METHOD, APPARATUS, AND ELECTRONIC DEVICE FOR BLOCKCHAIN-BASED RECORDKEEPING

US 20200134209A1
Filed: 10/30/2019
Published: 04/30/2020
Est. Priority Date: 10/31/2018
Status: Active Grant

First Claim

Patent Images

1. A method for blockchain-based recordkeeping, implementable by a terminal device, the method comprising:

obtaining target data;

computing a data digest of the target data, and extracting a key segment from the target data;

signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature; and

submitting to a blockchain the data digest, the key segment, and the signature, for one or more nodes in the blockchain to verify the signature based on a public key corresponding to the private key, and to record the data digest and the key segment in the blockchain in response to the signature being verified to be valid.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Provided is a method for blockchain-based recordkeeping and implementable by a terminal device. The method comprises: obtaining target data; computing a data digest of the target data, and extracting a key segment from the target data; signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature; and submitting to a blockchain the data digest, the key segment, and the signature, for one or more nodes in the blockchain to verify the signature based on a public key corresponding to the private key, and to record the data digest and the key segment in the blockchain in response to the signature being verified to be valid.

Citations

20 Claims

1. A method for blockchain-based recordkeeping, implementable by a terminal device, the method comprising:
- obtaining target data;
  
  computing a data digest of the target data, and extracting a key segment from the target data;
  
  signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature; and
  
  submitting to a blockchain the data digest, the key segment, and the signature, for one or more nodes in the blockchain to verify the signature based on a public key corresponding to the private key, and to record the data digest and the key segment in the blockchain in response to the signature being verified to be valid.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method according to claim 1, wherein the private key associated with the terminal device is stored in the secure operation environment.
  - 3. The method according to claim 1, wherein the secure operation environment in the terminal device stores device authentication information and the device authentication information is signed based on the private key associated with the terminal device to generate another signature;
    - andsigning, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises;
      
      verifying the another signature of the device authentication information based on the public key corresponding to the private key associated with the terminal device; and
      
      in response to the another signature being verified to be valid, determining that the terminal device is a valid terminal device and signing, in the secure operation environment included in the terminal device, the data digest and/or the key segment based on the private key to generate the signature.
  - 4. The method according to claim 1, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - signing, in the secure operation environment included in the terminal device, the data digest and the key segment as a whole based on the private key associated with the terminal device to generate the signature.
  - 5. The method according to claim 1, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - signing, in the secure operation environment included in the terminal device, the data digest based on the private key associated with the terminal device to generate the signature.
  - 6. The method according to claim 1, wherein the target data comprises video data;
    - andextracting a key segment from the target data comprises;
      
      detecting an abnormal event in the video data; and
      
      in response to an abnormal event being detected, extracting a video segment corresponding to an occurrence period of the abnormal event as the key segment.
  - 7. The method according to claim 1, wherein the target data comprises audio data;
    - andextracting a key segment from the target data comprises;
      
      detecting a preset keyword in the audio data; and
      
      in response to the preset keyword being detected, extracting an audio segment of a preset length comprising the preset keyword as the key segment.
  - 8. The method according to claim 1, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - obtaining identity information of a user using the terminal device;
      
      authenticating the identity of the user based on the obtained identity information; and
      
      signing, in the secure operation environment included in the terminal device, the data digest and/or the key segment based on the private key associated with the terminal device to generate the signature in response to the identity of the user being authenticated as valid.
  - 9. The method according to claim 1, wherein the method further comprises:
    - obtaining identity information of a user using the terminal device in response to the user using the terminal device for the first time;
      
      authenticating the identity of the user based on the obtained identity information;
      
      invoking a key generating algorithm to generate the private key and the public key in response to the identity of the user being authenticated as valid, wherein a key generating algorithm is stored in the secure operation environment included in the terminal device; and
      
      associating the generated private key with the identity information of the user, and storing the generated private key associated with the identity information of the user in the secure operation environment.
  - 10. The method according to claim 9, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - obtaining identity information of a user using the terminal device;
      
      determining whether a private key associated with the identity information is stored in the secure operation environment included in the terminal device; and
      
      signing, in the secure operation environment included in the terminal device, the data digest and/or the key segment based on the private key associated with the identity information in response to the private key associated with the identity information being stored in the secure operation environment included in the terminal device.
  - 11. The method according to claim 1, wherein the terminal device comprises a body-worn camera or an event data recorder.
  - 12. The method according to claim 1, wherein the target data comprises video data, audio data, or image data, or a combination thereof.

