Patent Application
20210224802
This application is based upon and claims the benefit of priority of the prior Japanese Patent Application No. 2020-5200, filed on Jan. 16, 2020, the entire contents of which are incorporated herein by reference.
An embodiment discussed herein is related to a verification method, a verification apparatus, and a non-transitory computer-readable storage medium storing a verification program.
In principle, a blockchain maintains a reliability based on verification by many nodes for each transaction when an absence of a central authority. Public blockchains represented by Bitcoin and Ethereum enable a decentralized operation of participating players, but each transaction is associated with a virtual currency to secure an incentive for participating in a blockchain network in terms of money.
An example of the related art includes Japanese Laid-open Patent Publication No. 2019-74910.
According to an aspect of the embodiments, provided is a verification method implemented by a computer operable as any of a plurality of nodes included in a blockchain network. In an example, the verification method includes: obtaining a verification policy with respect to a blockchain, the verification policy including a plurality of logics, each logic being configured to receive a respective input value and output a respective output value, at least any one of the plurality of logics being configured to receive an output value outputted from another logic; obtaining, for each logic included in the obtained verification policy, an input value and an output value from verification record data of a transaction data stored in the blockchain; transmitting a first verification request to a first node included in the blockchain network, the first verification request including a first logic from among the plurality of logics and the obtained input and output values with respect to the first logic, the transmitting of the first verification request being configured to cause the first node to verify the first logic in accordance with the obtained input and output values with respect to the first logic; and transmitting a second verification request to a second node included in the blockchain network, the second verification request including a second logic from among the plurality of logics and the obtained input and output values with respect to the second logic, the transmitting of the second verification request being configured to cause the second node to verify the second logic in accordance with the obtained input and output values with respect to the second logic, the second node being any of the plurality of nodes other than the first node, the second logic being any of the plurality of logics other than the first logic.
The object and advantages of the invention will be realized and attained by means of the elements and combinations particularly pointed out in the claims.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory and are not restrictive of the invention.
However, in a case of a consortium blockchain, since some programs do not have the virtual currency itself as a default, it is not possible to secure an incentive to participate as a node. As described above, since the reliability of the blockchain is based on the verification by many nodes, ensuring the participation of many nodes is very important for ensuring the reliability of the blockchain.
Therefore, in one aspect, an object is to increase willingness to participate in the blockchain network.
An embodiment of the present invention will be described below with reference to the drawings.
The user terminal 20 is a terminal used by parties involved in various transactions. For example, a personal computer (PC), a smartphone, a tablet terminal, or the like may be used as the user terminal 20.
The transaction management system 1 is a P2P network (blockchain network) that manages transactions performed between user terminals 20, and includes a set of nodes that are a plurality of computers or information processing devices to which a distributed ledger technology is applied. In the present embodiment, each node is referred to as a peer 10 for convenience. Each peer 10 includes a storage unit (hereinafter referred to as “ledger”) that is coupled by a blockchain network and that manages common ledger information in a distributed manner. A blockchain indicating a history of transactions is recorded in the ledger. In
The program that realizes the processing in peer 10 is provided by a recording medium 101. When the recording medium 101 that records the program is set in the drive device 100, the program is installed to the auxiliary storage device 102 from the recording medium 101 via the drive device 100. However, it is not preferably desirable to install the program from the recording medium 101, and may be downloaded from another computer via a network. The auxiliary storage device 102 stores the installed program and the usable files and data.
When an instruction to start the program is issued, the memory device 103 reads and stores the program from the auxiliary storage device 102. The CPU 104 executes functions relating to the peer 10 according to the program stored in the memory device 103. The interface device 105 is used as an interface for coupling the devices to the network.
Examples of the recording medium 101 include portable recording media, such as a compact disc read-only memory (CD-ROM), a digital versatile disc (DVD), and a Universal Serial Bus (USB) memory. Examples of the auxiliary storage device 102 include a hard disk drive (HDD) or a flash memory. Any one of the recording medium 101 and the auxiliary storage device 102 corresponds to a computer-readable recording medium.
