In a possible implementation manner, each item of the second subset may represent a minimum unit of the corresponding data D, that is, the second subset cannot be further divided.

Each first subset in the data D to be entrusted for transaction may be compressed with a hash function to obtain each hash value corresponding to each first subset. For example, H( _Dock ) may represent the hash value of the first subset _Dock . It is also possible to compress the complete data D to be entrusted for transactions using a hash function to obtain H(D), and the second user may also receive the hash value H(D) of the data to be entrusted for transactions sent by the first user.

In a possible implementation manner, each first subset and each second subset in D may also be encrypted respectively to obtain a corresponding encrypted data set. For example, E( _Dock ) may represent the encrypted first subset _Dock , and E(Item _ij ) may represent the encrypted second subset Item _ij .

Wherein, the method for encrypting each subset in the data D may be that the first user creates a master key MK, and uses MK to respectively determine the key corresponding to each subset. In the following, the encryption method is introduced by taking the encryption of the first subset as an example:

For example, the first user can first determine (can be randomly generated) a key K(Doc ₁ ) corresponding to the first subset Doc ₁ , then K(Doc _i+1 ) can be the pair K(Doc _i ) It is determined after encryption, so that the keys corresponding to all the first subsets can be determined.

For another example, the first user may first determine the hash value H(Doc _i ) corresponding to each first subset, and then the key K(Doc _i ) corresponding to the first subset Doc _i may use the master key MK to correspond to H(Doc _i ) is determined after being encrypted, so that the keys corresponding to all the first subsets can be determined.

The above only uses two examples to illustrate the method of using MK to determine the key K(Doc _i ) corresponding to the first subset. This application does not limit the method of using MK to determine the key corresponding to the first subset. or other very few keys can determine the keys corresponding to all the first subsets, and even if others know the keys corresponding to the first subset with any number of items, they cannot infer the keys corresponding to other first subsets That's it. The manner of encrypting the second subset is the same.

Thus, the relative independence between the keys corresponding to each subset can be achieved, that is, even if the second user obtains the key of the subset of the sampling part in the subsequent sampling process, he cannot decrypt other keys except the sampling part. Subset data, which can effectively prevent data leakage.

Step S202, sending a sampling request for the second data to the first server.

Wherein, the second data includes at least one first subset, or, the second data may include at least one first subset and at least one second subset.

In a possible implementation, when the number of first subsets included in the first data is greater than a predetermined threshold (that is, when the data volume of the first data is large), the second data may include at least one first subset set and at least one second subset, that is to say, the first subset and the second subset can be sampled separately.

In a possible implementation manner, when the number of first subsets included in the first data is greater than a predetermined threshold, the sampling request may further include a first sampling request and a second sampling request. Wherein, the second data corresponding to the first sampling request may include at least one second subset, and the second data corresponding to the second sampling request may include at least one first subset. The second user may first send a first sampling request to the first user, and the second user may determine the first subset included in the second data corresponding to the second sampling request according to the information returned by the first user. For example, according to the content of the second subset returned by the first user, the importance of each first subset corresponding to the second subset can be evaluated, and a predetermined number of first subsets can be selected according to the importance of each first subset. The subset is used as the content included in the second data in the second sampling request, and then the second sampling request is sent to the first user. As a result, more detailed and purposeful sampling of data can be achieved.

It should be noted that it is also possible to first send the second sampling request to the first user, determine the first sampling request according to the information returned by the first user, and then send the first sampling request to the first user, which is not limited in this application.

In a possible implementation manner, the second data may further include only the first subset, that is, the second user may only conduct random inspection on at least one first subset.

When the number of first subsets included in the first data is less than a predetermined threshold, for example, only one first subset or fewer first subsets are included in the first data, the second data may only include the second Subsets, that is, the second user can only perform random checks on at least one second subset in the first subset.

The second data may include a subset of a predetermined proportion in the first subset, or include a subset of a predetermined proportion in the first subset and a subset of a predetermined proportion in the second subset. In a possible implementation manner, the second data The second data may also include a predetermined proportion of the second subset. The ratio can be pre-agreed by the second user and the first user. The spot check request may be posted to the above-mentioned database.

It should be noted that, the larger the predetermined ratio is, the less likely the data provided by the first user is to be falsified. Assume that the first user divides the data into a subset of 300 items (for example, the first subset and the second subset total 300 items, or the first subset is 300 items, or the second subset is 300 items), of which there are 30 items (10%) is false data, if the second user selects 10% of the data (that is, a subset of 30 items, for example, the first subset and the second subset total 30 items, or the first subset has 30 items, or the second subset Subset 30 items) are checked, and the probability that the data provided by the first user is falsified without being discovered is only about 3%.

