CN-122020735-A - Government block chain certificate and cross-department trusted business collaboration system

Abstract

The invention provides a government block chain storage certificate and cross-department trusted service cooperative system, which comprises a system management module, a data management module, a transaction management module, a block chain network module and an interstellar file system storage module, wherein the government block chain storage certificate and cross-department trusted service cooperative system provided by the invention has coarse authority control granularity of a traditional government block chain data sharing mode, can only be decided between full sharing and non-sharing, and the full sharing can bring extremely high security risk, and affects government service cooperative efficiency; in the system, the data owner can set sharing conditions for the shared ciphertext data, and generate a temporary Token containing a hash value and conditions, and the temporary Token is proved to be sent to the data user through zero knowledge, so that the data provider can control the access range and conditions of the data user on the data according to actual requirements, and the sensitive information leakage risk caused by full sharing is avoided.

Inventors

• LIU YUN

Assignees

• 刘云

Dates

Publication Date

20260512

Application Date

20260227

Claims (9)

1. 1. The government block chain certification and cross department trusted business collaborative system is characterized by comprising a system management module, a data management module and a management module, wherein the system management module is used for setting block chain network parameters, storing node addresses and ports in the block chain network parameters of an interstellar file system to the system database, issuing initial identity certificates for interstellar file system nodes and users by using a certificate issuing mechanism, setting validity periods and authority levels, updating the certificates when the authorities are changed, finishing system setting and user registration after authentication, and acquiring authorities to the data management module; The system comprises a data management module, a transaction management module and a data management module, wherein the data management module is used for encrypting system database original data by using a homomorphic encryption algorithm to generate ciphertext for a data provider and uploading the ciphertext data content hash value to an interstellar file system network, a data owner in a user selects shared ciphertext data, a sharing condition is set, the system generates a temporary Token containing the hash value and the condition, the temporary Token is proved to be sent to the data user in the user through zero knowledge, the ciphertext data is analyzed through intelligent contract statistics after the user obtains the temporary Token, an analysis result is returned in an encryption mode, and the data owner issues the Token and enters the transaction management module after the encryption and sharing of the original data are completed; The transaction management module is used for receiving the data hash value of the data management module, uploading, authorizing and accessing the data hash value and initiating transaction, recording operation information by the system, inquiring the transaction by the user, periodically tracing the chain transaction by the system, informing an administrator when the violation is found, generating and verifying validity of the hash value related to the privacy transaction by using zero knowledge proof, and entering the block chain network module after passing the validity; A blockchain network module for verifying and confirming the transaction initiated by the transaction management module by the network node through a consensus algorithm, generating a new block and adding the new block into a block chain, and then retrieving and storing ciphertext data by the interstellar file system storage module according to the hash value of the block data; And the interstellar file system storage module is used for retrieving data from the interstellar file system network according to the ciphertext data content hash value uploaded by the data provider in the user, storing the ciphertext data in a plurality of nodes to form redundant backup, and periodically checking the integrity of the ciphertext data stored on the interstellar file system network.
2. 2. The government blockchain certification and cross-department trusted service coordination system of claim 1, wherein in the system management module, the blockchain network parameters include blockchain node addresses, ports, consensus algorithm types, network communication protocols, and chain unique identifiers.
3. 3. The government blockchain forensic and cross-department trusted service coordination system of claim 2 wherein in the system management module the user includes a data provider, a data owner, a data user and an administrator.
4. 4. The government blockchain forensic and cross-department trusted service coordination system of claim 3 wherein in the system management module the setting of authority levels includes setting different authority levels for data providers, data owners, data users and administrators, respectively.
5. 5. The government blockchain forensic and cross-department trusted service coordination system according to claim 4 wherein in the data management module the homomorphic encryption algorithm is Paillier encryption.
6. 6. The government blockchain certification and cross-department trusted service coordination system of claim 5, wherein in the data management module, the sharing conditions include setting up access to user, time, operation and zero knowledge certification conditions.
7. 7. The government blockchain forensics and cross-department trusted service coordination system of claim 6 wherein in the transaction management module the operational information includes operational type, party and timestamp.
8. 8. The government blockchain forensics and cross-department trusted service coordination system according to claim 7 further comprising a user inquiring transaction information according to transaction IDs, participants and time ranges, periodically tracing and linking transactions, and finding out illegal actions to inform an administrator of processing through a system transaction inquiring function.
9. 9. The system of claim 8, wherein the interstitium file system storage module further comprises means for periodically checking the integrity of ciphertext data stored on the interstitium file system network, and if the ciphertext data is found to be lost or corrupted, the system recovers ciphertext data from other redundant nodes, and the encrypted ciphertext data is stably stored in the interstitium file system network, and the data user accesses the encrypted ciphertext data via the system interface and Token.

Description

Government block chain certificate and cross-department trusted business collaboration system Technical Field The invention relates to the field of blockchain deposit certificate application, in particular to a government affair blockchain deposit certificate and cross-department trusted business cooperation system. Background With the rapid development of digital government affairs, government affair systems face increasingly complex security challenges. The traditional government affair data sharing mode is mainly realized by relying on a database account number and an API (application programming interface), in the mode, a data provider controls access to data by other departments or users by setting access rights of the database account number, and meanwhile, the API interface is utilized to provide an interface for data access, so that a data user can conveniently acquire required data, but in the traditional sharing mode, the rights control granularity is thicker, in actual operation, full sharing or non-sharing can be usually only carried out, if full sharing is selected, the data provider opens all data to the data user, and extremely high safety risk is brought, because the government affair data contains a large amount of sensitive information, such as ID card numbers, bank card numbers, health conditions and the like of citizens, once the data are improperly acquired or leaked, serious damage is brought to personal benefits of the citizens, and the public belief of government is possibly influenced; if the service is not shared, the cooperative efficiency of government affairs service is seriously affected, and all departments cannot acquire the required data in time, so that the service flow is interrupted, the repeated labor is increased, the work efficiency and the service quality of the government are reduced, and the actual use is inconvenient. Therefore, it is necessary to provide a new government block chain certification and cross-department trusted service collaboration system to solve the above technical problems. Disclosure of Invention In order to solve the technical problems, the invention provides a government block chain certification and cross-department trusted service collaboration system. The system management module is used for setting block chain network parameters, interstellar file system storage node addresses and ports, storing the block chain network parameters, interstellar file system storage node addresses and ports into a system database, issuing initial identity certificates for interstellar file system nodes and users by using a certificate issuing mechanism, setting validity periods and authority levels, updating the certificates when the authorities are changed, finishing system setting and user registration after authentication, and obtaining authorities to enter the data management module; The data management module is used for encrypting system database original data by using homomorphic encryption algorithm to generate ciphertext for a data provider and uploading the ciphertext data content hash value to the interstellar file system network, the data owner selects shared ciphertext data, the sharing condition is set, the system generates a temporary Token containing the hash value and the condition, the temporary Token is sent to the data user through zero knowledge proof, the user acquires the temporary Token and then analyzes the ciphertext data through intelligent contract statistics, an analysis result is returned in an encryption mode, and after the original data encryption and sharing arrangement are completed, the data owner issues the Token and enters the transaction management module; The transaction management module is used for receiving the data hash value of the data management module, uploading, authorizing and accessing the data hash value and initiating transaction, recording operation information by the system, inquiring the transaction by the user, periodically tracing the chain transaction by the system, informing an administrator when the violation is found, generating and verifying validity of the hash value related to the privacy transaction by using zero knowledge proof, and entering the block chain network module after passing the validity; A blockchain network module for verifying and confirming the transaction initiated by the transaction management module by the network node through a consensus algorithm, generating a new block and adding the new block into a block chain, and then retrieving and storing ciphertext data by the interstellar file system storage module according to the hash value of the block data; And the interstellar file system storage module is used for retrieving data from the interstellar file system network according to the ciphertext data content hash value uploaded by the data provider, storing the data in a plurality of nodes to form redundant backup, and periodically checking the integrity of the ciphertext d