[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN111915302B - Associated data processing method and device, electronic equipment and computer readable medium - Google Patents

Associated data processing method and device, electronic equipment and computer readable medium Download PDF

Info

Publication number
CN111915302B
CN111915302B CN202010778780.8A CN202010778780A CN111915302B CN 111915302 B CN111915302 B CN 111915302B CN 202010778780 A CN202010778780 A CN 202010778780A CN 111915302 B CN111915302 B CN 111915302B
Authority
CN
China
Prior art keywords
initiator
key
ciphertext
information
associated transaction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010778780.8A
Other languages
Chinese (zh)
Other versions
CN111915302A (en
Inventor
冯伍星
徐达权
叶仕进
陈子耕
洪思长
王楠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tencent Technology Shenzhen Co Ltd
Original Assignee
Tencent Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tencent Technology Shenzhen Co Ltd filed Critical Tencent Technology Shenzhen Co Ltd
Priority to CN202010778780.8A priority Critical patent/CN111915302B/en
Publication of CN111915302A publication Critical patent/CN111915302A/en
Application granted granted Critical
Publication of CN111915302B publication Critical patent/CN111915302B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/389Keeping log of transactions for guaranteeing non-repudiation of a transaction

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The embodiment of the disclosure provides an associated data processing method and device, electronic equipment and a computer readable medium. The method comprises the following steps: determining a target association contract; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of the receiving object according to the object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; and receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve the associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext. The technical scheme provided by the embodiment of the disclosure can provide a set of safe and fair associated data management scheme.

