KR102532319B1 - Method of operating multi-channel node based on cloud virtual machine using blockchain and system thereof - Google Patents

Abstract

The present invention relates to a system and method for operating a multi-channel node based on a cloud virtual machine.
A cloud virtual machine-based multi-channel node operating method using a blockchain according to an embodiment of the present invention allocates one or more channels to each virtual machine for a plurality of virtual machines existing on a cloud server. and performing a predetermined blockchain process between virtual machines belonging to the same channel, and the virtual machine may function as a participating node performing verification in a blockchain system.

Description

Cloud virtual machine-based multi-channel node operation method and system using blockchain

The present invention relates to a system and method for operating a multi-channel node based on a cloud virtual machine.

In a group composed of a large number of users, there is a need to securely exchange data such as various documents, materials, and contents in the course of business among members while maintaining confidentiality. For example, in corporations, business digital documents or data are transferred between members to perform business by using various storage media, company e-mail, or a management system.

Delivery of documents/data through storage media or company e-mail may result in leakage of the document/data during the delivery process, and information may be unauthorized by company employees or a third party who has received the documents/data from the employee. There is a problem with duplication.

On the other hand, as a technology to solve the problem of unauthorized leakage/copying of information when using storage media or e-mail, DRM (Digital Rights Management) technology exists to protect digital documents/data, and the company's documents/data to which it is applied A management system exists. DRM technology, also called digital rights management, is a system that allows access to content only to those with legitimate rights to prevent illegal leakage/copying of digital content.

For example, DRM technology protects content in an encrypted form, and provides a mechanism for a legitimate user to access content after authentication by packaging and issuing a decryption key as a license for an authenticated user. This DRM technology provides a function of continuous protection of digital assets by blocking unauthorized users from illegally accessing contents and managing each user to access digital contents within the scope of the granted authority.

For example, Patent Document 1 (Registered Patent No. 10-2448531, Publication Date: September 27, 2022) is a DRM module that performs encryption/decryption authority control of an electronic document, and encryption/decryption of the electronic document from a client server. A DRM server including an encryption/decryption management module that stores information on the received electronic document as a temporary file upon request and a DRM that receives the requested electronic document from the client server and transmits the received electronic document to the DRM server It provides an encryption/decryption system for electronic documents including an Open API server.

In addition, there is a technology for managing data files using blockchain. For example, Patent Document 2 (Registered Patent No. 10-1781583, Publication Date: September 27, 2017) stores and manages information on data files stored in each node in the form of a blockchain, and all It focuses on verifying the owner by providing a file management and search system based on a block chain that allows the owner of each data file to be identified and searched based on the IP list that stores the IP address and port number of the nodes. It is a technique to put

Content management systems using conventional DRM technology usually exist in the form of a centralized system, and if a server that issues and manages licenses for content access or user authentication is attacked, the entire DRM service cannot operate normally. have

In addition, since digital data such as digital documents, materials, and contents can be easily copied or modified due to their nature, there is a problem that they are vulnerable to forgery and falsification. In order to solve this problem, in some cases, a copy protection technology such as watermarking is applied to the DRM system, but due to the possibility of hacking, there is a limit in that it is not easy to completely prevent forgery and alteration even with watermarking.

In order to overcome the limitations of these conventional digital data management technologies, block chain technology can be utilized. In the blockchain, if the data related to the block is changed ex post facto, the blockchain is changed, so it is easy to recognize the change in data, and since the blockchain is operated with the participation of a large number of nodes, some of the users arbitrarily It is characterized in that it is practically impossible to change the data of . Therefore, using blockchain technology can effectively prevent forgery and falsification of digital data such as digital documents and data contents.

However, in order for the blockchain to operate, the nodes participating in the blockchain must operate in an 'ON' state at all times to verify the blockchain, and thus there is a burden on resources in operating the nodes. Therefore, when blockchain is applied to a company's business data management system, it is difficult for the terminal of each person in charge to operate as a node of the blockchain, which serves as a verifier to check business documents/data.

In addition, there is a technology for managing data using a blockchain in the past, as in Patent Document 2, but there are technical limitations in terms of efficient data sharing, security and integrity.

Accordingly, the present invention solves the problems of the prior art described above, provides information security and integrity in managing data such as various documents, materials, and contents of companies / groups using a block chain, and also provides these functions to companies / groups. Provides a cloud virtual machine-based multi-channel node operating method and system using a block chain for efficient implementation on a block chain system in consideration of group resources.

