CN114691245A

Movatterモバイル変換

Info

Publication number: CN114691245A
Application number: CN202210249506.0A
Authority: CN
Inventors: 赵海涛; 刘汉操; 薛建川
Original assignee: Beijing Zhichuanlian Technology Co ltd
Current assignee: Beijing Zhichuanlian Technology Co ltd
Priority date: 2022-03-14
Filing date: 2022-03-14
Publication date: 2022-07-01

Abstract

The invention discloses a block chain-based digital content decentralized authorization method and a block chain-based digital content decentralized authorization system in the publishing industry, wherein the method comprises the following steps: constructing a decentralized block chain underlying system which comprises an intelligent contract module and is provided with an open first API interface; constructing a digital content issuing platform with a digital resource warehousing module, a strategy making module, a data collecting module and a second API (application program interface); and constructing a three-party distributor platform with a transaction module and a reading module. The invention can effectively solve the problems of centralized authorization of digital content resources in the traditional publishing industry, incapability of tracing authorization and incapability of acquiring real data of users, improves the stability and timeliness of digital content resource authorization, reduces intermediate merchants and authorization links of traditional digital resource authorization and saves the cost of acquiring legal resources by common users.

Description

Translated fromChinese

出版业基于区块链的数字内容去中心化授权方法及系统Blockchain-based decentralized authorization method and system for digital content in the publishing industry

技术领域technical field

本发明涉及数字出版技术领域，特别是涉及一种出版业基于区块链的数字内容去中心化授权方法及系统。The invention relates to the technical field of digital publishing, in particular to a blockchain-based decentralized authorization method and system for digital content in the publishing industry.

背景技术Background technique

传统的出版业数字内容传播模式下，数字内容供应商只能依靠向第三方销售平台以提供明文数字资源文件的方式来完成数字资源的销售。在这种背景下，加上第三方销售平台基本都有自己的数据模型和存储体系，内容供应商无可避免的要将原始资源文件提供给第三方销售平台。Under the traditional mode of digital content dissemination in the publishing industry, digital content providers can only complete the sales of digital resources by providing plaintext digital resource files to third-party sales platforms. In this context, and third-party sales platforms basically have their own data models and storage systems, content providers inevitably provide original resource files to third-party sales platforms.

传统模式下，第三方销售平台的运营规范性问题导致销售信息处于不可验证的状态。由于数字内容资源是直接明文拷贝给第三方存储并售卖，导致隐瞒资源销售情况、二次传播不可控，盗版盛行等问题层出不穷。在整个销售授权业务流程中，内容供应商已被屏蔽在外，数字内容资源的售卖对象、价格、数量等无法得知。这种中心化的交易模式明显存在以下几个核心问题：Under the traditional model, the operational normative problems of the third-party sales platform lead to the unverifiable state of sales information. Because digital content resources are directly copied to third parties for storage and sale, problems such as concealment of resource sales, uncontrollable secondary transmission, and prevalence of piracy emerge one after another. In the entire sales authorization business process, content suppliers have been blocked, and the sales target, price, and quantity of digital content resources cannot be known. This centralized trading model obviously has the following core problems:

(1)授权数据不透明，内容供应商无法获得真实的数据，严重阻碍了产业生态的发展；(1) The authorized data is not transparent, and content providers cannot obtain real data, which seriously hinders the development of the industrial ecology;

(2)出版单位不信任第三方渠道，有限的合作渠道，不能大范围的推广出版单位数字内容资源，预期收益低，效果不明显，影响了正常的发展；(2) Publishing units do not trust third-party channels, limited cooperation channels, cannot widely promote the publishing unit's digital content resources, low expected returns, and insignificant effects, which affect normal development;

(3)授权方式过度依赖第三方，一旦第三方平台系统出现异常将会影响所有授权，授权方式过于中心化。(3) The authorization method relies too much on the third party. Once the third-party platform system is abnormal, all authorizations will be affected, and the authorization method is too centralized.

发明内容SUMMARY OF THE INVENTION

针对上述问题，本发明提供了一种出版业基于区块链的数字内容去中心化授权方法及系统，解决了传统出版业数字内容资源中心化授权的问题；解决了传统数字内容资源授权链条过长，无法溯源的问题；解决了出版单位不能自助授权，不能获取用户真实数据的问题；提高了数字内容资源授权稳定性和及时性；减少了传统化数字资源授权中间商，授权链路，节约了普通用户获取正版化资源的成本。In view of the above problems, the present invention provides a blockchain-based decentralized authorization method and system for digital content in the publishing industry, which solves the problem of centralized authorization of digital content resources in the traditional publishing industry; It solves the problem that publishing units cannot self-authorize and cannot obtain real data of users; improves the stability and timeliness of authorization of digital content resources; reduces traditional digital resource authorization middlemen, authorization links, and saves money It reduces the cost for ordinary users to obtain legitimate resources.

