+

CN113779605B - A parsing and authentication method for industrial Internet Handle identification system based on alliance chain - Google Patents

A parsing and authentication method for industrial Internet Handle identification system based on alliance chain Download PDF

Info

Publication number
CN113779605B
CN113779605B CN202111073607.9A CN202111073607A CN113779605B CN 113779605 B CN113779605 B CN 113779605B CN 202111073607 A CN202111073607 A CN 202111073607A CN 113779605 B CN113779605 B CN 113779605B
Authority
CN
China
Prior art keywords
node
consensus
alliance chain
user
nodes
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202111073607.9A
Other languages
Chinese (zh)
Other versions
CN113779605A (en
Inventor
张晓�
赵欣
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhuoxi Shanxi Industrial Internet Technology Co ltd
Original Assignee
Mako Workshop Industrial Technology Beijing Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mako Workshop Industrial Technology Beijing Co ltd filed Critical Mako Workshop Industrial Technology Beijing Co ltd
Priority to CN202111073607.9A priority Critical patent/CN113779605B/en
Publication of CN113779605A publication Critical patent/CN113779605A/en
Application granted granted Critical
Publication of CN113779605B publication Critical patent/CN113779605B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Storage Device Security (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses an industrial Internet Handle identification system analysis and authentication method based on a alliance chain, which comprises the following steps: constructing a alliance chain architecture, setting an admission node to verify qualification of entering the alliance chain by an industrial Internet identification analysis admission mechanism, writing identity information of a user node into a distributed database under the chain by a storage node, maintaining an alliance chain account book by a consensus node, and packaging a node ID and an identity information hash value into a block uplink. When the user node requests the industrial Internet identification analysis service, the admission qualification of the alliance chain is firstly obtained, and the admission qualification can be obtained after the admission node is audited and the consensus node records the uplink. After obtaining the admission qualification of the alliance chain, the user node can request service from the Handle system, the user node requests service from the system node, the system node obtains the identity information hash value and specific identity information from the alliance chain account book and the admission node respectively, and the identity of the user node can be verified after calculation and comparison.

Description

一种基于联盟链的工业互联网Handle标识体系解析认证方法A parsing and authentication method for industrial Internet Handle identification system based on alliance chain

技术领域Technical Field

本发明属于工业互联网管理技术领域,涉及一种基于联盟链的工业互联网认证方法。The present invention belongs to the technical field of industrial Internet management and relates to an industrial Internet authentication method based on alliance chain.

背景技术Background technique

目前我国工业互联网建设快速发展,已成为推动产业转型升级的重要助力,而工业互联网标识解析体系是其最重要的基础设施,为工业设备、机器、物料、零部件和产品提供编码、注册与解析服务,是平台、网络、设备、控制、数据等工业互联网关键要素实现协同的纽带,是解决不同行业,不同企业间信息孤岛的关键措施。At present, the construction of industrial Internet in my country is developing rapidly, and it has become an important driving force for promoting industrial transformation and upgrading. The industrial Internet identification and resolution system is its most important infrastructure, providing coding, registration and resolution services for industrial equipment, machines, materials, parts and products. It is the link for the coordination of key elements of the industrial Internet such as platforms, networks, equipment, control, and data. It is a key measure to solve the information islands between different industries and enterprises.

当前,我国主要使用的标识解析体系为Handle系统,Handle系统是全球范围分布式通用标识服务系统,于1994年提出,旨在提供高效、可扩展、安全的全局标识解析服务。Handle 系统采用分层服务模型,无单根节点。顶层为数个平行的全局Handle 注册表(GHR,global handle registry),GHR间数据时时同步、平等互通;下层为本地Handle 服务(LHS,local Handle service)。中国运用Handle系统的工业互联网标识解析体系包括国际根节点(负责向全球范围提供公共根区数据管理和根解析服务)、国家顶级节点(负责国内顶级标识编码注册和标识解析服务以及标识备案和认证等)、二级节点(主要指行业节点,负责行业或区域内的标识编码注册和标识解析服务以及标识业务管理和应用对接服务)、企业节点(企业自己的节点,也叫做三级节点,负责企业的标识编码注册和标识解析服务)、递归解析节点(为工业互联网终端提供统一入口,通过缓存等技术提高标识解析服务性能)、客户端(标识数据的使用者或标识解析节点的管理终端)。At present, the main identity resolution system used in my country is the Handle system. The Handle system is a globally distributed universal identity service system. It was proposed in 1994 and aims to provide efficient, scalable and secure global identity resolution services. The Handle system adopts a layered service model without a single root node. The top layer is several parallel global handle registries (GHRs), and the data between GHRs is synchronized and communicated equally; the lower layer is the local Handle service (LHS). China's industrial Internet identity resolution system using the Handle system includes international root nodes (responsible for providing public root zone data management and root resolution services to the world), national top-level nodes (responsible for domestic top-level identity coding registration and identity resolution services, identity filing and certification, etc.), secondary nodes (mainly referring to industry nodes, responsible for identity coding registration and identity resolution services within the industry or region, as well as identity business management and application docking services), enterprise nodes (the enterprise's own nodes, also called third-level nodes, responsible for the enterprise's identity coding registration and identity resolution services), recursive resolution nodes (providing a unified entrance for industrial Internet terminals, improving identity resolution service performance through caching and other technologies), and clients (users of identity data or management terminals of identity resolution nodes).

Handle系统为扁平分层的服务模式。Handle系统的安全认证机制包括管理员与权限设计,客户端身份安全与操作合法安全等内容,而这些机制主要是基于传统的中心化证书颁发机构(CA,Certificate Authority)作为受信任的第三方来负责工业互联网解析场景中的安全认证。当下,工业互联网中网络安全问题频发,传统的受信任的第三方CA认证很容易遭受攻击,抵抗恶意攻击能力差,造成资源滥用、数据泄露、数据篡改、身份欺骗等安全风险。The Handle system is a flat and layered service model. The security authentication mechanism of the Handle system includes administrator and authority design, client identity security and legal and secure operation, etc. These mechanisms are mainly based on the traditional centralized certificate authority (CA) as a trusted third party to be responsible for security authentication in the industrial Internet parsing scenario. At present, network security issues frequently occur in the industrial Internet. Traditional trusted third-party CA authentication is easily attacked and has poor resistance to malicious attacks, resulting in security risks such as resource abuse, data leakage, data tampering, and identity fraud.