Description

Associated data processing method and device, electronic equipment and computer readable medium
Technical Field
The present disclosure relates to the field of computer technologies, and in particular, to a method and an apparatus for processing associated data, an electronic device, and a computer-readable medium.
Background
The related enterprise refers to an enterprise which has a direct or indirect control relationship or a significant influence relationship with other enterprises. The enterprises which are connected with each other are related enterprises. A Connected transaction (Connected transaction) is a transaction between parties associated with an enterprise. Due to the privacy of the financial data, at present, each enterprise can only adopt a respective accounting mode to centrally manage the financial data and cannot share the financial data with the outside. Thus, the financial systems and financial data of each enterprise form an individual island. This results in inconsistent information such as transaction amount, subject, transaction date, etc. recorded in respective systems for one associated transaction by associated enterprises, which brings heavy work for account checking when the associated transaction information is revealed.
Therefore, a new associated data processing method, apparatus, electronic device and computer readable medium are needed.
It is to be noted that the information disclosed in the above background section is only for enhancement of understanding of the background of the present disclosure, and thus may include information that does not constitute prior art known to those of ordinary skill in the art.
Disclosure of Invention
The embodiment of the disclosure provides a method and a device for processing associated data, electronic equipment and a computer readable medium, and further provides a set of safe and fair associated data management scheme.
Additional features and advantages of the disclosure will be set forth in the detailed description which follows, or in part will be obvious from the description, or may be learned by practice of the disclosure.
The embodiment of the disclosure provides a method for processing associated data, including: determining a target association contract; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of a receiving object according to an object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; and receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve an associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext.
The embodiment of the disclosure provides a method for processing associated data, including: decrypting the receiver-associated transaction authorization ciphertext according to a receiver data decryption private key corresponding to the receiver data encryption public key to obtain a first key; decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information; generating associated transaction consent information in response to the associated transaction information; and signing the associated transaction agreement information, the associated transaction information and the object identification of the receiving object according to a signature private key of the receiving party to generate an associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information.
An embodiment of the present disclosure provides an associated data processing system, including: an association transaction initiating device configured to determine a target association contract; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of a receiving object according to an object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve an associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext; the associated transaction receiving device is configured to decrypt the receiver associated transaction authorization ciphertext according to a receiver data decryption private key corresponding to the receiver data encryption public key to obtain a first key; decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information; generating associated transaction consent information in response to the associated transaction information; and signing the associated transaction agreement information, the associated transaction information and the object identifier of the second object according to a signature private key of a receiver to generate an associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information.
In some exemplary embodiments of the present disclosure, the associated transaction initiating device may further include an associated transaction authorization cryptogram signature module and an associated transaction uplink data module. The related transaction authorization ciphertext signature module can be configured to sign the related transaction authorization ciphertext of the receiving party according to the signature private key of the initiating party to generate a related transaction signature authorization ciphertext of the receiving party; the association transaction data uplink module may be configured to upload the association transaction cryptogram and the recipient association transaction signature authorization cryptogram to the blockchain.
In some exemplary embodiments of the present disclosure, the associated transaction initiating device may further include a first key encryption module, an initiator authorization ciphertext uplink module, a first key decryption module, an associated transaction information updating module, and an associated transaction update uploading module. The first key encryption module can be configured to encrypt the first key according to the initiator data encryption public key to obtain an initiator associated transaction authorization ciphertext; the initiator authorization ciphertext uplink module may be configured to upload an initiator associated transaction authorization ciphertext to the blockchain; the first key decryption module may be configured to decrypt the initiator associated transaction authorization ciphertext on the blockchain using the initiator data decryption private key corresponding to the initiator data encryption public key in response to the associated transaction update request, so as to obtain a first key; the associated transaction information updating module can be configured to encrypt updated associated transaction information in the associated transaction updating request by using the first key to obtain an associated transaction updating ciphertext; the association transaction update upload module may be configured to upload the association transaction update cryptogram to the blockchain.
In some exemplary embodiments of the present disclosure, the associated transaction initiating device may further include a target association relation determining module, a target association contract generating module, a second key generating module, an associated contract encrypting module, an associated contract receiving authorization module, and an associated contract authorization uploading module. The target association determination module may be configured to determine a target association from the blockchain; the target association contract generation module can be configured to generate an association contract corresponding to the target association relationship, wherein the association contract comprises the target association contract; the second key generation module may be configured to generate a second key; the associated contract encryption module may be configured to encrypt associated contract information of the associated contract using the second key to generate an associated contract ciphertext; the associated contract receiving and authorizing module can be configured to encrypt the second key according to the receiver data encryption public key to obtain a receiver associated contract authorization ciphertext; the association contract authorization upload module may be configured to upload the association contract ciphertext and the recipient association contract authorization ciphertext to the blockchain.
In some exemplary embodiments of the present disclosure, the association transaction initiating device may further include an association contract initiation authorization module. The associated contract initiating authorization module can be configured to encrypt the second key according to the initiator data encryption public key to obtain an initiator associated contract authorization ciphertext; the correlation contract authorization uploading module can also be configured to upload the correlation contract authorization ciphertext of the initiator to the block chain; wherein determining the target association contract may comprise: decrypting the initiator associated contract authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a second key; decrypting the associated contract ciphertext by using the second key to obtain associated contract information; a target associated contract is determined from the associated contract information.
In some exemplary embodiments of the present disclosure, the association transaction initiating apparatus may further include a received object determining module, an association relationship generating module, a third key generating module, an association information encrypting module, an association information receiving authorization module, and an association relationship authorization uplink module. The received object determination module may be configured to determine a received object from the blockchain; the incidence relation generating module can be configured to generate incidence relations corresponding to the receiving objects, wherein the incidence relations comprise target incidence relations; the third key generation module may be configured to generate a third key; the association information encryption module can be configured to encrypt association relationship information of the association relationship by using a third key to generate an association relationship ciphertext; the associated information receiving authorization module can be configured to encrypt the third key according to the receiver data encryption public key to obtain a receiver association relation authorization ciphertext; the association authorization uplink module may be configured to upload the association ciphertext and the recipient association authorization ciphertext to the blockchain.
In some exemplary embodiments of the present disclosure, the association transaction initiating device may further include an association relationship initiating authorization module. The incidence relation initiating authorization module can be configured to encrypt the third secret key according to the initiator data encryption public key to obtain an initiator incidence relation authorization ciphertext; the incidence relation authorization uplink module can also be configured to upload the incidence contract ciphertext and the initiator incidence relation authorization ciphertext to the block chain; determining the target association relationship from the blockchain may include: decrypting the initiator incidence relation authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a third key; decrypting the incidence relation ciphertext by using the third key to obtain incidence relation information; and determining the target incidence relation from the incidence relation information.
In some exemplary embodiments of the present disclosure, the associated transaction initiating device may be further configured to generate a fourth key; encrypting the initiator object information of the initiator object according to the fourth key to generate an initiator registration information ciphertext; encrypting the fourth key according to the receiver data encryption public key to generate receiver registration information authorization information; and signing the object identifier of the initiating object, the initiator encrypted public key, the initiator signature public key, the initiator registration information ciphertext and the receiver registration information authorization information according to the initiator signature private key to generate initiator target registration information and upload the initiator target registration information to the block chain.
In some exemplary embodiments of the present disclosure, the associated transaction receiving apparatus further includes an initiator signature public key obtaining module and an initiator signature verification module. The initiator signature public key acquisition module may be configured to acquire an initiator signature public key of the initiator on the blockchain according to the object identifier of the initiator; the initiator signature verification module can be configured to perform signature verification on the receiver associated transaction signature authorization ciphertext on the blockchain according to the initiator signature public key to obtain the receiver associated transaction authorization ciphertext.
In some exemplary embodiments of the present disclosure, the associated transaction receiving apparatus may further include an initiator target registration information obtaining module, an initiator signature verifying module, a fourth key obtaining module, and an initiator object information obtaining module. The initiator target registration information acquisition module can be configured to acquire initiator target label book information of the initiator object on the block chain according to the object identifier of the initiator object, wherein the initiator target label book information comprises the object identifier of the initiator object, an initiator encryption public key, an initiator signature public key, an initiator registration information ciphertext and receiver registration information authorization information; the initiator signature verification module can be configured to obtain an initiator signature public key if the initiator target registration information signature verification is successful according to the initiator signature public key; the fourth key obtaining module may be configured to respond to the initiation object information obtaining request, decrypt the receiver registration information authorization information according to the receiver data decryption private key, and obtain a fourth key; the initiator object information obtaining module may be configured to obtain the initiator object information by decrypting the initiator registration information ciphertext according to the fourth key.
An embodiment of the present disclosure provides an electronic device, including: at least one processor; storage means for storing at least one program which, when executed by the at least one processor, causes the at least one processor to implement the associated data processing method as described in the above embodiments.
The embodiments of the present disclosure provide a computer-readable medium, on which a computer program is stored, which when executed by a processor implements the associated data processing method as described in the above embodiments.
In the technical solutions provided in some embodiments of the present disclosure, the associated transaction information is encrypted by the first key, and the recipient data encryption public key is used to encrypt the first key, so as to obtain a recipient associated transaction authorization ciphertext, thereby completing the private authorization of the associated transaction data to the recipient, and avoiding the problems of information asymmetry of the transaction participants and account checking and checking when the associated transaction is revealed. By receiving the associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, the data can be safely transmitted to the receiving object, the phenomenon of repudiation in the associated transaction execution process is avoided, and the traceability characteristic of the associated transaction information is realized. Based on the processing mode of the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, the data processing amount can be reduced, and the data processing efficiency is improved.
In the technical scheme provided by some embodiments of the disclosure, the receiver data decryption private key corresponding to the receiver data encryption public key is used for decrypting the receiver associated transaction authorization ciphertext to obtain the first key, the receiver associated transaction authorization ciphertext can be used as a basis, the associated transaction information is obtained through the first key, the private authorization of the associated transaction data to a receiving object is realized, and the problems of information asymmetry of transaction participants and account checking and checking when the associated transaction is revealed are avoided. The agreement signature is carried out through the signature private key of the receiver, the associated transaction corresponding to the associated transaction information can be achieved in response to the associated transaction ciphertext and the associated transaction authorization ciphertext of the receiver, the equal interaction between the associated transaction information and the initiating object is realized, the repudiation phenomenon in the associated transaction execution process is avoided, and the traceability characteristic of the associated transaction information can be realized.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present disclosure and together with the description, serve to explain the principles of the disclosure. It is to be understood that the drawings in the following description are merely exemplary of the disclosure, and that other drawings may be derived from those drawings by one of ordinary skill in the art without the exercise of inventive faculty. In the drawings:
FIG. 1 illustrates a schematic diagram of an exemplary system architecture to which an associated data processing method or apparatus of an embodiment of the present disclosure may be applied;
FIG. 2 is an alternative structure diagram of the distributed system applied to the blockchain system according to the embodiment of the present invention;