In addition, the present invention provides a method and system capable of efficiently transmitting and receiving and managing data such as business documents between members/users of companies/groups on a blockchain with a smart contract and concluding a smart contract.

In order to solve the above problem, a method for operating a cloud virtual machine-based multi-channel node using a block chain according to an embodiment of the present invention, for a plurality of virtual machines existing on a cloud server, for each virtual machine allocating one or more channels; and performing a predetermined blockchain process between virtual machines belonging to the same channel, wherein the virtual machine may function as a participating node performing verification in a blockchain system.

In one embodiment, at least two virtual machines having different channels may exist on the cloud server.

In one embodiment, the method of the present invention may further include creating a plurality of virtual machines on the cloud server.

In one embodiment, the method of the present invention may further include authenticating a user accessing the virtual machine.

In one embodiment, the step of performing the block chain process includes a step of resource scheduling of the virtual machine functioning as the participating node, and the step of resource scheduling of the virtual machine includes all channels allocated to an arbitrary virtual machine. and determining whether the sum of the capacities of the resources exceeds a predetermined threshold.

In one embodiment, in the resource scheduling step of the virtual machine, when it is determined that the sum of the resource capacities of all channels allocated to the virtual machine exceeds a predetermined threshold, the resource It may include determining that the node has a capacity saturation.

In one embodiment, in the resource scheduling step of the virtual machine, if there is a node whose resource capacity is saturated, the nodes of a channel including the corresponding node block the block until the saturation of the resource capacity of the corresponding node is resolved. It may include generating a request to wait without performing at least a verification step during the chain process.

In one embodiment, in the resource scheduling step of the virtual machine, when it is determined that the sum of the resource capacities of all channels allocated to the virtual machine does not exceed a predetermined threshold, the corresponding virtual machine is verified at least during the blockchain process It may include determining as a node capable of performing the step.

In one embodiment, in the step of performing the blockchain process, if all nodes of any channel are determined to be nodes capable of performing the verification step, the verification step is performed between virtual machines belonging to the corresponding channel. steps may be included.

In one embodiment, the step of performing the blockchain process includes broadcasting at least one of a transaction or a block including the transaction to the participating nodes using a plurality of virtual machines belonging to the same channel as the participating nodes. step; and a verification step of verifying at least one of the transactions or blocks received by each participating node.

In one embodiment, the verifying step may include verifying the block based on a predetermined blockchain consensus algorithm.

In one embodiment, the method of the present invention may further include adding the block verified in the verification step to the blockchain.

In one embodiment, the transaction may include at least one of a predetermined group of personnel information, financial information, and contract information.

In one embodiment, the channel may be a channel established based on at least one of a predetermined group of personnel, finance, and contracts.

In one embodiment, the method of the present invention includes generating a smart contract between arbitrary virtual machines belonging to the same channel; and generating a transaction including at least some information of the generated smart contract.

In one embodiment, the step of performing the block chain process includes a plurality of virtual machines belonging to the same channel as the participating nodes, and among a transaction including at least some information of the smart contract or a block including the transaction It may include broadcasting at least one to the participating nodes.

In one embodiment, generating the smart contract may include generating, by a first virtual machine, an electronic document including information about a first contract; and digitally signing the electronic document by at least one of the first virtual machine and the second virtual machine, thereby generating the signed smart contract.

A cloud virtual machine-based multi-channel node operating system using a block chain according to an embodiment of the present invention includes a memory; and at least one processor connected to the memory, wherein the at least one processor may be configured to perform the cloud virtual machine-based multi-channel node operating method using the above-described blockchain.

A computer program executable by at least one processor of a cloud virtual machine-based multi-channel node operating system using a blockchain according to an embodiment of the present invention and stored in a computer-readable storage medium is a cloud using the above-described blockchain. A virtual machine-based multi-channel node operation method can be performed.

A computer readable storage medium recording a computer program according to an embodiment of the present invention may record a computer program for performing the cloud virtual machine-based multi-channel node operating method using the above-described block chain.

According to the cloud virtual machine-based multi-channel node operating system and method using the block chain of the present invention, it is possible to provide a hacking-resistant data management system by managing data in a distributed system using block chain technology. In addition, by implementing a node as a virtual machine implemented on a cloud server, and business managers of companies/groups connect to it to process tasks, efficient resource management is possible and resources of terminals used by business managers are excessively invested. You can operate the system without it.

