[go: up one dir, main page]

CN106534097B - Permission method of control and system based on the transaction of block chain - Google Patents

Permission method of control and system based on the transaction of block chain Download PDF

Info

Publication number
CN106534097B
CN106534097B CN201610960002.4A CN201610960002A CN106534097B CN 106534097 B CN106534097 B CN 106534097B CN 201610960002 A CN201610960002 A CN 201610960002A CN 106534097 B CN106534097 B CN 106534097B
Authority
CN
China
Prior art keywords
node
information
authorization
transacted
decryption
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610960002.4A
Other languages
Chinese (zh)
Other versions
CN106534097A (en
Inventor
陆陈帆
陆陈一帆
黄宇翔
张宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai one way link chain Technology Co.,Ltd.
OneConnect Financial Technology Co Ltd Shanghai
Original Assignee
Shanghai Billion Through Block Chain Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Billion Through Block Chain Technology Co Ltd filed Critical Shanghai Billion Through Block Chain Technology Co Ltd
Priority to CN201610960002.4A priority Critical patent/CN106534097B/en
Publication of CN106534097A publication Critical patent/CN106534097A/en
Priority to PCT/CN2017/091250 priority patent/WO2018076761A1/en
Application granted granted Critical
Publication of CN106534097B publication Critical patent/CN106534097B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/104Peer-to-peer [P2P] networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Business, Economics & Management (AREA)
  • Computer Hardware Design (AREA)
  • Accounting & Taxation (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Storage Device Security (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Computer And Data Communications (AREA)

Abstract

The present invention relates to a kind of permission methods of control based on the transaction of block chain and system, this method to include:Each node for block chain network builds authorization process system and disposes intelligent contract;If a publisher has encrypted information to be transacted that mandate is decrypted at least one authorized party, then the authorization process system on publisher node obtains public encryption/decryption parameter corresponding with each authorized party, and the secret key of information to be transacted is encrypted by security parameter corresponding with authorized party, public encryption/decryption parameter and security parameter are issued in block chain network using intelligent contract;The authorization process system of publisher node issues information to be transacted by intelligent contract to each node of block chain network;After authorization node receives information to be transacted, the secret key that authorization process system treats Transaction Information using deciphering parameter is decrypted, and information to be transacted is decrypted based on the secret key after decryption and public encryption/decryption parameter.The present invention can control effectively to the permission of issued transaction in block chain network.