FIG. 3 is an alternative Block Structure (Block Structure) diagram provided by an embodiment of the present invention;
FIG. 4 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 5 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 6 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 7 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 8 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 9 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 10 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 11 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 12 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 13 schematically illustrates a flow diagram of an association data processing method according to one embodiment of the present disclosure;
FIG. 14 is an alternative structural diagram of the embodiment of the associated data processing method applied to the blockchain system;
FIG. 15 schematically illustrates an information flow diagram for the subsystems of each enterprise;
FIG. 16 schematically shows a flow diagram of an association data processing method according to one embodiment of the present disclosure;
fig. 17 is a diagram schematically illustrating uplink data in origination object information;
FIG. 18 is a diagram schematically illustrating an authorization information uplink to a receiving object;
fig. 19 is a diagram schematically illustrating uplink data for an initial object information update;
FIG. 20 is a diagram schematically illustrating linking information in association relationship;
FIG. 21 is a schematic diagram illustrating the association of contract uplink information;
FIG. 22 is a schematic diagram illustrating the association of contract uplink information;
FIG. 23 schematically illustrates a block diagram of an associated data processing system, in accordance with an embodiment of the present disclosure;
FIG. 24 illustrates a schematic structural diagram of a computer system suitable for use in implementing the electronic device of an embodiment of the present disclosure.
Detailed Description
Example embodiments will now be described more fully with reference to the accompanying drawings. Example embodiments may, however, be embodied in many different forms and should not be construed as limited to the examples set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the concept of example embodiments to those skilled in the art.
Furthermore, the described features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. In the following description, numerous specific details are provided to give a thorough understanding of embodiments of the disclosure. One skilled in the relevant art will recognize, however, that the subject matter of the present disclosure can be practiced without one or more of the specific details, or with other methods, components, devices, steps, and so forth. In other instances, well-known methods, devices, implementations, or operations have not been shown or described in detail to avoid obscuring aspects of the disclosure.
The block diagrams shown in the figures are functional entities only and do not necessarily correspond to physically separate entities. I.e. these functional entities may be implemented in the form of software, or in at least one hardware module or integrated circuit, or in different networks and/or processor means and/or microcontroller means.
The flow charts shown in the drawings are merely illustrative and do not necessarily include all of the contents and operations/steps, nor do they necessarily have to be performed in the order described. For example, some operations/steps may be decomposed, and some operations/steps may be combined or partially combined, so that the actual execution sequence may be changed according to the actual situation.
In the related technology, the financial system of each enterprise is relatively independent, and the accounting mode of each enterprise is different. The main differences are: inconsistent accounting criteria, inconsistent monetary units, inconsistent subjects, etc. As a result, the transaction amount and the subject recorded in the respective systems of the two enterprises may be inconsistent with each other. The independence of the financial system and the consistency of the transaction record requirements are contradictory, and the method is also a big pain point when the enterprise associated transaction information is disclosed for reconciliation and checking.
Therefore, a new associated data processing method, device and electronic device are needed.
Fig. 1 shows a schematic diagram of an exemplary system architecture to which an associated data processing method or apparatus of an embodiment of the present disclosure may be applied.
As shown in fig. 1, the system architecture 100 may include one or more of terminal devices 101, 102, 103, a network 104, and a server 105. The network 104 serves as a medium for providing communication links between the terminal devices 101, 102, 103 and the server 105. Network 104 may include various connection types, such as wired, wireless communication links, or fiber optic cables, to name a few.
It should be understood that the number of terminal devices, networks, and servers in fig. 1 is merely illustrative. There may be any number of terminal devices, networks, and servers, as desired for implementation. For example, the server 105 may be an independent physical server, a server cluster or a distributed system formed by a plurality of physical servers, or a cloud server providing a cloud computing service. The terminal may be, but is not limited to, a smart phone, a tablet computer, a laptop computer, a desktop computer, a smart speaker, a smart watch, and the like. The terminal and the server may be directly or indirectly connected through wired or wireless communication, and the application is not limited herein.
The user may use the terminal devices 101, 102, 103 to interact with the server 105 via the network 104 to receive or send messages or the like. The terminal devices 101, 102, 103 may be various electronic devices having a display screen and supporting web browsing, including but not limited to smartphones, tablets, portable computers, desktop computers, wearable devices, virtual reality devices, smart homes, and so forth. The server 105 may be a server that provides various services. For example, the terminal device 103 (which may also be the terminal device 101 or 102) may determine the target association contract as the initiator; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of a receiving object according to an object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; the associated transaction cryptogram and the recipient associated transaction authorization cryptogram are uploaded to the server 105. The terminal device 101 or 102 may be a receiving object, receive the associated transaction ciphertext and the receiver associated transaction authorization ciphertext through the server 105, decrypt the receiver associated transaction authorization ciphertext according to a receiver data decryption private key corresponding to the receiver data encryption public key, and obtain a first key; decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information; generating associated transaction consent information in response to the associated transaction information; and signing the associated transaction agreement information, the associated transaction information and the object identifier of the second object according to a signature private key of a receiver to generate an associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information. And feeding back the associated transaction agreement signature to the terminal device 103 through the server 105, so that the terminal device 103 can receive the associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiving party associated transaction authorization ciphertext to achieve the associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiving party associated transaction authorization ciphertext, thereby providing a set of associated data management scheme with accurate and effective information and high information confidentiality under the condition of ensuring information symmetry between the receiving object and the initiating object.
The system related to the embodiment of the invention can be a distributed system formed by connecting a client, a plurality of nodes (any form of computing equipment in an access network, such as a server and a user terminal) through a network communication mode.
Taking a distributed system as an example of a blockchain system, referring To fig. 2, fig. 2 is an optional structural schematic diagram of the application of the distributed system To the blockchain system provided by the embodiment of the present invention, and is formed by a plurality of nodes 210 (computing devices in any form in an access network, such as servers and user terminals) and a client 220, a Peer-To-Peer (P2P, Peer To Peer) network is formed between the nodes, and the P2P Protocol is an application layer Protocol operating on a Transmission Control Protocol (TCP). In a distributed system, any machine, such as a server or a terminal, can join to become a node, and the node comprises a hardware layer, a middle layer, an operating system layer and an application layer.
Referring to the functionality of each node 210 in the blockchain system shown in fig. 2, the functionality involved includes:
1) routing, a basic function that a node has, is used to support communication between nodes.
Besides the routing function, the node may also have the following functions:
2) the application is used for being deployed in a block chain, realizing specific services according to actual service requirements, recording data related to the realization functions to form recording data, carrying a digital signature in the recording data to represent a source of task data, and sending the recording data to other nodes in the block chain system, so that the other nodes add the recording data to a temporary block when the source and integrity of the recording data are verified successfully.
For example, the services implemented by the application include:
2.1) wallet, for providing the function of transaction of electronic money, including initiating transaction (i.e. sending the transaction record of current transaction to other nodes in the blockchain system, after the other nodes are successfully verified, storing the record data of transaction in the temporary blocks of the blockchain as the response of confirming the transaction is valid; of course, the wallet also supports the querying of the remaining electronic money in the electronic money address;
and 2.2) sharing the account book, wherein the shared account book is used for providing functions of operations such as storage, query and modification of account data, record data of the operations on the account data are sent to other nodes in the block chain system, and after the other nodes verify the validity, the record data are stored in a temporary block as a response for acknowledging that the account data are valid, and confirmation can be sent to the node initiating the operations.
2.3) Intelligent contracts, computerized agreements, which can enforce the terms of a contract, implemented by codes deployed on a shared ledger for execution when certain conditions are met, for completing automated transactions according to actual business requirement codes, such as querying the logistics status of goods purchased by a buyer, transferring the buyer's electronic money to the merchant's address after the buyer signs for the goods; of course, smart contracts are not limited to executing contracts for trading, but may also execute contracts that process received information.
3) And the Block chain comprises a series of blocks (blocks) which are mutually connected according to the generated chronological order, new blocks cannot be removed once being added into the Block chain, and recorded data submitted by nodes in the Block chain system are recorded in the blocks.
Referring to fig. 3, fig. 3 is an optional schematic diagram of a Block Structure (Block Structure) according to an embodiment of the present invention, where each Block includes a hash value of a transaction record stored in the Block (hash value of the Block) and a hash value of a previous Block, and the blocks are connected by the hash values to form a Block chain. The block may include information such as a time stamp at the time of block generation. A block chain (Blockchain), which is essentially a decentralized database, is a string of data blocks associated by using cryptography, and each data block contains related information for verifying the validity (anti-counterfeiting) of the information and generating a next block.
Fig. 4 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure. The method provided by the embodiment of the present disclosure may be processed by any electronic device with computing processing capability, for example, the server or the terminal device in the embodiment of fig. 1 described above, and in the following embodiment, the terminal device 101 is taken as an example for illustration, but the present disclosure is not limited thereto.
As shown in fig. 4, the associated data processing method provided by the embodiment of the present disclosure may include the following steps.
In step S410, a target association contract is determined.
In the disclosed embodiment, the associated contract is a contract that is entered into in relation to an associated transaction. The target association contract is a contract between the execution subject (initiating subject) and the receiving subject in the present embodiment that is made for an association transaction between both parties. Wherein the target association contract may be established based on an established operative association relationship existing between the originating object and the receiving object.
In step S420, associated transaction information corresponding to the target associated contract is generated.
In the embodiment of the disclosure, the associated transaction information may be generated based on an effective target associated contract existing between the two associated transaction parties (the initiating object and the receiving object). For example, the information of the receiving object may be determined according to the target association contract (and the association relationship according to which the target association contract is based) to generate the associated transaction information according to the information of the receiving object.
In step S430, a recipient data encryption public key of the receiving object is obtained according to the object identification of the receiving object.
In the embodiment of the disclosure, the receiver data encryption public key is generated for the receiving object. For example, the receiving object may generate a recipient data encryption public key and its corresponding recipient data decryption private key. The receiver data encryption public key and the receiver data decryption private key can be asymmetric keys and are used for an asymmetric data encryption algorithm.
In step S440, a first key is generated.
In the disclosed embodiment, the first key may be, for example, but not limited to, a symmetric key. Wherein, the symmetric key uses a symmetric encryption algorithm. Symmetric encryption refers to encryption and decryption using the same key, and is called symmetric encryption. Symmetric encryption has only one key as the private key.
In step S450, the associated transaction information is encrypted by using the first key to generate an associated transaction ciphertext.
In the embodiment of the disclosure, the associated transaction ciphertext may further bind the associated transaction identifier and the target associated contract identifier.
In step S460, the first key is encrypted according to the receiver data encryption public key to obtain a receiver-associated transaction authorization ciphertext.
In the embodiment of the disclosure, the association transaction ciphertext and the recipient association transaction authorization ciphertext may be uploaded to a blockchain, for example, or may also be uploaded to a cloud platform, for example. In a blockchain scenario, the initiating object and the receiving object may access the blockchain as nodes to enable data transmission. In a cloud platform scene, an initiating object and a receiving object can be accessed into a platform through an access process, and data transmission and storage are realized based on a multi-tenant technology. The multi-tenant technology is a software architecture technology which is used for exploring and implementing the sharing of the same system or program components in a multi-user environment, and can still ensure the isolation of data among users.
In step S470, an associated transaction agreement signature sent by the receiving object in response to the associated transaction cryptogram and the receiving party associated transaction authorization cryptogram is received to achieve an associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction cryptogram and the receiving party associated transaction authorization cryptogram.
The associated data processing method provided by the embodiment of the disclosure encrypts the associated transaction information through the first key, and encrypts the first key by using the receiver data encryption public key to obtain the receiver associated transaction authorization ciphertext, so that the private authorization of the associated transaction data to a receiving object can be completed, and the problems of information asymmetry of transaction participants and account checking when the associated transaction is revealed are avoided. By receiving the associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, equal interaction between the receiving object and the receiving object can be realized, the phenomenon of repudiation in the associated transaction execution process is avoided, and the traceability characteristic of the associated transaction information can be realized. Based on the processing mode of the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, the data processing amount can be reduced, and the data processing efficiency is improved.