13. An apparatus for blockchain-based recordkeeping, included in a terminal device, the apparatus comprising:
- one or more processors and one or more non-transitory computer-readable memories coupled to the one or more processors and configured with instructions executable by the one or more processors to cause the apparatus to perform operations comprising;
  
  obtaining target data;
  
  computing a data digest of the target data, and extracting a key segment from the target data;
  
  signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature; and
  
  submitting to a blockchain the data digest, the key segment, and the signature, for one or more nodes in the blockchain to verify the signature based on a public key corresponding to the private key, and to record the data digest and the key segment in the blockchain in response to the signature being verified to be valid.
- View Dependent Claims (14, 15, 16, 17, 18, 19)
- - 14. The apparatus according to claim 13, wherein the private key associated with the terminal device is stored in the secure operation environment.
  - 15. The apparatus according to claim 13, wherein the secure operation environment in the terminal device stores device authentication information and the device authentication information is signed based on the private key associated with the terminal device to generate another signature;
    - andsigning, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises;
      
      verifying the another signature of the device authentication information based on the public key corresponding to the private key associated with the terminal device; and
      
      in response to the another signature being verified to be valid, determining that the terminal device is a valid terminal device and signing, in the secure operation environment included in the terminal device, the data digest and/or the key segment based on the private key to generate the signature.
  - 16. The apparatus according to claim 13, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - signing, in the secure operation environment included in the terminal device, the data digest and the key segment as a whole based on the private key associated with the terminal device to generate the signature.
  - 17. The apparatus according to claim 13, wherein signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature comprises:
    - signing, in the secure operation environment included in the terminal device, the data digest based on the private key associated with the terminal device to generate the signature.
  - 18. The apparatus according to claim 13, wherein the target data comprises video data;
    - andextracting a key segment from the target data comprises;
      
      detecting an abnormal event in the video data; and
      
      in response to an abnormal event being detected, extracting a video segment corresponding to an occurrence period of the abnormal event as the key segment.
  - 19. The apparatus according to claim 13, wherein the target data comprises audio data;
    - andextracting a key segment from the target data comprises;
      
      detecting a preset keyword in the audio data; and
      
      in response to the preset keyword being detected, extracting an audio segment of a preset length comprising the preset keyword as the key segment.

20. A non-transitory computer-readable storage medium, included in a terminal device and configured with instructions executable by one or more processors of the terminal device to cause the one or more processors to perform operations comprising:
- obtaining target data;
  
  computing a data digest of the target data, and extracting a key segment from the target data;
  
  signing, in a secure operation environment included in the terminal device, the data digest and/or the key segment based on a private key associated with the terminal device to generate a signature; and
  
  submitting to a blockchain the data digest, the key segment, and the signature, for one or more nodes in the blockchain to verify the signature based on a public key corresponding to the private key, and to record the data digest and the key segment in the blockchain in response to the signature being verified to be valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Advanced New Technologies Company Limited (Ant Group Co., Ltd.)
Original Assignee
Alibaba Group Holding Ltd.
Inventors
ZHANG, Hong, JIANG, Haitao, WANG, Linqing, WENG, Xinyu, LI, Fuqiang, LIN, Feng, WU, Jun, ZENG, Xiaodong, YANG, Lei

Granted Patent

US 11,361,089 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/1837   Management specially adapte...

G06F 21/604   Tools and structures for ma...

G06F 21/64   Protecting data integrity, ...

H04L 63/08   for authentication of entit...

H04L 63/123   received data contents, e.g...

H04L 63/302   gathering intelligence info...

H04L 9/0637   Modes of operation, e.g. ci...

H04L 9/0897   involving additional device...

H04L 9/3239   involving non-keyed hash fu...

H04L 9/3247   involving digital signatures

H04L 9/50   using hash chains, e.g. blo...

H04N 21/8358   involving watermark protect...

METHOD, APPARATUS, AND ELECTRONIC DEVICE FOR BLOCKCHAIN-BASED RECORDKEEPING

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD, APPARATUS, AND ELECTRONIC DEVICE FOR BLOCKCHAIN-BASED RECORDKEEPING

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links