The communication unit 11 performs communication with the user terminal 20 or other peer 10. In addition, the communication unit 11 of a certain peer 10 records transaction data in the blockchain C1. The policy registration unit 12 receives an input of a transaction verification policy that is a policy unique to each peer 10 (hereinafter referred to as a “unique policy”), and registers the input unique policy in the policy DB 15. That is, in the present embodiment, a unique policy may be set for each peer 10 as a transaction verification policy separately from a common policy for all the peers 10 (hereinafter referred to as a “common policy”).
The transaction verification determination unit 13 performs the verification of the transaction based on the common policy and the unique policy of the peer 10 in response to a request for verification of the transaction. As described later, the unique policy may be expressed as a set of one or more functions, and if an input value is input to the unique policy, an output value based on the function included in the unique policy is output. Noted that each function may be referred to as “logic”, “code”, “method”, and “script” expressed in a programming language. The transaction verification determination unit 13 stores (records) data in which the input value input to each function that configures the unique policy and the output value from the function at the time of verification and identification information on the verification target transaction (hereinafter referred to as a “transaction ID”) are associated with each other, in the verification record data DB 16 as verification record data. The transaction verification determination unit 13 also records a hash value of each of the input value to each function of the unique policy and the output value from each function in the blockchain C1 (ledger).
The unique policy verification unit 14 performs the processing relating to the verification of the unique policy of each peer 10. The verification of the unique policy is to check whether or not the unique policy of each peer 10 is not changed without permission with respect to other policies.
Hereinafter, the processing procedure executed in the transaction management system 1 will be described.
In step S101, the policy registration unit 12a receives an input of a unique policy of the peer 10a (hereinafter, referred to as “target unique policy”) from, for example, an administrator of the peer 10a, and registers the target unique policy in the policy DB 15a. Subsequently, the policy registration unit 12a converts the target unique policy into graph data (hereinafter, referred to as a “policy graph”) having a tree structure including components corresponding to the functions and the input values or output values to or from the functions (S102). That is a policy graph for the target unique policy is generated.
Hereinafter, it is assumed that the unique policy p1 is a target unique policy. The policy graph g1 may be registered in the policy DB 15 in association with the unique policy p1.
Subsequently, the policy registration unit 12a calculates a hash value of the function (hereinafter, referred to as a “function hash value”) for each function included in the policy graph g1 (S103). The function hash value may be calculated, for example, by encrypting each function with a public key that is associated with a private key held by the peer 10a. For example, the function hash value may be calculated by encrypting each function with a common key held by the peer 10a and another peer 10.
Subsequently, the policy registration unit 12a generates a structure data of a graph (hereinafter, referred to as “concealed structure data”) in which the specific contents (the input value information, the intermediate output value information, the function, and the like) of each peer 10 in the policy graph g1 are hidden or concealed (for example, the contents are missing) (S104).
As illustrated in
Subsequently, the policy registration unit 12a transmits a request for verification of the transaction data (hereinafter, referred to as “target transaction data”) including the concealed structure data dl and the function hash value group (a set of function hash values calculated in step S103) to each peer 10 of the transaction management system 1 (S105). In the target transaction data, information is included, which enables to determine each function hash value corresponds to which of the nodes included in the concealed structure data dl. For example, each function hash value may be included in the target transaction data in association with the node ID. The peer 10a may be included in each peer 10. The same applies to other sequence diagrams.
When the communication unit 11 of each peer 10 receives the request for verification, the transaction verification determination unit 13 of each peer 10 executes the verification based on the common policy (hereinafter, referred to as “common verification”) for the target transaction data included in the request for verification (S106). For example, the common policy for transaction data including the concealed structure data dl and the function hash value group may confirm that the concealed structure data dl conforms to a predetermined structure and the function hash value group is included in association with node ID.
Subsequently, the communication unit 11 of each peer 10 transmits an answer including the verification result of common verification to the peer 10x (S107). The peer 10x may be any one peer 10 (for example, the peer 10 having the best result of processing for a certain calculation processing) among the peers 10 to which the steps S106 and S107 are executed, or may be one predetermined peer 10. The one predetermined peer 10 may be a special peer 10 (peers responsible for writing to the blockchain C1) different from each of the peers 10. In this case, the target transaction data may be transmitted to the peer 10x together with the verification result. Which will be the peer 10x is the same in the subsequent sequence diagrams. The verification result is information indicating whether the target transaction data conforms to the common policy and the target transaction data is approved (OK), or the target transaction data does not conform to the common policy and the target transaction data is not approved (NG).