In an exemplary embodiment, the receiver associated transaction authorization ciphertext can be signed according to the initiator signature private key to generate the receiver associated transaction signature authorization ciphertext; and uploading the associated transaction ciphertext and the receiver associated transaction signature authorization ciphertext to a block chain. In the embodiment, the signature of the receiving party associated transaction authorization ciphertext through the signature private key of the initiating party can prevent repudiation and is convenient for tracing. The first key can be encrypted according to the data encryption public key of the receiver to obtain a first key ciphertext, and the first key ciphertext, the initiating object identifier and the receiving object identifier are spliced according to a preset rule to obtain a first spliced character string; and signing the first spliced character string according to the initiator signature private key of the initiator object to obtain a receiver associated transaction authorization ciphertext.
Fig. 5 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 5, the associated data processing method based on the above embodiment may further include the following steps. In this embodiment, for example, the association transaction ciphertext and the recipient association transaction authorization ciphertext are uploaded to the blockchain.
In step S510, the first key is encrypted according to the initiator data encryption public key, so as to obtain an initiator-associated transaction authorization ciphertext.
In the embodiment of the present disclosure, the initiator data encryption public key is generated for the initiator. For example, the initiator object may generate an initiator data encryption public key and its corresponding initiator data decryption private key. The initiator data encryption public key and the initiator data decryption private key may be asymmetric keys used in an asymmetric data encryption algorithm.
In step S520, the initiator-associated transaction authorization ciphertext is uploaded to the blockchain.
In step S530, in response to the association transaction update request, the initiator data corresponding to the initiator data encryption public key is used to decrypt the initiator association transaction authorization ciphertext on the private key decryption blockchain, so as to obtain a first key.
In the embodiments of the present disclosure, the association transaction update request may be sent internally in the system to which the initiating object belongs, for example. For example, where the initiating object is a business, the associated transaction update request may be sent, for example, by an employee within the business through the business's associated transaction system. The initiator data decryption private key is a key known to the execution subject in this embodiment.
In step S540, the updated associated transaction information in the associated transaction update request is encrypted by using the first key, and an associated transaction update ciphertext is obtained.
In step S550, the associated transaction update ciphertext is uploaded to the blockchain.
In the embodiment, the first key is encrypted through the initiator data encryption public key to obtain the initiator associated transaction authorization ciphertext, the initiator associated transaction authorization ciphertext is uploaded to the block chain, private authorization of the initiator by the associated transaction data can be completed through characteristics of block chain repudiation prevention, tampering prevention, quasi-real-time information sharing and the like, and account checking and checking problems caused by information asymmetry of transaction participants and associated transaction disclosure are avoided. And reduce the data processing amount and improve the data processing efficiency. When an associated transaction updating request is received, the initiator data decryption private key can be used for decrypting an initiator associated transaction authorization ciphertext on the block chain to obtain a first key, updated associated transaction information in the associated transaction updating request is encrypted according to the first key, the encrypted associated transaction updating ciphertext is uploaded to the block chain, updating of the associated transaction information can be achieved, complete disclosure of the associated transaction information is guaranteed based on characteristics of block chain repudiation prevention, tampering prevention, quasi-real-time information sharing and the like, and unfair transactions are avoided.
Fig. 6 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 6, the associated data processing method based on the above embodiment may further include the following steps.
In step S610, a target association relationship is determined from the blockchain.
In the embodiment of the present disclosure, the target association relationship is an association relationship to which the target association contract belongs. The execution subject (initiating object) and the receiving object of the present embodiment are both parties of the target association relationship.
In step S620, an association contract corresponding to the target association relationship is generated, the association contract including the target association contract.
In the embodiment of the present disclosure, the target association relationship may correspond to at least one association contract, and the at least one association contract may include the target association contract. The target association contract may be established based on an established target association relationship that exists between the initiating object and the receiving object that has been validated.
In step S630, a second key is generated.
In the embodiment of the present disclosure, a generation manner of the second key may adopt a generation manner similar to that of the first key, and details are not described here.
In step S640, the associated contract information of the associated contract is encrypted by the second key, and an associated contract ciphertext is generated.
In step S650, the second key is encrypted according to the receiver data encryption public key, and a receiver association contract authorization ciphertext is obtained.
The second key can be encrypted according to the data encryption public key of the receiver to obtain a second key ciphertext, and the second key ciphertext, the initiating object identifier and the receiving object identifier are spliced according to a preset rule to obtain a second spliced character string; and signing the second spliced character string according to the signature private key of the initiator object to obtain the associated contract authorization ciphertext of the receiver. In the embodiment, the signature of the receiver associated contract authorization ciphertext through the signature private key of the initiator can prevent repudiation and is convenient for tracing.
In step S660, the association contract ciphertext and the recipient association contract authorization ciphertext are uploaded to the blockchain.
In the embodiment, the associated contract information is encrypted through the second key, and the second key is encrypted by using the receiver data encryption public key to obtain the receiver associated contract authorization ciphertext, so that the data processing amount can be reduced, and the data processing efficiency can be improved. And the private authorization of the associated contract data to the receiving party is realized, and the problem of information asymmetry of the transaction participating party is avoided.
In an exemplary embodiment, an association contract agreement signature sent by the receiving object in response to the association contract ciphertext and the receiving party association contract authorization ciphertext may also be received to reach an association contract corresponding to the association contract information, where the association contract agreement signature is generated according to the association contract ciphertext and the receiving party association contract authorization ciphertext. In the embodiment, by receiving the association contract agreement signature sent by the receiving object in response to the association contract ciphertext and the receiver association contract authorization ciphertext, equal interaction between the receiving object and the receiving object can be realized, the repudiation phenomenon in the association contract execution process is avoided, and the traceability characteristic of the association contract information can be realized.
Fig. 7 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 7, the associated data processing method based on the above embodiment may further include the following steps.
In step S710, the second key is encrypted according to the initiator data encryption public key, so as to obtain an initiator associated contract authorization ciphertext.
In step S720, the initiator association contract authorization ciphertext is uploaded to the blockchain.
In the embodiment, the second key is encrypted through the initiator data encryption public key to obtain the initiator associated contract authorization ciphertext, and the initiator associated contract authorization ciphertext is uploaded to the block chain, so that the private authorization of the initiator through the associated contract data can be completed through the characteristics of block chain repudiation prevention, tampering prevention, quasi-real-time information sharing and the like, and the problems of information asymmetry and account checking and checking during associated transaction disclosure caused by transaction participants are solved.
In an exemplary embodiment, step S410 may further include the following steps.
In step S730, the initiator data decryption private key corresponding to the initiator data encryption public key is used to decrypt the initiator associated contract authorization ciphertext, so as to obtain a second key.
In step S740, the associated contract ciphertext is decrypted using the second key, and associated contract information is obtained.
In step S750, a target associated contract is determined from the associated contract information.
In this embodiment, the initiator association contract authorization ciphertext stored in the blockchain is used as association contract data to authorize the privacy of the initiator, so that the initiator can obtain the association contract information according to the identification of the association contract ciphertext. And the initiating object can determine the target associated contract in the associated contract information conveniently, and the reading and the subsequent operation of the associated contract are realized.
Fig. 8 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 8, the associated data processing method according to the above embodiment may further include the following steps.
In step S810, a reception object is determined from the blockchain.
In the embodiment of the disclosure, the receiving object can be determined from the blockchain summary according to the object identifier of the receiving object. The object identification of the receiving object is known information of the execution subject of the method.
In step S820, an association corresponding to the receiving object is generated, and the association includes a target association.
In step S830, a third key is generated.
In this embodiment of the disclosure, a generation manner of the third key may adopt a generation manner similar to that of the first key and the second key, and details are not described here.
In step S840, the association information of the association is encrypted by using the third key, and an association ciphertext is generated.
In step S850, the third key is encrypted according to the receiver data encryption public key, and a receiver association authorization ciphertext is obtained.
The third key can be encrypted according to the receiver data encryption public key to obtain a third key ciphertext, and the third key ciphertext, the initiating object identifier and the receiving object identifier are spliced according to a preset rule to obtain a third spliced character string; and signing the third splicing character string according to the initiator signature private key of the initiator object to obtain a receiver association relation authorization ciphertext. In the embodiment, the signature of the initiator signature private key on the receiver association relation authorization ciphertext can prevent repudiation and facilitate tracing.
In step S860, the association relation ciphertext and the recipient association relation authorization ciphertext are uploaded to the blockchain.
In the embodiment, the incidence relation information is encrypted through the third key, and the third key is encrypted through the data encryption public key of the receiving party to obtain the incidence relation authorization ciphertext of the receiving party, so that the data processing amount can be reduced, and the data processing efficiency can be improved. And the privacy authorization of the incidence relation data to the receiving party is realized, and the problem of asymmetric information of the transaction participating party is avoided.
In an exemplary embodiment, an association relationship agreement signature sent by the receiving object in response to the association relationship ciphertext and the receiving party association relationship authorization ciphertext may also be received to achieve establishment of an association relationship corresponding to the association relationship information, where the association relationship agreement signature is generated according to the association relationship ciphertext and the receiving party association relationship authorization ciphertext. In the embodiment, by receiving the incidence relation agreement signature sent by the receiving object in response to the incidence relation ciphertext and the receiver incidence relation authorization ciphertext, equal interaction between the receiving object and the receiving object can be realized, the phenomenon of repudiation in the incidence relation execution process is avoided, and the traceability characteristic of the incidence relation information can be realized.
Fig. 9 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 9, the associated data processing method based on the above embodiment may further include the following steps.
In step S910, the third key is encrypted according to the initiator data encryption public key, so as to obtain an initiator association authorization ciphertext.
In step S920, the association contract ciphertext and the initiator association authorization ciphertext are uploaded to the blockchain.
In the embodiment, the third key is encrypted through the initiator data encryption public key to obtain the initiator incidence relation authorization ciphertext, the initiator incidence relation authorization ciphertext is uploaded to the block chain, private authorization of the incidence relation data to the initiator can be completed through characteristics of block chain repudiation prevention, tampering prevention, quasi-real-time information sharing and the like, and the problem of information asymmetry of transaction participants is avoided.
In an exemplary embodiment, step S610 may further include the following steps.
In step S930, the initiator data decryption private key corresponding to the initiator data encryption public key is used to decrypt the initiator association authorization ciphertext, and a third key is obtained.
In step S940, the association relation ciphertext is decrypted by using the third key, so as to obtain the association relation information.
In step S950, a target association is determined from the association information.
In this embodiment, the initiator association authorization ciphertext stored in the blockchain is used as the association contract data to authorize the privacy of the initiator, so that the initiator can conveniently obtain association information according to the association authorization ciphertext. And the target incidence relation is convenient to be determined in the incidence relation information by the initiating object, and the reading and the subsequent operation of the incidence relation are realized.
FIG. 10 schematically shows a flow diagram of an associated data processing method according to one embodiment of the present disclosure.
As shown in fig. 10, the associated data processing method according to the above embodiment may further include the following steps.
In step S1010, a fourth key is generated.
In this embodiment of the disclosure, a generation manner of the fourth key may adopt a generation manner similar to that of the first key, the second key, or the third key, and details thereof are omitted here.
In step S1020, the initiator object information of the initiator object is encrypted according to the fourth key, and an initiator registration information ciphertext is generated.
The initiator object information may include, for example, a subject name, a legal representative, a social credit code, a country or a region, an industry, an enterprise registration address, an establishment date, an expiration date, an issue date, and the like, which is not limited in this disclosure.
In step S1030, the fourth key is encrypted according to the recipient data encryption public key, and recipient registration information authorization information is generated.
In an exemplary embodiment, the fourth key may be encrypted according to the receiver data encryption public key to obtain a fourth key ciphertext, and the fourth key ciphertext, the initiating object identifier, and the receiving object identifier may be spliced according to a preset rule to obtain a fourth spliced character string; and signing the fourth spliced character string according to the initiator signature private key of the initiator object to obtain a receiver registration information authorization ciphertext. In the embodiment, the signature of the initiator signature private key to the receiver registration information authorization ciphertext can prevent repudiation and facilitate tracing.