In a possible implementation manner, the sampling request includes at least one data location, which can be used to indicate the location of the first subset included in the second data in the first data, and/or, the first subset included in the second data The position of the second subset in the first subset.

In this case, in step S201, the arrangement order of the first subset and/or the second subset corresponding to the data in the first data received by the second user may be consistent with the arrangement order of the subsets in the original data.

For the first subset, the selected data positions may be (a1, a2...am), which may respectively represent the positions of the m-item subsets in the k-item first subset. For the second subset, the selected data position can be (bi1, bi2...bip), which can respectively represent the p-item subsets in the second subset corresponding to the first subset with the sequence number i in the first subset position (p is less than the total number of subsets included in the second subset).

In a possible implementation manner, when the second user submits a sampling request, the selected data location and the hash values of the subsets corresponding to the data location may also be published in the above database.

By selecting the data position, the arrangement order of each first subset in the first data can be made, and/or, the arrangement order of the second subset in the first subset can be determined. If the original data is obtained in the subsequent process, it can be Check whether the hash value of the data at the selected data location is consistent with the hash value of the corresponding location received by the second user in step S201, thereby preventing the first user from replacing part or all of the first data before and after sampling, This makes it impossible for the first user to provide false data to deceive the second user during the sampling process.

Step S203, receiving the return information sent by the first server in response to the sampling request.

The return information sent by the first user may be received by the second user. The returned information may include the third data or a key corresponding to the second data, and details may be referred to in step S204.

Step S204, verifying the second data according to the returned information and the hash value of at least one first subset included in the second data.

Wherein, the hash value of at least one first subset included in the second data may be determined according to the hash value of at least one first subset included in the first data. In a possible implementation manner, the returned information may include third data, and this step S204 may include:

When the number of first subsets included in the first data is greater than a predetermined threshold, determine whether the hash value of the third data is consistent with the hash value of at least one first subset included in the second data; The second data is verified.

Wherein, the third data may refer to the data corresponding to the sampling request returned by the first user. The data may be original data, and the hash value of the second data may be each hash value corresponding to the second data in the first data received by the second user in step S201. Therefore, the second user can calculate the hash value of the third data according to the third data, and judge whether the hash value of the third data is consistent with the hash value of the second data, so as to determine whether the first user provides Data specified in the sampling request. In the case that the quantity of the first subset in the first data is not greater than the predetermined threshold, the sampling request may only perform sampling on part of the second subset in the first subset. In the case of a large amount of data (that is, the number of the first subset is greater than a predetermined threshold), if only part of the second subset in the first subset is sampled, if the first user provides incomplete data or conceals the data content , may be missed or falsely detected. Therefore, in the sampling request, part of the first subset in the data to be entrusted for transaction and part of the second subset in the corresponding first subset can also be sampled. For example, you can first Sampling inspection is performed on the second subset, and then random inspection is performed on the first subset according to the obtained content of the second subset, so that multi-step inspection can be performed. During this process, when the first subset is randomly checked, it may be verified as a whole whether the hash value of the first subset in the third data is consistent with the hash value received by the second user in step S201.

In a possible implementation, the first data sent by the first user in step S201 may include the encrypted first subset and the encrypted second subset, and the returned information includes the key corresponding to the second data , the step S204 may include:

According to the key, decrypt the encrypted second data in the encrypted first subset and the encrypted second subset to obtain fourth data; according to at least one first subset included in the fourth data and the second data The hash value of the set is used to verify the second data.

Wherein, the key may include at least one key corresponding to the first subset and/or the second subset in the second data, and keys corresponding to different first subsets and second subsets are different.

In the case that the number of the first subset included in the first data is less than the predetermined threshold, the sampling request may include, for example, the second user chooses to view the data content of the second subset E (Item _IJ ), and the return information sent by the first user The key K (Item _IJ ) corresponding to the second subset E (Item _IJ ) can be included, and the second user can use the key to open the encrypted second subset and view the data content in the second subset Item _IJ , namely The fourth data is obtained, so that the second data can be verified according to the fourth data to determine whether to accept the entrustment of the first user.

Optionally, verifying the second data according to the fourth data and the hash value of at least one first subset included in the second data may further include:

When the number of the first subset included in the first data is greater than a predetermined threshold, it is judged whether the hash value of the fourth data is consistent with the hash value of at least one first subset included in the second data; The second data is verified.

In the case of a large amount of data (that is, the number of the first subset is greater than a predetermined threshold), if the second user only samples a part of the second subset in the first subset, if the first user provides incomplete data or conceals If the content of the data is not known, it may be missed or falsely detected. Therefore, in the sampling request, part of the first subset in the first data and part of the second subset in the corresponding first subset can also be sampled. For example, you can first Sampling inspection is performed on the second subset, and then random inspection is performed on the first subset according to the obtained content of the second subset, so that multi-step inspection can be performed.