When the communication unit 11x of the peer 10x receives the corresponding answer from each peer 10, the transaction verification determination unit 13x of the peer 10x determines the verification result of the target transaction data based on the answer from each peer 10 (S108). For example, the target transaction data may be determined to be OK when all the verification results by each peer 10 are OK, or the determination whether the target transaction data is OK or NG may be performed based on other methods (for example, majority vote). If the result of determination is OK, the communication unit 11x stores the target transaction data (That is the concealed structure data di and the function hash value group) in the blockchain C1 (S109). That is, the target transaction data is registered in the ledger x, and the result of registration in the ledger x is also reflected in the ledger of each of other peers 10.
For example, when the communication unit 11a of the peer 10a receives a request for execution of a certain transaction from the user terminal 20 (S201), data indicating the content of the transaction (hereinafter, referred to as “target transaction data”) is generated (S202). Subsequently, the communication unit 11a transmits the request for verification of the target transaction data to each peer 10 (S203).
When the communication unit 11 of each peer 10 receives the request for verification, the transaction verification determination unit 13 of each peer 10 executes the common verification of the target transaction data included in the request for verification (S204). Subsequently, the transaction verification determination unit 13 of each peer 10 executes the verification (hereinafter, referred to as “unique verification”) for the target transaction data based on the unique policy of each peer 10 (S205). Specifically, the transaction verification determination unit 13 inputs the input value for the unique policy of each peer 10 and obtains the final output value of the unique policy. Here, the input value for the unique policy is not limited to the value included in the target transaction data. For example, if a function that compares or collates the information uniquely held by a certain peer 10 (for example, a list of some values) with a value included in the target transaction data is included in the unique policy, the uniquely held information is also the input value for the unique policy.
The unique policy of each peer 10 is stored in the policy DB 15 of each peer 10 by step S101 in
When the communication unit 11x of peer 10x receives the answer from each peer 10, the transaction verification determination unit 13x of the peer 10x determines the verification result of the target transaction data based on the answer from each peer 10 (S207). For example, the target transaction data may be determined to be OK when all the verification results by each peer 10 are YES, or the determination whether the target transaction data is OK or NG may be performed based on other methods (for example, majority vote). If the result of determination is OK, the communication unit 11x stores the target transaction data in the blockchain C1 (S208). At this time, the communication unit 11x also registers the verification result (YES or NO) from each peer 10 in the blockchain C1 together with the target transaction data. That is, the target transaction data and each verification result are registered in the ledger x, and the result of registration in the ledger x is also reflected in the ledger of each of other peers 10.
On the other hand, subsequent to step S206, the transaction verification determination unit 13 of each peer 10 that performs the verification of the target transaction data stores data in which the input value of each function included in the unique policy used in the unique verification of step S205, the node ID of the input value, and the output value from each function and the node ID of the output value are associated with the transaction ID of the target transaction data, in the verification record data DB 16 as the verification record data (S209). Subsequently, the transaction verification determination unit 13 of each peer 10 calculates a hash value for each of the input values and the output values included in the verification record data (S210). For example, the hash value may be calculated by encrypting the input value or the output value with the public key associated with the private key held by each peer 10. For example, the hash value may be calculated by encrypting the input value or the output value with the common key held by each peer 10. However, since the output value corresponding to the final output value of the unique policy is stored in the blockchain C1, the output value may be excluded from the hash value calculation target.
Subsequently, the communication unit 11 of each peer 10 transmits a request for verification of the transaction data including the transaction ID of the target transaction data and the hash value group to each peer 10 (S211). That is, the request for verification of the transaction data is transmitted from each peer 10 that performed the unique verification to each peer 10. Therefore, in step S211, the request for verification is transmitted from each peer 10 for each of a plurality of transaction data. Hereinafter, for the convenience, step S212 and subsequent steps will be described by focusing on one transaction data (hereinafter, referred to as a “target transaction data”) among the plurality of transaction data, but step S212 and subsequent steps are executed for each transaction data. In each transaction data, each hash value is associated with the node ID of the node in the concealed structure data.