基于此,有将区块链技术用于工业互联网标识解析认证领域,区块链技术源于数字加密货币,具有去中心化、去信任、数据不可篡改、可追溯等优势,可以有效解决传统的中心化CA认证所遇到的安全问题。然而,在工业互联网环境中,标识注册与解析数据量大,需要在保证安全性的同时保证一定的吞吐量,传统区块链交易量受限、资源消耗大,不适用于当下的工业互联网环境,同时传统的区块链结构数据量只增不减,在当前的网络带宽情况下难以保证交易量,同时无法有效存储海量的数据。当区块链用于工业互联网认证时,必须改进存储方案以支持大量数据,同时不浪费网络带宽和区块存储资源。胡向东等人申请的专利(一种基于区块链的工业互联网身份认证方法,CN111818056A)就将区块链用于工业互联网认证,使用双链交互完成节点的注册、认证和Token的发放,然而双链交互复杂,无法满足大规模的标识解析需求。Based on this, blockchain technology is used in the field of industrial Internet identity resolution and authentication. Blockchain technology originates from digital cryptocurrency and has the advantages of decentralization, trustlessness, data immutability, and traceability. It can effectively solve the security problems encountered by traditional centralized CA authentication. However, in the industrial Internet environment, the amount of identity registration and resolution data is large, and it is necessary to ensure a certain throughput while ensuring security. The transaction volume of traditional blockchain is limited and the resource consumption is large. It is not suitable for the current industrial Internet environment. At the same time, the amount of data in the traditional blockchain structure only increases and does not decrease. It is difficult to ensure the transaction volume under the current network bandwidth, and it is impossible to effectively store massive data. When blockchain is used for industrial Internet authentication, the storage solution must be improved to support large amounts of data without wasting network bandwidth and block storage resources. The patent applied by Hu Xiangdong et al. (A blockchain-based industrial Internet identity authentication method, CN111818056A) uses blockchain for industrial Internet authentication, and uses dual-chain interaction to complete node registration, authentication and token issuance. However, the dual-chain interaction is complex and cannot meet the needs of large-scale identity resolution.

发明内容Summary of the invention

本发明目的在于克服现有技术中存在的问题,提出一种基于联盟链的工业互联网Handle标识体系认证方法,主要采用联盟链体系架构和利用链上链下相交互的方法,链上使用区块链共识机制将身份认证信息数据哈希值写入区块,链下使用分布式存储系统存储身份认证信息。采用本发明能够使得大量的认证数据得到处理,保证了高交易量,同时使用区块链保证身份认证信息不受篡改。The purpose of the present invention is to overcome the problems existing in the prior art, and propose an industrial Internet Handle identification system authentication method based on alliance chain, which mainly adopts the alliance chain system architecture and the method of using the interaction between the chain and the off-chain. The blockchain consensus mechanism is used on the chain to write the hash value of the identity authentication information data into the block, and the distributed storage system is used to store the identity authentication information off the chain. The present invention can process a large amount of authentication data, ensure a high transaction volume, and use the blockchain to ensure that the identity authentication information is not tampered with.

为了实现本发明的目的,本发明采用的技术方案如下:In order to achieve the purpose of the present invention, the technical solution adopted by the present invention is as follows:

一种基于联盟链的工业互联网Handle标识体系解析认证方法,包括如下步骤:A method for parsing and authenticating an industrial Internet Handle identification system based on a consortium chain includes the following steps:

步骤一、构建联盟链认证架构;Step 1: Build a consortium chain authentication architecture;

步骤二、所构建的联盟链认证架构实现用户节点的注册、认证请求。Step 2: The constructed alliance chain authentication architecture realizes the registration and authentication requests of user nodes.

所述步骤一中,联盟链认证架构由工业互联网标识解析准入机构、链下分布式存储系统、联盟链、Handle系统四个模块组成;其中,工业互联网标识解析准入机构认证特定行业或企业进入联盟链的资格,由工业互联网标识解析准入机构设置准入节点;链下分布式存储系统存储具体的身份认证信息,由存储节点维护;联盟链存储用户的身份认证信息哈希值,由共识节点维护;Handle系统负责工业互联网数据标识解析服务,并向系统发起认证或注册请求。In the step one, the alliance chain authentication architecture consists of four modules: the industrial Internet identity resolution access agency, the off-chain distributed storage system, the alliance chain, and the Handle system; the industrial Internet identity resolution access agency certifies the qualifications of a specific industry or enterprise to enter the alliance chain, and the industrial Internet identity resolution access agency sets the access node; the off-chain distributed storage system stores specific identity authentication information, which is maintained by the storage node; the alliance chain stores the user's identity authentication information hash value, which is maintained by the consensus node; the Handle system is responsible for the industrial Internet data identity resolution service, and initiates authentication or registration requests to the system.

进一步的,步骤一中,准入节点具有信用背书,实现联盟链中第一次认证;共识节点为各行业或企业接入联盟链时提供的服务器组,共同建设和维护联盟链账本。Furthermore, in step one, the access node has a credit endorsement to achieve the first authentication in the alliance chain; the consensus node is a server group provided when various industries or enterprises access the alliance chain, and jointly builds and maintains the alliance chain ledger.

所述步骤二中,在用户节点认证请求之前该用户需要在系统中先行注册,注册方法如下:In step 2, the user needs to register in the system before the user node authentication request. The registration method is as follows:

(1)、用户节点向准入节点发送注册请求,并附上身份信息;准入节点审核用户节点身份信息,决定能否接入联盟链;(1) The user node sends a registration request to the admission node and attaches identity information; the admission node reviews the user node identity information and decides whether it can access the alliance chain;

其中,用户节点的注册包括准入节点、共识节点、Handle系统中各节点的加入以及请求标识解析服务的客户端,以上节点统称为用户节点,这些节点在向准入节点申请注册时需附上证明自身身份的资质信息。The registration of user nodes includes the entry nodes, consensus nodes, the joining of nodes in the Handle system, and the client requesting the identity resolution service. The above nodes are collectively referred to as user nodes. When applying for registration with the entry nodes, these nodes must attach qualification information to prove their identity.

(2)、准入节点批准该用户节点接入联盟链网络,生成用户ID和公私钥对,并将用户身份信息哈希值和用户ID作为交易转发给共识节点;(2) The admission node approves the user node to access the consortium chain network, generates a user ID and a public-private key pair, and forwards the user identity information hash value and user ID as a transaction to the consensus node;

其中,准许接入联盟链的用户节点的身份信息由准入节点生成,为:{ID,公钥,地址,时间戳,身份信息}。Among them, the identity information of the user node allowed to access the alliance chain is generated by the access node, which is: {ID, public key, address, timestamp, identity information}.