For example, when the number of the first subset included in the first data is greater than a predetermined threshold, a first sampling request and a second sampling request may be included, and the first sampling request may include, for example, that the second user chooses to view the second subset For the data content of E(Item _IJ ), the return information sent by the first user can include the encrypted key K(Item _IJ ) corresponding to the second subset E(Item _IJ ), and the second user can use the key to open the encryption For the second subset, view the data content in the second subset Item _IJ , and determine the second sampling request according to the data content in the second subset Item _IJ . For example, the second sampling request may include that the second user chooses to view the data content of the first subset E(Doc _I ), and the return information sent by the first user may include the encrypted password corresponding to the first subset E(Doc _I ) after encryption. key K((Doc _I ), the second user can use the key to open the encrypted first subset, check the data content in the first subset Doc _I , and obtain the fourth data, so that the hash of the fourth data can be judged whether the hash value of the hash value and the second data are consistent to determine whether the first user provides the data specified in the sampling request. In the case that the number of the first subset in the first data is not greater than the predetermined threshold, the sampling request Can only carry out spot check to the part second subset in the first subset.Can integrally verify whether the hash value of the first subset in the 4th data is the same as the hash value of the second set in step S201 when the first subset is carried out spot check in this process. The hash value received by the user matches, and a more detailed and purposeful inspection can be carried out during random inspection.

Step S205, if the verification is passed, obtain the content of at least one first subset included in the second data, or the content of at least one first subset and at least one second subset included in the second data according to the returned information, to determine whether to accept the entrustment of the first server.

When the number of first subsets included in the first data is greater than the predetermined threshold, according to step S204, a random check may be performed on part of the first subset and part of the second subset, and if the verification is passed, the returned information may be The content of the first subset and the second subset sampled is obtained, and whether to accept the entrustment of the first user is determined according to the content of the data. Sampling may be performed on part of the first subset, and if the verification is passed, the content of the first subset to be sampled may be obtained according to the returned information, and whether to accept the entrustment of the first user may be determined according to the content of the data. For example, it may be determined whether to accept the entrustment of the first user according to whether the data indicated in the returned information is legal and compliant, the economic value of the data, and the like.

According to the embodiment of the present application, by dividing the data to be entrusted for transaction into at least one first subset, and dividing the first subset into at least one second subset, it can meet the sampling requirements of different data volumes, and the first Subsets, or, the first subset and the second subset are subjected to sampling inspection to realize a more detailed and targeted entrusted transaction sampling inspection process. By making the first data include at least one hash value of the first subset, while simplifying the sampling process, it can meet the sampling requirements of different data volumes and improve the efficiency of sampling. During the sampling process, the second user cannot obtain the original data of the first data. Since the sampling request is made by the second user, the first user cannot determine the second data that will be sampled, so that the data with better quality cannot be selected in advance as the data to be sampled to deceive the second user. The random inspection of the data can prevent the first user from intentionally falsifying the data in the returned information to cover up the original data, making the random inspection process random, credible, and controllable.

In a possible implementation manner, the second data may further include at least one second subset, and the method further includes:

The content of at least one second subset included in the second data is obtained according to the returned information, so as to determine whether to accept the entrustment of the first user.

Wherein, when the number of the first subsets included in the first data is less than the predetermined threshold, according to step S204, part of the second subsets can be sampled, and if the verification is passed, the first subset of the samples can be obtained according to the returned information. The content of the second subset determines whether to accept the entrustment of the first user according to the content of the data. For example, it may be determined whether to accept the entrustment of the first user according to whether the data indicated in the returned information is legal and compliant, the economic value of the data, and the like.

According to the embodiment of the present application, by sampling the second subset when the amount of data that the first user intends to entrust for a transaction is small, the data verification process when the amount of data is small can be simplified and the efficiency of data verification can be improved. And in this process, the second user cannot obtain the original data of the first user, making the process random, credible, and controllable.

In a possible implementation, the method further includes:

Step S206, publish one or more of the following to the unmodifiable database: the hash value of the first subset included in the first data, the encrypted first subset included in the first data, the first data Included encrypted second subset, sampling request.

Wherein, the above-mentioned content may be published by the second user in the non-modifiable database, or may be published by the first user, which is not limited in this application. The database can also be a blockchain-based database.

In addition to the above content, other data in the entrusted transaction process can also be published in the database, and this application does not limit this.

Referring to FIG. 3 , it shows a flowchart of a data verification method according to an embodiment of the present application. The method can be applied to a first server, and the first server can be applied to the above-mentioned first user, for example, the first user can implement the method in this embodiment through a terminal device. As shown in Figure 3, the method includes:

Step S301, sending first data to a second server.