In step S212, when the communication unit 11 of each peer 10 receives the target transaction data, the transaction verification determination unit 13 of each peer 10 executes the common verification of the target transaction data (S212). For example, it may be verified that the target transaction data includes a transaction ID and the hash value group that is associated with the node ID. Subsequently, the communication unit 11 of each peer 10 transmits an answer including the verification result of common verification to the peer 10x (S213). If the peer 10x is not included in each peer 10, the target transaction data is also transmitted to the peer 10x.
When the communication unit 11x of the peer 10x receives the answer from each peer 10, the transaction verification determination unit 13x of the peer 10x determines the verification result of the target transaction data based on the answer from each peer 10 (S214). For example, the target transaction data may be determined to be OK when all the verification results by each peer 10 are OK, or the determination whether the target transaction data is OK or NG may be performed based on other methods (for example, majority vote). If the result of determination is OK, the communication unit 11x stores the target transaction data (That is, the transaction ID and the hash value group associated with the node ID) in the blockchain C1 (S215). That is, the target transaction data is registered in the ledger x, and the result of registration in the ledger x is also reflected in the ledger of each of other peers 10.
In step S301, the unique policy verification unit 14a divides the concealed structure data dl registered in the blockchain C1 for the target unique policy into a plurality of subgraphs. The division into the subgraphs may be performed, for example, for each set of equal to or more than one functions.
Subsequently, the unique policy verification unit 14a determines a verification request destination of the subgraph for each subgraph (S302). The verification request destination of one subgraph may be one peer 10 or may be a plurality of peers 10. However, it is not preferable that one peer 10 be the verification request destination of a plurality of subgraphs. From the viewpoint of concealment of the unique policy, it is desirable that the verification request destinations of each subgraph be different from each other.
Subsequently, the unique policy verification unit 14a acquires a raw value (actual value) of the input value to the subgraph and the output value from the subgraph regarding the verification transaction for each subgraph from the verification record data stored in the verification record data DB 16 in association with the transaction ID of the past transaction used for the verification (hereinafter, referred to as a “verification transaction”), and acquires the specific content of the function included in the subgraph from the policy DB 15 (S303). The input value, output value and function may be acquired based on each node ID included in the verification record data. That is, in the policy DB 15, the node IDs may be associated with the functions that configures the unique policy. Hereinafter, the data including the transaction ID of the verification transaction, the raw values of the input value and the output value of one subgraph, the specific content of the function, and the respective node ID will be referred to as “verification data”.
Here, the verification transaction may basically be any of the past transactions, and may be one or more. For example, “all the transactions within a certain period in the past” may be the verification transaction. Alternatively, one or a plurality of transactions among the past transactions may be randomly selected. However, considering that the unique policy of the verification target is the unique policy of the peer 10a, it is not preferable that the peer 10a may be selected as the verification transaction. Therefore, which transaction among the past transactions is to be the verification transaction may be selected by the agreement between the peers 10 or may be selected by the peer 10 that has requested the verification.
Subsequently, the unique policy verification unit 14a encrypts the verification data of the subgraph for each subgraph using the public key associated with the private key held by peer 10 of the verification request destination of the subgraph (S304). In addition, for example, the verification data of the subgraph may be encrypted using a common key commonly held by the peer 10a and the peer 10 of the verification request destination. The verification data includes the input value to the unique policy. The input value may include information that peer 10a does not want to disclose. By encrypting the verification data, it is possible to reduce the possibility of leaking such information. Hereinafter, the encrypted verification data is referred to as “encrypted verification data”. Subsequently, the communication unit 11a transmits the encrypted verification data of the subgraph to the verification request destination of the subgraph for each subgraph (S305). Therefore, the encrypted verification data of different subgraphs are transmitted to the plurality of peers 10.
When the communication unit 11 of each peer 10 of the verification request destination receives the encrypted verification data addressed to the peer 10, the unique policy verification unit 14 of each peer 10 decrypts the encrypted verification data received by the communication unit 11 of the peer 10 using the private key held by the peer 10 (S306). As a result, in each peer 10, the verification data (the transaction ID of the verification transaction, the input value ID and its node ID, the function and its node ID, the output value and its node ID) of the subgraph of which the peer 10 is the verification request destination is obtained.