Description

Permission method of control and system based on the transaction of block chain
Technical field
The present invention relates to block chain technical field more particularly to a kind of permission method of control merchandised based on block chain and it is System.
Background technology
Block chain is substantially a distributed database, and the information above block chain will be by P2P (Peer-to- Peer, equity) network sharing is to going on all nodes.The problem of this Information Sharing characteristic of block chain, is:If it participates in Square A wants one product of issue and is assigned to participant B and participant C, then other participants on block chain are to have no right to know Any information of this product, when not improving, the block chain as distributed database is difficult to realize the function.It is existing A better simply solution is that data call is controlled plus permission on intelligent contract in technology, such as participant D Want to read participant A issues by API (Application Programming Interface, application programming interface) Product information when, intelligent contract finds that D does not have specified power and rejects application, however, being asked existing for this solution Topic is:If participant D possesses interdependent node, the information that non-encrypted state is in node database can be directly read, this Sample participant D can still read the product information of participant A issues, unless in being protected using tamper resistant hardware or node being implemented Heart management (such as cloud management) is not so difficult to be protected by authorization implementation information.Therefore, how decentralization block chain In network realize issued transaction effective rights control have become one it is urgently to be resolved hurrily the technical issues of.
The content of the invention
It is an object of the invention to provide a kind of permission methods of control and system based on the transaction of block chain, it is intended to block The permission of issued transaction control effectively in chain network.
To achieve the above object, the present invention provides a kind of permission method of control based on the transaction of block chain, described to be based on area The permission method of control of block chain transaction includes:
S1 is each node structure of block chain network for the permission processing system of encryption information issue and encryption and decryption processing System, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
S2 a, if publisher has encrypted information to be transacted that mandate, publisher is decrypted at least one authorized party Authorization process system on corresponding publisher node obtains public encryption/decryption parameter corresponding with each authorized party, and by with mandate The corresponding security parameter in side encrypts the secret key of the information to be transacted, is sent out using the intelligent contract in the block chain network Public encryption/decryption parameter and security parameter described in cloth;
S3, the authorization process system of the publisher node is by the information to be transacted by intelligent contract to the block chain Each node issue of network;
S4, the corresponding authorization node of the authorized party are described after the information to be transacted is received by intelligent contract The authorization process system of authorization node is using deciphering parameter corresponding with the security parameter to the secret key of the information to be transacted It is decrypted, the information to be transacted is decrypted based on the secret key after decryption and the public encryption/decryption parameter, waits to hand over by described Mandate is decrypted to the authorization node in easy information.
Preferably, the public encryption/decryption parameter includes cryptographic protocol, is further included after the step S4:
S5, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the authorization node Authorization process system be based on the cryptographic protocol and secret key pair described in feedback information be encrypted, and utilize the intelligent contract Each node of encrypted feedback information to the block chain network is broadcasted;
S6, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted;
S7, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node is refused Trade transactions corresponding to the authorization node transaction information to be transacted are performed absolutely.
Preferably, the public encryption/decryption parameter includes cryptographic protocol, is further included after the step S4:
S8, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the authorization node Public key of the authorization process system based on the cryptographic protocol and the publisher node feedback information is encrypted, and profit Encrypted feedback information is broadcasted to each node of block chain network with intelligent contract;
S9, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted;
S10, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node is refused Trade transactions corresponding to the authorization node transaction information to be transacted are performed absolutely.
Preferably, further included after the step S4:
If the intelligent contract of no authorization node sends to publisher node for the encrypted information to be transacted and carries identity The decryption and authorization request of authentication information, then the authorization process system of the publisher node is used based on the authentication information Family authentication;
If authentication fails, decryption and authorization described in the publisher node refusal respond is asked;
If authentication success, the publisher node obtain the handling result that user is directed to decryption and authorization request;
If the handling result is asks by the decryption and authorization, the authorization process system of the publisher node utilizes The corresponding security parameter of the no authorization node encrypts the secret key, and the intelligence that encrypted secret key is passed through to publisher node is closed Each node of the block chain network is about distributed to, the letter to be transacted is decrypted for the data permission system of the no authorization node Breath, mandate is decrypted by the information to be transacted to the no authorization node;
If the handling result is refuses the decryption and authorization request, the publisher node refusal is waited to hand over for encrypted Mandate is decrypted to the no authorization node in easy information.
To achieve the above object, it is described to be based on the present invention also provides a kind of permission control system based on the transaction of block chain The permission control system of block chain transaction includes:
Module is built, for what is handled for each node of block chain network structure for encryption information issue and encryption and decryption Authorization process system, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
First release module, if having encrypted information to be transacted that at least one authorized party is decrypted for a publisher It authorizes, then the authorization process system on the corresponding publisher node of publisher obtains public encryption and decryption ginseng corresponding with each authorized party Number, and by the secret key of security parameter corresponding with the authorized party encryption information to be transacted, using the intelligent contract in institute It states and the public encryption/decryption parameter and security parameter is issued in block chain network;
The information to be transacted is passed through intelligent conjunction by the second release module for the authorization process system of the publisher node About issued to each node of the block chain network;
Deciphering module is receiving the letter to be transacted for the corresponding authorization node of the authorized party by intelligent contract After breath, the authorization process system of the authorization node utilizes deciphering parameter corresponding with the security parameter to the letter to be transacted The secret key of breath is decrypted, and the information to be transacted is decrypted based on the secret key after decryption and the public encryption/decryption parameter, will Mandate is decrypted to the authorization node in the information to be transacted.
Preferably, the public encryption/decryption parameter includes cryptographic protocol, the permission control system based on the transaction of block chain System further includes:
First encrypting module, for the corresponding feedback information of information to be transacted after authorization node generation decryption Afterwards, the authorization process system of the authorization node is encrypted based on feedback information described in the cryptographic protocol and secret key pair, and Each node of encrypted feedback information to the block chain network is broadcasted using the intelligent contract;
First transaction modules are the corresponding confirmation Transaction Information of the information to be transacted for the feedback information, then institute It states publisher node and performs trade transactions corresponding to the authorization node transaction information to be transacted;
First refusal module, if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information, Publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
Preferably, the public encryption/decryption parameter includes cryptographic protocol, the permission control system based on the transaction of block chain System further includes:
Second encrypting module, for the corresponding feedback information of information to be transacted after authorization node generation decryption Afterwards, public key of the authorization process system of the authorization node based on the cryptographic protocol and the publisher node believes the feedback Breath is encrypted, and is broadcasted encrypted feedback information to each node of block chain network using intelligent contract;
Second transaction modules, if being the corresponding confirmation Transaction Information of the information to be transacted for the feedback information, The publisher node performs trade transactions corresponding to the authorization node transaction information to be transacted;
Second refusal module, if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information, Publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
Preferably, the permission control system based on the transaction of block chain further includes:
Authentication module, if being directed to the encrypted information to be transacted to issue for the intelligent contract without authorization node Node sends the decryption and authorization request for carrying authentication information, then the authorization process system of the publisher node is based on the body Part authentication information carries out authenticating user identification;
3rd refusal module, if failing for authentication, decryption and authorization described in the publisher node refusal respond please It asks;
Acquisition module, if for authentication success, the publisher node obtains user please for the decryption and authorization The handling result asked;
Authorization module, if for the handling result to be asked by the decryption and authorization, the power of the publisher node Processing system is limited using the no authorization node corresponding security parameter encryption secret key, and encrypted secret key is passed through into hair The intelligent contract of cloth node is distributed to each node of the block chain network, for the data permission system solution of the no authorization node Mandate is decrypted to the no authorization node in the information to be transacted by the close information to be transacted;
Refuse authorization module, if being asked for the handling result to refuse the decryption and authorization, the publisher node Mandate is decrypted to the no authorization node for encrypted information to be transacted in refusal.
The beneficial effects of the invention are as follows:The present invention builds authorization process system and deployment in each node of block chain network Intelligent contract carries out information sharing, if a hair by the authorization process system processing authority control of each node and by intelligent contract Cloth side has encrypted information to be transacted that mandate is decrypted at least one authorized party, then publisher node is corresponding using authorized party Security parameter encrypts the secret key of information to be transacted, then issues public encryption/decryption parameter and security parameter by intelligent contract, awards The secret key that power node treats Transaction Information using deciphering parameter corresponding with security parameter is decrypted, and may finally pass through secret key Encryption/decryption parameter decrypts information to be transacted together, realizes and carries out information to be transacted from publisher node at least one authorization node Decryption and authorization, authorization node can obtain reading information to be transacted and can perform the permission of subsequent transaction, in addition to authorization node Other nodes there is no relevant permission, can control effectively to the permission of issued transaction in block chain network, improve system System reliability.