In step S1040, the object identifier of the initiator, the initiator encrypted public key, the initiator signature public key, the initiator registration information ciphertext, and the receiver registration information authorization information are signed according to the initiator signature private key, so as to generate initiator target registration information and upload the initiator target registration information to the blockchain.
In the embodiment, the initiator object information is encrypted through the fourth key, and the receiver data encryption public key is used for encrypting the fourth key to obtain the receiver registration information authorization ciphertext, so that the private authorization of the initiator object information to the receiver object can be completed, and the subsequent operation is further facilitated.
In an exemplary embodiment, the fourth key may be further encrypted according to the initiator data encryption public key, initiator registration information authorization information is generated and uploaded to the block chain, and privacy authorization of the initiator object information on the initiator object is completed, so that the initiator performs subsequent operations such as updating and reading of the initiator object information.
FIG. 11 schematically shows a flow diagram of an associated data processing method according to one embodiment of the present disclosure. The method provided by the embodiment of the present disclosure may be processed by any electronic device with computing processing capability, for example, the server or the terminal device in the embodiment of fig. 1 described above, and in the following embodiment, the terminal device 102 is taken as an execution subject for example, but the present disclosure is not limited thereto. The execution subject of the embodiment of the present disclosure may be the receiving object referred to in the foregoing embodiments.
As shown in fig. 11, the associated data processing method provided in this embodiment includes the following steps.
In step S1110, the receiving-side associated transaction authorization ciphertext is decrypted according to the receiving-side data decryption private key corresponding to the receiving-side data encryption public key, so as to obtain a first key.
In the embodiment of the present disclosure, the recipient-associated transaction authorization ciphertext may be generated by the execution subject (initiating object) according to step S460, for example, in the embodiment shown in fig. 4. The receiver-associated transaction authorization cryptogram can be obtained from a blockchain or a cloud platform center.
In step S1120, the associated transaction ciphertext is decrypted according to the first key, so as to obtain associated transaction information.
In the embodiment of the disclosure, the associated transaction ciphertext can be obtained from a blockchain or a cloud platform center. The associated transaction cryptogram may be generated, for example, by the execution body of the embodiment shown in fig. 4 according to step S450.
In step S1130, associated transaction approval information is generated in response to the associated transaction information.
In the embodiment of the present disclosure, the association transaction agreement information may be an identifier, a character string, or the like, and may also be image data with signature information, and the present disclosure does not particularly limit this.
In step S1140, the associated transaction approval information, the associated transaction information, and the object identifier of the receiving object are signed according to the receiving party signature private key, and an associated transaction approval signature is generated to achieve an associated transaction corresponding to the associated transaction information.
In the embodiment of the disclosure, the associated transaction agreement information, the associated transaction information and the object identifier of the receiving object can be spliced according to a preset rule to obtain splicing agreement data; and signing the splicing agreement data by using the signature private key of the receiver to generate an association transaction agreement signature so as to achieve the association transaction corresponding to the association transaction information.
The associated data processing method provided by the embodiment of the disclosure decrypts the receiver associated transaction authorization ciphertext by using the receiver data decryption private key corresponding to the receiver data encryption public key to obtain the first key, and can obtain the associated transaction information through the first key on the basis of the receiver associated transaction authorization ciphertext, thereby realizing the private authorization of the associated transaction data to a receiving object, and avoiding the problems of information asymmetry of transaction participants and account checking when the associated transaction is revealed. The agreement signature is carried out through the signature private key of the receiver, the associated transaction corresponding to the associated transaction information can be achieved in response to the associated transaction ciphertext and the associated transaction authorization ciphertext of the receiver, the equal interaction between the associated transaction information and the initiating object is realized, the repudiation phenomenon in the associated transaction execution process is avoided, and the traceability characteristic of the associated transaction information can be realized.
FIG. 12 schematically shows a flow diagram of an associated data processing method according to one embodiment of the present disclosure. The method provided by the embodiment of the present disclosure may be processed by any electronic device with computing processing capability, for example, the server or the terminal device in the embodiment of fig. 1 described above, and in the following embodiment, the terminal device 102 is taken as an execution subject for example, but the present disclosure is not limited thereto. The execution subject of the embodiment of the present disclosure may be the receiving object referred to in the foregoing embodiments.
As shown in fig. 12, the associated data processing method based on the embodiment shown in fig. 11 may further include the following steps.
In step S1210, an initiator signature public key of the initiator object is obtained on the blockchain according to the object identifier of the initiator object.
In the embodiment of the present disclosure, the initiator entry pamphlet information of the initiator object may be obtained on the block chain according to the object identifier of the initiator object, and the initiator entry pamphlet information may be generated, for example, according to step S1040; and determining the signature public key of the initiator according to the tag book information of the initiator.
In step S1220, the receiver-related transaction signature authorization ciphertext in the blockchain is subjected to signature verification according to the initiator signature public key, so as to obtain the receiver-related transaction authorization ciphertext.
In the embodiment, the signature verification is performed on the receiver associated transaction signature authorization ciphertext through the initiator signature public key, so that the repudiation phenomenon can be avoided, and the tracing is facilitated.
Fig. 13 schematically shows a flow chart of an associated data processing method according to an embodiment of the present disclosure.
As shown in fig. 13, the associated data processing method based on the embodiment shown in fig. 11 may further include the following steps.
In step S1310, initiator entry tagged book information of the initiator object is obtained on the blockchain according to the object identifier of the initiator object, where the initiator entry tagged book information includes the object identifier of the initiator object, an initiator encrypted public key, an initiator signature public key, an initiator registration information ciphertext, and receiver registration information authorization information.
In the embodiment of the present disclosure, the initiator target registration information may be generated, for example, according to step S1040.
In step S1320, if the signature verification of the initiator target registration information is successful according to the initiator signature public key, the initiator signature public key is obtained.
In step S1330, in response to the initiation object information obtaining request, the recipient registration information authorization information is decrypted according to the recipient data decryption private key, and a fourth key is obtained.
In the embodiment of the present disclosure, the request for obtaining the information of the initiating object may be sent internally in the system to which the receiving object belongs, for example. For example, where the receiving object is a business, the initiating object information acquisition request may be sent, for example, by an employee within the business through the system of the business.
In step S1340, the initiator registration information ciphertext is decrypted according to the fourth key to obtain initiator object information.
In the embodiment of the disclosure, the receiver registration information authorization information is decrypted through the receiver data decryption private key, the initiator object information can be obtained based on the fourth key obtained through decryption, private data transmission between the initiator object and the receiver object can be realized, data equivalence, denial prevention and traceability convenience are ensured through a signature verification mechanism, and a set of safe and fair information storage and transmission mechanism is provided.
Fig. 14 is an alternative structural diagram of the associated data processing method applied to the blockchain system according to the embodiment of the present invention. As shown in fig. 14, enterprise 1, enterprise 2, and …, enterprise n, access the federation chain through the trust node access system, as federation chain node 1, federation chain node 2, and … federation chain node n, respectively. Each enterprise (i.e., the aforementioned initiating object or receiving object) is a federation of enterprises that registers and makes associated data records in a federation chain. Blockchains refer to blockchains whose consensus process is controlled by a preselected node. A federation link node: namely, the nodes joining the alliance chain participate in the consensus of the chain and have copies of the complete ledger data of the chain. The access system of the credit granting node is a system established when an enterprise or a group builds a link point of a alliance link and joins the alliance link, and the system completes operation on information provided by the enterprise, creates transaction for the information generated after operation and submits the transaction to the alliance link. Enterprises or groups may also open the system to authorized other enterprises to access the federation chain. Fig. 15 schematically illustrates an information flow diagram for the subsystems of each enterprise. As shown in fig. 15, access system 1520 of enterprise 1510 processes the enterprise's input information and generates and uploads the transaction to federation link point 1530. The input information refers to object information, association relation information, association contract information, association transaction information, various operation information, and the like. Access system generated transactions refer to transactions performed over the blockchain.
FIG. 16 schematically shows a flow diagram of an associated data processing method according to one embodiment of the present disclosure. The method provided by the embodiment of the present disclosure may be performed by, for example, the access system 1510 in the embodiment of fig. 15, but the present disclosure is not limited thereto. This embodiment is described by taking as an example an access system of an initiator (enterprise).
As shown in fig. 16, the associated data processing method of the embodiment of the present disclosure may include the following steps.
In step S1610, the initiator completes registration.
In the embodiment of the present disclosure, a specific flow method for completing registration of an initiator may refer to the description of the embodiment in fig. 10. Fig. 17 is a diagram schematically illustrating uplink data in the origination object information. As shown in fig. 17, in step S1710, the initiator object information is encrypted with the fourth key to obtain an initiator registration information ciphertext; in step S1720, the initiator registration information is uplinked. The uplink information in fig. 17 may include a receiver registration information grant in addition to the initiator registration information grant shown in the figure. Fig. 18 is a diagram schematically illustrating the uplink of the authorization information to the receiving object. As shown in fig. 18, in step S1810, the reception object is authorized. The generated authorization information of the registration information of the receiver can be uploaded to the block chain. After the authorization information of other enterprises is linked, the other enterprises can be authorized to check the information of the enterprises, and because the authorization enterprises sign the authorization ciphertext at the same time, authorization operation cannot be repudiated and the source can be traced.
Fig. 19 is a diagram schematically illustrating uplink data for an update of origination object information. As shown in fig. 19, in step S1910, the initiator registration information authorization information is acquired from the chain; in step S1920, data update is performed on the origination object update information.
In step S1620, an association relationship is established.
The specific flow method for establishing the association relationship may refer to the description of the embodiment in fig. 8. Fig. 20 is a diagram schematically illustrating the association of uplink information. As shown in fig. 20, in step S2010, the association relation information is encrypted; in step S2020, the association relation ciphertext authorizes the originating object and the receiving object; in step S2030, the initiator performs agreement signing on the association information ciphertext.
In step S1630, an association contract is created.
In the embodiment of the present disclosure, a specific flow method for creating an association contract may refer to the description of the embodiment of fig. 6. Fig. 21 is a diagram schematically illustrating the association of contract uplink information. As shown in fig. 21, in step S2110, the associated contract information is encrypted; in step S2120, the associated contract ciphertext authorizes the initiating object and the receiving object; in step S2130, the initiator performs agreement signing on the associated contract information ciphertext.
In step S1640, an associated transaction is created.
In the embodiment of the present disclosure, a specific flow method for creating an association transaction may refer to the description of the embodiment of fig. 4. Fig. 22 is a diagram schematically illustrating the association of contract uplink information. As shown in fig. 22, in step S2210, the associated transaction information is encrypted; in step S2220, the associated transaction cryptogram authorizes the initiating object and the receiving object; in step S2230, the initiating object agrees to sign the associated transaction information ciphertext.
In the embodiment, the information is confirmed through the characteristics of block chain anti-repudiation, anti-tampering, quasi-real-time information sharing and the like and a handshake mechanism, so that the problem of account checking and account checking when the associated transaction is revealed is solved, and the information asymmetry of transaction participants is avoided. A novel associated transaction management mode is created, the status of the parties participating in the associated transaction is equal, and the transaction information can be prevented from being tampered and repudiated. The block chain technology can perfectly solve the pain point in enterprise associated transaction management, and will certainly generate impact on the prior art system in the field of enterprise account management.
The following describes embodiments of the apparatus of the present disclosure, which may be used to perform the above-mentioned associated data processing method of the present disclosure. For details that are not disclosed in the embodiments of the apparatus of the present disclosure, refer to the embodiments of the associated data processing method of the present disclosure.
FIG. 23 schematically shows a block diagram of an associated data processing system according to an embodiment of the present disclosure.
Referring to FIG. 23, an associated data processing system 2300, according to one embodiment of the present disclosure, may include: an association transaction initiating device 2310 and an association transaction receiving device 2320.
The associated transaction initiating device 2310 may be configured to determine a target associated contract; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of the receiving object according to the object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; and receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve the associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext.