(3)、共识节点对收到的交易进行验证,达成一致性共识,将用户ID和用户身份信息的哈希值写入联盟链中;负责打包区块的共识节点向准入节点返回写入成功消息。(3) The consensus node verifies the received transaction, reaches a consensus, and writes the hash value of the user ID and user identity information into the alliance chain; the consensus node responsible for packaging the block returns a write success message to the access node.

(4)、准入节点收到消息后,将用户身份信息转发给存储节点,由存储节点写入链下数据库,准入节点同时将用户节点ID,公钥和私钥返回用户节点。(4) After receiving the message, the access node forwards the user identity information to the storage node, which writes it into the off-chain database. The access node also returns the user node ID, public key and private key to the user node.

进一步的,在上述注册过程的步骤(3)中,共识节点之间的共识方法如下:Furthermore, in step (3) of the above registration process, the consensus method between consensus nodes is as follows:

a、联盟链共识过程中,准入节点监听联盟链网络,在本地维护一个记录所有共识节点分数的日志,评分方法如下:初始时所有共识节点评分为0,在共识过程中:准入节点收到小于全部共识节点总数2/3的回复,则选举出的主节点分数减2,其他节点分数加1;成功产生区块的记账节点加1;新加入的节点分数为0;新一轮共识开始后,准入节点根据本地评分日志,选取评分最高的共识节点作为记账节点,向记账节点发送共识请求,并将用户身份信息哈希值和用户ID作为交易向全网共识节点广播;a. During the alliance chain consensus process, the access node monitors the alliance chain network and maintains a local log recording the scores of all consensus nodes. The scoring method is as follows: Initially, the score of all consensus nodes is 0. During the consensus process: if the access node receives less than 2/3 of the total number of consensus nodes, the score of the elected master node will be reduced by 2, and the scores of other nodes will be increased by 1; the score of the accounting node that successfully generates a block will be increased by 1; the score of the newly added node is 0; after a new round of consensus begins, the access node selects the consensus node with the highest score as the accounting node according to the local scoring log, sends a consensus request to the accounting node, and broadcasts the user identity information hash value and user ID as a transaction to the consensus nodes of the entire network;

b、所有共识节点独立监听全网交易,并将监听到的交易检验合法性后存入内存;收到共识请求的记账节点将收集到的交易数据按时间排序打包装入区块,并将该区块转发给其他共识节点;b. All consensus nodes independently monitor transactions on the entire network, and store the monitored transactions in memory after verifying their legitimacy; the accounting node that receives the consensus request packs the collected transaction data into blocks in chronological order, and forwards the blocks to other consensus nodes;

c、其他共识节点收到区块后对区块内交易和区块本身进行验证,验证无误后向准入节点返回验证成功消息,验证失败则丢弃此区块,不返回信息;首先验证区块的合法性:区块的格式是否符合规则、区块的时间戳是否在合法范围内、本区块头的中的哈希值是否与前一区块的哈希值相同、区块内的交易是否合法;再验证区块内交易的合法性:交易的格式是否符合规则、交易是否已经存在于联盟链账本中。c. After receiving the block, other consensus nodes verify the transactions in the block and the block itself. After the verification is correct, a verification success message is returned to the access node. If the verification fails, the block is discarded and no information is returned. First, the legitimacy of the block is verified: whether the format of the block complies with the rules, whether the timestamp of the block is within the legal range, whether the hash value in the header of this block is the same as the hash value of the previous block, and whether the transactions in the block are legal; then verify the legitimacy of the transactions in the block: whether the format of the transactions complies with the rules, and whether the transactions already exist in the alliance chain ledger.

d、准入节点收到超过全部共识节点总数2/3的回复,即表示新区块生成,共识完成,否则表示共识失败,此轮共识结束;最后,准入节点将根据共识结果更新本地评分日志。d. If the admission node receives replies from more than 2/3 of the total number of consensus nodes, it means that a new block is generated and the consensus is completed. Otherwise, it means that the consensus fails and this round of consensus ends. Finally, the admission node will update the local scoring log according to the consensus result.

进一步的,在以上注册过程中,公私钥对将作为用户节点与系统中节点进行通讯的工具,即系统中节点之间的通信通过公私钥对实现,发送方使用接受方公钥加密请求,并附上使用自身私钥加密的请求哈希,接受方使用自身私钥解密信息并用发送方公钥解密请求哈希并进行验证。Furthermore, in the above registration process, the public-private key pair will be used as a tool for user nodes to communicate with nodes in the system, that is, the communication between nodes in the system is realized through the public-private key pair. The sender uses the recipient's public key to encrypt the request and attaches the request hash encrypted with its own private key. The recipient uses its own private key to decrypt the information and decrypts the request hash with the sender's public key for verification.

所述步骤二中,用户节点向系统请求身份认证方法如下:In step 2, the user node requests identity authentication from the system as follows:

(1)、用户节点向Handle系统请求服务,附上自身ID和公钥。(1) The user node requests services from the Handle system and attaches its own ID and public key.

(2)、收到请求的Handle系统节点从联盟链账本中读取{ID,身份信息哈希值};其中,收到特定请求并向系统请求认证的节点统称为系统节点,系统节点为Handle系统中所有能提供标识解析服务的节点;(2) The Handle system node that receives the request reads {ID, identity information hash value} from the consortium chain ledger; the nodes that receive a specific request and request authentication from the system are collectively referred to as system nodes, and system nodes are all nodes in the Handle system that can provide identity resolution services;

(3)、系统节点向准入节点请求读取链下数据库;(3) The system node requests the access node to read the off-chain database;

(4)、准入节点验证系统节点身份,验证无误后从存储节点读取数据库,返回身份信息;其中,准入节点对系统节点的验证的方法为从联盟链账本读取身份信息哈希值和查找链下数据库身份信息并计算哈希值进行比对;(4) The access node verifies the identity of the system node. After verification, it reads the database from the storage node and returns the identity information. The method by which the access node verifies the system node is to read the identity information hash value from the consortium chain ledger and to search for the identity information in the off-chain database and calculate the hash value for comparison.

(5)、系统节点收到返回信息后计算哈希值并与联盟链账本上读取的哈希值进行比对,两者一致则返回认证成功消息,反之丢弃该请求。(5) After receiving the return information, the system node calculates the hash value and compares it with the hash value read from the alliance chain ledger. If the two are consistent, an authentication success message is returned; otherwise, the request is discarded.