Description of the drawings
Fig. 1 is that the present invention is based on the flow diagrams of the permission method of control first embodiment of block chain transaction;
Fig. 2 is the interaction schematic diagram of embodiment shown in FIG. 1;
Fig. 3 is that the present invention is based on the flow diagrams of the permission method of control second embodiment of block chain transaction;
Fig. 4 is that the present invention is based on the flow diagrams of the permission method of control 3rd embodiment of block chain transaction;
Fig. 5 is that the present invention is based on the structure diagrams of the permission control system first embodiment of block chain transaction;
Fig. 6 is that the present invention is based on the structure diagrams of the permission control system second embodiment of block chain transaction;
Fig. 7 is that the present invention is based on the structure diagrams of the permission control system 3rd embodiment of block chain transaction.
Specific embodiment
The principle and features of the present invention will be described below with reference to the accompanying drawings, and the given examples are served only to explain the present invention, and It is non-to be used to limit the scope of the present invention.
As shown in Figure 1, Fig. 1 is the flow signal the present invention is based on one embodiment of permission method of control of block chain transaction Figure should be comprised the following steps based on the permission method of control of block chain transaction:
Step S1 is each node structure of block chain network at the permission of encryption information issue and encryption and decryption processing Reason system, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
In block chain network, a node corresponds to one or more intelligent contract, when a parameter transaction passes to area When on the node of block chain, this parameter transaction can be recorded in the corresponding transaction journal of the node and be transmitted to simultaneously and the transaction The corresponding intelligent contract of parameter goes to run, by the code on the corresponding intelligent contract of the parameter transaction to itself number of intelligent contract According to being updated.
In the present embodiment, each node in block chain network builds what is handled for encryption information issue and encryption and decryption Authorization process system, each authorization process system correspondence is independently of on each node, mainly for the treatment of matters are authorized, and in area For transferring the intelligent contract of encryption and decryption information, intelligent contract is mainly used to share letter in block chain network the deployment of block chain network Breath.
Step S2 if a publisher has encrypted information to be transacted that mandate is decrypted at least one authorized party, is sent out Authorization process system on the corresponding publisher node in cloth side obtains public encryption/decryption parameter corresponding with each authorized party, and by with The corresponding security parameter of authorized party encrypts the secret key of the information to be transacted, using the intelligent contract in the block chain network It is upper to issue the public encryption/decryption parameter and security parameter;
In the present embodiment, information to be transacted is encrypted information, and corresponding decryption protocol and secret key is needed to be decrypted. User can authorize relevant issues by the corresponding publisher node processing of publisher, and there are one the corresponding authorization nodes of authorized party or more It is a.Authorization process system on the corresponding publisher node of publisher obtains public encryption/decryption parameter corresponding with each authorized party, example Such as, public encryption/decryption parameter can be stored in a database, the authorization process system on publisher node by it is each it is public plus solution Close parameter corresponds to the authorization node of an authorized party.In addition, the corresponding security parameter of each authorization node, the security parameter with it is right The deciphering parameter answered is a pair of, and each node in block chain network can have corresponding security parameter and deciphering parameter, is protected Close parameter is disclosed part, and deciphering parameter is private part.The security parameter is, for example, the public key of authorization node, each Public key and private key in node are a key pair, wherein, public key is disclosed part, and private key is then private part.
If publisher has encrypted information to be transacted that mandate is decrypted at least one authorized party, due to security parameter It is disclosed part, therefore the authorization process system of publisher node can get the security parameter of each authorization node, then The secret key needed using the security parameter encryption information to be transacted of each authorization node in decryption.Public encryption/decryption parameter includes Analysis protocol, decryption protocol for example can be DES decryption protocols, AES decryption protocols, RSA decryption protocols etc..It is awarded for utilizing The encrypted secret key of security parameter of node is weighed, only has the deciphering parameter in the authorization node of the security parameter that could be solved It is close, and its encrypted secret key cannot be decrypted in other nodes, in such manner, it is possible to ensure that only authorization node could obtain To secret key.
In the present embodiment, from the intelligent contract of authorization node by public encryption/decryption parameter and security parameter to block chain network The issue of each node, it is public that all nodes in step 1 as shown in Figure 2, i.e. the block chain network can receive this Encryption/decryption parameter and security parameter, but only each authorization node could be decrypted to obtain secret key using corresponding deciphering parameter, Other nodes can not be decrypted due to not corresponding deciphering parameter.
Preferably, the intelligent contract of authorization node issues out public encryption/decryption parameter and security parameter by peer-to-peer network It goes, the user of each authorization node is then notified to read public encryption/decryption parameter and security parameter.
Step S3, the authorization process system of the publisher node is by the information to be transacted by intelligent contract to the area Each node issue of block chain network;
Step S4, the corresponding authorization node of the authorized party after the information to be transacted is received by intelligent contract, The authorization process system of the authorization node is using deciphering parameter corresponding with the security parameter to the information to be transacted Secret key is decrypted, and the information to be transacted is decrypted based on the secret key after decryption and the public encryption/decryption parameter, by described in Mandate is decrypted to the authorization node in information to be transacted.
Refering to step 2 shown in Fig. 2,3 and 4, information to be transacted is passed through intelligent conjunction by the authorization process system of publisher node It is about issued to each node of block chain network, each node can receive the encrypted information to be transacted.
In the present embodiment, if there is authorization node has read the public encryption/decryption parameter of publisher node issue and secrecy ginseng Number, since authorization node has the corresponding deciphering parameter of security parameter, the authorization process system of authorization node can be by this Secret key is decrypted in the corresponding deciphering parameter of security parameter.In addition, the authorization process system of authorization node is encrypted in reading After information to be transacted, it can utilize the secret key after decryption and public encryption/decryption parameter that the information to be transacted of reading is decrypted, Specifically, the information to be transacted of reading is decrypted using the decryption protocol in secret key and public encryption/decryption parameter so that award Power node can be decrypted after information to be transacted, realize information to be transacted from publisher node at least one authorization node Mandate is decrypted, that is to say, that only authorization node just has permission the information to be transacted for knowing publisher node issue, Jin Erneng Enough handle the relevant affairs of information to be transacted.
Compared with prior art, the present embodiment builds authorization process system and deployment intelligence in each node of block chain network Energy contract carries out information sharing, if an issue by the authorization process system processing authority control of each node and by intelligent contract Side has encrypted information to be transacted that mandate is decrypted at least one authorized party, then publisher node utilizes the corresponding guarantor of authorized party Close parameter encrypts the secret key of information to be transacted, then issues public encryption/decryption parameter and security parameter by intelligent contract, authorizes The secret key that node treats Transaction Information using deciphering parameter corresponding with security parameter is decrypted, may finally by secret key with Encryption/decryption parameter decrypts information to be transacted altogether, realizes and solves information to be transacted from publisher node at least one authorization node Close mandate, authorization node can obtain reading information to be transacted and can perform the permission of subsequent transaction, in addition to authorization node Other nodes do not have relevant permission, can control effectively to the permission of issued transaction in block chain network, improve system Reliability.
In a preferred embodiment, as shown in figure 3, on the basis of the embodiment of above-mentioned Fig. 1, public encryption/decryption parameter Including cryptographic protocol, further included after above-mentioned steps S4:
S5, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the authorization node Authorization process system be based on the cryptographic protocol and secret key pair described in feedback information be encrypted, and utilize the intelligent contract Each node of encrypted feedback information to the block chain network is broadcasted;
S6, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted;
S7, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node is refused Trade transactions corresponding to the authorization node transaction information to be transacted are performed absolutely.
In the present embodiment, after authorization node decrypts information to be transacted, that is, show that authorization node has obtained the letter to be transacted The associated rights (such as reading power etc.) of breath, and determine whether to be traded with regard to the associated rights, at this moment authorization node generates Corresponding feedback information.In order to which the feedback information is only disclosed to publisher node and each authorization node, so as to publisher node and Other each authorization nodes can know which node possesses the associated rights of information to be transacted, the permission processing of the authorization node System is encrypted based on the cryptographic protocol in public encryption/decryption parameter and secret key pair feedback information, cryptographic protocol be, for example, with it is upper The corresponding des encryption agreement of DES decryption protocols, AES decryption protocols, RSA decryption protocols stated, AES encryption agreement, rsa encryption Agreement etc..Then encrypted feedback information is broadcasted to each node of block chain network using intelligent contract, for Publisher node and other each authorization nodes read and decrypt feedback information.If feedback information corresponds to really for information to be transacted Recognize Transaction Information, then publisher node performs trade transactions corresponding with authorization node transaction information to be transacted;If feedback information For the corresponding refusal Transaction Information of information to be transacted, then the execution of publisher node refusal is corresponding with authorization node transaction information to be transacted Trade transactions.
The present embodiment encrypts feedback information in the management and control of permission, using secret key and cryptographic protocol so that only issue section Point and other each authorization nodes can know which node possesses the associated rights of information to be transacted, can be to block chain network The permission of middle issued transaction further carries out effective management and control.
In a preferred embodiment, as shown in figure 4, on the basis of the embodiment of above-mentioned Fig. 1, public encryption/decryption parameter Including cryptographic protocol, further included after above-mentioned steps S4:
S8, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the authorization node Public key of the authorization process system based on the cryptographic protocol and the publisher node feedback information is encrypted, and profit Encrypted feedback information is broadcasted to each node of block chain network with intelligent contract;
S9, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted;
S10, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node is refused Trade transactions corresponding to the authorization node transaction information to be transacted are performed absolutely.
In the present embodiment, after authorization node decrypts information to be transacted, that is, show that authorization node has obtained the letter to be transacted The associated rights (such as reading power etc.) of breath, and determine whether to be traded with regard to the associated rights, at this moment authorization node generates Corresponding feedback information.In order to which the feedback information is only disclosed to publisher node, without disclosing authorization node and other nodes, So that publisher node can know which node possesses the associated rights of information to be transacted, the authorization process system of the authorization node Feedback information is encrypted based on the cryptographic protocol in public encryption/decryption parameter and the public key of publisher node, cryptographic protocol is for example Be des encryption agreement corresponding with above-mentioned DES decryption protocols, AES decryption protocols, RSA decryption protocols, AES encryption agreement, Rsa encryption agreement etc..Then encrypted feedback information is carried out to each node of block chain network using intelligent contract wide It broadcasts, so that publisher node is read and utilizes the corresponding private key of public key of publisher node and decryption protocol decryption feedback information.If Feedback information is the corresponding confirmation Transaction Information of information to be transacted, then publisher node performs and authorization node transaction information to be transacted Corresponding trade transactions;If feedback information is the corresponding refusal Transaction Information of information to be transacted, publisher node refusal performs Trade transactions corresponding with authorization node transaction information to be transacted.
The present embodiment encrypts feedback information in the management and control of permission, using the public key and cryptographic protocol of publisher node so that Only publisher node can know which node possesses the associated rights of information to be transacted, can be to office in block chain network The permission of reason further carries out effective management and control.
In a preferred embodiment, on the basis of the embodiment of above-mentioned Fig. 1, further included after above-mentioned steps S4:
If the intelligent contract of no authorization node sends to publisher node for the encrypted information to be transacted and carries identity The decryption and authorization request of authentication information, then the authorization process system of the publisher node is used based on the authentication information Family authentication;
If authentication fails, decryption and authorization described in the publisher node refusal respond is asked;
If authentication success, the publisher node obtain the handling result that user is directed to decryption and authorization request;
If the handling result is asks by the decryption and authorization, the authorization process system of the publisher node utilizes The corresponding security parameter of the no authorization node encrypts the secret key, and the intelligence that encrypted secret key is passed through to publisher node is closed Each node of the block chain network is about distributed to, the letter to be transacted is decrypted for the data permission system of the no authorization node Breath, mandate is decrypted by the information to be transacted to the no authorization node;
If the handling result is refuses the decryption and authorization request, the publisher node refusal is waited to hand over for encrypted Mandate is decrypted to the no authorization node in easy information.
In the present embodiment, no authorization node is the node in addition to publisher node and authorization node, as without decryption and authorization Mandate relief is decrypted in order to read information to be transacted to no authorization node in node, and the intelligent contract of no authorization node is directed to The encrypted information generation to be transacted carries the decryption and authorization request of authentication information, and publisher node in acquisition, award by the decryption Authentication is carried out after power request, authentication information is, for example, digital certificate etc., and the authorization process system of publisher node is based on The authentication information carries out authentication to no authorization node, that is, analysing whether can be to be transacted without authorization node reading to this Mandate is decrypted in information.The authorization process system of publisher node can be stored with other nodes and the identity of corresponding user is recognized Information is demonstrate,proved, specifically, if one of authentication information of authorization process system storage of publisher node is awarded with the nothing It weighs node and corresponding user's ID authentication information is identical, then authentication success, then decryption and authorization is asked by publisher It is handled, that is, grants this is decrypted mandate or do not granted without authorization node reading information to be transacted and this is saved without mandate Point reads information to be transacted and mandate is decrypted, to obtain the handling result of corresponding decryption and authorization.
If for handling result to be asked by decryption and authorization, the authorization process system of publisher node utilizes no authorization node Corresponding security parameter encrypts secret key, and encrypted secret key is distributed to the block link network by the intelligent contract of publisher node Each node of network decrypts the information to be transacted for the data permission system of no authorization node, realizes the permission of publisher node Mandate is decrypted to no authorization node for encrypted information to be transacted in processing system;If handling result is awarded for refusal decryption Power request, then the authorization process system refusal of publisher node, which is decrypted no authorization node for encrypted information to be transacted, awards Power.
No authorization node can be decrypted the authorization process system base of the relief of mandate, i.e. publisher node in the present embodiment In no authorization node authentication information carry out authentication, and authentication by when obtain publisher to decryption and authorization Corresponding handling result is asked, if the handling result is asks by decryption and authorization, publisher node is realized to being saved without mandate Point reads the decryption and authorization of the information to be transacted, that is, realizes the relief of the decryption and authorization to no authorization node, improves block chain power Limit the flexibility of management and control.
As shown in figure 5, Fig. 5 is that the present invention is based on the structural representations of one embodiment of permission control system of block chain transaction Figure should be included based on the permission control system of block chain transaction:
Module 101 is built, at for each node of block chain network structure for encryption information issue and encryption and decryption The authorization process system of reason, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
In block chain network, a node corresponds to one or more intelligent contract, when a parameter transaction passes to area When on the node of block chain, this parameter transaction can be recorded in the corresponding transaction journal of the node and be transmitted to simultaneously and the transaction The corresponding intelligent contract of parameter goes to run, by the code on the corresponding intelligent contract of the parameter transaction to itself number of intelligent contract According to being updated.
In the present embodiment, each node in block chain network builds what is handled for encryption information issue and encryption and decryption Authorization process system, each authorization process system correspondence is independently of on each node, mainly for the treatment of matters are authorized, and in area For transferring the intelligent contract of encryption and decryption information, intelligent contract is mainly used to share letter in block chain network the deployment of block chain network Breath.
First release module 102, if thering is encrypted information to be transacted to carry out at least one authorized party for a publisher Decryption and authorization, then authorization process system on the corresponding publisher node of publisher obtain public encryption and decryption corresponding with each authorized party Parameter, and by the secret key of security parameter corresponding with the authorized party encryption information to be transacted, existed using the intelligent contract The public encryption/decryption parameter and security parameter are issued in the block chain network;
In the present embodiment, information to be transacted is encrypted information, and corresponding decryption protocol and secret key is needed to be decrypted. User can authorize relevant issues by the corresponding publisher node processing of publisher, and there are one the corresponding authorization nodes of authorized party or more It is a.Authorization process system on the corresponding publisher node of publisher obtains public encryption/decryption parameter corresponding with each authorized party, example Such as, public encryption/decryption parameter can be stored in a database, the authorization process system on publisher node by it is each it is public plus solution Close parameter corresponds to the authorization node of an authorized party.In addition, the corresponding security parameter of each authorization node, the security parameter with it is right The deciphering parameter answered is a pair of, and each node in block chain network can have corresponding security parameter and deciphering parameter, is protected Close parameter is disclosed part, and deciphering parameter is private part.The security parameter is, for example, the public key of authorization node, each Public key and private key in node are a key pair, wherein, public key is disclosed part, and private key is then private part.
If publisher has encrypted information to be transacted that mandate is decrypted at least one authorized party, due to security parameter It is disclosed part, therefore the authorization process system of publisher node can get the security parameter of each authorization node, then The secret key needed using the security parameter encryption information to be transacted of each authorization node in decryption.Public encryption/decryption parameter includes Analysis protocol, decryption protocol for example can be DES decryption protocols, AES decryption protocols, RSA decryption protocols etc..It is awarded for utilizing The encrypted secret key of security parameter of node is weighed, only has the deciphering parameter in the authorization node of the security parameter that could be solved It is close, and its encrypted secret key cannot be decrypted in other nodes, in such manner, it is possible to ensure that only authorization node could obtain To secret key.
In the present embodiment, from the intelligent contract of authorization node by public encryption/decryption parameter and security parameter to block chain network Each node issue, i.e., all nodes in the block chain network can receive the public encryption/decryption parameter and secrecy join Number, but only each authorization node could decrypt to obtain secret key using corresponding deciphering parameter, other nodes are not due to having Corresponding deciphering parameter, therefore can not be decrypted.
Preferably, the intelligent contract of authorization node issues out public encryption/decryption parameter and security parameter by peer-to-peer network It goes, the user of each authorization node is then notified to read public encryption/decryption parameter and security parameter.
The information to be transacted is passed through intelligence by the second release module 103 for the authorization process system of the publisher node It can each node issue of the contract to the block chain network;
Deciphering module 104 described is waited to hand over receiving by intelligent contract for the corresponding authorization node of the authorized party After easy information, the authorization process system of the authorization node is waited to hand over using deciphering parameter corresponding with the security parameter to described The secret key of easy information is decrypted, and the information to be transacted is decrypted based on the secret key after decryption and the public encryption/decryption parameter, The information to be transacted is decrypted mandate to the authorization node.
In the present embodiment, the authorization process system of publisher node is by information to be transacted by intelligent contract to block chain network The issue of each node, each node can receive the encrypted information to be transacted.
In the present embodiment, if there is authorization node has read the public encryption/decryption parameter of publisher node issue and secrecy ginseng Number, since authorization node has the corresponding deciphering parameter of security parameter, the authorization process system of authorization node can be by this Secret key is decrypted in the corresponding deciphering parameter of security parameter.In addition, the authorization process system of authorization node is encrypted in reading After information to be transacted, it can utilize the secret key after decryption and public encryption/decryption parameter that the information to be transacted of reading is decrypted, Specifically, the information to be transacted of reading is decrypted using the decryption protocol in secret key and public encryption/decryption parameter so that award Power node can be decrypted after information to be transacted, realize information to be transacted from publisher node at least one authorization node Mandate is decrypted, that is to say, that only authorization node just has permission the information to be transacted for knowing publisher node issue, Jin Erneng Enough handle the relevant affairs of information to be transacted.
In a preferred embodiment, it is above-mentioned to be based on block chain as shown in fig. 6, on the basis of the embodiment of above-mentioned Fig. 5 The permission control system of transaction further includes:
First encrypting module 105, for the corresponding feedback letter of information to be transacted after authorization node generation decryption After breath, the authorization process system of the authorization node is encrypted based on feedback information described in the cryptographic protocol and secret key pair, And each node of encrypted feedback information to the block chain network is broadcasted using the intelligent contract;
First transaction modules 106 are the corresponding confirmation Transaction Information of the information to be transacted for the feedback information, then The publisher node performs trade transactions corresponding to the authorization node transaction information to be transacted;
First refusal module 107, if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information, Then publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
In the present embodiment, after authorization node decrypts information to be transacted, that is, show that authorization node has obtained the letter to be transacted The associated rights (such as reading power etc.) of breath, and determine whether to be traded with regard to the associated rights, at this moment authorization node generates Corresponding feedback information.In order to which the feedback information is only disclosed to publisher node and each authorization node, so as to publisher node and Other each authorization nodes can know which node possesses the associated rights of information to be transacted, the permission processing of the authorization node System is encrypted based on the cryptographic protocol in public encryption/decryption parameter and secret key pair feedback information, cryptographic protocol be, for example, with it is upper The corresponding des encryption agreement of DES decryption protocols, AES decryption protocols, RSA decryption protocols stated, AES encryption agreement, rsa encryption Agreement etc..Then encrypted feedback information is broadcasted to each node of block chain network using intelligent contract, for Publisher node and other each authorization nodes read and decrypt feedback information.If feedback information corresponds to really for information to be transacted Recognize Transaction Information, then publisher node performs trade transactions corresponding with authorization node transaction information to be transacted;If feedback information For the corresponding refusal Transaction Information of information to be transacted, then the execution of publisher node refusal is corresponding with authorization node transaction information to be transacted Trade transactions.
The present embodiment encrypts feedback information in the management and control of permission, using secret key and cryptographic protocol so that only issue section Point and other each authorization nodes can know which node possesses the associated rights of information to be transacted, can be to block chain network The permission of middle issued transaction further carries out effective management and control.
In a preferred embodiment, it is above-mentioned to be based on block chain as shown in fig. 7, on the basis of the embodiment of above-mentioned Fig. 5 The permission control system of transaction further includes:
Second encrypting module 108, for the corresponding feedback letter of information to be transacted after authorization node generation decryption After breath, the authorization process system of the authorization node is based on the public key of the cryptographic protocol and the publisher node to the feedback Information is encrypted, and is broadcasted encrypted feedback information to each node of block chain network using intelligent contract;
Second transaction modules 109, if being the corresponding confirmation Transaction Information of the information to be transacted for the feedback information, Then the publisher node performs trade transactions corresponding to the authorization node transaction information to be transacted;
Second refusal module 110, if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information, Then publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
In the present embodiment, after authorization node decrypts information to be transacted, that is, show that authorization node has obtained the letter to be transacted The associated rights (such as reading power etc.) of breath, and determine whether to be traded with regard to the associated rights, at this moment authorization node generates Corresponding feedback information.In order to which the feedback information is only disclosed to publisher node, without disclosing authorization node and other nodes, So that publisher node can know which node possesses the associated rights of information to be transacted, the authorization process system of the authorization node Feedback information is encrypted based on the cryptographic protocol in public encryption/decryption parameter and the public key of publisher node, cryptographic protocol is for example Be des encryption agreement corresponding with above-mentioned DES decryption protocols, AES decryption protocols, RSA decryption protocols, AES encryption agreement, Rsa encryption agreement etc..Then encrypted feedback information is carried out to each node of block chain network using intelligent contract wide It broadcasts, so that publisher node is read and utilizes the corresponding private key of public key of publisher node and decryption protocol decryption feedback information.If Feedback information is the corresponding confirmation Transaction Information of information to be transacted, then publisher node performs and authorization node transaction information to be transacted Corresponding trade transactions;If feedback information is the corresponding refusal Transaction Information of information to be transacted, publisher node refusal performs Trade transactions corresponding with authorization node transaction information to be transacted.
The present embodiment encrypts feedback information in the management and control of permission, using the public key and cryptographic protocol of publisher node so that Only publisher node can know which node possesses the associated rights of information to be transacted, can be to office in block chain network The permission of reason further carries out effective management and control.
In a preferred embodiment, on the basis of the embodiment of above-mentioned Fig. 5, the above-mentioned permission based on the transaction of block chain Control system further includes:
Authentication module, if being directed to the encrypted information to be transacted to issue for the intelligent contract without authorization node Node sends the decryption and authorization request for carrying authentication information, then the authorization process system of the publisher node is based on the body Part authentication information carries out authenticating user identification;
3rd refusal module, if failing for authentication, decryption and authorization described in the publisher node refusal respond please It asks;
Acquisition module, if for authentication success, the publisher node obtains user please for the decryption and authorization The handling result asked;
Authorization module, if for the handling result to be asked by the decryption and authorization, the power of the publisher node Processing system is limited using the no authorization node corresponding security parameter encryption secret key, and encrypted secret key is passed through into hair The intelligent contract of cloth node is distributed to each node of the block chain network, for the data permission system solution of the no authorization node Mandate is decrypted to the no authorization node in the information to be transacted by the close information to be transacted;
Refuse authorization module, if being asked for the handling result to refuse the decryption and authorization, the publisher node Mandate is decrypted to the no authorization node for encrypted information to be transacted in refusal.
In the present embodiment, no authorization node is the node in addition to publisher node and authorization node, as without decryption and authorization Mandate relief is decrypted in order to read information to be transacted to no authorization node in node, and the intelligent contract of no authorization node is directed to The encrypted information generation to be transacted carries the decryption and authorization request of authentication information, and publisher node in acquisition, award by the decryption Authentication is carried out after power request, authentication information is, for example, digital certificate etc., and the authorization process system of publisher node is based on The authentication information carries out authentication to no authorization node, that is, analysing whether can be to be transacted without authorization node reading to this Mandate is decrypted in information.The authorization process system of publisher node can be stored with other nodes and the identity of corresponding user is recognized Information is demonstrate,proved, specifically, if one of authentication information of authorization process system storage of publisher node is awarded with the nothing It weighs node and corresponding user's ID authentication information is identical, then authentication success, then decryption and authorization is asked by publisher It is handled, that is, grants this is decrypted mandate or do not granted without authorization node reading information to be transacted and this is saved without mandate Point reads information to be transacted and mandate is decrypted, to obtain the handling result of corresponding decryption and authorization.
If for handling result to be asked by decryption and authorization, the authorization process system of publisher node utilizes no authorization node Corresponding security parameter encrypts secret key, and encrypted secret key is distributed to the block link network by the intelligent contract of publisher node Each node of network decrypts the information to be transacted for the data permission system of no authorization node, realizes the permission of publisher node Mandate is decrypted to no authorization node for encrypted information to be transacted in processing system;If handling result is awarded for refusal decryption Power request, then the authorization process system refusal of publisher node, which is decrypted no authorization node for encrypted information to be transacted, awards Power.
No authorization node can be decrypted the authorization process system base of the relief of mandate, i.e. publisher node in the present embodiment In no authorization node authentication information carry out authentication, and authentication by when obtain publisher to decryption and authorization Corresponding handling result is asked, if the handling result is asks by decryption and authorization, publisher node is realized to being saved without mandate Point reads the decryption and authorization of the information to be transacted, that is, realizes the relief of the decryption and authorization to no authorization node, improves block chain power Limit the flexibility of management and control.
The foregoing is merely presently preferred embodiments of the present invention, is not intended to limit the invention, it is all the present invention spirit and Within principle, any modifications, equivalent replacements and improvements are made should all be included in the protection scope of the present invention.

Claims (8)

  1. A kind of 1. permission method of control based on the transaction of block chain, which is characterized in that the permission pipe based on the transaction of block chain Method processed includes:
    S1 is built in each node of block chain network at a permission handled for encryption information issue and encryption and decryption respectively Reason system, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
    S2, when a publisher has encrypted information to be transacted that mandate is decrypted at least one authorized party, publisher corresponds to Publisher node on authorization process system obtain corresponding with each authorized party public encryption/decryption parameter, and by with authorized party couple The security parameter answered encrypts the secret key of the information to be transacted, and institute is issued in the block chain network using the intelligent contract State public encryption/decryption parameter and security parameter;
    The information to be transacted is distributed to the block chain by S3, the authorization process system of the publisher node by intelligent contract Each node of network;
    S4, the corresponding authorization node of the authorized party by intelligent contract after the information to be transacted is received, the mandate The authorization process system of node carries out the secret key of the information to be transacted using deciphering parameter corresponding with the security parameter Decryption decrypts the information to be transacted, by the letter to be transacted based on the secret key after decryption and the public encryption/decryption parameter Mandate is decrypted to the authorization node in breath.
  2. 2. the permission method of control according to claim 1 based on the transaction of block chain, which is characterized in that described public plus solution Close parameter includes cryptographic protocol, is further included after the step S4:
    S5, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the power of the authorization node It limits processing system to be encrypted based on feedback information described in the cryptographic protocol and secret key pair, and will be added using the intelligent contract Each node of feedback information to the block chain network after close is broadcasted;
    S6, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node perform to The corresponding trade transactions of the authorization node transaction information to be transacted;
    S7, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node refusal is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted.
  3. 3. the permission method of control according to claim 1 based on the transaction of block chain, which is characterized in that described public plus solution Close parameter includes cryptographic protocol, is further included after the step S4:
    S8, after the corresponding feedback information of information to be transacted after authorization node generation is decrypted, the power of the authorization node The feedback information is encrypted in limit public key of the processing system based on the cryptographic protocol and the publisher node, and utilizes intelligence Energy contract broadcasts encrypted feedback information to each node of block chain network;
    S9, if the feedback information is the corresponding confirmation Transaction Information of the information to be transacted, the publisher node perform to The corresponding trade transactions of the authorization node transaction information to be transacted;
    S10, if the feedback information is the corresponding refusal Transaction Information of the information to be transacted, the publisher node refusal is held Row is to the corresponding trade transactions of the authorization node transaction information to be transacted.
  4. 4. the permission method of control according to any one of claims 1 to 3 based on the transaction of block chain, which is characterized in that institute Step S4 is stated to further include afterwards:
    If the intelligent contract of no authorization node sends to publisher node for the encrypted information to be transacted and carries authentication The decryption and authorization request of information, then the authorization process system of the publisher node is based on authentication information progress user's body Part certification;
    If authentication fails, decryption and authorization described in the publisher node refusal respond is asked;
    If authentication success, the publisher node obtain the handling result that user is directed to decryption and authorization request;
    If the handling result is asks by the decryption and authorization, described in the authorization process system utilization of the publisher node The corresponding security parameter of no authorization node encrypts the secret key, and the intelligent contract that encrypted secret key is passed through to publisher node is sent out Cloth gives each node of the block chain network, and the information to be transacted is decrypted for the data permission system of the no authorization node, The information to be transacted is decrypted mandate to the no authorization node;
    If the handling result is refuses the decryption and authorization request, the publisher node refusal is for encrypted letter to be transacted Mandate is decrypted to the no authorization node in breath.
  5. A kind of 5. permission control system based on the transaction of block chain, which is characterized in that the permission pipe based on the transaction of block chain System processed includes:
    Module is built, for the permission for each node of block chain network structure for encryption information issue and encryption and decryption processing Processing system, and dispose in the block chain network to transfer the intelligent contract of encryption and decryption information;
    First release module is awarded if having encrypted information to be transacted that at least one authorized party is decrypted for a publisher It weighs, then the authorization process system on the corresponding publisher node of publisher obtains public encryption/decryption parameter corresponding with each authorized party, And the secret key of the information to be transacted is encrypted by security parameter corresponding with authorized party, using the intelligent contract in the area The public encryption/decryption parameter and security parameter are issued in block chain network;
    Second release module, for the publisher node authorization process system by the information to be transacted by intelligent contract to Each node issue of the block chain network;
    Deciphering module is receiving the information to be transacted for the corresponding authorization node of the authorized party by intelligent contract Afterwards, the authorization process system of the authorization node utilizes deciphering parameter corresponding with the security parameter to the information to be transacted Secret key be decrypted, the information to be transacted is decrypted based on the secret key after decryption and the public encryption/decryption parameter, by institute It states information to be transacted and mandate is decrypted to the authorization node.
  6. 6. the permission control system according to claim 5 based on the transaction of block chain, which is characterized in that described public plus solution Close parameter includes cryptographic protocol, and the permission control system based on the transaction of block chain further includes:
    First encrypting module, after the corresponding feedback information of information to be transacted after authorization node generation decryption, institute The authorization process system for stating authorization node is encrypted based on feedback information described in the cryptographic protocol and secret key pair, and utilizes institute Intelligent contract is stated to broadcast each node of encrypted feedback information to the block chain network;
    First transaction modules are the corresponding confirmation Transaction Information of the information to be transacted for the feedback information, then the hair Cloth node performs trade transactions corresponding to the authorization node transaction information to be transacted;
    First refusal module, it is described if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information Publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
  7. 7. the permission control system according to claim 5 based on the transaction of block chain, which is characterized in that described public plus solution Close parameter includes cryptographic protocol, and the permission control system based on the transaction of block chain further includes:
    Second encrypting module, after the corresponding feedback information of information to be transacted after authorization node generation decryption, institute State the authorization process system of authorization node based on the public key of the cryptographic protocol and the publisher node to the feedback information into Row encryption, and broadcasted encrypted feedback information to each node of block chain network using intelligent contract;
    Second transaction modules, it is described if being the corresponding confirmation Transaction Information of the information to be transacted for the feedback information Publisher node performs trade transactions corresponding to the authorization node transaction information to be transacted;
    Second refusal module, it is described if being the corresponding refusal Transaction Information of the information to be transacted for the feedback information Publisher node refusal performs trade transactions corresponding to the authorization node transaction information to be transacted.
  8. 8. the permission control system merchandised according to claim 5 to 7 any one of them based on block chain, which is characterized in that institute The permission control system based on the transaction of block chain is stated to further include:
    Authentication module, if being directed to the encrypted information to be transacted to publisher node for the intelligent contract without authorization node The decryption and authorization request for carrying authentication information is sent, then the authorization process system of the publisher node is recognized based on the identity It demonstrate,proves information and carries out authenticating user identification;
    3rd refusal module, if failing for authentication, decryption and authorization described in the publisher node refusal respond is asked;
    Acquisition module, if for authentication success, the publisher node obtains user for decryption and authorization request Handling result;
    Authorization module, if for the handling result to be asked by the decryption and authorization, at the permission of the publisher node Encrypted secret key is passed through to issue and be saved by reason system using the no authorization node corresponding security parameter encryption secret key The intelligent contract of point is distributed to each node of the block chain network, and institute is decrypted for the data permission system of the no authorization node Information to be transacted is stated, mandate is decrypted to the no authorization node in the information to be transacted;
    Refuse authorization module, if for the handling result to refuse the decryption and authorization request, the publisher node is refused Mandate is decrypted to the no authorization node for encrypted information to be transacted.
CN201610960002.4A 2016-10-27 2016-10-27 Permission method of control and system based on the transaction of block chain Active CN106534097B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201610960002.4A CN106534097B (en) 2016-10-27 2016-10-27 Permission method of control and system based on the transaction of block chain
PCT/CN2017/091250 WO2018076761A1 (en) 2016-10-27 2017-06-30 Block chain-based transaction permission control method and system, electronic device, and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610960002.4A CN106534097B (en) 2016-10-27 2016-10-27 Permission method of control and system based on the transaction of block chain