In addition, according to the cloud virtual machine-based multi-channel node operating system and method using the block chain of the present invention, virtual machines are distributed on a cloud server and operated as nodes, so there is no need to operate the node all the time and operate only when necessary. And since the node can manage blocks related to confidential data by channel, business security is guaranteed.

In addition, according to the present invention, it is possible to efficiently operate a blockchain node by solving a resource bottleneck of a virtual machine that may occur due to one node holding and operating multiple channels.

In addition, according to the present invention, security and integrity of information can be provided when business documents are transmitted and received between departments in a company performing business in departments distributed in a plurality of remote locations.

1 is a diagram showing an entire system in which a cloud virtual machine-based multi-channel node operating method using a block chain according to an embodiment of the present invention is executed.
2 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a block chain according to an embodiment of the present invention.
3 is a diagram showing a channel configuration in a virtual machine according to an embodiment of the present invention.
4 is a detailed flow chart of blockchain process steps;
5 is a detailed flowchart of a step of scheduling resources of a virtual machine.
6 is a detailed flow chart showing virtual machine resource management of a node according to an embodiment.
7 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a blockchain in an embodiment of the present invention performing a smart contract.
8 is a diagram illustrating smart contract processing according to an embodiment of the present invention.
9 is a diagram illustrating information stored in a block according to an embodiment of the present invention.
10 is a reference diagram for explaining an example of a blockchain consensus algorithm according to an embodiment of the present invention.
11 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a block chain according to an embodiment of the present invention.

Hereinafter, various embodiments of the present invention will be described, but the technical idea of the present invention is not limited thereto and can be modified and implemented in various ways by those skilled in the art. In addition, the terms used in this specification are used to describe the concept of the present invention and its embodiments thereof, and are not intended to limit the present invention only to the dictionary or phraseological meaning of the term. For example, in this specification, singular expressions may include plural expressions unless the context clearly dictates otherwise. In addition, in this specification, terms such as "include" or "having" mean the presence of any configuration, step, operation, or combination thereof, and unless the context clearly indicates otherwise, the presence or absence of other configurations, steps, operations, or the like. Additions do not rule out the possibility.

Unless otherwise stated herein, "connected" or "connected" means that one element/feature is directly connected or connected to another element/feature or indirectly connected or connected through another element/feature. It may include, and does not necessarily mean only directly connected or connected mechanically. Accordingly, while the various schematic diagrams shown in the drawings illustrate exemplary arrangements of elements and components, additional intervening elements, devices, features or components may be used (assuming that the functionality of the depicted elements is not adversely affected). ) may exist in an actual embodiment.

In addition, "transmitting" or "receiving" in this specification may include not only directly transmitting or receiving information between the sender and the receiver, but also transmitting or receiving information through another object unless otherwise noted. .

The cloud virtual machine-based multi-channel node operating system using the block chain of the present invention includes a plurality of virtual machines existing on a cloud server. A virtual machine (VM) is built on a physical hardware system, occupies resources such as CPU, memory, network interface, and storage, and can operate as a virtual computer system in a virtual environment. Virtual machines may receive and use resources from a resource pool that processes computing resources such as CPU, memory, and storage. The virtual machine of the present invention may be a virtual machine implemented on a cloud server constructed in one or more physical hardware systems connected by a network in a known manner other than the above-described manner.

In the present invention, these virtual machines function as participating nodes that perform blockchain verification in a blockchain system, and function as nodes that perform a blockchain process described later. The virtual machine may be created at the request of a device managing the cloud server, and a virtual machine operating a plurality of virtual machines may be allocated. For example, a super node is determined, and the super node can create/manage/terminate virtual machines that are a plurality of other nodes.

The virtual machines of the present invention can be accessed by terminals used by members belonging to a predetermined group, and members can access the virtual machines through the corresponding terminals. The terminal may receive input from members who are users, transmit a request according to the input to the virtual machine, receive the processing result, and provide it to the user.

The virtual machines of the present invention can transmit/receive data such as documents, materials, contents, etc. that members belonging to a group need for work, and can perform electronic processing related thereto. Here, documents may include various office files or web documents, and data processed and transmitted/received by virtual machines may include all documents, materials, and contents irrespective of file formats. For example, in one embodiment of the present invention, transactions stored as blocks in a blockchain system may be personnel information, financial information, contract information, and the like managed by a company.