总之,本发明所述基于联盟链的工业互联网Handle标识体系解析认证方法:在当前Handle标识解析系统基础上构建联盟链架构,由工业互联网标识解析准入机构设准入节点验证进入联盟链的资格,由存储节点负责将用户节点的身份信息写入链下分布式数据库,由共识节点维护联盟链账本,将节点ID和身份信息哈希值打包成区块上链。用户节点想要请求工业互联网标识解析服务时,首先要获取联盟链的准入资质,由准入节点审核、共识节点记录上链后即可获得准入资质。用户节点在获得联盟链准入资质后即可向Handle系统请求服务,用户节点向系统节点请求服务,系统节点从联盟链账本和准入节点处分别获得身份信息哈希值和具体的身份信息,经过计算比对后即可验证用户节点的身份。In summary, the Industrial Internet Handle identification system parsing and authentication method based on the alliance chain described in the present invention: build an alliance chain architecture based on the current Handle identification resolution system, and the Industrial Internet identification resolution access agency sets an access node to verify the qualification to enter the alliance chain. The storage node is responsible for writing the identity information of the user node into the off-chain distributed database, and the consensus node maintains the alliance chain account book, and packages the node ID and the identity information hash value into a block chain. When a user node wants to request an industrial Internet identification resolution service, it must first obtain the access qualification of the alliance chain, and the access qualification can be obtained after the access node reviews and the consensus node records it on the chain. After obtaining the alliance chain access qualification, the user node can request services from the Handle system, and the user node requests services from the system node. The system node obtains the identity information hash value and specific identity information from the alliance chain account book and the access node respectively, and the identity of the user node can be verified after calculation and comparison.

与现有技术相比,本发明的优势在于:Compared with the prior art, the advantages of the present invention are:

1、本发明引入了基于联盟链的架构体系,只针对特定组织开放,在可用性,高性能、隐私保护,数据监管上更有优势,系统运行效率更高成本更低。1. The present invention introduces an architecture system based on alliance chain, which is only open to specific organizations. It has advantages in availability, high performance, privacy protection, and data supervision, and the system operates more efficiently and at a lower cost.

2、本发明采用了一种改进的共识算法,引入评分机制,可以在联盟链环境下有效防止恶意或故障节点,并可以实现节点的动态加入。2. The present invention adopts an improved consensus algorithm and introduces a scoring mechanism, which can effectively prevent malicious or faulty nodes in the alliance chain environment and realize the dynamic joining of nodes.

3、本发明使用了链上链下的数据协同,链上使用链下的存储系统扩展了存储能力,链下通过哈希值实现链上信息的不可篡改,既保证了链下信息的安全性,同时又使用链下存储达到了传输的高效性。3. The present invention uses data collaboration on and off the chain. The storage capacity of the chain is expanded by using the off-chain storage system. The off-chain hash value is used to achieve the tamper-proof nature of the on-chain information, which not only ensures the security of the off-chain information, but also achieves high transmission efficiency by using off-chain storage.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

图1表示本发明所述的基于联盟链的Handle标识体系解析认证方法系统架构图。FIG1 shows a system architecture diagram of the Handle identification system parsing and authentication method based on the alliance chain described in the present invention.

图2表示本发明所述的基于联盟链的工业互联网身份注册方法流程图。FIG2 shows a flow chart of the industrial Internet identity registration method based on alliance chain described in the present invention.

图3表示本发明所述的维护联盟链的共识节点共识算法流程图。FIG3 shows a flow chart of the consensus algorithm for maintaining the consensus nodes of the alliance chain according to the present invention.

图4表示本发明所述的基于联盟链的工业互联网身份认证方法流程图。FIG4 is a flow chart of the industrial Internet identity authentication method based on alliance chain described in the present invention.

具体实施方式Detailed ways

以下结合附图通过具体实施例详细说明本发明,但不构成对本发明的限制。The present invention is described in detail below through specific embodiments in conjunction with the accompanying drawings, but does not constitute a limitation of the present invention.

本实施例提供一种基于联盟链的工业互联网Handle标识体系解析认证方法,具体包括:This embodiment provides an industrial Internet Handle identification system parsing and authentication method based on a consortium chain, which specifically includes:

步骤一、在当前Handle标识解析系统基础上构建联盟链认证架构;Step 1: Build a consortium chain authentication architecture based on the current Handle identity resolution system;

步骤二、系统实现用户节点的注册、认证请求。Step 2: The system implements the registration and authentication request of the user node.

首先要基于现有Handle体系建立联盟链认证架构,如图1所示,联盟链认证架构由工业互联网标识解析准入机构、链下分布式存储系统、联盟链、Handle系统四个模块组成。First, we need to establish a consortium chain authentication architecture based on the existing Handle system. As shown in Figure 1, the consortium chain authentication architecture consists of four modules: the industrial Internet identity resolution access agency, the off-chain distributed storage system, the consortium chain, and the Handle system.

工业互联网标识解析准入机构设准入节点认证特定行业或企业进入联盟链的资格,这些特定的准入机构运行准入节点,准入节点具有信用背书,接受注册和认证请求。The Industrial Internet identity resolution access agency sets up access nodes to certify the qualifications of specific industries or enterprises to enter the alliance chain. These specific access agencies operate access nodes, which have credit endorsements and accept registration and certification requests.

链下分布式存储系统存储具体的身份认证信息,由存储节点维护,即存储节点维护链下的分布式存储。联盟链存储用户的身份认证信息哈希值,由共识节点维护;共识节点为各行业或企业接入联盟链时提供的服务器组,共同建设和维护联盟链账本。当行业或企业接入联盟链后要维护一个或多个共识节点,这些成员共识节点之间通过弱中心的互信达成共识,共同维护联盟链数据,任何节点对身份数据的处理都视为一次交易。The off-chain distributed storage system stores specific identity authentication information and is maintained by the storage nodes, that is, the storage nodes maintain the off-chain distributed storage. The alliance chain stores the hash value of the user's identity authentication information and is maintained by the consensus node; the consensus node is a server group provided by various industries or enterprises when they access the alliance chain, and jointly builds and maintains the alliance chain ledger. When an industry or enterprise accesses the alliance chain, it must maintain one or more consensus nodes. These member consensus nodes reach consensus through mutual trust in weak centers and jointly maintain the alliance chain data. Any node's processing of identity data is considered a transaction.

联盟链的创建从创世区块开始,准入节点将搭建联盟链时经过认证的准入节点、共识节点以及Handle体系中的各节点的{ID,身份信息哈希值}作为交易转发给共识节点,共识节点经共识后形成创世区块,同时,存储节点将具体的身份信息写入链下分布式数据库中。The creation of the alliance chain starts with the genesis block. The access node forwards the {ID, identity information hash value} of the authenticated access node, consensus node and each node in the Handle system as a transaction to the consensus node. The consensus node forms the genesis block after consensus. At the same time, the storage node writes the specific identity information into the off-chain distributed database.

Handle系统负责工业互联网数据标识解析服务,并向系统发起认证或注册请求。工业互联网标识解析体系提供工业设备、产品等的标识编码、注册与解析服务,服务的请求方在此统称为用户节点,由于工业生产的保密性要求,服务的请求方首先需联盟链登记注册,请求授予一个合法的用户身份。The Handle system is responsible for the industrial Internet data identification resolution service and initiates authentication or registration requests to the system. The industrial Internet identification resolution system provides identification coding, registration and resolution services for industrial equipment and products. The service requester is collectively referred to as the user node. Due to the confidentiality requirements of industrial production, the service requester must first register with the alliance chain and request to be granted a legal user identity.

请求注册方统称为用户节点,包括但不限于准入节点、共识节点、Handle系统中各节点以及请求标识解析服务的客户端,这些节点在向准入节点申请注册时需附上证明自身身份的资质信息,如图2流程图所示,用户认证请求之前该用户需在系统中先行注册,具体操作如下:The parties requesting registration are collectively referred to as user nodes, including but not limited to access nodes, consensus nodes, nodes in the Handle system, and clients requesting identity resolution services. When applying for registration with access nodes, these nodes must attach qualification information to prove their identity, as shown in the flowchart of Figure 2. Before the user authentication request, the user must first register in the system. The specific operations are as follows:

(1)、用户节点首先向准入节点发送注册请求,并附上相关身份信息。这一过程可以通过网络进行,也可以在线下向工业互联网标识解析准入机构提交申请。准入节点审核用户节点身份信息,决定能否接入联盟链。准入节点收到请求后进行审核,审核的内容包括提供的身份信息是否有资格进入联盟链或该用户节点是否已经注册过,审核通过则进入下一步。(1) The user node first sends a registration request to the access node and attaches relevant identity information. This process can be carried out through the Internet, or by submitting an application offline to the Industrial Internet Identity Resolution Access Agency. The access node reviews the user node identity information and decides whether it can access the alliance chain. After receiving the request, the access node conducts an audit, including whether the identity information provided is eligible to enter the alliance chain or whether the user node has been registered. If the audit is passed, it will proceed to the next step.

(2)、准入节点审核通过后,生成该用户节点的用户ID和公私钥对,并向全网共识节点广播此次注册,即将用户节点身份信息哈希值和用户节点ID作为交易转发给共识节点。准许接入联盟链的用户节点的身份信息由准入节点生成,为:{ID,公钥,地址,时间戳,身份信息}。(2) After the admission node passes the review, it generates the user ID and public-private key pair of the user node, and broadcasts the registration to the consensus nodes of the entire network, that is, forwarding the user node identity information hash value and user node ID as a transaction to the consensus node. The identity information of the user node allowed to access the alliance chain is generated by the admission node, which is: {ID, public key, address, timestamp, identity information}.

(3)、共识节点先验证发起交易请求的准入节点身份,后验证收到的交易,全网共识节点对收到的交易进行验证达成一致性共识,将 {ID,身份信息哈希值} 写入区块链中,经过共识选出的负责打包区块的共识节点向准入节点返回消息。(3) The consensus node first verifies the identity of the access node that initiated the transaction request, and then verifies the received transaction. The consensus nodes of the entire network verify the received transactions and reach a consistent consensus. {ID, identity information hash value} is written into the blockchain. The consensus node responsible for packaging the block selected by consensus returns a message to the access node.

(4)、准入节点收到共识节点发来的返回消息,首先验证共识节点身份,验证无误由存储节点将用户身份信息写入链下分布式数据库,用户身份信息为{ID,公钥,地址,时间戳,身份认证信息},由准入节点生成,最后准入节点将用户节点ID,公钥和私钥返回用户节点。(4) When the admission node receives the return message from the consensus node, it first verifies the identity of the consensus node. If the verification is correct, the storage node writes the user identity information into the off-chain distributed database. The user identity information is {ID, public key, address, timestamp, identity authentication information}, which is generated by the admission node. Finally, the admission node returns the user node ID, public key and private key to the user node.

在以上注册过程中,公私钥对将作为用户节点与系统中所有节点(包括用户节点、准入节点、共识节点等)进行通讯的工具,即系统节点之间的通信通过公私钥对实现来保证安全性,发送方使用接受方公钥加密请求,并附上使用自身私钥加密的请求哈希,接受方使用自身私钥解密信息并用发送方公钥解密请求哈希并进行验证。其中,准入节点、共识节点的公钥是公开的。In the above registration process, the public-private key pair will be used as a tool for the user node to communicate with all nodes in the system (including user nodes, access nodes, consensus nodes, etc.), that is, the communication between system nodes is realized through the public-private key pair to ensure security. The sender uses the public key of the receiver to encrypt the request and attaches the request hash encrypted with its own private key. The receiver uses its own private key to decrypt the information and decrypts the request hash with the sender's public key for verification. Among them, the public keys of the access node and consensus node are public.

在上述注册过程的步骤(3)中,共识节点之间的共识方法如下,如图3流程图所示:In step (3) of the above registration process, the consensus method between consensus nodes is as follows, as shown in the flowchart of Figure 3:

1)、联盟链共识过程中,准入节点监听联盟链网络,在本地维护一个记录所有共识节点分数S的日志,评分方法如下:初始时所有共识节点评分为0,在共识过程中:准入节点收到小于全部共识节点总数2/3的回复,则选举出的主节点分数减2,其他节点分数加1;成功产生区块的记账节点加1;新加入的节点分数为0。新一轮共识开始后,准入节点根据本地评分日志,选取评分最高的共识节点作为记账节点,向记账节点发送共识请求,并将用户身份信息哈希值和用户ID作为交易向全网共识节点广播。1) During the alliance chain consensus process, the access node monitors the alliance chain network and maintains a local log recording the scores S of all consensus nodes. The scoring method is as follows: Initially, all consensus nodes are scored 0. During the consensus process: if the access node receives less than 2/3 of the total number of consensus nodes, the score of the elected master node is reduced by 2, and the scores of other nodes are increased by 1; the score of the accounting node that successfully generates a block is increased by 1; the score of the newly added node is 0. After the start of a new round of consensus, the access node selects the consensus node with the highest score as the accounting node according to the local scoring log, sends a consensus request to the accounting node, and broadcasts the user identity information hash value and user ID as a transaction to the consensus nodes of the entire network.