本发明的技术方案是：The technical scheme of the present invention is:

第一方面，本发明提供了一种出版业基于区块链的数字内容去中心化授权方法，包括以下步骤：构建去中心化、包括智能合约模块并具有开放的第一API接口的区块链底层系统；其中，所述智能合约模块用于根据授权请求输出对应的授权凭证并将授权信息上链；构建具有数字资源入库模块、策略制定模块和数据收集模块的数字内容发行平台；其中，所述数字资源入库模块用于接收供应商提供的数字资源，并将其进行加密、分布式存储、同步版权信息和上链，所述策略制定模块用于制定授权策略并将其上链，以通过所述区块链底层系统的智能合约模块对授权进行控制，所述数据收集模块用于收集订单信息和所述授权信息，所述数字内容发行平台与第一API接口连接，所述数字内容发行平台具有开放的第二API接口；构建具有交易模块和阅读模块的三方渠道商平台；其中，所述三方渠道商平台与所述第二API接口连接，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统；所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。In a first aspect, the present invention provides a blockchain-based decentralized authorization method for digital content in the publishing industry, including the following steps: constructing a decentralized blockchain that includes a smart contract module and has an open first API interface The underlying system; wherein, the smart contract module is used to output the corresponding authorization certificate according to the authorization request and upload the authorization information to the chain; build a digital content distribution platform with a digital resource storage module, a policy formulation module and a data collection module; wherein, The digital resource warehousing module is used for receiving the digital resources provided by the supplier, and encrypting, storing it in a distributed manner, synchronizing copyright information and uploading it on the chain, and the strategy formulation module is used for formulating an authorization policy and uploading it on the chain, The authorization is controlled by the smart contract module of the underlying system of the blockchain, the data collection module is used to collect order information and the authorization information, the digital content distribution platform is connected with the first API interface, the digital The content distribution platform has an open second API interface; a third-party channel business platform with a transaction module and a reading module is constructed; wherein, the third-party channel business platform is connected with the second API interface, and the transaction module is used to provide user transactions The platform synchronizes the order information to the data collection module and the blockchain underlying system; the reading module obtains the order information from the transaction module, and outputs the order information to the blockchain underlying system according to the order information Authorization request, and parse and read the digital resource after receiving the authorization credential returned by the smart contract module.

本发明的工作原理为：The working principle of the present invention is:

通过区块链底层系统的去中心化运行以及不可篡改的特性，有效地保护了数字资源，同时通过智能合约模块对数字内容授权和分发的控制，避免了依赖第三方平台进行中心化授权；同时数字资源的授权信息和订单信息能够及时同步到数字内容发行平台，解决了数字资源的授权信息无法溯源以及无法获取用户真实数据的问题，授权更加稳定及时，同时也降低了用户获取正版数字资源的成本。Through the decentralized operation and immutability of the underlying system of the blockchain, digital resources are effectively protected, and at the same time, the authorization and distribution of digital content is controlled through the smart contract module, avoiding relying on third-party platforms for centralized authorization; at the same time The authorization information and order information of digital resources can be synchronized to the digital content distribution platform in a timely manner, which solves the problem that the authorization information of digital resources cannot be traced to the source and the real data of users cannot be obtained. cost.

在进一步的技术方案中，所述阅读模块在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。In a further technical solution, the reading module randomly generates a key pair when outputting the authorization request, the private key is cached in the memory, and the public key is encapsulated into the authorization request to encrypt the authorization credential during authorization. After obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain file information, and finally download the file and then decrypt the digital resource.

通过阅读模块生成的密钥对，能够对授权凭证进行加密处理，进一步提升数据安全性。By reading the key pair generated by the module, the authorization certificate can be encrypted to further improve data security.

在进一步的技术方案中，所述解密数字资源包括：所述阅读模块根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。In a further technical solution, the decrypting the digital resource includes: the reading module synthesizes the rendering file according to the file attribute of the digital resource, does not retain any plaintext copy, and finally provides the user for reference, and collects non-textual information in the process of the user's reference. The private user data is synchronized to the data collection module of the digital content distribution platform.

通过该设置，解决出版业数字内容资源在授权过程中因明文传递而导致的原始文件泄露、随意传播的问题。Through this setting, the problem of original file leakage and random dissemination caused by clear text transmission during the authorization process of digital content resources in the publishing industry is solved.

在进一步的技术方案中，所述授权策略包括授权规则、鉴权规则和加密的数字资源秘钥。In a further technical solution, the authorization policy includes authorization rules, authentication rules and encrypted digital resource keys.

在进一步的技术方案中，所述数字资源入库模块对数字资源进行加密包括：采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。通过进行二次加密，进一步提升了数字资源在传播过程中的安全性，达到密钥和加密文件在传输过程中都无明文的保护目的。In a further technical solution, the encryption of the digital resource by the digital resource storage module includes: using an AES encryption algorithm to encrypt the digital resource, and using an asymmetric algorithm to perform secondary encryption on the AES encrypted key. By performing secondary encryption, the security of digital resources in the transmission process is further improved, and the purpose of protecting keys and encrypted files without plaintext during transmission is achieved.