The present invention provides a technology for preventing forgery and falsification while sharing and storing data such as documents based on a block chain between business personnel in a predetermined group such as a company, and even if the terminal of the business person does not directly function as a node, a cloud server It provides a technology that distributes virtual machines into multiple virtual machines and utilizes them as nodes.

1 is a diagram showing an entire system 1 in which a method for operating a multi-channel node based on a cloud virtual machine using a block chain according to an embodiment of the present invention is executed. As shown in FIG. 1, the business person in charge (30a, 30b, 30c, 30d) can access each assigned virtual machine (20a, 20b, 20c, 20d) as a verifier. You can access the virtual machine via . Here, virtual machines are created and operated on a cloud server, and each virtual machine functions as a participating node that operates a blockchain. For example, the virtual machines (20a, 20b, 20c, 20d) share the roles and duties of the person in charge, such as the finance team of the branch in country A, the head office of the branch in country B, the personnel team of the branch in country A, and the local team at the branch in country C, respectively. can be created and assigned according to In addition, each node forms a block of data such as documents, materials, and contents transmitted and received between nodes as a transaction and verifies them together. For example, the data stored as blocks in the blockchain shared by the nodes can be salary contracts, payroll books, employee leave information, client contract information, financial information, accounting information, expense information, and the like. In addition, there may be a super node 10 providing a management function for creating/managing multiple nodes.

2 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a block chain according to an embodiment of the present invention.

A cloud virtual machine-based multi-channel node operating method using a block chain according to an embodiment of the present invention includes generating a plurality of virtual machines on a cloud server (S101), a plurality of It may include allocating one or more channels for each virtual machine (S200) and performing a predetermined blockchain process between virtual machines belonging to the same channel (S400).

A cloud virtual machine-based multi-channel node operating method using a block chain according to an embodiment of the present invention may further include a step (S102) of authenticating a user accessing each virtual machine. Users can access virtual machines of a channel assigned to each virtual machine to perform tasks, and the node can authenticate users to allow access.

1) Channel composition

In the present invention, one or more channels are assigned to each virtual machine, and at least two virtual machines having different channels exist on the cloud server. In addition, each channel is associated with one or more virtual machines, and a channel may be configured in association with a predetermined task. In one embodiment of the present invention, a channel may be a channel assigned and configured to handle specific tasks such as human resources, finance, and contracts of a company. For example, one channel including specific virtual machines may be configured to process personnel affairs. That is, in the present invention, virtual machines belonging to a common channel function as nodes to process specific tasks related to the corresponding channel using a blockchain.

In the present invention, when nodes belonging to a specific channel process a specific task together, a host node leading a specific event corresponding to the specific task can be set. For example, a host node can be set up that drives a business event that creates contract A. As described above, in the present invention, the host node is a node that generates or leads a specific event, and can request creation and addition of transactions and/or blocks corresponding to the event. Thus, the host node may change per event. In addition, when a channel is initially created, the host node may request resource allocation of a virtual machine for channel creation.

3 is a diagram showing a configuration of a channel (Ch) in a virtual machine (VM) according to an embodiment of the present invention.

For example, as shown in FIG. 3, for channel 1 (Ch1), VM1 (Ch1), VM2 (Ch1), and VM3 (Ch1) are grouped into one channel, and for channel 3 (Ch3), VM1 (Ch3), VM3 (Ch3) and VMn (Ch3) may be grouped into one channel. Nodes grouped on the same channel perform a predetermined block chain process for a predetermined task performed by the same channel. For example, channel 1 may be a channel operated for management of an annual salary contract, and VM1, VM2, and VM3 may be virtual machines allocated to persons in charge of managing an annual salary contract. In addition, channel 3 may be a channel operated for corporate accounting management, and VM1, VM3, and VMn may be virtual machines allocated to persons in charge of accounting management.

4 is a detailed flowchart of the blockchain process step (S400).

In one embodiment of the present invention, in the step of performing a predetermined block chain process between virtual machines belonging to the same channel (S400), a plurality of virtual machines belonging to the same channel are used as participating nodes of the blockchain, and transactions and / or broadcasting a block including the transaction to participating nodes (S410), scheduling resources of virtual machines functioning as participating nodes (S420), verifying the transaction and / or block received by each participating node It may include a verification step (S430) and a step of adding the block verified in the verification step (S430) to the blockchain (S440). Here, the verification step (S430) may include verifying the block based on a predetermined consensus algorithm of the block chain.