2)、所有共识节点独立监听全网交易,并将监听到的交易检验合法性后存入内存。收到共识请求的记账节点将收集到的交易数据按时间排序打包装入区块,并将该区块转发给其他共识节点。2) All consensus nodes independently monitor transactions in the entire network, and store the monitored transactions in memory after verifying their legitimacy. The accounting node that receives the consensus request will package the collected transaction data into blocks in chronological order and forward the block to other consensus nodes.

3)、其他共识节点收到区块后对区块内交易和区块本身进行验证,验证无误后向准入节点返回验证成功消息,验证失败则丢弃此区块,不返回信息。首先验证区块的合法性,区块的合法性判断如下:ⅰ区块的格式是否符合规则;ⅱ区块的时间戳是否在合法范围内;ⅲ本区块头的中的哈希值是否与前一区块的哈希值相同;ⅳ区块内的交易是否合法。再验证区块内交易的合法性,交易的合法性判定如下:ⅰ交易的格式是否符合规则;ⅱ交易是否已经存在于联盟链账本中。3) After receiving the block, other consensus nodes verify the transactions in the block and the block itself. After the verification is correct, they return a verification success message to the access node. If the verification fails, the block is discarded and no information is returned. First, verify the legitimacy of the block. The legitimacy of the block is judged as follows: ⅰWhether the format of the block complies with the rules; ⅱWhether the timestamp of the block is within the legal range; ⅲWhether the hash value in the header of this block is the same as the hash value of the previous block; ⅳWhether the transactions in the block are legal. Then verify the legitimacy of the transactions in the block. The legitimacy of the transactions is judged as follows: ⅰWhether the format of the transaction complies with the rules; ⅱWhether the transaction already exists in the alliance chain account book.

4)、准入节点收到超过全部共识节点总数2/3的回复,即表示新区块生成,共识完成,否则表示共识失败,此轮共识结束。最后,准入节点将根据共识结果更新本地评分日志。4) If the admission node receives replies from more than 2/3 of the total number of consensus nodes, it means that a new block is generated and the consensus is completed. Otherwise, it means that the consensus fails and this round of consensus ends. Finally, the admission node will update the local scoring log according to the consensus result.

用户节点通过准入审核并完成注册之后,即可向Handle系统申请标识解析服务,在此,将请求服务的发起方统称为用户节点,Handle系统中提供服务的节点统称为系统节点。如图4流程图所示,用户节点向接收节点请求服务,身份认证具体操作如下:After the user node passes the access review and completes the registration, it can apply for the identity resolution service from the Handle system. Here, the initiator of the request service is collectively referred to as the user node, and the nodes providing services in the Handle system are collectively referred to as system nodes. As shown in the flowchart of Figure 4, the user node requests services from the receiving node, and the specific operations of identity authentication are as follows:

(1)、用户节点向Handle系统中的特定节点请求标识解析服务,附上自身用户ID和公钥,节点间的通讯同注册操作,系统节点的公钥是公开的。用户节点包括但不限于与Handle系统请求服务的节点或客户端。(1) The user node requests the identity resolution service from a specific node in the Handle system, attaching its own user ID and public key. The communication between nodes is the same as the registration operation. The public key of the system node is public. User nodes include but are not limited to nodes or clients that request services from the Handle system.

(2)、系统节点收到请求,根据解密后的用户ID,从联盟链账本中读取{ID,身份信息哈希值}。如果读取失败,则丢弃此请求。收到特定请求并向系统请求认证的节点统称为系统节点,系统节点为Handle系统中所有能提供标识解析服务的节点。(2) After receiving the request, the system node reads {ID, identity information hash value} from the consortium chain ledger based on the decrypted user ID. If the read fails, the request is discarded. Nodes that receive a specific request and request authentication from the system are collectively referred to as system nodes. System nodes are all nodes in the Handle system that can provide identity resolution services.

(3)、系统节点从区块链账本中找到相应的{ID,身份信息哈希值}成功后,系统节点向准入节点请求读取链下分布式数据库,发送到请求信息包括自身节点ID、公钥、以及用户节点ID。(3) After the system node successfully finds the corresponding {ID, identity information hash value} from the blockchain ledger, the system node requests the access node to read the off-chain distributed database, and the request information sent includes its own node ID, public key, and user node ID.

(4)、准入节点收到系统节点发来的验证请求消息,首先验证系统节点身份,验证的过程为从联盟链账本中读取此系统节点身份信息哈希值,再从分布式存储中根据系统节点ID读取具体的身份信息,两者经过计算比对验证无误后,准入节点从存储节点根据请求消息中的用户节点ID查找数据库,最终向系统节点返回身份信息。(4) When the access node receives the verification request message from the system node, it first verifies the identity of the system node. The verification process is to read the hash value of the system node identity information from the alliance chain ledger, and then read the specific identity information from the distributed storage based on the system node ID. After the two are calculated and compared and verified to be correct, the access node searches the database from the storage node based on the user node ID in the request message, and finally returns the identity information to the system node.

(5)、系统节点收到准入节点发来的消息后,计算身份信息哈希值并与从联盟链账本上取下的身份信息哈希值进行比对,对比一致即可完成用户节点的身份认证,并向用户节点返回认证成功消息。(5) After receiving the message from the access node, the system node calculates the identity information hash value and compares it with the identity information hash value taken from the alliance chain ledger. If the comparison is consistent, the identity authentication of the user node is completed and a successful authentication message is returned to the user node.

最后所应说明的是,以上实施例仅用以说明本发明的技术方案而非限制,尽管参照本发明实施例进行了详细说明,本领域的普通技术人员应当理解,对本发明的技术方案进行修改或者等同替换,都不脱离本发明的技术方案的精神和范围,其均应涵盖本发明的权利要求保护范围中。Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present invention rather than to limit it. Although detailed description is given with reference to the embodiments of the present invention, those skilled in the art should understand that modifications or equivalent substitutions of the technical solutions of the present invention do not depart from the spirit and scope of the technical solutions of the present invention, and should be covered by the protection scope of the claims of the present invention.