Wherein, the first data may include hash values of at least one first subset, and the first subset may include at least one second subset. The first data may be the data that the first user intends to entrust for the transaction.

Step S302, receiving a sampling request for the second data sent by the second server.

Wherein, the second data may include at least one first subset, or, the second data may include at least one first subset and at least one second subset.

In this case, in step S301, the arrangement order of the first subset and/or the second subset corresponding to the data in the first data sent by the first user may be consistent with the arrangement order of the subsets in the original data.

By selecting the data position, the arrangement order of each first subset in the first data can be made, and/or, the arrangement order of the second subset in the first subset can be determined. If the original data is obtained in the subsequent process, it can be Check whether the hash value of the data at the selected data location is consistent with the hash value of the corresponding location sent by the first user in step S301, thereby preventing the first user from replacing some or all of the data in the first data before and after sampling, This makes it impossible for the first user to provide false data to deceive the second user during the sampling process.

Step S303, sending return information to the second server in response to the sampling request.

Wherein, the returned information is used by the second server to verify the second data according to the returned information and the hash value of at least one first subset included in the second data, and the hash value of at least one first subset included in the second data The hash value can be determined according to the hash value of at least one first subset included in the first data. If the verification is passed, the returned information can be used by the second server to obtain at least one first subset included in the second data according to the returned information. The content of the set, or the content of at least one first subset and at least one second subset included in the second data, to determine whether to accept the entrustment of the first user. In a possible implementation manner, the returned information may include third data, and this step S303 may include:

The second server determines whether the hash value of the third data is consistent with the hash value of at least one first subset included in the second data when the number of first subsets included in the first data is greater than a predetermined threshold; The second server verifies the second data according to the judgment result.

Wherein, the third data may refer to the data corresponding to the sampling request returned by the first user. The data may be original data, and the hash value of the second data may be each hash value corresponding to the second data in the first data sent by the first user in step S301. Therefore, the second user can calculate the hash value of the third data according to the third data, and judge whether the hash value of the third data is consistent with the hash value of the second data, so as to determine whether the first user provides Data specified in the sampling request. In the case that the quantity of the first subset in the first data is not greater than the predetermined threshold, the sampling request may only perform sampling on part of the second subset in the first subset. In the case of a large amount of data (that is, the number of the first subset is greater than a predetermined threshold), if only part of the second subset in the first subset is sampled, if the first user provides incomplete data or conceals the data content , may be missed or falsely detected. Therefore, in the sampling request, part of the first subset in the data to be entrusted for transaction and part of the second subset in the corresponding first subset can also be sampled. For example, you can first Sampling inspection is performed on the second subset, and then random inspection is performed on the first subset according to the obtained content of the second subset, so that multi-step inspection can be performed. During this process, when the first subset is randomly checked, it may be verified whether the hash value of the first subset in the third data is consistent with the hash value sent by the first user in step S301.

In a possible implementation, the first data sent by the first user in step S301 may include the encrypted first subset and the encrypted second subset, and the returned information includes the key corresponding to the second data , the step S303 may include:

According to the key, the second server decrypts the encrypted second data in the encrypted first subset and the encrypted second subset to obtain the fourth data; the second server decrypts the encrypted second data according to the fourth data and the second The data includes at least a hash value of the first subset, and the second data is verified.

Optionally, the second server verifies the second data according to the fourth data and the hash value of at least one first subset included in the second data, including:

When the number of first subsets included in the first data is greater than a predetermined threshold, the second server determines whether the hash value of the fourth data is consistent with the hash value of at least one first subset included in the second data; The second server verifies the second data according to the judgment result.

For example, when the number of the first subset included in the first data is greater than a predetermined threshold, a first sampling request and a second sampling request may be included, and the first sampling request may include, for example, that the second user chooses to view the second subset For the data content of E(Item _IJ ), the return information sent by the first user can include the encrypted key K(Item _IJ ) corresponding to the second subset E(Item _IJ ), and the second user can use the key to open the encryption For the second subset, view the data content in the second subset Item _IJ , and determine the second sampling request according to the data content in the second subset Item _IJ . For example, the second sampling request may include that the second user chooses to view the data content of the first subset E(Doc _I ), and the return information sent by the first user may include the encrypted password corresponding to the first subset E(Doc _I ) after encryption. key K((Doc _I ), the second user can use the key to open the encrypted first subset, view the data content in the first subset Doc _I , and obtain the fourth data, so that the hash of the fourth data can be judged whether the hash value of the hash value and the second data are consistent to determine whether the first user provides the data specified in the sampling request. In the case that the number of the first subset in the first data is not greater than the predetermined threshold, the sampling request Can only carry out spot check to the part second subset in the first subset.Can integrally verify whether the hash value of the first subset in the fourth data is the same as that of the first subset in step S301 when the first subset is spot checked in this process. The hash value sent by the user matches, and a more detailed and purposeful inspection can be carried out during random inspection.