The associated transaction receiving device 2320 may be configured to decrypt the receiver associated transaction authorization ciphertext according to the receiver data decryption private key corresponding to the receiver data encryption public key to obtain a first key; decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information; generating associated transaction consent information in response to the associated transaction information; and signing the associated transaction agreement information, the associated transaction information and the object identification of the receiving object according to the signature private key of the receiving party to generate an associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information.
In the associated data processing system provided by the disclosure, the initiating object encrypts the associated transaction information through the first key, encrypts the first key by using the receiving party data encryption public key to obtain the receiving party associated transaction authorization ciphertext, decrypts the receiving party associated transaction authorization ciphertext by using the receiving party data decryption private key corresponding to the receiving party data encryption public key through the receiving object to obtain the first key, can obtain the associated transaction information through the first key on the basis of the receiving party associated transaction authorization ciphertext, and can complete the private authorization of the associated transaction data to the receiving object; the problems of asymmetric information of transaction participants and account checking and accounting when the associated transaction is revealed are avoided. By receiving the associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, equal interaction between the receiving object and the receiving object can be realized, the phenomenon of repudiation in the associated transaction execution process is avoided, and the traceability characteristic of the associated transaction information can be realized. Based on the encryption and decryption processing modes of the associated transaction ciphertext and the receiver associated transaction authorization ciphertext, the data processing amount can be reduced, and the data processing efficiency is improved.
In an exemplary embodiment, the associated transaction initiation device 2310 may further include an associated transaction authorization cryptogram signature module and an associated transaction data uplink module. The related transaction authorization ciphertext signature module can be configured to sign the related transaction authorization ciphertext of the receiving party according to the signature private key of the initiating party to generate a related transaction signature authorization ciphertext of the receiving party; the association transaction data uplink module may be configured to upload the association transaction cryptogram and the recipient association transaction signature authorization cryptogram to the blockchain.
In an exemplary embodiment, the associated transaction initiating device 2310 may further include a first key encryption module, an initiator authorized ciphertext uplink module, a first key decryption module, an associated transaction information update module, and an associated transaction update upload module. The first key encryption module can be configured to encrypt the first key according to the initiator data encryption public key to obtain an initiator associated transaction authorization ciphertext; the initiator authorization ciphertext uplink module may be configured to upload an initiator associated transaction authorization ciphertext to the blockchain; the first key decryption module may be configured to decrypt the initiator associated transaction authorization ciphertext on the blockchain using the initiator data decryption private key corresponding to the initiator data encryption public key in response to the associated transaction update request, so as to obtain a first key; the associated transaction information updating module can be configured to encrypt updated associated transaction information in the associated transaction updating request by using the first key to obtain an associated transaction updating ciphertext; the association transaction update upload module may be configured to upload the association transaction update cryptogram to the blockchain.
In an exemplary embodiment, the associated transaction initiating device 2310 may further include a target association relationship determination module, a target association contract generation module, a second key generation module, an associated contract encryption module, an associated contract reception authorization module, and an associated contract authorization upload module. The target association determination module may be configured to determine a target association from the blockchain; the target association contract generation module can be configured to generate an association contract corresponding to the target association relationship, wherein the association contract comprises the target association contract; the second key generation module may be configured to generate a second key; the associated contract encryption module may be configured to encrypt associated contract information of the associated contract using the second key to generate an associated contract ciphertext; the associated contract receiving and authorizing module can be configured to encrypt the second key according to the receiver data encryption public key to obtain a receiver associated contract authorization ciphertext; the association contract authorization upload module may be configured to upload the association contract ciphertext and the recipient association contract authorization ciphertext to the blockchain.
In an exemplary embodiment, the associated transaction initiation device 2310 can also include an associated contract initiation authorization module. The associated contract initiating authorization module can be configured to encrypt the second key according to the initiator data encryption public key to obtain an initiator associated contract authorization ciphertext; the correlation contract authorization uploading module can also be configured to upload the correlation contract authorization ciphertext of the initiator to the block chain; wherein determining the target association contract may comprise: decrypting the initiator associated contract authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a second key; decrypting the associated contract ciphertext by using the second key to obtain associated contract information; a target associated contract is determined from the associated contract information.
In an exemplary embodiment, the association transaction initiating device 2310 may further include a received object determining module, an association relationship generating module, a third key generating module, an association information encrypting module, an association information receiving authorization module, and an association relationship authorization uplink module. The received object determination module may be configured to determine a received object from the blockchain; the incidence relation generating module can be configured to generate incidence relations corresponding to the receiving objects, wherein the incidence relations comprise target incidence relations; the third key generation module may be configured to generate a third key; the association information encryption module can be configured to encrypt association relationship information of the association relationship by using a third key to generate an association relationship ciphertext; the associated information receiving authorization module can be configured to encrypt the third key according to the receiver data encryption public key to obtain a receiver association relation authorization ciphertext; the association authorization uplink module may be configured to upload the association ciphertext and the recipient association authorization ciphertext to the blockchain.
In an exemplary embodiment, the association transaction initiating device 2310 may further include an association relationship initiation authorization module. The incidence relation initiating authorization module can be configured to encrypt the third secret key according to the initiator data encryption public key to obtain an initiator incidence relation authorization ciphertext; the incidence relation authorization uplink module can also be configured to upload the incidence contract ciphertext and the initiator incidence relation authorization ciphertext to the block chain; determining the target association relationship from the blockchain may include: decrypting the initiator incidence relation authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a third key; decrypting the incidence relation ciphertext by using the third key to obtain incidence relation information; and determining the target incidence relation from the incidence relation information.
In an exemplary embodiment, the associated transaction initiating device 2310 may be further configured to generate a fourth key; encrypting the initiator object information of the initiator object according to the fourth key to generate an initiator registration information ciphertext; encrypting the fourth key according to the receiver data encryption public key to generate receiver registration information authorization information; and signing the object identifier of the initiating object, the initiator encrypted public key, the initiator signature public key, the initiator registration information ciphertext and the receiver registration information authorization information according to the initiator signature private key to generate initiator target registration information and upload the initiator target registration information to the block chain.
In an exemplary embodiment, the associated transaction receiving device 2320 further includes an initiator public signature key obtaining module and an initiator signature verification module. The initiator signature public key acquisition module may be configured to acquire an initiator signature public key of the initiator on the blockchain according to the object identifier of the initiator; the initiator signature verification module can be configured to perform signature verification on the receiver associated transaction signature authorization ciphertext on the blockchain according to the initiator signature public key to obtain the receiver associated transaction authorization ciphertext.
In an exemplary embodiment, the associated transaction receiving device 2320 may further include an initiator target registration information obtaining module, an initiator signature verifying module, a fourth key obtaining module, and an initiator object information obtaining module. The initiator target registration information acquisition module can be configured to acquire initiator target label book information of the initiator object on the block chain according to the object identifier of the initiator object, wherein the initiator target label book information comprises the object identifier of the initiator object, an initiator encryption public key, an initiator signature public key, an initiator registration information ciphertext and receiver registration information authorization information; the initiator signature verification module can be configured to obtain an initiator signature public key if the initiator target registration information signature verification is successful according to the initiator signature public key; the fourth key obtaining module may be configured to respond to the initiation object information obtaining request, decrypt the receiver registration information authorization information according to the receiver data decryption private key, and obtain a fourth key; the initiator object information obtaining module may be configured to obtain the initiator object information by decrypting the initiator registration information ciphertext according to the fourth key.
FIG. 24 illustrates a schematic structural diagram of a computer system suitable for use in implementing the electronic device of an embodiment of the present disclosure. It should be noted that the computer system 2400 of the electronic device shown in fig. 24 is only an example, and should not bring any limitations to the functions and the scope of the application of the embodiments of the present disclosure.
As shown in fig. 24, the computer system 2400 includes a Central Processing Unit (CPU)2401, which can perform various appropriate actions and processes in accordance with a program stored in a Read Only Memory (ROM)2402 or a program loaded from a storage portion 2408 into a Random Access Memory (RAM) 2403. In the RAM 2403, various programs and data necessary for system operation are also stored. The CPU 2401, ROM 2402, and RAM 2403 are connected to each other through a bus 2404. An input/output (I/O) interface 2405 is also connected to bus 2404.
The following components are connected to I/O interface 2405: an input portion 2406 including a keyboard, a mouse, and the like; an output portion 2407 including a display such as a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, and a speaker; a storage portion 2408 including a hard disk and the like; and a communication section 2409 including a network interface card such as a LAN card, a modem, or the like. The communication section 2409 performs communication processing via a network such as the internet. A driver 2410 is also connected to the I/O interface 2405 as needed. A removable medium 2411 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is mounted on the drive 2410 as necessary, so that a computer program read out therefrom is installed into the storage portion 2408 as necessary.
In particular, the processes described below with reference to the flowcharts may be implemented as computer software programs, according to embodiments of the present disclosure. For example, embodiments of the present disclosure include a computer program product comprising a computer program embodied on a computer readable medium, the computer program comprising program code for performing the method illustrated in the flow chart. In such embodiments, the computer program may be downloaded and installed from a network via communications portion 2409, and/or installed from removable media 2411. The computer program executes various functions defined in the system of the present application when executed by a Central Processing Unit (CPU) 2401.
It should be noted that the computer readable media shown in the present disclosure may be computer readable signal media or computer readable storage media or any combination of the two. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples of the computer readable storage medium may include, but are not limited to: an electrical connection having at least one wire, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the present disclosure, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. In contrast, in the present disclosure, a computer-readable signal medium may include a propagated data signal with computer-readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wire, fiber optic cable, RF, etc., or any suitable combination of the foregoing.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises at least one executable instruction for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams or flowchart illustration, and combinations of blocks in the block diagrams or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The modules described in the embodiments of the present disclosure may be implemented by software, or may be implemented by hardware, and the described modules may also be disposed in a processor. Wherein the names of the modules do not in some cases constitute a limitation of the module itself.
As another aspect, the present application also provides a computer-readable medium, which may be contained in the electronic device described in the above embodiments; or may exist separately without being assembled into the electronic device. The computer readable medium carries one or more programs which, when executed by an electronic device, cause the electronic device to implement the method as described in the embodiments below. For example, the electronic device may implement various steps shown in fig. 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 16, 17, 18, 19, 20, 21, or 22.
It should be noted that although in the above detailed description several modules of the device for action execution are mentioned, this division is not mandatory. Indeed, the features and functionality of two or more of the modules described above may be embodied in one module, in accordance with embodiments of the present disclosure. Conversely, the features and functions of one module described above may be further divided into embodiments by a plurality of modules.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, the technical solution according to the embodiments of the present disclosure may be embodied in the form of a software product, which may be stored in a non-volatile storage medium (which may be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to enable a computing device (which may be a personal computer, a server, a touch terminal, or a network device, etc.) to execute the method according to the embodiments of the present disclosure.
Other embodiments of the disclosure will be apparent to those skilled in the art from consideration of the specification and practice of the disclosure disclosed herein. This application is intended to cover any variations, uses, or adaptations of the disclosure following, in general, the principles of the disclosure and including such departures from the present disclosure as come within known or customary practice within the art to which the disclosure pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the disclosure being indicated by the following claims.
It will be understood that the present disclosure is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the present disclosure is limited only by the appended claims.