第二方面，本发明提供了一种出版业基于区块链技术的数字内容去中心化授权系统，包括：In the second aspect, the present invention provides a decentralized authorization system for digital content based on blockchain technology in the publishing industry, including:

区块链底层系统，所述区块链底层系统为去中心化模式，所述区块链底层系统包括智能合约模块并具有开放的第一AP I接口，所述智能合约模块用于根据授权请求输出对应的授权凭证并将授权信息上链；The blockchain bottom layer system, the blockchain bottom layer system is a decentralized mode, the blockchain bottom layer system includes a smart contract module and has an open first API interface, and the smart contract module is used to request authorization according to the authorization request. Output the corresponding authorization credentials and upload the authorization information to the chain;

数字内容发行平台，所述数字内容发行平台与第一AP I接口连接，所述数字内容发行平台具有开放的第二AP I接口，所述数字内容发行平台包括数字资源入库模块、策略制定模块和数据收集模块，所述数字资源入库模块用于接收供应商提供的数字资源，并将其进行加密、分布式存储、同步版权信息和上链；所述策略制定模块用于制定授权策略并将其上链，以通过所述区块链底层系统的智能合约模块对授权进行控制；所述数据收集模块用于收集订单信息和所述授权信息；和A digital content distribution platform, the digital content distribution platform is connected with the first API interface, the digital content distribution platform has an open second API interface, and the digital content distribution platform includes a digital resource storage module and a policy formulation module and a data collection module, the digital resource warehousing module is used to receive digital resources provided by suppliers, and encrypt, distribute, store, synchronize copyright information and upload the chain; the policy formulation module is used to formulate authorization policies and put it on the chain to control authorization through the smart contract module of the underlying system of the blockchain; the data collection module is used to collect order information and the authorization information; and

三方渠道商平台，所述三方渠道商平台与所述第二AP I接口连接，所述三方渠道商平台包括通信连接的交易模块和阅读模块，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统；所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。The third-party channel business platform, the third-party channel business platform is connected with the second API interface, the third-party channel business platform includes a transaction module and a reading module that are connected in communication, and the transaction module is used for providing a user trading platform and placing orders. The information is synchronized to the data collection module and the blockchain underlying system; the reading module obtains the order information from the transaction module, and outputs the authorization request to the blockchain underlying system according to the order information, and Parse and read the digital resource after receiving the authorization credential returned by the smart contract module.

在进一步的技术方案中，所述阅读模块被配置为在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。In a further technical solution, the reading module is configured to randomly generate a secret key pair when outputting the authorization request, the private key is cached in memory, and the public key is encapsulated into the authorization request for encrypting authorization during authorization After obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain file information, and then decrypt the digital resource after the file is finally downloaded.

在进一步的技术方案中，所述阅读模块被配置为根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。In a further technical solution, the reading module is configured to synthesize the rendering file according to the file attribute of the digital resource, without retaining any plaintext copy, and finally for the user to refer to, and to collect non-private user data during the user's referencing process And synchronized to the data collection module of the digital content distribution platform.

在进一步的技术方案中，所述数字资源入库模块被配置为采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。In a further technical solution, the digital resource storage module is configured to use an AES encryption algorithm to encrypt the digital resource, and to use an asymmetric algorithm to perform secondary encryption on the AES encrypted key.

本发明的有益效果是：The beneficial effects of the present invention are:

本发明通过区块链底层系统的去中心化运行以及不可篡改的特性，有效地保护了数字资源，同时通过智能合约模块对数字内容授权和分发的控制，避免了依赖第三方平台进行中心化授权；同时数字资源的授权信息和订单信息能够及时同步到数字内容发行平台，解决了数字资源的授权信息无法溯源以及无法获取用户真实数据的问题，授权更加稳定及时，同时也降低了用户获取正版数字资源的成本。The invention effectively protects digital resources through the decentralized operation and non-tampering characteristics of the underlying system of the blockchain, and at the same time, through the control of the authorization and distribution of digital content through the smart contract module, it avoids relying on a third-party platform for centralized authorization At the same time, the authorization information and order information of digital resources can be synchronized to the digital content distribution platform in time, which solves the problem that the authorization information of digital resources cannot be traced and the real data of users cannot be obtained. cost of resources.

附图说明Description of drawings

图1是本发明实施例所述一种出版业基于区块链的数字内容去中心化授权方法的流程示意图；1 is a schematic flowchart of a blockchain-based decentralized authorization method for digital content in the publishing industry according to an embodiment of the present invention;

图2是本发明示例所述一种出版业基于区块链技术的数字内容去中心化授权系统的架构图。FIG. 2 is an architectural diagram of a decentralized authorization system for digital content based on blockchain technology in the publishing industry according to an example of the present invention.

