Search

JP-2026514436-A - A method for processing personal information using a trusted execution environment of a smart contract platform, a computer-readable recording medium including instructions for executing the personal information processing method, and a system

JP2026514436AJP 2026514436 AJP2026514436 AJP 2026514436AJP-2026514436-A

Abstract

[Problem] To provide a personal information processing method and system that uses a trusted execution environment of a smart contract platform that can restore personal information to an encryption key. [Solution] A personal information processing method using a trusted execution environment of a smart contract platform according to an embodiment of the present invention includes the steps of: a data processing platform server responding to a data processing request received from a data processing request terminal in accordance with a smart contract distributed on a blockchain and generating a trusted execution environment including a data processing code; the trusted execution environment decrypting first data obtained from a data generation terminal; the trusted execution environment processing the decrypted first data based on the data processing code to generate a data processing result; and the trusted execution environment providing the data processing result to the data processing request terminal in accordance with the smart contract. [Selection Diagram] Figure 1

Inventors

  • キム, ヒョン ジュン

Assignees

  • エブチェイン インク.

Dates

Publication Date
20260511
Application Date
20240321
Priority Date
20230330

Claims (20)

  1. The data processing platform server responds to data processing requests received from data processing request terminals in accordance with smart contracts distributed on the blockchain, and generates a trusted execution environment including data processing code. The steps include: the first step in which the trusted execution environment decrypts the first data obtained from the data generation terminal; The steps include: the trusted execution environment processing the decoded first data based on the data processing code to generate a data processing result; A method for processing personal information using a trusted execution environment of a smart contract platform, characterized by comprising the step of providing the data processing results to the data processing request terminal in accordance with the smart contract.
  2. The personal information processing method using the trusted execution environment of the smart contract platform according to claim 1, characterized in that the first data includes at least one of video data and audio data from which personal information has been de-identified, metadata, and first encryption key information.
  3. The metadata includes the first terminal information of the data generation terminal that generated the first data, the generation time of at least one of the video data and audio data before the de-identification process of the personal information, and the location of the data generation terminal, as described in claim 2, for personal information processing using the trusted execution environment of the smart contract platform.
  4. The personal information processing method using the trusted execution environment of the smart contract platform according to claim 2, characterized in that the first encryption key information includes the second terminal information of the encryption key supply terminal that generated the first encryption key, and the first public key used for de-identifying the personal information.
  5. The step of decoding the first data is: A method for processing personal information using the trusted execution environment of a smart contract platform according to claim 4, characterized in that the data area corresponding to the personal information is identified using a first personal key obtained from the encryption key supply terminal.
  6. The personal information processing method using the trusted execution environment of the smart contract platform according to claim 2, characterized in that the first encryption key is an asymmetric key consisting of a pair of a first personal key and a first public key generated by an encryption key supply terminal, the first public key is generated based on the first personal key, and the first encryption key is updated by the encryption key supply terminal according to a predetermined schedule.
  7. The step of generating the aforementioned data processing results is: The steps include: analyzing the decoded first data to determine the data to be processed in response to the data processing request; The steps include selecting target video data from the decoded first data that includes the data to be processed, The stage of extracting metadata corresponding to the selected target video data, A method for processing personal information using a trusted execution environment of a smart contract platform according to claim 1, characterized by comprising the step of processing the extracted metadata in accordance with the data processing code to generate the data processing result.
  8. The step of determining the documents to be processed is: The steps include: recognizing an object in the video data within the decoded first data using the object recognition model included in the data processing code; A method for processing personal information using the trusted execution environment of a smart contract platform according to claim 7, characterized by comprising the steps of: determining the degree of agreement between the object characteristic information included in the data processing request and the recognized object, and identifying objects having a value equal to or greater than a standard agreement rate as targets for data processing.
  9. The step of generating the aforementioned data processing results is: The steps include: analyzing the decoded first data to determine the data to be processed in response to the data processing request; The steps include selecting target acoustic data from the decoded first data that includes the data to be processed, The steps include extracting metadata corresponding to the selected target acoustic data, A method for processing personal information using a trusted execution environment of a smart contract platform according to claim 1, characterized by comprising the step of processing the extracted metadata in accordance with the data processing code to generate the data processing result.
  10. The step of determining the documents to be processed is: The steps include classifying the acoustic data in the decoded first data using the acoustic signal analysis model included in the data processing code, A method for processing personal information using the trusted execution environment of a smart contract platform according to claim 9, characterized in that it includes the step of determining the degree of agreement between the object characteristic information included in the data processing request and the classified acoustic data, and identifying acoustic data having a value equal to or greater than a standard agreement rate as the data to be processed.
  11. After the stage of providing the data to the aforementioned data processing request terminal, A method for processing personal information using a trusted execution environment of a smart contract platform according to claim 1, further comprising the step of the trusted execution environment being destroyed in accordance with the smart contract.
  12. A computer-readable recording medium for storing one or more programs, wherein the one or more programs are configured to be executed by one or more processors of an electronic device, and the one or more programs include instructions for executing the method according to any one of claims 1 to 11.
  13. Multiple data generation terminals that generate temporary data by taking images or collecting sounds in different areas, recognize personal information within the temporary data, and generate first data by de-identifying the personal information based on a first encryption key, A personal information processing system using a trusted execution environment of a smart contract platform, characterized by including a data processing platform server that generates a trusted execution environment that responds to data processing requests received from a data processing request terminal in accordance with smart contracts distributed on the blockchain, and provides the data processing results generated based on the first data to the data processing request terminal.
  14. The personal information processing system using the trusted execution environment of the smart contract platform according to claim 13, characterized in that the first data includes at least one of the video data and audio data from which the personal information has been de-identified, metadata, and first encryption key information.
  15. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to claim 14, characterized in that it decrypts the first data obtained from each data generation terminal via the blockchain, processes the decrypted first data according to a data processing code, and generates the data processing result.
  16. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to claim 14, characterized in that it determines the first public key used for de-identification processing based on the first encryption key information, and decrypts the first data by identifying the personal information with the first personal key corresponding to the first public key.
  17. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to claim 14, characterized in that it analyzes the decrypted first data to determine the data processing target corresponding to the data processing request, selects target video data containing the data processing target from the decrypted first data, and processes metadata corresponding to the selected target video data according to a data processing code to generate the data processing result.
  18. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to 17, characterized in that it recognizes an object in the video data within the decoded first data using an object recognition model included in the data processing code, determines the degree of agreement between the object characteristic information included in the data processing request and the recognized object, and identifies objects having a value equal to or greater than a standard agreement rate as targets for data processing.
  19. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to claim 14, characterized in that it analyzes the decrypted first data to determine the data processing target corresponding to the data processing request, selects target acoustic data including the data processing target from the decrypted first data, and processes the metadata corresponding to the selected target acoustic data according to the data processing code to generate the data processing result.
  20. The aforementioned trusted execution environment is A personal information processing system using the trusted execution environment of a smart contract platform according to 19, characterized in that it classifies the acoustic data in the decoded first data using an acoustic signal analysis model included in the data processing code, determines the agreement rate between the object characteristic information included in the data processing request and the classified acoustic data, and identifies acoustic data having a value equal to or greater than a standard agreement rate as the target of data processing.