Claims (17)

1. An associated data processing method, comprising:
determining a target association contract;
generating associated transaction information corresponding to the target associated contract;
acquiring a receiver data encryption public key of a receiving object according to an object identifier of the receiving object; generating a first key;
encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext;
encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver;
receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve an associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext;
wherein the method further comprises: generating a fourth key; encrypting the initiator object information of the initiator object according to the fourth key to generate an initiator registration information ciphertext; encrypting the fourth key according to the receiver data encryption public key to generate receiver registration information authorization information; and signing the object identifier of the initiating object, the initiator encrypted public key, the initiator signature public key, the initiator registration information ciphertext and the receiver registration information authorization information according to the initiator signature private key to generate initiator target registration information and upload the initiator target registration information to the block chain.
2. The method of claim 1, further comprising:
signing the receiver associated transaction authorization ciphertext according to the initiator signature private key to generate a receiver associated transaction signature authorization ciphertext;
and uploading the associated transaction ciphertext and the receiver associated transaction signature authorization ciphertext to a block chain.
3. The method of claim 2, further comprising:
encrypting the first key according to the initiator data encryption public key to obtain an initiator associated transaction authorization ciphertext;
uploading the initiator associated transaction authorization ciphertext to the blockchain;
in response to the associated transaction updating request, decrypting the initiator associated transaction authorization ciphertext on the block chain by using an initiator data decryption private key corresponding to the initiator data encryption public key to obtain the first key;
encrypting the updated associated transaction information in the associated transaction update request by using the first key to obtain an associated transaction update ciphertext;
and uploading the associated transaction update ciphertext to the blockchain.
4. The method of claim 1, further comprising:
determining a target association relationship from the block chain;
generating an association contract corresponding to the target association relation, wherein the association contract comprises the target association contract;
generating a second key;
encrypting the associated contract information of the associated contract by using the second key to generate an associated contract ciphertext;
encrypting the second key according to the data encryption public key of the receiver to obtain an associated contract authorization ciphertext of the receiver;
and uploading the association contract ciphertext and the receiver association contract authorization ciphertext to the blockchain.
5. The method of claim 4, further comprising:
encrypting the second key according to the initiator data encryption public key to obtain an initiator associated contract authorization ciphertext;
uploading the initiator association contract authorization ciphertext to the block chain;
wherein, determining the target association contract comprises:
decrypting the initiator associated contract authorization ciphertext by using an initiator data decryption private key corresponding to the initiator data encryption public key to obtain the second key;
decrypting the associated contract ciphertext by using the second key to obtain associated contract information;
determining the target associated contract from the associated contract information.
6. The method of claim 4, further comprising:
determining the receiving object from the block chain;
generating an incidence relation corresponding to the receiving object, wherein the incidence relation comprises the target incidence relation;
generating a third key;
encrypting the incidence relation information of the incidence relation by using the third key to generate an incidence relation ciphertext;
encrypting the third key according to the receiver data encryption public key to obtain a receiver association relation authorization ciphertext;
and uploading the association relation ciphertext and the receiver association relation authorization ciphertext to the block chain.
7. The method of claim 6, further comprising:
encrypting the third key according to the initiator data encryption public key to obtain an initiator incidence relation authorization ciphertext;
uploading the association contract ciphertext and the initiator association relation authorization ciphertext to the blockchain;
determining a target association relationship from the blockchain comprises:
decrypting the initiator incidence relation authorization ciphertext by using an initiator data decryption private key corresponding to the initiator data encryption public key to obtain the third key;
decrypting the incidence relation ciphertext by using the third key to obtain incidence relation information;
and determining the target incidence relation from the incidence relation information.
8. An associated data processing method, comprising:
decrypting the receiver-associated transaction authorization ciphertext according to a receiver data decryption private key corresponding to the receiver data encryption public key to obtain a first key;
decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information;
generating associated transaction consent information in response to the associated transaction information;
signing the associated transaction agreement information, the associated transaction information and the object identification of the receiving object according to a signature private key of a receiving party to generate an associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information;
wherein the method further comprises: acquiring an initiator signature public key of an initiating object on a block chain according to an object identifier of the initiating object; carrying out signature verification on the receiver associated transaction signature authorization ciphertext on the block chain according to the initiator signature public key to obtain the receiver associated transaction authorization ciphertext;
obtaining the initiator signature public key of the initiator on the blockchain according to the object identifier of the initiator comprises: acquiring initiator target label book information of the initiator object on the block chain according to the object identifier of the initiator object, wherein the initiator target label book information comprises the object identifier of the initiator object, the initiator encryption public key, the initiator signature public key, the initiator registration information ciphertext and the receiver registration information authorization information; if the signature verification of the target registration information of the initiator is successful according to the signature public key of the initiator, obtaining the signature public key of the initiator;
the method further comprises the following steps: responding to the request for obtaining the object information, decrypting the authorization information of the registration information of the receiver according to the private key for decrypting the data of the receiver, and obtaining a fourth key; and decrypting the initiator registration information ciphertext according to the fourth key to obtain initiator object information.
9. An associated data processing system, comprising:
an association transaction initiating device configured to determine a target association contract; generating associated transaction information corresponding to the target associated contract; acquiring a receiver data encryption public key of a receiving object according to an object identifier of the receiving object; generating a first key; encrypting the associated transaction information by using the first key to generate an associated transaction ciphertext; encrypting the first key according to the data encryption public key of the receiver to obtain an associated transaction authorization ciphertext of the receiver; receiving an associated transaction agreement signature sent by the receiving object in response to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext to achieve an associated transaction corresponding to the associated transaction information, wherein the associated transaction agreement signature is generated according to the associated transaction ciphertext and the receiver associated transaction authorization ciphertext;
the associated transaction receiving device is configured to decrypt the receiver associated transaction authorization ciphertext according to a receiver data decryption private key corresponding to the receiver data encryption public key to obtain a first key; decrypting the associated transaction ciphertext according to the first key to obtain associated transaction information; generating associated transaction consent information in response to the associated transaction information; signing the associated transaction agreement information, the associated transaction information and the object identification of the second object according to a signature private key of a receiver to generate the associated transaction agreement signature so as to achieve the associated transaction corresponding to the associated transaction information;
wherein the associated transaction initiating device is further configured to generate a fourth key; encrypting the initiator object information of the initiator object according to the fourth key to generate an initiator registration information ciphertext; encrypting the fourth key according to the receiver data encryption public key to generate receiver registration information authorization information; signing the object identification of the initiating object, the encrypting public key of the initiating object, the signing public key of the initiating object, the registration information ciphertext of the initiating object and the authorization information of the registration information of the receiving object according to the signing private key of the initiating object to generate target registration information of the initiating object and upload the target registration information to a block chain;
the associated transaction receiving device further includes: the system comprises an initiator signature public key acquisition module and an initiator signature verification module, wherein the initiator signature public key acquisition module is configured to acquire an initiator signature public key of an initiator on a block chain according to an object identifier of the initiator; the initiator signature verification module is configured to perform signature verification on the receiver associated transaction signature authorization ciphertext on the block chain according to the initiator signature public key to obtain the receiver associated transaction authorization ciphertext;
the associated transaction receiving device also comprises an initiator target registration information acquisition module, an initiator signature verification module, a fourth key acquisition module and an initiator object information acquisition module; the initiator target registration information obtaining module may be configured to obtain initiator target tag book information of the initiator object on the block chain according to the object identifier of the initiator object, where the initiator target tag book information includes the object identifier of the initiator object, the initiator encrypted public key, the initiator signature public key, the initiator registration information ciphertext, and the receiver registration information authorization information; the initiator signature verification module can be configured to obtain the initiator signature public key if the initiator target registration information signature verification is successful according to the initiator signature public key; the fourth key obtaining module may be configured to respond to the initiation object information obtaining request, decrypt the receiver registration information authorization information according to the receiver data decryption private key, and obtain a fourth key; the initiator object information obtaining module may be configured to decrypt the initiator registration information ciphertext according to the fourth key to obtain initiator object information.
10. The system of claim 9, wherein the associated transaction initiating device further comprises an associated transaction authorization cryptogram signature module and an associated transaction uplink data module;
the associated transaction authorization ciphertext signature module is configured to sign the associated transaction authorization ciphertext of the receiving party according to the signature private key of the initiating party and generate the associated transaction signature authorization ciphertext of the receiving party;
the associated transaction data uplink module is configured to upload the associated transaction ciphertext and the recipient associated transaction signature authorization ciphertext to a block chain.
11. The system of claim 10, wherein the associated transaction initiating device further comprises a first key encryption module, an initiator authorization ciphertext uplink module, a first key decryption module, an associated transaction information update module, and an associated transaction update upload module;
the first secret key encryption module is configured to encrypt the first secret key according to the initiator data encryption public key to obtain an initiator associated transaction authorization ciphertext;
the initiator authorization ciphertext uplink module is configured to upload the initiator associated transaction authorization ciphertext to the blockchain;
the first key decryption module is configured to respond to the associated transaction updating request, decrypt the initiator associated transaction authorization ciphertext on the blockchain by using an initiator data decryption private key corresponding to the initiator data encryption public key to obtain the first key;
the associated transaction information updating module is configured to encrypt updated associated transaction information in the associated transaction updating request by using the first key to obtain an associated transaction updating ciphertext;
the association transaction update uploading module is configured to upload the association transaction update ciphertext to a blockchain.
12. The system of claim 9, wherein the associated transaction initiating means further comprises a target association relationship determining module, a target association contract generating module, a second key generating module, an association contract encrypting module, an association contract receiving authorization module, and an association contract authorization uploading module;
the target incidence relation determining module is configured to determine a target incidence relation from the blockchain;
the target association contract generation module is configured to generate an association contract corresponding to the target association relation, wherein the association contract comprises the target association contract;
the second key generation module is configured to generate a second key;
the associated contract encryption module is configured to encrypt associated contract information of the associated contract by using the second key to generate an associated contract ciphertext;
the associated contract receiving and authorizing module is configured to encrypt the second key according to the data encryption public key of the receiver to obtain an associated contract authorization ciphertext of the receiver;
the association contract authorization uploading module is configured to upload the association contract ciphertext and the recipient association contract authorization ciphertext to the blockchain.
13. The system of claim 12, wherein the associated transaction initiating means further comprises an associated contract initiation authorization module; the associated contract initiating authorization module is configured to encrypt the second key according to the initiator data encryption public key to obtain an initiator associated contract authorization ciphertext;
the correlation contract authorization uploading module is also configured to upload the correlation contract authorization ciphertext of the initiator to the block chain;
wherein the associated transaction initiating device, in determining the target associated contract, is configured to: decrypting the initiator associated contract authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a second key; decrypting the associated contract ciphertext by using the second key to obtain associated contract information; determining the target associated contract from the associated contract information.
14. The system of claim 12, wherein the associated transaction initiating device further comprises a received object determining module, an association relationship generating module, a third key generating module, an association information encrypting module, an association information receiving authorization module and an association relationship authorization uplink module;
the received object determination module is configured to determine a received object from the blockchain;
the incidence relation generating module is configured to generate incidence relation corresponding to the receiving object, and the incidence relation comprises target incidence relation;
the third key generation module is configured to generate a third key;
the incidence information encryption module is configured to encrypt incidence relation information of the incidence relation by using a third key to generate an incidence relation ciphertext;
the associated information receiving authorization module is configured to encrypt the third key according to the receiver data encryption public key to obtain a receiver association relation authorization ciphertext;
the association relation authorization uplink module is configured to upload the association relation ciphertext and the receiver association relation authorization ciphertext to the block chain.
15. The system of claim 14, wherein the associate transaction initiating device further comprises an association relationship initiating authorization module;
the incidence relation initiating authorization module is configured to encrypt the third secret key according to the initiator data encryption public key to obtain an initiator incidence relation authorization ciphertext;
the incidence relation authorization uplink module is also configured to upload the incidence contract ciphertext and the initiator incidence relation authorization ciphertext to the block chain; the target association determination module is configured to: decrypting the initiator incidence relation authorization ciphertext by using the initiator data decryption private key corresponding to the initiator data encryption public key to obtain a third key; decrypting the incidence relation ciphertext by using the third key to obtain incidence relation information; and determining the target incidence relation from the incidence relation information.
16. An electronic device, comprising:
at least one processor;
storage means for storing at least one program;
when executed by the at least one processor, cause the at least one processor to implement the method of any one of claims 1-8.
17. A computer-readable medium, on which a computer program is stored, which, when being executed by a processor, carries out the method according to any one of claims 1-8.
CN202010778780.8A 2020-08-05 2020-08-05 Associated data processing method and device, electronic equipment and computer readable medium Active CN111915302B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010778780.8A CN111915302B (en) 2020-08-05 2020-08-05 Associated data processing method and device, electronic equipment and computer readable medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010778780.8A CN111915302B (en) 2020-08-05 2020-08-05 Associated data processing method and device, electronic equipment and computer readable medium