具体实施方式Detailed ways

下面结合附图对本发明的实施例作进一步说明。The embodiments of the present invention will be further described below with reference to the accompanying drawings.

实施例Example

第一方面，如图1所示，本发明提供了一种出版业基于区块链的数字内容去中心化授权方法，包括以下步骤：In the first aspect, as shown in FIG. 1 , the present invention provides a blockchain-based decentralized authorization method for digital content in the publishing industry, including the following steps:

S10、构建去中心化、包括智能合约模块并具有开放的第一API接口的区块链底层系统。其中，所述智能合约模块用于根据授权请求输出对应的授权凭证并将授权信息上链。S10. Build a decentralized blockchain underlying system that includes a smart contract module and has an open first API interface. Wherein, the smart contract module is used to output the corresponding authorization credential according to the authorization request and upload the authorization information to the chain.

S20、构建具有数字资源入库模块、策略制定模块和数据收集模块的数字内容发行平台。其中，所述数字资源入库模块用于接收供应商提供的数字资源，并将其进行加密、分布式存储、同步版权信息和上链，所述策略制定模块用于制定授权策略并将其上链，以通过所述区块链底层系统的智能合约模块对授权进行控制，所述数据收集模块用于收集订单信息和所述授权信息，所述数字内容发行平台与第一API接口连接，所述数字内容发行平台具有开放的第二API接口。这里，上链指的是将数据同步至区块链底层系统。S20, constructing a digital content distribution platform with a digital resource storage module, a strategy formulation module and a data collection module. Wherein, the digital resource warehousing module is used to receive the digital resources provided by the supplier, and encrypt, store in a distributed manner, synchronize copyright information and upload it to the chain, and the policy formulation module is used to formulate an authorization policy and upload it to the chain. Chain, to control authorization through the smart contract module of the underlying system of the blockchain, the data collection module is used to collect order information and the authorization information, the digital content distribution platform is connected to the first API interface, so The digital content distribution platform has an open second API interface. Here, on-chain refers to synchronizing data to the underlying system of the blockchain.

S30、构建具有交易模块和阅读模块的三方渠道商平台.其中，所述三方渠道商平台与所述第二API接口连接，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统。所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。S30, build a three-party channel business platform with a transaction module and a reading module. Wherein, the three-party channel business platform is connected with the second API interface, and the transaction module is used to provide a user trading platform and synchronize order information to the Data collection module and blockchain underlying system. The reading module obtains the order information from the transaction module, and outputs the authorization request to the blockchain underlying system according to the order information, and parses the authorization certificate after receiving the authorization certificate returned by the smart contract module And read digital resources.

在另外的实施例中，所述阅读模块在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。通过阅读模块生成的密钥对，能够对授权凭证进行加密处理，进一步提升数据安全性。In another embodiment, the reading module randomly generates a key pair when outputting the authorization request, the private key is cached in the memory, and the public key is encapsulated into the authorization request to encrypt the authorization credential during authorization. After obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain file information, and finally download the file and then decrypt the digital resource. By reading the key pair generated by the module, the authorization certificate can be encrypted to further improve data security.

在另外的实施例中，所述解密数字资源包括：所述阅读模块根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。通过该设置，解决出版业数字内容资源在授权过程中因明文传递而导致的原始文件泄露、随意传播的问题。In another embodiment, the decrypting the digital resource includes: the reading module synthesizes the rendering file according to the file attribute of the digital resource, does not retain any plaintext copy, and finally provides the user for reference, and collects non-textual information in the process of the user's reference. The private user data is synchronized to the data collection module of the digital content distribution platform. Through this setting, the problem of original file leakage and random dissemination caused by clear text transmission during the authorization process of digital content resources in the publishing industry is solved.

在另外的实施例中，所述授权策略包括授权规则、鉴权规则和加密的数字资源秘钥。In further embodiments, the authorization policy includes authorization rules, authentication rules, and encrypted digital resource keys.

在另外的实施例中，所述数字资源入库模块对数字资源进行加密包括：采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。通过进行二次加密，进一步提升了数字资源在传播过程中的安全性，达到密钥和加密文件在传输过程中都无明文的保护目的。In another embodiment, the encryption of the digital resource by the digital resource storage module includes: using an AES encryption algorithm to encrypt the digital resource, and using an asymmetric algorithm to perform secondary encryption on the AES-encrypted key. By performing secondary encryption, the security of digital resources in the transmission process is further improved, and the purpose of protecting keys and encrypted files without plaintext during transmission is achieved.

三方渠道商平台，所述三方渠道商平台与所述第二AP I接口连接，所述三方渠道商平台包括通信连接的交易模块和阅读模块，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统；所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。The third-party channel business platform, the third-party channel business platform is interfaced with the second API, and the third-party channel business platform includes a transaction module and a reading module that are connected in communication, and the transaction module is used to provide a user trading platform and place orders. The information is synchronized to the data collection module and the blockchain underlying system; the reading module obtains the order information from the transaction module, and outputs the authorization request to the blockchain underlying system according to the order information, and Parse and read the digital resource after receiving the authorization credential returned by the smart contract module.