Description

This invention relates to a method and system for processing personal information using a trusted execution environment of a smart contract platform. Blockchain is a decentralized, decentralized system. Decentralization means that there is no single central authority to perform its functions; instead, numerous participants work together. Basically, a blockchain network is composed of a peer-to-peer (P2P) network, utilizing a consensus algorithm to generate blocks through a common process. The use of hashing is core to blockchain; the combination of hashing and the fact that numerous participants perform the same processing through the same data prevents data tampering or forgery. A smart contract is a set of programming code that automates the execution of contracts based on a blockchain that handles asset and trust-related aspects. The content of the code created by the developer is stored in a single block on the blockchain, and users can access the smart contract address to execute the code. The reason it's called a smart contract is that, like general transaction details, the code content of a smart contract is included in block information, making it impossible to manipulate. Because the program operates according to the coded content, it's well-suited for working with fixed terms, similar to a contract. Smart contracts created on Ethereum utilize the Solidity language and operate on the EVM. The virtual machine specifically designed to execute Ethereum smart contracts is called the Ethereum Virtual Machine (EVM). Ethereum smart contracts are created using languages such as Solidity and Viper, and are widely applied and used in the blockchain field. Various monitoring web applications exist to provide information on smart contracts on the Ethereum network. The most representative examples include Etherescan, provided by Ethereum itself, Alvio, which provides information in a visual format, and Remix, a Solidity IDE. On the other hand, de-identification is a technology that removes or replaces some or all of personal information through methods such as data deletion, pseudonymization, categorization, and data masking, so that a specific individual cannot be identified even when combined with other information. It is used as a measure to minimize the risk of personal information leakage and privacy violations during the data utilization process. The issue of de-identification has recently attracted attention in the context of the changing information and communication (ICT) environment, exemplified by Big Data, and the accompanying discussions surrounding personal information protection. When personal information is anonymized, the generated data becomes unidentifiable, making it impossible to further identify individuals. However, in certain situations, such as tracking criminal targets or identifying intruders, identified personal information is still necessary. Therefore, personal anonymization requires technology that can hide sensitive data information that could potentially violate privacy, while still allowing personal information to be restored under limited conditions. This is a schematic block diagram of a personal information processing system using a trusted execution environment of a smart contract platform according to an embodiment of the present invention.This is a block diagram illustrating the first data generation process of multiple data generation terminals according to an embodiment of the present invention.This is a block diagram illustrating a method for generating a data processing process for a trusted execution environment according to an embodiment of the present invention.This is a block diagram illustrating a method for generating data processing results in a trusted execution environment according to an embodiment of the present invention.This figure illustrates a method for processing personal information using a trusted execution environment of a smart contract platform according to an embodiment of the present invention.This figure illustrates a method for processing personal information using a trusted execution environment of a smart contract platform according to an embodiment of the present invention.This figure illustrates a method for processing personal information using a trusted execution environment of a smart contract platform according to an embodiment of the present invention.This figure illustrates a method for processing personal information non-identifiable on a data generation terminal according to another embodiment of the present invention.This figure illustrates a method for identifying personal information in a trusted execution environment according to an embodiment of the present invention.This figure illustrates a smart contract according to an embodiment of the present invention.This is a flowchart illustrating a method for processing personal information using a trusted execution environment of a smart contract platform according to an embodimen