Publications (2)

Publication Number Publication Date
CN111915302A CN111915302A (en) 2020-11-10
CN111915302B true CN111915302B (en) 2021-08-03

Family

ID=73287919

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010778780.8A Active CN111915302B (en) 2020-08-05 2020-08-05 Associated data processing method and device, electronic equipment and computer readable medium

Country Status (1)

Country Link
CN (1) CN111915302B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115344893B (en) * 2022-08-30 2023-03-28 深圳市创富金科技有限公司 Transaction method, device and equipment based on character feature recognition
CN116112293B (en) * 2023-04-12 2023-06-23 中国信息通信研究院 Block chain-based data trusted transaction method and device, equipment and medium

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2738722A1 (en) * 2012-11-29 2014-06-04 Cognizant Technology Solutions India Pvt. Ltd. Method and system for providing secure end-to-end authentication and authorization of electronic transactions
CN110798315A (en) * 2019-11-11 2020-02-14 腾讯科技(深圳)有限公司 Data processing method and device based on block chain and terminal

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11494761B2 (en) * 2015-11-06 2022-11-08 Cable Television Laboratories, Inc. Systems and methods for digital asset security ecosystems
CN109660485A (en) * 2017-10-10 2019-04-19 中兴通讯股份有限公司 A kind of authority control method and system based on the transaction of block chain
CN110059494B (en) * 2019-04-17 2020-11-03 深圳启元信息服务有限公司 Privacy protection method for block chain transaction data and block chain system
CN111080295B (en) * 2019-12-04 2024-04-09 腾讯科技(深圳)有限公司 Electronic contract processing method and device based on blockchain
CN110930152B (en) * 2019-12-04 2023-05-26 腾讯科技(深圳)有限公司 Data processing method based on block chain and related equipment
CN111080299B (en) * 2019-12-27 2020-12-15 广州骏伯网络科技有限公司 Anti-repudiation method for transaction information, client and server

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2738722A1 (en) * 2012-11-29 2014-06-04 Cognizant Technology Solutions India Pvt. Ltd. Method and system for providing secure end-to-end authentication and authorization of electronic transactions
CN110798315A (en) * 2019-11-11 2020-02-14 腾讯科技(深圳)有限公司 Data processing method and device based on block chain and terminal

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
满足可控关联性的合作群签名方案;柳欣,徐秋亮,张波;《山东大学学报(理学版)》;20181231(第09期);全文 *

Also Published As

Publication number Publication date
CN111915302A (en) 2020-11-10

Similar Documents

Publication Publication Date Title
US11533164B2 (en) System and method for blockchain-based cross-entity authentication
US11025435B2 (en) System and method for blockchain-based cross-entity authentication
EP3788523B1 (en) System and method for blockchain-based cross-entity authentication
WO2021000420A1 (en) System and method for blockchain-based cross-entity authentication
CN111431713B (en) Private key storage method and device and related equipment
CN110601816B (en) Lightweight node control method and device in block chain system
CN109756582A (en) Information recording method, device, node and storage medium in block chain network
JP2023535013A (en) Quantum secure payment system
CN111476572B (en) Block chain-based data processing method, device, storage medium and equipment
US20220303258A1 (en) Computer-implemented system and method
CN110189184B (en) Electronic invoice storage method and device
CN113052599B (en) Method, device, equipment and system for generating, verifying and storing transaction certificates
CN111369236A (en) Data management method and device applied to block chain
CN115203749B (en) Data transaction method and system based on block chain
CN112560072B (en) Key management method, device, medium and equipment based on block chain
CN114270780A (en) Gateway agnostic tokenization
CN111915302B (en) Associated data processing method and device, electronic equipment and computer readable medium
CN110910109A (en) Electronic resource transfer method and device based on block chain
CN115705601A (en) Data processing method and device, computer equipment and storage medium
CN113159767A (en) Transfer processing method, device and system based on block chain
US20230412404A1 (en) Systems and methods for mitigating network congestion on blockchain networks by supporting blockchain operations through off-chain interactions
KR20230040996A (en) Systems and methods for encrypted dark messaging continuity and bid negotiation over peer-to-peer (P2P) communication
US20230109125A1 (en) Automated Transactions Across Multiple Blockchains with Cryptocurrency Swaps
US20230421540A1 (en) Systems and methods for generating secure, encrypted communications using multi-party computations in order to perform blockchain operations in decentralized applications
US20230421397A1 (en) Systems and methods for performing blockchain operations using multi-party computation cohort management groupings

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant