Search

CN-121580452-B - Administrative archive tamper-proof storage method and system

CN121580452BCN 121580452 BCN121580452 BCN 121580452BCN-121580452-B

Abstract

The invention relates to the technical field of archive storage and discloses an administrative archive tamper-proof storage method and system, wherein the method comprises the steps of carrying out association coupling on a content characteristic set and structure description information to obtain a digital fingerprint; the method comprises the steps of binding unique identifiers into digital fingerprints to obtain feature binding records, carrying out block coding on metadata and the feature binding records to obtain data blocks, carrying out uplink storage on the data blocks based on a block chain consensus mechanism to obtain a certificate chain storage record, carrying out multi-level verification on an instant feature abstract and the certificate chain storage record when a target file is monitored to be accessed to obtain a state verification result, archiving an access log into the certificate chain storage record when the state verification result passes, locking access rights to obtain a rights locking record when the state verification result does not pass, and carrying out audit trail on the rights locking record to generate an audit report of the target file.

Inventors

  • HU HAIJING

Assignees

  • 贵州商学院

Dates

Publication Date
20260508
Application Date
20260128

Claims (8)

  1. 1. A method for tamper-resistant storage of an administrative archive, the method comprising: S1, carrying out association coupling on a content feature set and structure description information of a target file to obtain a digital fingerprint of the target file; S2, binding the unique identifier of the target file into the digital fingerprint to obtain a characteristic binding record of the target file; S3, carrying out block coding on the metadata of the target file and the characteristic binding record to obtain a data block of the target file, and carrying out uplink storage on the data block based on a block chain consensus mechanism of the target file to obtain a certification chain record of the target file; s4, when the target file is monitored to be accessed, carrying out multi-level verification on the instant feature abstract of the target file and the certificate-storing chain record to obtain a state verification result of the target file, wherein the method comprises the following steps: performing multidimensional feature deconstructment on the certificate chain record to obtain a historical feature abstract and node comprehensive credibility of the certificate chain record; performing similarity evaluation on the historical feature abstract and the instant feature abstract of the target file to obtain a similarity index of the target file; Performing difference quantification on the historical feature abstract and the instant feature abstract to obtain the difference fluctuation quantity of the target file; Consistency evaluation is carried out on the similarity index and the difference fluctuation quantity, so that consistency confidence of the target file is obtained; and comprehensively evaluating the instant feature abstract and the certification chain record according to the comprehensive credibility, the similarity index, the difference fluctuation amount and the consistency confidence coefficient of the node to obtain a state verification result of the target file, wherein the calculation formula of the state verification result is as follows: ; Wherein, the Representing the result of the state check as described, Representing the preset weight coefficient of the weight coefficient, Represent the first The consistency confidence of the individual dimensions, Represent the first The similarity measure of the individual dimensions, Represent the first The amount of said differential fluctuation in the individual dimensions, Representing the integrated trustworthiness of the node, Representing a preset positive value of the regulation parameter, The inverse tangent function is represented by a graph, Representing an index the function of the function is that, Representing a natural logarithmic function; s5, automatically responding to the target file based on the state verification result: S51, when the state verification result passes, archiving an access log of the target file into the certificate-storing chain record; And S52, locking the access authority of the target file when the state verification result is not passed, obtaining an authority locking record of the target file, and performing audit trail on the authority locking record to generate an audit report of the target file.
  2. 2. The method for tamper-resistant storage of an administrative archive of claim 1, wherein said coupling of the content feature set and the structure description information of the target archive to obtain a digital fingerprint of the target archive comprises: Collecting original data of a target file; Carrying out structural analysis on the original data to obtain a content feature set and structural description information of the target file; tensor synthesis is carried out on the content features in the content feature set to obtain a content feature vector of the target file; Performing topology construction on the structure description information based on the association relation between the data texts in the target file to obtain a structure relation map of the target file; mapping the content feature vector into the structural relation map, and performing dimension reduction processing on the mapped map to obtain fusion features of the target file; And performing associated coding on the fusion characteristic based on the timestamp of the target file to obtain the digital fingerprint of the target file.
  3. 3. A method of tamper-resistant storage of an administrative archive in accordance with claim 1, wherein said binding of the unique identifier of the target archive to the digital fingerprint results in a characteristic binding record of the target archive, comprising: formatting the entity attribute of the target file to obtain a standard identifier of the target file; splicing the standard identifiers according to the time sequence to obtain a unique identifier of the target file; Checking the uniqueness of the unique identifier to obtain a checked identifier of the target file; based on the private key of the target file, carrying out digital signature on the digital fingerprint to obtain a signature fingerprint of the target file; Fusing the verified identifier, the signature fingerprint and the timestamp of the target file to obtain a structured data object of the target file; and carrying out joint encapsulation on the structured data object to obtain the characteristic binding record of the target file.
  4. 4. The method for tamper-resistant storage of an administrative archive of claim 1, wherein said block encoding of metadata of said target archive and said feature binding record to obtain a data block of said target archive comprises: Taking administrative management data of original data in the target file as metadata of the target file; carrying out semantic analysis on the metadata to obtain a structured metadata set of the target file; Carrying out serialization processing on the characteristic binding record to obtain a characteristic byte sequence of the target file; Carrying out heterogeneous data association on the structured metadata set and the characteristic byte sequence to obtain structure description information of the target file; And performing erasure coding processing on the structure description information based on the data quantity of the structured metadata set and the byte length of the characteristic byte sequence to obtain the data block of the target file.
  5. 5. The method for tamper-resistant storage of an administrative archive of claim 1, wherein said storing said data blocks in a chain based on a blockchain consensus mechanism of said target archive to obtain a certification chain record of said target archive comprises: determining a certificate storing alliance chain of the target file according to the information of the custody organization of the target file; Distributing the data block to a verification area on the certification authority chain, and carrying out hash verification on the verification area to obtain a local verification result of the target file; according to the block chain consensus mechanism of the target file, giving corresponding decision weights to the verification areas to obtain weighted verification areas of the target file; Based on the local verification result, carrying out multi-round collaborative decision on the weighted verification area to obtain a decision result of the target file; And according to the decision result, packaging and jointly storing the hash value, the block description information and the consensus time stamp in the data block into a certificate storing node of the certificate storing alliance chain to obtain a certificate storing chain record of the target file.
  6. 6. The method for tamper-resistant storage of an administrative archive of claim 1, wherein when the status check result fails, locking access rights of the target archive to obtain a rights lock record of the target archive, comprises: Performing abnormal pattern matching on the state verification result to obtain abnormal feature description of the target file; Performing instruction encoding on the abnormal feature description and the encryption grade of the target file to obtain an initial locking operation instruction of the target file; acquiring a real-time access context, an active session identifier and a concurrent operation request list of the target archive to obtain a context snapshot of the target archive; performing real-time linkage analysis on the initial locking operation instruction and the context snapshot, and performing optimization adjustment on the effective range and the opportunity of the initial locking operation instruction based on the analyzed result to obtain a final locking instruction of the target file; the final locking instruction is applied to accurately control the access authority of the target file, and the execution feedback of the target file is recorded; And packaging the abnormal feature description, the context snapshot, the final locking instruction and the execution feedback into a permission locking record of the target archive.
  7. 7. A method of tamper-resistant storage of an administrative archive of claim 1, wherein said audit trail of said rights lock record to generate an audit report of said target archive comprises: collecting the authority locking record, the operation track of the final locking instruction in the target file and the real-time state data of the target file to obtain an audit evidence set of the target file; carrying out causal association analysis on the audit evidence set to obtain root cause inference results of the audit evidence set; Based on the root cause inference result, performing policy mapping on the administrative management attribute of the target file and a general safety criterion to obtain a multidimensional research and judgment policy of the target file; based on the multidimensional research and judgment strategy, carrying out directional research and judgment on the authority locking record to obtain an audit report draft of the target file; And carrying out evidence chain closed check on the audit report draft and the audit evidence set to obtain an audit report of the target file.
  8. 8. An administrative archive tamper-resistant storage system for implementing the administrative archive tamper-resistant storage method of claim 1, the system comprising: The digital fingerprint generation module is used for carrying out association coupling on the content characteristic set and the structure description information of the target file to obtain the digital fingerprint of the target file; The characteristic binding module is used for binding the unique identifier of the target file into the digital fingerprint to obtain a characteristic binding record of the target file; the data storage and certification module is used for carrying out block coding on the metadata of the target file and the characteristic binding record to obtain a data block of the target file, and carrying out uplink storage on the data block based on a block chain consensus mechanism of the target file to obtain a certification chain record of the target file; And the feature verification module is used for carrying out multi-level verification on the instant feature abstract of the target file and the certificate-storing chain record when the target file is monitored to be accessed, so as to obtain a state verification result of the target file, and comprises the following steps: performing multidimensional feature deconstructment on the certificate chain record to obtain a historical feature abstract and node comprehensive credibility of the certificate chain record; performing similarity evaluation on the historical feature abstract and the instant feature abstract of the target file to obtain a similarity index of the target file; Performing difference quantification on the historical feature abstract and the instant feature abstract to obtain the difference fluctuation quantity of the target file; Consistency evaluation is carried out on the similarity index and the difference fluctuation quantity, so that consistency confidence of the target file is obtained; and comprehensively evaluating the instant feature abstract and the certification chain record according to the comprehensive credibility, the similarity index, the difference fluctuation amount and the consistency confidence coefficient of the node to obtain a state verification result of the target file, wherein the calculation formula of the state verification result is as follows: ; Wherein, the Representing the result of the state check as described, Representing the preset weight coefficient of the weight coefficient, Represent the first The consistency confidence of the individual dimensions, Represent the first The similarity measure of the individual dimensions, Represent the first The amount of said differential fluctuation in the individual dimensions, Representing the integrated trustworthiness of the node, Representing a preset positive value of the regulation parameter, The inverse tangent function is represented by a graph, Representing an index the function of the function is that, Representing a natural logarithmic function; And the automatic response module is used for automatically responding to the target file based on the state verification result, archiving the access log of the target file into the certificate-storing chain record when the state verification result passes, locking the access authority of the target file when the state verification result fails, obtaining the authority locking record of the target file, and carrying out audit trail on the authority locking record to generate an audit report of the target file.

Description

Administrative archive tamper-proof storage method and system Technical Field The invention relates to the technical field of archive storage, in particular to an administrative archive tamper-proof storage method and system. Background The administrative file is used as an important data carrier with legal effectiveness and historical value, the storage safety and integrity of the administrative file are directly related to the standardization and traceability of administrative management activities, in the process of tamper-proof storage of the administrative file in the prior art, the association degree of file content characteristics and structural information is not fully mined, digital fingerprint generation is dependent on single-dimension data processing, the core attribute of the file is difficult to map comprehensively, tamper behaviors are difficult to capture accurately, an effective front protective barrier cannot be formed, meanwhile, the binding mode of the file identifier and characteristic information lacks strict unique verification and encryption processing, the problems of identity confusion, characteristic tampering and the like easily occur, and the reliability of file storage is seriously affected. In the file data storage and verification link, the storage architecture in the prior art lacks high-efficiency consensus mechanism support, the collaborative decision capability of verification nodes in the data uplink process is weak, the decentralization verification degree of a storage result is insufficient, centralized tampering risks are difficult to resist, in addition, the multi-level verification system is imperfect, the comparison analysis of the characteristic abstract of the instant access file and the historical storage record only depends on a single index, the comprehensive evaluation of similarity, difference fluctuation and node reliability is lacking, the accuracy of a state verification result is insufficient, and after abnormal conditions occur, the accuracy of authority locking and the integrity of audit trail are deficient, the falsification root cause cannot be rapidly positioned, closed loop management is formed, the security protection efficiency and emergency response capability of the administrative file storage are obviously reduced, and therefore, the security of the administrative file storage is improved, so that the problem to be solved urgently is solved. Disclosure of Invention The invention provides an administrative archive tamper-proof storage method and system, which are used for solving the problems in the background technology. In order to achieve the above object, the present invention provides a tamper-proof storage method for an administrative file, including: S1, carrying out association coupling on a content feature set and structure description information of a target file to obtain a digital fingerprint of the target file; S2, binding the unique identifier of the target file into the digital fingerprint to obtain a characteristic binding record of the target file; S3, carrying out block coding on the metadata of the target file and the characteristic binding record to obtain a data block of the target file, and carrying out uplink storage on the data block based on a block chain consensus mechanism of the target file to obtain a certification chain record of the target file; S4, when the target file is monitored to be accessed, carrying out multi-level verification on the instant feature abstract of the target file and the certificate-storing chain record to obtain a state verification result of the target file; s5, automatically responding to the target file based on the state verification result: S51, when the state verification result passes, archiving an access log of the target file into the certificate-storing chain record; And S52, locking the access authority of the target file when the state verification result is not passed, obtaining an authority locking record of the target file, and performing audit trail on the authority locking record to generate an audit report of the target file. In a preferred embodiment, the coupling the content feature set of the target file and the structural description information to obtain the digital fingerprint of the target file includes: Collecting original data of a target file; Carrying out structural analysis on the original data to obtain a content feature set and structural description information of the target file; tensor synthesis is carried out on the content features in the content feature set to obtain a content feature vector of the target file; Performing topology construction on the structure description information based on the association relation between the data texts in the target file to obtain a structure relation map of the target file; mapping the content feature vector into the structural relation map, and performing dimension reduction processing on the mapped map to obtain