In the case that the number of the first subset included in the first data is greater than the predetermined threshold, the second user can perform spot check on part of the first subset and part of the second subset, and if the verification is passed, it can be obtained according to the returned information The contents of the first subset and the second subset are sampled, and it is determined whether to accept the entrustment of the first user according to the contents of the data. Part of the first subset can be randomly checked. If the verification is passed, the content of the first subset can be obtained according to the returned information, and whether to accept the entrustment of the first user can be determined according to the content of the data. For example, it may be determined whether to accept the entrustment of the first user according to whether the data indicated in the returned information is legal and compliant, the economic value of the data, and the like.

In a possible implementation manner, the second data may further include at least one second subset, and the returned information is also used by the second server to obtain the content of the at least one second subset included in the second data according to the returned information, so as to Determine whether to accept the entrustment of the first user.

Wherein, when the number of the first subsets included in the first data is less than the predetermined threshold, the second user can perform random inspection on some of the second subsets, and if the verification is passed, the second user can obtain the second subset of the random inspection according to the returned information. Content of the subset, determine whether to accept the entrustment of the first user according to the content of the data. For example, it may be determined whether to accept the entrustment of the first user according to whether the data indicated in the returned information is legal and compliant, the economic value of the data, and the like.

According to the embodiment of the present application, when the amount of data that the first user intends to entrust for a transaction is small, the second user conducts random inspection on the second subset, which can simplify the data verification process when the amount of data is small, and improve data verification. s efficiency. And in this process, the second user cannot obtain the original data of the first user, making the process random, credible, and controllable.

Fig. 4 shows a structural diagram of a data verification device according to an embodiment of the present application. The apparatus can be used for a second server, and the second server can be applied to the above-mentioned second user, for example, the second user can realize the apparatus of this embodiment through a terminal device or a server. As shown in Figure 4, the device includes:

The first receiving module 401 is configured to receive the first data sent by the first server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, and the first data is The data to be entrusted by the first server to carry out the transaction;

The first sending module 402 is configured to send a sampling request for the second data to the first server, the second data includes at least one first subset, or the second data includes at least one first subset and at least one second Subset;

The second receiving module 403 is configured to receive the return information sent by the first server in response to the sampling request;

The verification module 404 is configured to verify the second data according to the returned information and the hash value of the at least one first subset included in the second data, and the hash value of the at least one first subset included in the second data is based on the first A hash value determination of at least a first subset of the data;

The first determination module 405 is configured to obtain the content of at least one first subset included in the second data, or at least one first subset included in the second data and at least one second subset included in the second data according to the returned information when the verification is passed. Subset content to determine whether to accept the commission from the first server.

In a possible implementation manner, the returned information includes third data, and the verification module 404 is configured to:

The second data is verified according to the judgment result.

In a possible implementation manner, the first data includes an encrypted first subset and an encrypted second subset, the returned information includes a key corresponding to the second data, and the verification module 404 is configured to:

The second data is verified according to the judgment result.

In a possible implementation manner, the device also includes:

Fig. 5 shows a structural diagram of a data verification device according to an embodiment of the present application. The apparatus can be used for a first server, and the first server is applied to the above-mentioned first user, for example, the first user can realize the apparatus of this embodiment through a terminal device. As shown in Figure 5, the device includes:

The second sending module 501 is configured to send the first data to the second server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, and the first data is the hash value of the first subset 1. The data that the server wants to entrust to conduct transactions;

The third receiving module 502 is configured to receive a sampling request for the second data sent by the second server, the second data includes at least one first subset, or the second data includes at least one first subset and at least one first subset two subsets;

The third sending module 503 is configured to send return information to the second server in response to the sampling request, and the return information is used for the hash value of at least one first subset included by the second server according to the return information and the second data, Verifying the second data, the hash value of at least one first subset included in the second data is determined according to the hash value of at least one first subset included in the first data, and if the verification is passed, return the information with The second server obtains the content of at least one first subset included in the second data according to the returned information, or the content of at least one first subset and at least one second subset included in the second data, so as to determine whether to accept the first subset A server-side delegation.

The second server verifies the second data according to the judgment result.

The second server judges whether the hash value of the fourth data is consistent with the hash value of at least one first subset included in the second data when the number of the first subset included in the first data is greater than a predetermined threshold;

The second server verifies the second data according to the judgment result.