Subsequently, the unique policy verification unit 14 of each peer 10 determines the validity of the verification data (S307). For example, the determination of the validity includes a determination of whether or not the input value, the function, and the output value included in the verification data correctly correspond to each other (hereinafter, referred to as a “first determination”), and a determination of whether or not the input value, the function and the output value are correct from the beginning (whether or not it was actually used in the past verification of the transaction) (hereinafter, referred to as a “second determination”).
In the first determination, the unique policy verification unit 14 determines whether or not the value output from the function matches the output value of the verification data by inputting the input value of verification data into the function of the verification data. That is, if the compared values match each other, the unique policy verification unit 14 determines that the input value, the function and the output value of the verification data correctly correspond to each other (the result of determination in this case is referred to as “OK”). On the other hand, if the compared values are different from each other, the unique policy verification unit 14 determines that the input value, the function and the output value of the verification data do not correctly correspond to each other (the result of determination in this case is referred to as “NG”).
In addition, in the second determination, the unique policy verification unit 14 calculates the hash value of each input value, each function and each output value included in the verification data. For example, the hash value may be calculated by encrypting each value with the public key of peer 10a. For example, the hash value may be calculated by encrypting each value with a common key held by the peer 10a and another peer 10. In addition, for each input value and each output value, the unique policy verification unit 14 acquires the hash value stored in the blockchain C1 for each input value and each output value of the verification data based on the node ID included in the verification data and the transaction ID included in the verification data. In addition, the unique policy verification unit 14 acquires the hash value stored in the blockchain C1 for each function of the verification data based on the node ID included in the verification data for each function. If the hash value group calculated by itself and the hash value group acquired from the blockchain C1 match each other, the unique policy verification unit 14 determines that the input value, the function and the output value of the verification data are correct (the result of determination in this case is referred to as “OK”). On the other hand, if the hash value group calculated by itself and the hash value group acquired from the blockchain C1 do not match each other, the unique policy verification unit 14 determines that the input value, the function and the output value of the verification data are incorrect (the result of determination in this case is referred to as “NG”). The final output value is stored in the blockchain C1, and thus, the second determination may not be performed.
When the result of determination for the first determination and the second determination are OK, the unique policy verification unit 14 sets the result of determination for the validity of the verification data to be OK, and otherwise, the unique policy verification unit 14 sets the result of determination for the validity of the verification data to be NG.
Subsequently, the communication unit 11 of each peer 10 transmits the result of determination by the unique policy verification unit 14 of each peer 10 to the peer 10x (S308).
When the communication unit 11x of the peer 10x receives the result of determination of each peer 10, the unique policy verification unit 14x of the peer 10x determines a verification result of the target unique policy based on the result of determination from each peer 10 (S309). For example, if all the results of determination by another peer 10 are OK, the target policy may be determined to be valid (the verification result is OK), and if not, the target policy may be determined to be invalid (the verification result is NG (changed to other peer 10 without permission)). Subsequently, the communication unit 11x of peer 10x stores the result of determination performed by the unique policy verification unit 4x in the blockchain C1 (S310).
In the description above, an example in which the content of the unique policy relates to the sensor data is described (refer to
A case of applying the present embodiment to a bank deposit transaction will be described. For example, in addition to a verification for superficial transaction such as “whether an amount of remittance exceeds the deposit balance of the remitter”, a case of verifying whether the participants of the blockchain network (the peer 10) is possible to perform the remittance with their unique logic (unique policy) may be considered.
Examples of the input values used for the verification are as follows.
(1) Number of remittances performed by the remitter within one week
(2) Total remittance amount by the remitter within one week
(3) Dollar ratio value of the remitted currency
(4) Stock price fluctuation ratio of a company to which the remitter belongs
In this case, following policy 1 and policy 2 are given as examples of the unique policy of each peer 10.
[Policy 1]
If (the number of remittances is equal to or less than 10 and the total remittance amount is less than 500000) or the ratio value is lower than 2.5,
the verification result of the remittance transaction is set to be OK, and if not, the verification result is set to be NG.