Publications (2)

Publication Number Publication Date
CN106534097A CN106534097A (en) 2017-03-22
CN106534097B true CN106534097B (en) 2018-05-18

Family

ID=58326894

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610960002.4A Active CN106534097B (en) 2016-10-27 2016-10-27 Permission method of control and system based on the transaction of block chain

Country Status (2)

Country Link
CN (1) CN106534097B (en)
WO (1) WO2018076761A1 (en)

Families Citing this family (58)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106534097B (en) * 2016-10-27 2018-05-18 上海亿账通区块链科技有限公司 Permission method of control and system based on the transaction of block chain
CN107066561A (en) * 2017-03-30 2017-08-18 中国联合网络通信集团有限公司 Data managing method and platform
GB201706132D0 (en) * 2017-04-18 2017-05-31 Nchain Holdings Ltd Computer-implemented system and method
CN107038242B (en) * 2017-04-24 2020-02-07 杭州趣链科技有限公司 Block chain-oriented global intelligent contract service data analysis method
CN107273759B (en) * 2017-05-08 2020-07-14 上海点融信息科技有限责任公司 Method, apparatus, and computer-readable storage medium for protecting blockchain data
CN108875386A (en) * 2017-05-16 2018-11-23 江峰 A kind of multicenter finite field block catenary system framework with block issue mechanism and application demand issue mechanism
TWI646487B (en) * 2017-06-23 2019-01-01 現代財富控股有限公司 Smart contract executing system with permission rating and avoid duplication and method thereof
CN107705203A (en) * 2017-08-08 2018-02-16 迅鳐成都科技有限公司 Financial Information sharing method in a kind of steel transaction based on block chain
CN107911216B (en) * 2017-10-26 2020-07-14 矩阵元技术(深圳)有限公司 A method and system for privacy protection of blockchain transactions
WO2019127265A1 (en) * 2017-12-28 2019-07-04 深圳前海达闼云端智能科技有限公司 Blockchain smart contract-based data writing method, device and storage medium
CN108234515B (en) * 2018-01-25 2020-07-24 中国科学院合肥物质科学研究院 Self-authentication digital identity management system and method based on intelligent contract
CN108418690A (en) * 2018-02-11 2018-08-17 深圳市图灵奇点智能科技有限公司 The method and apparatus that block chain contract is signed by the auxiliary that onboard system is realized
CN108389042B (en) * 2018-02-11 2021-06-11 深圳市图灵奇点智能科技有限公司 Method and device for realizing auxiliary fee settlement by intelligent mobile phone
CN108430061A (en) * 2018-02-11 2018-08-21 深圳市图灵奇点智能科技有限公司 The method and apparatus that block chain contract is signed by the auxiliary that intelligent mobile phone is realized
CN108305058B (en) * 2018-02-11 2021-03-02 深圳市图灵奇点智能科技有限公司 Method, device and terminal node for settlement of auxiliary fees based on Internet of Things
CN110363523A (en) * 2018-04-10 2019-10-22 现代财富控股有限公司 Confirmation system and method based on block chain intelligence contract
CN108702287B (en) * 2018-04-16 2022-04-01 达闼机器人有限公司 Information issuing and acquiring method and device based on block chain and block chain link point
CN108537549A (en) * 2018-04-18 2018-09-14 四川众之金科技有限公司 A kind of purview certification method and device
CN108681898B (en) * 2018-05-15 2021-09-17 广东工业大学 Data transaction method and system based on block chain
CN109685511B (en) * 2018-05-30 2023-06-09 上海分壳信息技术股份有限公司 Block chain-based data use right transaction method
CN109034796B (en) * 2018-06-15 2023-09-22 安达数据技术(深圳)有限公司 Alliance chain-based transaction supervision method, electronic device and readable storage medium
CN108846755A (en) * 2018-06-22 2018-11-20 中链科技有限公司 A kind of right management method and device based on intelligent contract
CN109003185B (en) * 2018-06-29 2022-03-22 中国银联股份有限公司 Intelligent contract establishing method and device, computing equipment and storage medium
CN108964903B (en) * 2018-07-12 2021-12-14 腾讯科技(深圳)有限公司 Password storage method and device
CN108921560B (en) * 2018-07-27 2021-04-30 广州天高软件科技有限公司 Transaction information verification and settlement method based on block chain
CN109271805A (en) * 2018-08-10 2019-01-25 广东工业大学 A kind of storage of data subregion, querying method and system based on block chain
CN109391611B (en) * 2018-08-17 2021-03-02 深圳壹账通智能科技有限公司 User personal information encryption authorization method, device, equipment and readable storage medium
CN109286616B (en) * 2018-09-10 2021-04-16 湖南智慧政务区块链科技有限公司 Permission verification method and device based on block chain technology
CN111357023A (en) * 2018-10-23 2020-06-30 北京嘀嘀无限科技发展有限公司 Method and system for transferring data in a blockchain system
CN109544341B (en) * 2018-11-23 2023-07-07 苏州朗润创新知识产权运营有限公司 Blockchain-based digital detection method and device
CN109598616B (en) * 2018-12-09 2023-08-22 大连飞创信息技术有限公司 Method for protecting privacy of blockchain data by introducing arbitration mechanism
CN109740320A (en) * 2018-12-14 2019-05-10 深圳壹账通智能科技有限公司 A blockchain-based identity authentication method and terminal device
CN109559124B (en) * 2018-12-17 2023-04-18 重庆大学 Cloud data security sharing method based on block chain
CN109697613B (en) * 2018-12-29 2020-08-25 链博(成都)科技有限公司 Security authentication method and system for network transaction in block chain
CN109871712B (en) * 2019-01-24 2022-10-14 平安科技(深圳)有限公司 Medical record authority management method and device, readable storage medium and server
CN109636427B (en) * 2019-01-29 2024-03-01 深圳市智税链科技有限公司 Business processing method, device, medium and electronic equipment based on block chain system
CN111901402A (en) * 2019-02-19 2020-11-06 创新先进技术有限公司 Method, node and storage medium for implementing privacy protection in block chain
US11106812B2 (en) 2019-05-09 2021-08-31 At&T Intellectual Property I, L.P. Controlling access to datasets described in a cryptographically signed record
CN110414978A (en) * 2019-06-18 2019-11-05 深圳壹账通智能科技有限公司 Automatic authorization method, server and computer readable storage medium
CN110866261A (en) * 2019-10-12 2020-03-06 深圳壹账通智能科技有限公司 Data processing method and device based on block chain and storage medium
CN110768897B (en) * 2019-10-25 2021-07-27 支付宝(杭州)信息技术有限公司 Block chain-based digital information authorization method and device
SG10201910425SA (en) * 2019-11-07 2020-10-29 Alipay Labs Singapore Pte Ltd Methods and devices for preventing denial-of-service attack on blockchain system
CN110580413B (en) * 2019-11-08 2020-03-24 支付宝(杭州)信息技术有限公司 Private data query method and device based on down-link authorization
CN111523110B (en) * 2019-11-08 2023-05-02 支付宝(杭州)信息技术有限公司 Authority query configuration method and device based on chain codes
CN110838924B (en) * 2019-11-19 2022-04-12 北京沃东天骏信息技术有限公司 Block transfer method and device
CN110868292B (en) * 2019-12-03 2021-12-14 湖南国奥电力设备有限公司 Blockchain-based underground cable data transmission method and device
CN111241574B (en) * 2019-12-19 2024-04-30 广州宏算信息科技有限公司 Privacy protection method, device and storage medium based on blockchain
CN112487100B (en) * 2020-04-02 2025-09-02 蚂蚁区块链科技(上海)有限公司 Blockchain-based information publishing method, device, and computer equipment
CN111667365A (en) * 2020-04-12 2020-09-15 链农(深圳)信息科技有限公司 A blockchain-based cross-border electronic signature method and readable storage medium
CN111581251B (en) * 2020-04-23 2023-07-28 傲林科技有限公司 Digital asset query method, device and storage medium for cross-chain transaction
CN111586065A (en) * 2020-05-12 2020-08-25 山东浪潮商用系统有限公司 Data authorization method based on block chain
CN111709053B (en) * 2020-06-11 2024-04-05 中国工商银行股份有限公司 Operation method and operation device based on loose coupling transaction network
CN112199694A (en) * 2020-09-30 2021-01-08 杭州云链趣链数字科技有限公司 Standardized bill processing method and device, electronic device and storage medium
CN112967054B (en) * 2020-10-10 2022-07-29 支付宝(杭州)信息技术有限公司 Data management method, device and equipment
CN112884485B (en) * 2021-02-01 2024-01-26 合肥壹物易证科技有限公司 A symmetric encryption traceability transaction method, system and storage medium based on blockchain network
CN113179311A (en) * 2021-04-23 2021-07-27 上海和数软件有限公司 Block chain authority multiple control method and system
CN113761493B (en) * 2021-08-26 2024-04-05 浙商银行股份有限公司 Intelligent contract interface calling authority and caller identity control method and system for blockchain platform
CN114666064B (en) * 2022-03-25 2024-08-06 广东启链科技有限公司 Digital asset management method, device, storage medium and equipment based on blockchain