在另外的实施例中，所述阅读模块被配置为在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。In another embodiment, the reading module is configured to randomly generate a secret key pair when outputting the authorization request, the private key is cached in memory, and the public key is encapsulated into the authorization request for encrypting authorization during authorization After obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain file information, and then decrypt the digital resource after the file is finally downloaded.

在另外的实施例中，所述阅读模块被配置为根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。In another embodiment, the reading module is configured to synthesize the rendering file according to the file attribute of the digital resource, without retaining any plaintext copy, and finally for the user to refer to, and to collect non-private user data during the user's referencing process And synchronized to the data collection module of the digital content distribution platform.

在另外的实施例中，所述数字资源入库模块被配置为采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。In another embodiment, the digital resource storage module is configured to encrypt the digital resource with an AES encryption algorithm, and perform secondary encryption on the AES encrypted key with an asymmetric algorithm.

下面通过一个具体的示例对本发明进行说明。The present invention will be described below through a specific example.

如图2所示，图中右侧的区块链节点集群即为本文中的区块链底层系统，区块链开放API接口即为本文中的第一API接口，三方渠道即为本文中的三方渠道商平台。As shown in Figure 2, the blockchain node cluster on the right side of the figure is the underlying system of the blockchain in this article, the blockchain open API interface is the first API interface in this article, and the three-party channel is the Third-party channel business platform.

S1、研发一套基于区块链技术的区块链底层系统，该区块链系统支持开放API接口供三方系统接入。然后分别把该区块链系统部署到至少4家及以上出版单位，每家出版单位为一个区块链出块节点，由这些出版单位构成联盟区块链，供这些出版单位将其作为数字内容发行的支撑系统。并且规定所有出版单位接入联盟链时按照非对称算法加密传输数据，非对称算法密钥对的公钥由出版单位初始化接入时提供，其中公钥由联盟区块链根据自身规则加密存储，私钥由出版单位加密传输数据使用。S1. Develop a blockchain underlying system based on blockchain technology. The blockchain system supports open API interfaces for three-party system access. Then deploy the blockchain system to at least 4 or more publishing units, each publishing unit is a blockchain block-producing node, and these publishing units form a consortium blockchain for these publishing units to use it as digital content Issued support system. And it is stipulated that when all publishing units access the alliance chain, the data is encrypted and transmitted according to the asymmetric algorithm. The public key of the asymmetric algorithm key pair is provided by the publishing unit when initializing the access, and the public key is encrypted and stored by the alliance blockchain according to its own rules. The private key is used by the publishing unit to encrypt the transmitted data.

S2、研发一套数字内容发行平台，部署一套数字内容发行平台到任意一家出版单位。发行平台具备以下几个功能：1)数字内容资源入库；2)数字内容版权数据上链；3)数字内容授权策略、规则上链；4)授权及交易数据上链；5)用户行为数据上链；6)文件管理功能，支持各形态数字资源文件(碎片化)拆分加密存储；7)提供开放API接口，允许自助分发交易授权；8)提供阅读播放SDK，支持发行平台加密的授权资源阅读播放。由于发行平台接入了联盟区块链，具备自主上链功能和开放API接口，所以可以作为数字内容发行的核心工具。S2. Develop a set of digital content distribution platform, and deploy a set of digital content distribution platform to any publishing unit. The distribution platform has the following functions: 1) Digital content resource storage; 2) Digital content copyright data on-chain; 3) Digital content authorization policies and rules on-chain; 4) Authorization and transaction data on-chain; 5) User behavior data On-chain; 6) File management function, which supports the split and encrypted storage of various forms of digital resource files (fragmentation); 7) Provides an open API interface to allow self-service distribution and transaction authorization; 8) Provides reading and playback SDK, which supports the authorization of issuance platform encryption Resources to read and play. Since the distribution platform is connected to the consortium blockchain, with independent on-chain function and open API interface, it can be used as a core tool for digital content distribution.

S3、出版单位通过数字内容发行平台提交数字内容元数据及资源文件，通过数字资源入库模块，元数据将自动上链分布式存储，资源文件将由数字内容发行平台在本地存储，存储前将拆分原始文件，并通过AES加密算法加密碎片化文件，加密后文件存储在出版单位服务器，同时，AES加密密钥将采用非对称算法进行二次加密，达到密钥和加密文件在传输过程中都无明文的保护目的。S3. Publishing units submit digital content metadata and resource files through the digital content distribution platform. Through the digital resource storage module, the metadata will be automatically uploaded to the chain for distributed storage, and the resource files will be stored locally by the digital content distribution platform. Divide the original files, and encrypt the fragmented files through the AES encryption algorithm. The encrypted files are stored on the server of the publishing unit. At the same time, the AES encryption key will be encrypted twice using the asymmetric algorithm, so that both the key and the encrypted file can be encrypted during the transmission process. No express purpose of protection.

