CN-122027149-A - Physical infrastructure node continuous data uplink and traceable method and system

Abstract

The invention belongs to the technical field of data security and blockchain, and discloses a physical infrastructure node continuous data uplink and traceability method and system, wherein the method comprises the steps of generating a unique asymmetric key pair for each node; the method comprises the steps of continuously collecting physical perception data and generating a unique data identifier, carrying out digital signature on the current physical perception data to form a continuous signature chain, storing original physical perception data, corresponding digital signatures and the continuous signature chain in an under-chain service platform database, uploading hash values of the data identifier, the digital signatures and the original physical perception data to a blockchain network based on a dynamic anchoring strategy, comparing the calculated hash values with hash values of the corresponding original physical perception data in the blockchain network, and backtracking the continuous signature chain. The invention can provide a safe, efficient and traceable complete data guarantee scheme for the decentralised physical infrastructure network.

Inventors

• QIAN XUEFENG
• Ye Lindong
• Shao Benbin

Assignees

• 杭州道比特科技有限公司

Dates

Publication Date

20260512

Application Date

20260403

Claims (10)

1. 1. A physical infrastructure node continuous data uplink and traceability method, comprising: Node initialization, namely generating a unique asymmetric key pair for each node in a decentralization physical infrastructure node deployment stage; the data acquisition and identification generation, namely continuously acquiring physical perception data through nodes, and generating a unique data identification for each piece of physical perception data to identify the corresponding relation of the physical perception data in the under-chain evidence and the on-chain evidence; The construction of a continuous signature chain, namely, according to the acquisition time sequence, a node digitally signs the current physical perception data by utilizing a private key of the node and the signature of the previous piece of physical perception data to form a continuous signature chain related to the cryptography of the previous and the next signature; Under-chain evidence collection, namely storing the collected original physical perception data, the corresponding digital signature and the continuous signature chain in an under-chain business platform database to realize under-chain data evidence collection, inquiry and verification; uploading the data identification, the digital signature and the hash value of the original physical perception data to a blockchain network based on a dynamic anchoring strategy, and generating a tamper-proof on-chain certificate after the verification passes; The data verification and traceability comprises the steps that a user obtains original physical perception data from an under-chain service platform database, calculates a hash value, compares the calculated hash value with a hash value of corresponding original physical perception data in a blockchain network, and traces back a continuous signature chain to verify the authenticity, the integrity and the time sequence of the data.
2. 2. The method for continuous data uplink and traceability of physical infrastructure nodes according to claim 1, wherein the asymmetric key comprises a node private key and a node public key, wherein the node private key is stored in a secure encryption module or trusted execution environment built in the node, and the node public key is registered to the blockchain network for subsequent on-chain signature verification.
3. 3. The physical infrastructure node continuous data chaining and traceability method of claim 1, wherein said physical awareness data comprises environmental state data, device operational parameters, spatial location and trajectory data, and resource metering data.
4. 4. The physical infrastructure node continuous data uplink and traceability method according to claim 1, wherein the signature relationship of the continuous signature chain is: ; In the formula, As the signature result corresponding to the nth piece of physical perception data, To perform a function of a digital signature algorithm on the input data (·) using a node private key SK, SK is the node private key, For the physical perception data collected in the nth strip, For the data splice operator to be used, As a function of the hash-up, The signature result corresponding to the n-1 th piece of physical perception data.
5. 5. The method for continuous data uplink and traceability of physical infrastructure nodes according to claim 1, wherein the downlink service platform database supports the node offline operation, breakpoint continuous transmission and data complementary transmission mechanisms; when the decentralised physical infrastructure node is in an offline state, continuously acquired physical perception data, corresponding data identifiers and signature chain states are cached locally at the node, and the last successfully-reserved data identifier is recorded; after the node resumes online connection, sequentially uploading the physical perception data cached during offline and the corresponding signature chain state to an off-chain service platform database according to the data identification or time sequence; the under-chain service platform database performs integrity check on the complementary transmission data based on the hash association relation between adjacent signatures in the continuous signature chain, and the complementary transmission reservation is completed after the verification is passed so as to ensure the integrity and consistency of continuous time sequence data.
6. 6. The method for continuous data uplink and traceability of physical infrastructure nodes according to claim 1, wherein the uploading the data identifier, the digital signature and the hash value of the original physical perception data to the blockchain network based on the dynamic anchoring policy, and generating the tamper-proof on-chain certificate after the verification passes comprises: in an under-chain service platform database or an off-centralised physical infrastructure node, calculating an anchor triggering condition in real time based on state information of a continuous signature chain; when any anchoring triggering condition is met, selecting a corresponding signature node from the continuous signature chain as an anchor point, and generating anchoring abstract information; Uploading the hash value of the data identifier, the digital signature and the original physical perception data corresponding to the anchoring abstract information to a block chain network; The block chain link point performs signature verification on the uploaded data according to the registered node public key, and generates an untampereable on-chain anchoring certificate after the signature verification passes, so that the trusted uplink of the continuous data is realized on the premise of not changing the integrity of the continuous signature chain.
7. 7. The method according to claim 6, wherein the anchor triggering condition includes that the continuously collected data reaches a preset data quantity threshold, a time span of the continuously collected data reaches a preset time window, and an abnormal signature state, a data interruption or an integrity check failure occurs in a continuous signature chain.
8. 8. The method for continuous data uplink and traceability of physical infrastructure nodes according to claim 6, wherein selecting a corresponding signature node from the continuous signature chain as an anchor point, generating anchor digest information comprises: Taking the moment of triggering anchoring as a reference, selecting the most representative data point from the continuous signature chain as an anchor point, and generating structured anchoring abstract information according to the anchor point so as to realize efficient on-chain evidence storage and complete under-chain verification; the anchor digest information comprises an anchor point identification, an anchor point integrity certification and a timing chain context certification, and the timing chain context certification comprises a chain segment start digest and an anchor point preamble link certification.
9. 9. The physical infrastructure node continuous data uplink and traceable method according to claim 1, wherein at least one other de-centralized physical infrastructure node is introduced to cross-sign or validate the staged results of the current continuous signature chain during the under-chain attestation or on-chain attestation to form cross-node attestation.
10. 10. A physical infrastructure node continuous data uplink and traceable system, comprising: the node initialization module is used for generating a unique asymmetric key pair for each node in the decentralization physical infrastructure node deployment stage; The data acquisition and identification generation module is used for continuously acquiring physical perception data through the nodes and generating unique data identification for each piece of physical perception data so as to identify the corresponding relation of the physical perception data in the under-chain evidence and the on-chain evidence; the continuous signature chain construction module is used for carrying out digital signature on the current physical perception data by the node according to the acquisition time sequence by utilizing the private key of the node and the signature of the previous piece of physical perception data to form a continuous signature chain related to the front signature cryptography and the rear signature cryptography; The under-chain evidence-reserving module is used for storing the acquired original physical perception data, the corresponding digital signature and the continuous signature chain in the under-chain business platform database so as to realize under-chain data evidence-reserving, inquiring and verifying; The on-chain evidence storage module is used for uploading the data identifier, the digital signature and the hash value of the original physical perception data to the blockchain network based on the dynamic anchoring strategy, and generating an untampereable on-chain evidence after the signature verification passes; The data verification and traceability module is used for a user to acquire original physical perception data from the under-chain service platform database, calculate a hash value, compare the calculated hash value with the hash value of the corresponding original physical perception data in the blockchain network, and trace back the continuous signature chain so as to verify the authenticity, the integrity and the time sequence of the data.

Description

Physical infrastructure node continuous data uplink and traceable method and system Technical Field The invention relates to the technical field of data security and blockchain, in particular to a physical infrastructure node continuous data uplink and traceability method and system. Background With the rapid development of the internet of things, industrial equipment and decentralised physical infrastructure networks, a large number of distributed physical nodes continue to generate data with business and regulatory values. Existing blockchain certification schemes typically achieve non-tampering by writing data or a digest thereof directly to the blockchain, but the following deficiencies still exist in practical applications: (1) Most schemes only pay attention to the non-tamper property of the chain, and the data acquisition source is not effectively authenticated, so that the blockchain can permanently store tampered or forged data. (2) The continuity of time series data is difficult to verify, the existing scheme is used for signing or hashing single data, the sequence relation and the integrity of the data are difficult to prove, and the credible verification requirement of continuous data cannot be met. (3) The real-time uplink has strong dependence and high cost, and the mode of triggering the uplink in fixed time or fixed quantity is difficult to adapt to the offline running or high-frequency data scene of equipment, and the load and the use cost on the link are increased. (4) In the decentralized environment, single-node abnormality or private key leakage is difficult to be found in time, and single-point fake prevention risks exist. Therefore, a technical scheme capable of realizing source credibility, continuous under-chain evidence, untampereable on-chain evidence and full-link traceability is needed. Disclosure of Invention The embodiment of the invention provides a physical infrastructure node continuous data uplink and traceability method and system, which are used for solving the technical problems in the prior art. According to a first aspect of an embodiment of the present invention, a physical infrastructure node continuous data uplink and traceability method is provided. In one embodiment, the physical infrastructure node continuous data uplink and traceability method includes: Node initialization, namely generating a unique asymmetric key pair for each node in a decentralization physical infrastructure node deployment stage; the data acquisition and identification generation, namely continuously acquiring physical perception data through nodes, and generating a unique data identification for each piece of physical perception data to identify the corresponding relation of the physical perception data in the under-chain evidence and the on-chain evidence; The construction of a continuous signature chain, namely, according to the acquisition time sequence, a node digitally signs the current physical perception data by utilizing a private key of the node and the signature of the previous piece of physical perception data to form a continuous signature chain related to the cryptography of the previous and the next signature; Under-chain evidence collection, namely storing the collected original physical perception data, the corresponding digital signature and the continuous signature chain in an under-chain business platform database to realize under-chain data evidence collection, inquiry and verification; uploading the data identification, the digital signature and the hash value of the original physical perception data to a blockchain network based on a dynamic anchoring strategy, and generating a tamper-proof on-chain certificate after the verification passes; The data verification and traceability comprises the steps that a user obtains original physical perception data from an under-chain service platform database, calculates a hash value, compares the calculated hash value with a hash value of corresponding original physical perception data in a blockchain network, and traces back a continuous signature chain to verify the authenticity, the integrity and the time sequence of the data. In one embodiment, the asymmetric key includes a node private key and a node public key, wherein the node private key is stored in a secure encryption module or trusted execution environment built in the node, and the node public key is registered to the blockchain network for subsequent on-chain signature verification. In one embodiment, the physical awareness data includes environmental state data, device operating parameters, spatial location and trajectory data, and resource metering data. In one embodiment, the signature relationship of the continuous signature chain is: In the formula, As the signature result corresponding to the nth piece of physical perception data,To perform a function of a digital signature algorithm on the input data (·) using a node private key SK, SK is the node private ke