Claims (4)

1. An industrial Internet Handle identification system analysis and authentication method based on a alliance chain is characterized by comprising the following steps of: the method comprises the following steps:
step one, constructing a alliance chain authentication architecture;
the alliance chain authentication architecture consists of four modules of an admission mechanism, an under-chain distributed storage system, an alliance chain and a Handle system; the admission mechanism authenticates the qualification of a specific industry or enterprise to enter a alliance chain, and the industrial Internet identification analysis admission mechanism sets an admission node; the under-chain distributed storage system stores specific identity authentication information, and is maintained by a storage node; the alliance chain stores the hash value of the identity authentication information of the user and is maintained by the consensus node; the Handle system is responsible for industrial Internet data identification analysis service and initiates an authentication or registration request to the system;
The access node has credit endorsement to realize the first authentication in the alliance chain; the consensus node is a server group provided by each industry or enterprise when accessing the alliance chain, and builds and maintains an alliance chain account book together;
Step two, the constructed alliance chain authentication architecture realizes the registration and authentication request of the user node;
Before the authentication request of the user node, the user needs to register in the system in advance, and the registration method is as follows:
(1) The user node sends a registration request to the admission node and attaches identity information; the access node checks identity information of the user node and decides whether the alliance chain can be accessed;
The user node comprises an access node, a consensus node, nodes in a Handle system and a client for requesting identification analysis service, and when the user node applies for registration to the access node, qualification information for proving self identity is required to be attached;
(2) The access node approves the user node to access the alliance chain network, generates a user ID and public and private key pair, and forwards the user identity information hash value and the user ID to the consensus node as a transaction;
Identity information of user nodes admitted to the federation chain is generated by the admitted node as: { ID, public key, address, timestamp, identity information };
(3) The consensus node verifies the received transaction to achieve consensus, and the hash value of the user ID and the user identity information is written into a alliance chain; the consensus node responsible for the packaging block returns a writing success message to the admission node;
the consensus method among the consensus nodes is as follows:
a. in the alliance chain consensus process, an access node monitors an alliance chain network, and a log for recording scores of all consensus nodes is locally maintained, wherein the scoring method is as follows: initially, all consensus nodes score 0, during the consensus process: the admission node receives replies of which the total number is less than 2/3 of the total number of all the consensus nodes, the score of the elected main node is reduced by 2, and the scores of other nodes are increased by 1; accounting node that successfully generated the block adds 1; the newly added node score is 0; after a new round of consensus begins, the admission node selects a consensus node with the highest score as an accounting node according to a local scoring log, sends a consensus request to the accounting node, and broadcasts a user identity information hash value and a user ID as a transaction to the whole network consensus node;
b. All the consensus nodes independently monitor the whole network transaction, and store the monitored transaction into a memory after checking the validity; the accounting node receiving the consensus request packs the collected transaction data according to time sequence and packs the transaction data into blocks, and forwards the blocks to other consensus nodes;
c. After receiving the block, the other consensus nodes verify the transaction in the block and the block, and return a verification success message to the admission node after the verification is correct, and discard the block and not return information if the verification is unsuccessful; firstly, verifying the validity of the block: whether the format of the block accords with the rule, whether the time stamp of the block is in a legal range, whether the hash value in the head of the block is the same as the hash value of the previous block, and whether the transaction in the block is legal; and verifying the legitimacy of the transaction in the block: whether the format of the transaction accords with the rule or not, and whether the transaction exists in the alliance chain account book or not;
d. the admission node receives 2/3 of the replies exceeding the total number of all the consensus nodes, namely the generation of new area blocks is indicated, the consensus is completed, otherwise, the failure of the consensus is indicated, and the round of consensus is ended; finally, the access node updates the local scoring log according to the consensus result;
(4) After receiving the information, the admission node forwards the user identity information to the storage node, the storage node writes the information into the under-chain database, and the admission node returns the user node ID, the public key and the private key to the user node.
2. The industrial internet Handle identification system analysis and authentication method based on the alliance chain according to claim 1, wherein the method is characterized in that: in the above registration process, the public-private key pair is used as a means for communicating between the user node and the node in the system, that is, the communication between the nodes in the system is implemented through the public-private key pair, the sender encrypts the request by using the public key of the receiver, and appends the request hash encrypted by using the private key of the receiver, and the receiver decrypts the information by using the private key of the receiver, decrypts the request hash by using the public key of the sender, and performs verification.
3. The industrial internet Handle identification system analysis and authentication method based on the alliance chain according to claim 1, wherein the method is characterized in that: in the second step, the user node requests the identity authentication method from the system as follows:
(1) The user node requests service from the Handle system and attaches the self ID and the public key;
(2) The Handle system node receiving the request reads { ID, identity information hash value } from the alliance chain account book; the nodes which receive the request and request authentication to the system are collectively called system nodes, and the system nodes are all nodes which can provide identification analysis service in the Handle system;
(3) The system node requests access nodes to read the database under the chain;
(4) The admission node verifies the identity of the system node, reads the database from the storage node after verification, and returns the identity information;
(5) And comparing the received information by the system node, and returning the information.
4. The industrial internet Handle identification system analysis and authentication method based on the alliance chain according to claim 3, wherein the method comprises the following steps: in the step (4), the method for verifying the system node by the access node is that the identity information hash value is read from the alliance chain account book and the database identity information under the chain is searched and the hash value is calculated for comparison;
in step (5), after receiving the return information, the system node calculates a hash value and compares the hash value with the hash value read on the alliance chain account book, if the hash value and the hash value are consistent, an authentication success message is returned, and otherwise, the request is discarded.
CN202111073607.9A 2021-09-14 2021-09-14 A parsing and authentication method for industrial Internet Handle identification system based on alliance chain Active CN113779605B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111073607.9A CN113779605B (en) 2021-09-14 2021-09-14 A parsing and authentication method for industrial Internet Handle identification system based on alliance chain

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111073607.9A CN113779605B (en) 2021-09-14 2021-09-14 A parsing and authentication method for industrial Internet Handle identification system based on alliance chain

Publications (2)

Publication Number Publication Date
CN113779605A CN113779605A (en) 2021-12-10
CN113779605B true CN113779605B (en) 2024-07-02

Family

ID=78843480

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111073607.9A Active CN113779605B (en) 2021-09-14 2021-09-14 A parsing and authentication method for industrial Internet Handle identification system based on alliance chain

Country Status (1)