S4、出版单位通过数字内容发行平台的策略制定模块制定授权规则及策略，数字内容的授权策略(包括具体的授权规则，鉴权规则，加密的碎片化文件秘钥)将自助上链智能合约化，由区块链系统根据合约自助完成鉴权。S4. The publishing unit formulates authorization rules and strategies through the strategy formulation module of the digital content distribution platform, and the authorization strategy of digital content (including specific authorization rules, authentication rules, encrypted fragmented file keys) will be self-service chain smart contracts. , and the blockchain system completes the authentication by itself according to the contract.

S5、接入三方渠道商平台，通过出版单位公布的开放第一API接口完成数字内容的分发申请，申请审核通过后，把数字内容资源元数据分发到渠道自己平台售卖。S5. Access the third-party channel provider platform, and complete the application for distribution of digital content through the open first API interface announced by the publishing unit. After the application is approved, distribute the metadata of the digital content resource to the channel's own platform for sale.

S6、在三方渠道商平台，用户购买数字内容资源后，订单信息将直接提交到数字内容发行平台，发行平台完成存储并上链，上链成功后返回订单Token等核心信息，三方渠道商接收到成功返回数据后存储。S6. On the third-party channel provider platform, after the user purchases digital content resources, the order information will be directly submitted to the digital content distribution platform. The distribution platform completes the storage and uploads the chain, and returns to the core information such as the order token after the chain is successful. The third-party channel provider receives Store after successful return of data.

S7、数字内容资源去中心化授权，用户在三方渠道购买成功后，直接在三方渠道的阅读器SDK(即阅读模块)发起阅读播放请求，由三方渠道集成的阅读器SDK把订单Token等发送到出版单位联盟链请求授权，授权时基于分布式规则就近响应和超时重新请求等授权机制，授权失败返回具体原因，授权成功返回授权凭证证(包含授权文件信息，加密的碎片化文件秘钥)。同时，阅读器SDK会将授权信息同步给数字内容发行平台以这样的方式达到了去中心化授权的目的。S7. Decentralized authorization of digital content resources. After the user successfully purchases from the third-party channel, the user directly initiates a reading and playback request in the reader SDK (ie reading module) of the third-party channel, and the reader SDK integrated by the third-party channel sends the order Token, etc. to The publishing unit consortium chain requests authorization. The authorization mechanism is based on distributed rules, such as the nearest response and the timeout re-request. The specific reason is returned if the authorization fails, and the authorization certificate (including the authorization file information and encrypted fragmented file key) is returned if the authorization is successful. At the same time, the reader SDK will synchronize the authorization information to the digital content distribution platform to achieve the purpose of decentralized authorization in this way.

S8、数字内容资源解密使用，阅读器SDK在发起授权时，会随机生成属于阅读器SDK的RSA密钥对，私钥内存中缓存，公钥会封装到授权请求参数中，用于授权时加密碎片化文件秘钥，当阅读器SDK获得授权凭证后，通过公钥解密许可证获得文件信息，最终下载文件后再解密碎片化文件，阅读器SDK会根据文件属性合成渲染文件，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。在整个密钥传输过程中，采用的是密文传输，在资源文件传输过程中采用的是碎片化密文传输，在阅读时采用内存碎片化分段解密和渲染，不保留任何明文副本。有效的保护了出版单位的数字内容资源文件。S8. Decryption of digital content resources. When the reader SDK initiates authorization, it will randomly generate an RSA key pair belonging to the reader SDK. The private key will be cached in the memory, and the public key will be encapsulated into the authorization request parameters for encryption during authorization. Fragmented file secret key. After the reader SDK obtains the authorization certificate, it obtains the file information through the public key decryption license, and then decrypts the fragmented file after downloading the file. , and collects non-private user data in the process of user reference and synchronizes it to the data collection module of the digital content distribution platform. In the entire key transmission process, ciphertext transmission is used, fragmented ciphertext transmission is used in the resource file transmission process, and fragmented memory is used for segment decryption and rendering during reading, and no plaintext copy is retained. Effectively protect the digital content resource files of the publishing unit.

S9、在用户使用数字资源的过程中，阅读播放SDK会采集非私密性用户数据，这些数据会直接回流到对应的出版单位的数字内容发行平台，供出版单位后期数据分析提供依据。S9. During the user's use of digital resources, the reading and playback SDK will collect non-private user data, and these data will be directly returned to the digital content distribution platform of the corresponding publishing unit to provide a basis for the later data analysis of the publishing unit.

至此，完成了一种出版业基于区块链的数字内容去中心化授权方法。So far, a blockchain-based decentralized authorization method for digital content in the publishing industry has been completed.