[Policy 2]
If (the total remittance amount is less than 100000 or the ratio value is lower than 1.5) and the stock price fluctuation ratio of the company is higher than 0.8 and lower than 1.2,
the verification result of the remittance transaction is set to be OK, and if not, the verification result is set to be NG.
A case of applying the present embodiment to a delivery system in a supply chain will be described. Similar to the specific example 1 described above, a case of verifying whether the participants of the blockchain network (the peer 10) is possible to perform the remittance with their unique logic (unique policy) may be considered.
Examples of the input values used for the verification are as follows.
(1) Estimated value of man-hour for each delivery company A, B, C, and D
(2) Estimated value of delivery quality for each delivery company A, B, C, and D
(3) Weather on the day (sunny: 1, cloudy: 2, rain: 3, and others: 4)
In this case, following policy 1 and policy 2 are given as examples of the unique policy of each peer 10.
[Policy 1]
If (the man-hour for the delivery company A is equal to or larger than 3 or the man-hour of the delivery company B is equal to or larger than 4) and the weather is smaller than 3,
the verification result of the delivery transaction is set to be OK, and if not, the verification result is set to be NG.
[Policy 2]
If ((the man-hour of the delivery company B is equal to or larger than 2 and the quality value of the delivery company B is equal to or larger than 5) or the man-hour of the delivery company C is equal to or larger than 5) and the weather is smaller than 2,
the verification result of the delivery transaction is set to be OK, and if not, the verification result is set to be NG.
As described above, according to the present embodiment, it is possible for each peer 10 to use a unique policy as a verification policy in addition to the common policy. Therefore, each participant (peer 10) may reflect his/her intention in the verification of the transaction data. For example, if each peer 10 is a company, each company may use the verification policy that is convenient for the company to verify the transaction data. As a result, it is possible to increase the willingness to participate in the blockchain network.
In addition, in the present embodiment, for each part (for each function) of the verification policy, the verification of the part may be performed by the separate peer 10. As a result, even if each peer 10 uses the unique policy for the verification of the transaction, it is possible to suppress the unique policy from being changed illegally (without permission from other peers 10) due to the conditions of each peer 10. Therefore, it is possible for each peer 10 to use the unique policy (diversification of transaction verification policy), and it is possible to increase the willingness to participate in the blockchain network due to the fact that the unique policy may be used.
In addition, since the unique policy may be the information that the peer 10 does not want to disclose to the public, in the present embodiment, only a part of the unique policy is disclosed to each verification request destination of the unique policy. Therefore, it is possible to avoid the entire unique policy to be disclosed to a certain peer 10.
That is, when building a blockchain network of which the verification policy is different depending on each peer 10, it is desired to guarantee the validity (not changed) of the unique policy, but another peer 10 requests for the verification of the unique policy of a certain peer 10, it may not be desirable to disclose the raw value of the unique policy. That is, according to the present embodiment, it is possible to satisfy the conflicting requests such as “do not disclose the raw value of the unique policy of one peer 10 to another peer 10” and “allow other peer 10 to verify that the unique policy is correct”.
In the present embodiment, the peer 10 is an example of a verification apparatus. The unique policy verification unit 14 is an example of an acquisition unit and a verification unit. The communication unit 11 is an example of a transmission unit. The public key associated with the private key held by the peer 10 or the common key held by each peer 10 is an example of an encryption key.
As above, the embodiment of the present invention have been described in detail, however, the present invention is not limited to such a specific embodiment, and various modifications changes are possible within the scope of the gist of the present invention described in the claims.
All examples and conditional language provided herein are intended for the pedagogical purposes of aiding the reader in understanding the invention and the concepts contributed by the inventor to further the art, and are not to be construed as limitations to such specifically recited examples and conditions, nor does the organization of such examples in the specification relate to a showing of the superiority and inferiority of the invention. Although one or more embodiments of the present invention have been described in detail, it should be understood that the various changes, substitutions, and alterations could be made hereto without departing from the spirit and scope of the invention.
| Number | Date | Country | Kind |
|---|---|---|---|
| 2020-005200 | Jan 2020 | JP | national |