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160125403A1 (en) * 2014-04-28 2016-05-05 Chin-hao Hu Offline virtual currency transaction
US10340038B2 (en) * 2014-05-13 2019-07-02 Nant Holdings Ip, Llc Healthcare transaction validation via blockchain, systems and methods
US20160162897A1 (en) * 2014-12-03 2016-06-09 The Filing Cabinet, LLC System and method for user authentication using crypto-currency transactions as access tokens
CN105701372B (en) * 2015-12-18 2019-04-09 布比(北京)网络技术有限公司 A kind of building of block chain identity and verification method
CN105871923B (en) * 2016-06-15 2018-02-13 腾讯科技(深圳)有限公司 Information processing method, information record node and participation node
CN105976231A (en) * 2016-06-24 2016-09-28 深圳前海微众银行股份有限公司 Asset management method based on intelligent block chain contracts and nodes
CN106534097B (en) * 2016-10-27 2018-05-18 上海亿账通区块链科技有限公司 Permission method of control and system based on the transaction of block chain

Also Published As

Publication number Publication date
CN106534097A (en) 2017-03-22
WO2018076761A1 (en) 2018-05-03

Similar Documents

Publication Publication Date Title
CN106534097B (en) Permission method of control and system based on the transaction of block chain
CN113411384B (en) System and method for privacy protection in data security sharing process of Internet of things
Zeng et al. Arbitrated quantum-signature scheme
CN108632292B (en) Data sharing method and system based on alliance chain
CN1939028B (en) Accessing protected data on network storage from multiple devices
US20220327530A1 (en) Digital signature generation using a cold wallet
KR102307574B1 (en) Cloud data storage system based on blockchain and method for storing in cloud
CN1820482B (en) Method for generating and managing local area network
CA3098247A1 (en) Systems, methods, and devices for secure blockchain transaction and subnetworks
CN109891423B (en) Data encryption control using multiple control mechanisms
CN112383391B (en) Data security protection method based on data attribute authorization, storage medium and terminal
CN110932851B (en) A key protection method for multi-party cooperative operation based on PKI
CN103716167A (en) Method and device for safely collecting and distributing transmission keys
US7266705B2 (en) Secure transmission of data within a distributed computer system
CA2949847A1 (en) System and method for secure deposit and recovery of secret data
EP1984889A2 (en) Secure digital content management using mutating identifiers
CN102244575A (en) Secure transmission system and method for online tax filling data of value-added tax
CN1905436B (en) Method for ensuring data exchange safety
CN118337359B (en) Heterogeneous multi-link data cross-domain access control method based on threshold homomorphic encryption
CN103117851A (en) Encryption control method and device capable of achieving tamper-proofing and repudiation-proofing by means of public key infrastructure (PKI)
CN114238897B (en) Internet of Things data collection system and method based on distributed digital identity
CN108964896A (en) A kind of Kerberos identity authorization system and method based on group key pond
CN113329003B (en) An access control method, user equipment and system for the Internet of Things
EP3664363B1 (en) Device and method for processing public key of user in communication system that includes a plurality of nodes
CN108769014A (en) A method of PGP verifications are carried out to Email based on block chain technology

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CP01 Change in the name or title of a patent holder

Address after: 200000 room 3484, 3 floor, 2879 Longteng Road, Xuhui District, Shanghai.

Patentee after: Shanghai one way link chain Technology Co.,Ltd.

Address before: 200000 room 3484, 3 floor, 2879 Longteng Road, Xuhui District, Shanghai.

Patentee before: ONECONNECT BLOCKCHAIN TECHNOLOGY Co.,Ltd. (SHANGHAI)

CP01 Change in the name or title of a patent holder
TR01 Transfer of patent right

Effective date of registration: 20180525

Address after: 518000 Room 201, building A, No. 1, Qian Wan Road, Qianhai Shenzhen Hong Kong cooperation zone, Shenzhen, Guangdong (Shenzhen Qianhai business secretary Co., Ltd.)

Patentee after: ONECONNECT FINANCIAL TECHNOLOGY Co.,Ltd. (SHANGHAI)

Address before: 200000 room 3484, 3 floor, 2879 Longteng Road, Xuhui District, Shanghai.

Patentee before: Shanghai one way link chain Technology Co.,Ltd.

TR01 Transfer of patent right