A kind of safety payment system based on block chainTechnical field
The invention discloses a kind of safety payment systems based on block chain, specially block chain technical field.
Background technique
With the continuous development of information technology, the mode of information storage is also changed and is updated continuous.Original centerData storage method haves the shortcomings that insincere, opaque and liquidation procedure is complicated, the used time is tediously long, gradually cannotMeet the information age increasingly risen to efficiency requirements.All trades and professions require to find the new memory technology of one kind to solve centerThe problem that data tape comes, block chain technology is exactly a kind of memory technology for being able to solve the above problem.
Traditional network trading is needed by Third-party payment intermediary, and for a user, customer transaction information is by centreQuotient is stored in the database of centralization, and user needs to trust intermediary quotient, just will use the payment platform of intermediary quotient offer.Payment company in order to ensure that the credible of transaction needs to collect very more user privacy informations, for confirm for account canLetter, and for a user, it is more dangerous to divulge more privacy informations.In recent years, have when the leakage of user's private informationOccur, for exchange intermediary platform, in order to ensure the credibility of account, clears a large amount of Transaction Information and need high expenseWith with the interminable time, nevertheless, it is impossible for completely avoiding mistake under huge trading volume, so paying againMore expenses and time make up these mistakes out, this can cause unnecessary fund to waste and the loss of time to user.ForThis, we have proposed a kind of safety payment systems based on block chain to come into operation, to solve the above problems.
Summary of the invention
The purpose of the present invention is to provide a kind of safety payment systems based on block chain, to solve in above-mentioned background techniqueThe problem of proposition.
To achieve the above object, the invention provides the following technical scheme: a kind of safety payment system based on block chain, is somebody's turn to doPayment system includes system interaction layer, platform audit layer and block link layer, and the system interaction layer includes registration login module, isUnite transaction modules and information inquiry module, wherein the registration login module includes registration, logs in and two dimensional code generation, withWhen family is registered for the first time, random generation key and station address, station address are shown in mobile client using the mode of two dimensional codeOn end, is traded and transferred accounts by station address two dimensional code;The system transaction modules include transaction transfer accounts, online transaction andAs seen, wherein the as seen is using zero confirmation contract mechanism;The information inquiry module includes amount of money inquiry, orderInquiry, information inquiry and bill inquiry;
The platform audit layer is used to guarantee the secure transfer process of transaction data, is between the system interaction layer and instituteThe system structure between block link layer, including authority management module and key management module are stated, the authority management module is used forUsing the different role of the intelligent contract administration in the block link layer, the key management module includes key generation, keyBackup and key recovery;
The block link layer is the block chain structure of the decentralization of the bottom, is mainly used for storing order information and accountData, including distributed account book, payment contract and common recognition mechanism.
Preferably, the platform audit layer further includes that public and private key management interface, authentication management interface and audit management connectMouthful, the public and private key management interface is used to carry out real-time calling to the resource of public key and private key in system, and simultaneously for privateKey resource carries out legal power safety limitation.
Preferably, the public and private key management interface use agency by agreement engine, the agency by agreement engine be Telnet,One of FTP, SFTP, SSH1, RDP, HTTP, HTTPS, SSH2.
Preferably, public key and private key built in the key management module, in public key encryption, public key is between communicating pairOpen transmitting, and issued in public warehouse, and private key is used to decrypt the data of public key encryption.
Preferably, the authority management module includes dynamic password authentication, and the dynamic password authentication is based on dynamic passwordToken technology generates one-time password, and static password is avoided to occur to lose, leak.
Preferably, the authority management module further includes digital signature identification, and the digital signature identification is secret by disclosingCiphertext data caused by information plaintext are decrypted in key, and send digital authenticating certificate.
Preferably, the block link layer built-in application interface module is used between platform audit layer be communicated.
Compared with prior art, the beneficial effects of the present invention are:
1. the present invention includes verifying user's body using key management mechanism by the secure payment platform based on block chainPart, setting rights manager contract controls the opereating specification for not having to role, guarantees the safety of high permission operation, zero confirmation of designMechanism realizes the function of on-site payment, saves a large amount of block chain node control times, improves online transaction and as seen is handed overEasy speed, while guaranteeing transparent, the reliability of transaction;
2. the present invention uses distributed account book structure, when illegally distorting the transaction data on block chain, the behavior is thenIt can be recorded on block chain, it is desirable to which change transaction data is impossible without knowing it, ensure that the payment systemThe transparency of system.