以上所述实施例仅表达了本发明的具体实施方式，其描述较为具体和详细，但并不能因此而理解为对本发明专利范围的限制。应当指出的是，对于本领域的普通技术人员来说，在不脱离本发明构思的前提下，还可以做出若干变形和改进，这些都属于本发明的保护范围。The above-mentioned embodiments only represent specific embodiments of the present invention, and the descriptions thereof are specific and detailed, but should not be construed as limiting the patent scope of the present invention. It should be pointed out that for those of ordinary skill in the art, without departing from the concept of the present invention, several modifications and improvements can also be made, which all belong to the protection scope of the present invention.

Claims

Translated fromChinese

1.一种出版业基于区块链的数字内容去中心化授权方法，其特征在于，包括以下步骤：1. a blockchain-based digital content decentralization authorization method in the publishing industry, characterized in that, comprising the following steps:

构建去中心化、包括智能合约模块并具有开放的第一API接口的区块链底层系统；其中，所述智能合约模块用于根据授权请求输出对应的授权凭证并将授权信息上链；Build a decentralized blockchain bottom-level system that includes a smart contract module and has an open first API interface; wherein the smart contract module is used to output corresponding authorization credentials according to the authorization request and upload the authorization information to the chain;

构建具有数字资源入库模块、策略制定模块和数据收集模块的数字内容发行平台；其中，所述数字资源入库模块用于接收供应商提供的数字资源，并将其进行加密、分布式存储、同步版权信息和上链，所述策略制定模块用于制定授权策略并将其上链，以通过所述区块链底层系统的智能合约模块对授权进行控制，所述数据收集模块用于收集订单信息和所述授权信息，所述数字内容发行平台与第一API接口连接，所述数字内容发行平台具有开放的第二API接口；Build a digital content distribution platform with a digital resource warehousing module, a strategy formulation module and a data collection module; wherein the digital resource warehousing module is used to receive digital resources provided by suppliers, and encrypt, distribute and store them. Synchronizing copyright information and uploading on the chain, the policy formulation module is used to formulate an authorization policy and upload it to the chain, so as to control authorization through the smart contract module of the underlying system of the blockchain, and the data collection module is used to collect orders information and the authorization information, the digital content distribution platform is connected with a first API interface, and the digital content distribution platform has an open second API interface;

构建具有交易模块和阅读模块的三方渠道商平台；其中，所述三方渠道商平台与所述第二API接口连接，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统；所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。Build a third-party channel business platform with a transaction module and a reading module; wherein, the third-party channel business platform is connected with the second API interface, and the transaction module is used to provide a user trading platform and synchronize order information to the data collection. module and the underlying system of the blockchain; the reading module obtains the order information from the transaction module, and outputs the authorization request to the underlying system of the blockchain according to the order information. After the authorization credentials returned by the contract module, the digital resources are parsed and read.

2.根据权利要求1所述的出版业基于区块链的数字内容去中心化授权方法，其特征在于，所述阅读模块在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。2. The blockchain-based decentralized authorization method for digital content in the publishing industry according to claim 1, wherein the reading module randomly generates a key pair when outputting the authorization request, and the private key is stored in the memory Cache, the public key is encapsulated into the authorization request to encrypt the authorization certificate during authorization, after obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain file information, and finally download the file and then decrypt the digital resource.

3.根据权利要求2所述的出版业基于区块链的数字内容去中心化授权方法，其特征在于，所述解密数字资源包括：所述解密数字资源包括：所述阅读模块根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。3. The blockchain-based decentralized authorization method for digital content in the publishing industry according to claim 2, wherein the decrypting the digital resources comprises: the decrypting the digital resources comprises: the reading module according to the digital The file attributes of the resource are synthesized and rendered into the file, without any clear text copy, which is ultimately available for user review, and non-private user data is collected during the user review process and synchronized to the data collection module of the digital content distribution platform.

4.根据权利要求1所述的出版业基于区块链的数字内容去中心化授权方法，其特征在于，所述授权策略包括授权规则、鉴权规则和加密的数字资源秘钥。4 . The blockchain-based decentralized authorization method for digital content in the publishing industry according to claim 1 , wherein the authorization strategy includes authorization rules, authentication rules and encrypted digital resource keys. 5 .

5.根据权利要求1所述的出版业基于区块链的数字内容去中心化授权方法，其特征在于，所述数字资源入库模块对数字资源进行加密包括：采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。5. The blockchain-based decentralized authorization method for digital content in the publishing industry according to claim 1, wherein the encryption of the digital resources by the digital resource storage module comprises: adopting an AES encryption algorithm to perform encryption on the digital resources. encryption, and use an asymmetric algorithm to perform secondary encryption on the AES-encrypted key.