In some embodiments, the functions or modules included in the device provided by the embodiments of the present disclosure can be used to execute the methods described in the method embodiments above, and its specific implementation can refer to the description of the method embodiments above. For brevity, here No longer.

Embodiments of the present disclosure also provide a computer-readable storage medium, on which computer program instructions are stored, and the above-mentioned method is implemented when the computer program instructions are executed by a processor. Computer readable storage media may be volatile or nonvolatile computer readable storage media.

An embodiment of the present disclosure also proposes an electronic device, including: a processor; and a memory for storing instructions executable by the processor; wherein the processor is configured to implement the above method when executing the instructions stored in the memory.

An embodiment of the present disclosure also provides a computer program product, including computer-readable codes, or a non-volatile computer-readable storage medium carrying computer-readable codes, when the computer-readable codes are stored in a processor of an electronic device When running in the electronic device, the processor in the electronic device executes the above method.

Fig. 6 is a block diagram of an apparatus 1900 for data verification according to an exemplary embodiment. For example, the apparatus 1900 may be provided as a server or a terminal device. 6, apparatus 1900 includes processing component 1922, which further includes one or more processors, and memory resources represented by memory 1932 for storing instructions executable by processing component 1922, such as application programs. The application programs stored in memory 1932 may include one or more modules each corresponding to a set of instructions. In addition, the processing component 1922 is configured to execute instructions to perform the above method.

Device 1900 may also include a power component 1926 configured to perform power management of device 1900 , a wired or wireless network interface 1950 configured to connect device 1900 to a network, and an input-output (I/O) interface 1958 . The device 1900 can operate based on an operating system stored in the memory 1932, such as Windows Server™, Mac OS X™, Unix™, Linux™, FreeBSD™ or the like.

In an exemplary embodiment, there is also provided a non-transitory computer-readable storage medium, such as the memory 1932 including computer program instructions, which can be executed by the processing component 1922 of the apparatus 1900 to implement the above-mentioned method.

The present disclosure can be a system, method and/or computer program product. A computer program product may include a computer readable storage medium having computer readable program instructions thereon for causing a processor to implement various aspects of the present disclosure.

A computer readable storage medium may be a tangible device that can retain and store instructions for use by an instruction execution device. A computer readable storage medium may be, for example, but is not limited to, an electrical storage device, a magnetic storage device, an optical storage device, an electromagnetic storage device, a semiconductor storage device, or any suitable combination of the foregoing. More specific examples (a non-exhaustive list) of computer-readable storage media include: portable computer diskettes, hard disks, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM), or flash memory), static random access memory (SRAM), compact disc read only memory (CD-ROM), digital versatile disc (DVD), memory stick, floppy disk, mechanically encoded device, such as a printer with instructions stored thereon A hole card or a raised structure in a groove, and any suitable combination of the above. As used herein, computer-readable storage media are not to be construed as transient signals per se, such as radio waves or other freely propagating electromagnetic waves, electromagnetic waves propagating through waveguides or other transmission media (e.g., pulses of light through fiber optic cables), or transmitted electrical signals.

Computer-readable program instructions described herein may be downloaded from a computer-readable storage medium to a respective computing/processing device, or downloaded to an external computer or external storage device over a network, such as the Internet, a local area network, a wide area network, and/or a wireless network. The network may include copper transmission cables, fiber optic transmission, wireless transmission, routers, firewalls, switches, gateway computers, and/or edge servers. A network adapter card or a network interface in each computing/processing device receives computer-readable program instructions from the network and forwards the computer-readable program instructions for storage in a computer-readable storage medium in each computing/processing device .

Computer program instructions for performing the operations of the present disclosure may be assembly instructions, instruction set architecture (ISA) instructions, machine instructions, machine-dependent instructions, microcode, firmware instructions, state setting data, or Source or object code written in any combination, including object-oriented programming languages—such as Smalltalk, C++, etc., and conventional procedural programming languages—such as the “C” language or similar programming languages. Computer readable program instructions may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer, or entirely on the remote computer or server implement. In cases involving a remote computer, the remote computer can be connected to the user computer through any kind of network, including a local area network (LAN) or a wide area network (WAN), or it can be connected to an external computer (such as via the Internet using an Internet service provider). connect). In some embodiments, an electronic circuit, such as a programmable logic circuit, field programmable gate array (FPGA), or programmable logic array (PLA), can be customized by utilizing state information of computer-readable program instructions, which can Various aspects of the present disclosure are implemented by executing computer readable program instructions.

Aspects of the present disclosure are described herein with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It should be understood that each block of the flowcharts and/or block diagrams, and combinations of blocks in the flowcharts and/or block diagrams, can be implemented by computer-readable program instructions.