Detailed description of the invention
Fig. 1 is inventive network topological diagram.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, completeSite preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based onEmbodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every otherEmbodiment shall fall within the protection scope of the present invention.
Referring to Fig. 1, the present invention provides a kind of technical solution: a kind of safety payment system based on block chain, the paymentSystem includes system interaction layer, platform audit layer and block link layer, and the system interaction layer includes registration login module, system friendshipEasy module and information inquiry module, wherein the registration login module includes registration, logs in and two dimensional code generation, in user theWhen primary registration, random generation key and station address, station address are shown in mobile client using the mode of two dimensional code,It is traded and is transferred accounts by station address two dimensional code;The system transaction modules include transaction transfer accounts, online transaction and sceneTransaction, wherein the as seen is using zero confirmation contract mechanism;The information inquiry module includes that the amount of money is inquired, order is looked intoIt askes, information inquiry and bill are inquired;
The platform audit layer is used to guarantee the secure transfer process of transaction data, is between the system interaction layer and instituteThe system structure between block link layer, including authority management module and key management module are stated, the authority management module is used forUsing the different role of the intelligent contract administration in the block link layer, the key management module includes key generation, keyBackup and key recovery;
The block link layer is the block chain structure of the decentralization of the bottom, is mainly used for storing order information and accountData, including distributed account book, payment contract and common recognition mechanism.
Wherein, platform audit layer further includes public and private key management interface, authentication management interface and audit management interface,The public and private key management interface is used to carry out real-time calling to the resource of public key and private key in system, and provides simultaneously for private keySource carries out legal power safety limitation, and the public and private key management interface uses agency by agreement engine, and the agency by agreement engine isOne of Telnet, FTP, SFTP, SSH1, RDP, HTTP, HTTPS, SSH2, public key and private built in the key management moduleKey, in public key encryption, public key discloses transmitting between communicating pair, and is issued in public warehouse, and private key is usedIn the data of decryption public key encryption, the authority management module includes dynamic password authentication, and the dynamic password authentication is based on dynamicState password token technology generates one-time password, avoids static password from occurring to lose, leak, the authority management module further includesDigital signature identification, the digital signature identification are decrypted by ciphertext data caused by open secret key pair information plaintext,And digital authenticating certificate is sent, the block link layer built-in application interface module is used between platform audit layer carry outCommunication.
In platform audit layer, it is not modified to ensure transaction data in transmission process and user account is not stolenWith key management module uses unsymmetrical tridiagonal matrix technology.When an object needs to send data, it is necessary first to use senderPrivate key encryption transmission data, recipient use again sender public key decryptions transmit data, when an object needs to receive numberAccording to when, sender needs with the public key of recipient to data encryption, and recipient receives after data again with the private key decryption number of oneselfAccording to user generates a private key at random in Accreditation System, according to user mobile phone number, then is given birth to elliptic curve algorithm by private keyAt corresponding public key, after Hash calculation, generate the station address of account for transferring accounts and trading, at the same in order to avoid withThe case where private key is lost because of unexpected lost mobile phone in family, system provides cipher key backup and key recovery function, the reality of the functionIt is existing, users to trust server is needed, when user distrusts the server, oneself may be selected and saves key, when user selectsWhen trusting the server, cloud can will be stored in after key encrypted backup, key will be encrypted using user password;
In neck affirmation mechanism in the present invention, the payment on line or after off-line transaction, in block link layer is used in userContract does a upper label in the order, will then distribute a temporary address into the account book of the initiation user of the order, thisThere is the virtual coin this time traded enough in a temporary address, so needing not move through block chain node confirmation user balance, sectionThe multiple acknowledging time for having saved transaction, specific in use, payment contract receives the transaction request of mobile client transmission,Message is decoded using base64 first, carries out the unserializing of data, then detects the validity of account address and status information,Whether detection data has hash-collision, if there is no problem for above-mentioned detection, then zero confirmation flag in detecting state information, and sentencesFixed this marks whether in the time limits, while guaranteeing that each label is used only once, finally by zero confirmation process write-inIn block chain, transaction is completed at this time.
It although an embodiment of the present invention has been shown and described, for the ordinary skill in the art, can be withA variety of variations, modification, replacement can be carried out to these embodiments without departing from the principles and spirit of the present invention by understandingAnd modification, the scope of the present invention is defined by the appended.