6.一种出版业基于区块链技术的数字内容去中心化授权系统，其特征在于，包括：6. A decentralized authorization system for digital content based on blockchain technology in the publishing industry, characterized in that it includes:

区块链底层系统，所述区块链底层系统为去中心化模式，所述区块链底层系统包括智能合约模块并具有开放的第一API接口，所述智能合约模块用于根据授权请求输出对应的授权凭证并将授权信息上链；The blockchain bottom layer system, the blockchain bottom layer system is a decentralized mode, the blockchain bottom layer system includes a smart contract module and has an open first API interface, and the smart contract module is used to output according to the authorization request The corresponding authorization certificate and the authorization information are uploaded to the chain;

数字内容发行平台，所述数字内容发行平台与第一API接口连接，所述数字内容发行平台具有开放的第二API接口，所述数字内容发行平台包括数字资源入库模块、策略制定模块和数据收集模块，所述数字资源入库模块用于接收供应商提供的数字资源，并将其进行加密、分布式存储、同步版权信息和上链；所述策略制定模块用于制定授权策略并将其上链，以通过所述区块链底层系统的智能合约模块对授权进行控制；所述数据收集模块用于收集订单信息和所述授权信息；和A digital content distribution platform, the digital content distribution platform is connected with a first API interface, the digital content distribution platform has an open second API interface, and the digital content distribution platform includes a digital resource storage module, a policy formulation module and data The collection module, the digital resource storage module is used for receiving the digital resources provided by the supplier, and encrypting, distributed storage, synchronizing copyright information and uploading the chain; the policy formulation module is used for formulating the authorization policy and On the chain, to control authorization through the smart contract module of the underlying system of the blockchain; the data collection module is used to collect order information and the authorization information; and

三方渠道商平台，所述三方渠道商平台与所述第二API接口连接，所述三方渠道商平台包括通信连接的交易模块和阅读模块，所述交易模块用于提供用户交易平台并将订单信息同步至所述数据收集模块和区块链底层系统；所述阅读模块从所述交易模块处获取所述订单信息，并根据所述订单信息向区块链底层系统输出所述授权请求，并在接收到由所述智能合约模块返回的授权凭证后解析并阅读数字资源。The third-party channel business platform, the third-party channel business platform is connected with the second API interface, the third-party channel business platform includes a transaction module and a reading module that are connected in communication, and the transaction module is used to provide a user trading platform and order information. Synchronized to the data collection module and the blockchain underlying system; the reading module obtains the order information from the transaction module, and outputs the authorization request to the blockchain underlying system according to the order information, and then After receiving the authorization credential returned by the smart contract module, parse and read the digital resource.

7.根据权利要求6所述的一种出版业基于区块链技术的数字内容去中心化授权系统，其特征在于，所述阅读模块被配置为在输出所述授权请求时随机生成秘钥对，私钥在内存中缓存，公钥封装至所述授权请求中以用于授权时加密授权凭证，当获得授权凭证后，通过所述私钥解密所述授权凭证获得文件信息，最终下载文件后再解密数字资源。7. A decentralized authorization system for digital content based on blockchain technology in the publishing industry according to claim 6, wherein the reading module is configured to randomly generate a key pair when outputting the authorization request , the private key is cached in the memory, and the public key is encapsulated into the authorization request to encrypt the authorization certificate during authorization. After obtaining the authorization certificate, decrypt the authorization certificate through the private key to obtain the file information, and finally download the file. Re-decrypt digital resources.

8.根据权利要求7所述的一种出版业基于区块链技术的数字内容去中心化授权系统，其特征在于，所述阅读模块被配置为根据所述数字资源的文件属性合成渲染文件，不保留任何明文副本，最终供用户查阅，并在用户查阅的过程中采集非私密性用户数据并同步至所述数字内容发行平台的数据收集模块。8. A blockchain technology-based decentralized authorization system for digital content in the publishing industry according to claim 7, wherein the reading module is configured to synthesize rendering files according to file attributes of the digital resources, No plaintext copy is retained, which is ultimately available for user review, and non-private user data is collected during the user review process and synchronized to the data collection module of the digital content distribution platform.

9.根据权利要求6所述的一种出版业基于区块链技术的数字内容去中心化授权系统，其特征在于，所述授权策略包括授权规则、鉴权规则和加密的数字资源秘钥。9 . The decentralized authorization system for digital content based on blockchain technology in the publishing industry according to claim 6 , wherein the authorization policy includes authorization rules, authentication rules and encrypted digital resource keys. 10 .

10.根据权利要求6所述的一种出版业基于区块链技术的数字内容去中心化授权系统，其特征在于，所述数字资源入库模块被配置为采用AES加密算法对数字资源进行加密，并采用非对称算法对所述AES加密的密钥进行二次加密。10. A blockchain technology-based decentralized authorization system for digital content in the publishing industry according to claim 6, wherein the digital resource storage module is configured to encrypt digital resources using an AES encryption algorithm , and use an asymmetric algorithm to perform secondary encryption on the AES encrypted key.