These computer-readable program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine such that when executed by the processor of the computer or other programmable data processing apparatus , producing an apparatus for realizing the functions/actions specified in one or more blocks in the flowchart and/or block diagram. These computer-readable program instructions can also be stored in a computer-readable storage medium, and these instructions cause computers, programmable data processing devices and/or other devices to work in a specific way, so that the computer-readable medium storing instructions includes An article of manufacture comprising instructions for implementing various aspects of the functions/acts specified in one or more blocks in flowcharts and/or block diagrams.

It is also possible to load computer-readable program instructions into a computer, other programmable data processing device, or other equipment, so that a series of operational steps are performed on the computer, other programmable data processing device, or other equipment to produce a computer-implemented process , so that instructions executed on computers, other programmable data processing devices, or other devices implement the functions/actions specified in one or more blocks in the flowcharts and/or block diagrams.

The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in a flowchart or block diagram may represent a module, a portion of a program segment, or an instruction that includes one or more Executable instructions. In some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks in succession may, in fact, be executed substantially concurrently, or they may sometimes be executed in the reverse order, depending upon the functionality involved. It should also be noted that each block of the block diagrams and/or flowchart illustrations, and combinations of blocks in the block diagrams and/or flowchart illustrations, can be implemented by a dedicated hardware-based system that performs the specified function or action , or may be implemented by a combination of dedicated hardware and computer instructions.

Having described various embodiments of the present disclosure above, the foregoing description is exemplary, not exhaustive, and is not limited to the disclosed embodiments. Many modifications and alterations will be apparent to those of ordinary skill in the art without departing from the scope and spirit of the described embodiments. The terminology used herein is chosen to best explain the principle of each embodiment, practical application or technical improvement in the market, or to enable other ordinary skilled in the art to understand each embodiment disclosed herein.

Claims

A data verification method, characterized in that the method comprises:

receiving first data sent by the first server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, the first data is the The data to be entrusted by the first server to carry out the transaction;

sending a sampling request for second data to the first server, the second data including at least one first subset, or the second data including at least one first subset and at least one second subset ;

receiving return information sent by the first server in response to the sampling request;

Verifying the second data according to the returned information and the hash value of at least one first subset included in the second data, the hash value of at least one first subset included in the second data determined according to a hash value of at least one first subset included in the first data;

If the verification is passed, the content of at least one first subset included in the second data, or the at least one first subset and at least one second subset included in the second data are obtained according to the returned information to determine whether to accept the entrustment from the first server.
The method according to claim 1, wherein when the number of first subsets included in the first data is greater than a predetermined threshold, the second data includes at least one first subset and at least one first subset Two subsets.
The method according to claim 2, wherein the returned information includes third data, and according to the hash value of at least one first subset included in the returned information and the second data, the The above-mentioned second data is verified, including:

If the number of first subsets included in the first data is greater than a predetermined threshold, determine whether the hash value of the third data and the hash value of at least one first subset included in the second data are consistent;

The second data is verified according to the judgment result.
The method according to any one of claims 1-3, wherein the first data includes an encrypted first subset and an encrypted second subset, and the return information includes information related to the second The key corresponding to the data, and verifying the second data according to the returned information and the hash value of at least one first subset included in the second data, includes:

Decrypting the encrypted second data in the encrypted first subset and the encrypted second subset according to the key to obtain fourth data;

The second data is verified according to the fourth data and a hash value of at least one first subset included in the second data.
The method according to claim 4, wherein said verifying said second data according to said fourth data and a hash value of at least one first subset included in said second data includes :

If the number of first subsets included in the first data is greater than a predetermined threshold, determine whether the hash value of the fourth data and the hash value of at least one first subset included in the second data are consistent;

The second data is verified according to the judgment result.
The method according to claim 4 or 5, wherein the key comprises at least one key corresponding to the first subset and/or the second subset in the second data, and the different first subset is different from the key corresponding to the second subset.
The method according to any one of claims 1-6, wherein the second data includes at least one second subset, and the method further comprises:

The content of at least one second subset included in the second data is obtained according to the returned information, so as to determine whether to accept the entrustment of the first server.
The method according to any one of claims 1-7, wherein the sampling request includes at least one data location, and the data location is used to indicate that the first subset included in the second data is in the A position in the data, and/or a position in the first subset of the second subset included in the second data.
The method according to any one of claims 1-8, wherein the method further comprises:

publishing one or more of the following to the non-modifiable database: the hash value of the first subset included in the first data, the encrypted first subset included in the first data, the The encrypted second subset included in the first data, the sampling request.
A data verification method, characterized in that the method comprises:

sending first data to a second server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, and the first data is the hash value of the first service The data that the client wants to entrust to conduct transactions;

receiving a sampling request for second data sent by the second server, the second data including at least one first subset, or the second data including at least one first subset and at least one second subset set;