Country Link
CN (1) CN113779605B (en)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114499952B (en) * 2021-12-23 2024-04-09 中电科大数据研究院有限公司 A consortium chain consensus identity authentication method
CN114244851B (en) * 2021-12-24 2023-07-07 四川启睿克科技有限公司 Block chain-based data distribution method
CN116489123A (en) * 2022-01-13 2023-07-25 华为技术有限公司 Industrial Internet identification-based processing method and device
CN114529430A (en) * 2022-01-21 2022-05-24 山东浪潮工业互联网产业股份有限公司 Vehicle access control method and device based on identification analysis
CN114218412B (en) * 2022-02-22 2022-06-17 中汽数据(天津)有限公司 Automobile supply chain image identification analysis method based on industrial internet identification analysis
CN114978740B (en) * 2022-06-06 2023-06-23 中国互联网络信息中心 Blockchain-Based Parsing Method for Identity Association and Verification
CN115208653B (en) * 2022-07-11 2024-04-09 苏州协同创新智能制造装备有限公司 Encryption communication method based on active identification
CN115208580B (en) * 2022-07-14 2024-05-24 北京泰尔英福科技有限公司 Trusted service positioning method and system based on industrial Internet identification analysis
CN115314220A (en) * 2022-08-04 2022-11-08 北京智融云河科技有限公司 Permission data storage method, device and system of block chain
CN115277242A (en) * 2022-08-04 2022-11-01 北京智融云河科技有限公司 A kind of access control method and device for digital object
CN115412257B (en) * 2022-08-24 2024-07-16 淮阴工学院 Cold chain joint node data sharing method and device based on block chain double chains
CN115622712B (en) * 2022-10-10 2025-09-23 北京八分量信息科技有限公司 Method, device and electronic device for dynamic node exit in alliance chain
CN115622773B (en) * 2022-10-10 2025-09-23 北京八分量信息科技有限公司 View verification method, device and electronic device in alliance chain consensus
CN116489085B (en) * 2023-03-28 2023-10-27 网根科技(青岛)有限公司 Analytical route security monitoring method and system based on Handle
CN116489086B (en) * 2023-03-28 2023-12-26 网根科技(青岛)有限公司 Node credibility verification method and system based on Handle system
CN116827508A (en) * 2023-05-11 2023-09-29 理工比特林克(苏州)软件信息技术服务有限公司 Task allocation method and device based on identification coding analysis of blockchain
CN117689383B (en) * 2023-12-14 2025-02-11 深圳国家金融科技测评中心有限公司 A method and device for realizing data portability based on blockchain technology
CN118138522B (en) * 2024-05-07 2024-08-02 南京复创智能制造技术有限责任公司 Network route construction system and method based on industry chain data sharing

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111818056A (en) * 2020-07-09 2020-10-23 重庆邮电大学 A blockchain-based industrial Internet identity authentication method
CN112702346A (en) * 2020-12-24 2021-04-23 国网浙江省电力有限公司电力科学研究院 Distributed identity authentication method and system based on alliance chain

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109492424B (en) * 2018-09-29 2023-05-26 平安科技(深圳)有限公司 Data asset management method, data asset management device, and computer-readable medium
CN112311735B (en) * 2019-07-30 2021-11-19 华为技术有限公司 Credible authentication method, network equipment, system and storage medium
CN112417037B (en) * 2020-11-05 2022-12-23 杭州云象网络技术有限公司 Block chain construction method for distributed identity authentication in industrial field
CN112632064B (en) * 2020-12-17 2024-07-26 北京中数创新科技股份有限公司 Block chain enhancement method and system based on handle system
CN113301185B (en) * 2021-07-27 2021-10-15 深圳市数标国际科技有限公司 Industrial Internet identification analysis system and method based on alliance block chain

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111818056A (en) * 2020-07-09 2020-10-23 重庆邮电大学 A blockchain-based industrial Internet identity authentication method
CN112702346A (en) * 2020-12-24 2021-04-23 国网浙江省电力有限公司电力科学研究院 Distributed identity authentication method and system based on alliance chain

Also Published As

Publication number Publication date
CN113779605A (en) 2021-12-10

Similar Documents

Publication Publication Date Title
CN113779605B (en) A parsing and authentication method for industrial Internet Handle identification system based on alliance chain
US12063310B2 (en) Trust and identity management systems and methods
AU2021206913B2 (en) Systems and methods for distributed data sharing with asynchronous third-party attestation
CN113055363B (en) Identification analysis system implementation method based on blockchain trust mechanism
CN112311772B (en) Hyperridge-based cross-domain certificate management system and method
CN114329529A (en) Asset data management method and system based on block chain
WO2023024742A1 (en) Data processing method and apparatus, and computer device and storage medium
CN111818056B (en) A blockchain-based industrial Internet identity authentication method
US20110167258A1 (en) Efficient Secure Cloud-Based Processing of Certificate Status Information
CN113612770A (en) Cross-domain secure interaction method, system, terminal and storage medium
CN115021958B (en) A smart home identity authentication method and system integrating fog computing and blockchain
CN114154125B (en) Identity authentication scheme without block chain certificate in cloud computing environment
CN113392430B (en) Digital resource management method and system based on smart contract authentication
WO2019142428A1 (en) Information processing device and processing method for same
CN113259311A (en) Decentralized identity authentication system based on block chain
CN114844700A (en) Identity authentication method, system, equipment and storage medium based on trusted storage in distributed environment
CN111835755B (en) Mutual authentication method and device for IoT device and IoT business system
CN112926983A (en) Block chain-based deposit certificate transaction encryption system and method
CN115225279B (en) A digital certificate system based on blockchain and its processing method
CN118174866B (en) Resource Certificate Management System
CN106529216A (en) Software authorization system based on public storage platforms and software authorization method
CN119766415B (en) A blockchain cross-chain method, medium and device
CN120034371B (en) A lightweight cross-domain authentication method for Internet of Vehicles based on blockchain technology
CN120150939B (en) A multi-purpose network password service system
Wang et al. RSU-Aided Authentication for VANET Based on Consortium Blockchain

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20250813

Address after: 030032 Taiyuan City, Xiaodian District, Zhengyang Street No. 100

Patentee after: Zhuoxi (Shanxi) Industrial Internet Technology Co.,Ltd.

Country or region after: China

Address before: 100089 Beijing City, Haidian District, Baosheng South Road No.1, Building 20, 8th Floor, Room 101-13

Patentee before: Maketech Industrial Technology (Beijing) Co., Ltd.

Country or region before: China

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载