In response to the sampling request, sending return information to the second server, where the return information is used for at least one first subset included by the second server according to the return information and the second data. hash value, verifying the second data, the hash value of at least one first subset included in the second data is determined according to the hash value of at least one first subset included in the first data, If the verification is passed, the return information is used by the second server to obtain the content of at least one first subset included in the second data according to the return information, or at least one of the first subset included in the second data Contents of a first subset and at least one second subset to determine whether to accept the commission from the first server.
The method according to claim 10, wherein when the number of first subsets included in the first data is greater than a predetermined threshold, the second data includes at least one first subset and at least one first subset Two subsets.
The method according to claim 11, wherein the returned information includes third data, and the second server uses the hash of at least one first subset included in the returned information and the second data value, verifying the second data, including:

When the number of first subsets included in the first data is greater than a predetermined threshold, the second server determines whether the hash value of the third data and at least one first subset included in the second data Whether the hash value of the set is consistent;

The second server verifies the second data according to the judgment result.
The method according to any one of claims 10-12, wherein the first data includes an encrypted first subset and an encrypted second subset, and the returned information includes information related to the second The key corresponding to the data, the second server verifies the second data according to the returned information and the hash value of at least one first subset included in the second data, including:

The second server decrypts the encrypted second data in the encrypted first subset and the encrypted second subset according to the key to obtain fourth data;

The second server verifies the second data according to the fourth data and a hash value of at least one first subset included in the second data.
The method according to claim 13, characterized in that, the second server calculates the second data according to the hash value of at least one first subset included in the fourth data and the second data Verify, including:

When the number of first subsets included in the first data is greater than a predetermined threshold, the second server determines whether the hash value of the fourth data and at least one first subset included in the second data Whether the hash value of the set is consistent;

The second server verifies the second data according to the judgment result.
The method according to claim 13 or 14, wherein the key comprises at least one key corresponding to the first subset and/or the second subset in the second data, and the different first subset is different from the key corresponding to the second subset.
The method according to any one of claims 10-15, wherein the second data includes at least one second subset, and the returned information is also used by the second server to obtain The second data includes content of at least one second subset to determine whether to accept the entrustment of the first server.
The method according to any one of claims 10-16, wherein the sampling request includes at least one data location, and the data location is used to indicate that the first subset included in the second data is in the A position in the data, and/or a position in the first subset of the second subset included in the second data.
A data verification device, characterized in that the device comprises:

The first receiving module is configured to receive the first data sent by the first server, the first data includes a hash value of at least one first subset, and the first subset includes at least one second subset, so The first data is the data that the first server wants to entrust to carry out the transaction;

A first sending module, configured to send a sampling request for second data to the first server, the second data includes at least one first subset, or the second data includes at least one first subset and at least one second subset;

The second receiving module is configured to receive the return information sent by the first server in response to the sampling request;

A verification module, configured to verify the second data according to the returned information and the hash value of at least one first subset included in the second data, and the at least one first subset included in the second data The hash value of the set is determined according to the hash value of at least one first subset included in the first data;

The first determination module is configured to obtain the content of at least one first subset included in the second data or at least one first subset included in the second data according to the returned information when the verification is passed. and the content of at least one second subset to determine whether to accept the commission from the first server.
A data verification device, characterized in that the device comprises:

A second sending module, configured to send first data to a second server, the first data includes a hash value of at least one first subset, the first subset includes at least one second subset, the The first data is the data that the first server wants to entrust to conduct transactions;

The third receiving module is configured to receive a sampling request for the second data sent by the second server, the second data includes at least one first subset, or the second data includes at least one first subset set and at least one second subset;

A third sending module, configured to send return information to the second server in response to the sampling request, the return information is used by the second server according to the return information and the second data included The hash value of at least one first subset is used to verify the second data, the hash value of the at least one first subset included in the second data is based on the at least one first subset included in the first data The hash value of the set is determined. If the verification is passed, the return information is used for the second server to obtain the content of at least one first subset included in the second data according to the return information, or the Contents of at least one first subset and at least one second subset included in the second data to determine whether to accept the entrustment of the first server.
A data verification device is characterized in that it comprises:

processor;

memory for storing processor-executable instructions;

Wherein, the processor is configured to implement the method described in any one of claims 1 to 9 when executing the instructions stored in the memory, or to implement the method described in any one of claims 10 to 17 .
A non-volatile computer-readable storage medium on which computer program instructions are stored, wherein the computer program instructions implement the method according to any one of claims 1 to 9 when executed by a processor, or , realizing the method described in any one of claims 10 to 17.