2) Scheduling virtual machine resources in the cloud server

In the blockchain system of the present invention, a plurality of channels can simultaneously perform a blockchain process. However, since there is a limit to the resources allocated to each virtual machine functioning as a node, a lack of resources for performing all operations of channels allocated to the node may occur. In this case, since a bottleneck may occur due to a node having a shortage of resources, operations of a plurality of nodes need to be scheduled in consideration of resources such as CPU, memory, and storage.

Therefore, in one embodiment of the present invention, the step of performing a predetermined blockchain process between virtual machines belonging to the same channel (S400) is the following of the virtual machine functioning as a participating node on the cloud server based on the channel It may include scheduling resources (S420).

5 is a detailed flowchart of scheduling the resources of the virtual machine (S420).

In one embodiment, in the step of scheduling the resources of the virtual machine (S420), the block chain process may proceed or wait according to whether the available resources of each node are saturated, and for this purpose, any virtual machine It may include determining whether the sum of the resource capacities of all channels allocated to exceeds a predetermined threshold (S421). Here, the predetermined threshold may be a predetermined setting value for each node, and may be variably set for each node by reflecting the current state of resources of the cloud server, if necessary.

Here, if it is determined that the sum of the resource capacities of all channels allocated to the virtual machine exceeds a predetermined threshold, determining the virtual machine determined to exceed the threshold as a node whose resource capacity is saturated (S422) can be performed. That is, it is possible to determine whether resources of virtual machines allocated for each node are saturated in a corresponding node when all channels allocated to each virtual machine operate. Here, if there is a node whose resource capacity is saturated, a request for the nodes of the channel including the node to wait without performing at least the verification step of the blockchain process until the saturation of the resource capacity of the node is resolved. A generating step (S423) may be performed. Here, you can also create a request to wait so that other blockchain operations other than the verification step are not performed. When such a standby request is generated, the channel including the corresponding node may be set to a standby state without proceeding with the blockchain process.

On the other hand, if it is determined that the sum of the resource capacities of all channels allocated to the virtual machine does not exceed a predetermined threshold, determining the virtual machine as a node capable of performing at least a verification step of the blockchain process ( S424) may be performed.

Here, when all nodes of a channel are determined to be nodes capable of performing the verification step, a step of performing the verification step between virtual machines belonging to the corresponding channel (S430) may be performed. Here, a request to perform other block chain operations other than the verification step may be created, and the channel including the corresponding node may be set to a state in which an arbitrary block chain process is in progress.

For example, virtual machines of the above-described cloud server of the present invention may be scheduled as follows.

The capacity of the resource that the virtual machine (VM) has for the channel (Ch) can be expressed as in Equation 1 below.

(식1)

(Equation 1)

Here, i is the index of the virtual machine and j is the index of the channel.

은 해당 채널에 부여된 업무의 처리를 위한 공통의 블록체인 프로세스를 수행한다. 이때 특정

에서 해당 가상머신에 할당된 복수의 채널들의 블록체인 프로세스들을 동시에 수행하는 중 해당 가상머신이 자원의 포화 상태에 이르게 되면, 해당 가상머신에서 병목현상이 발생하여 해당 가상머신이 속한 채널들의 블록체인 프로세스의 진행에 지연 또는 자원 부족으로 인한 오류가 발생할 수 있다. 따라서 본 발명에서는 이러한 병목현상의 발생을 예방하기 위해 상술한 각 단계를 제공한다.Here, virtual machines belonging to the same channel j = k

performs a common blockchain process for the processing of tasks assigned to the channel. At this time, specific

If the virtual machine reaches a resource saturation state while concurrently performing block chain processes of a plurality of channels assigned to the virtual machine in Errors may occur due to delays or lack of resources in the progress of Therefore, the present invention provides each of the above-described steps to prevent the occurrence of such a bottleneck.

In one embodiment, assuming that the threshold of the capacity (processing capacity) of all resources allocated to a node (virtual machine) is 100, the blockchain process can be normally operated only when the condition of Equation 2 below is satisfied.

(식2)

(Equation 2)

6 is a detailed flow chart showing virtual machine resource management of a node according to an embodiment. In one embodiment, as shown in FIG. 6, scheduling of a virtual machine for operating a normal blockchain process may be performed in the next step.

First, the host node creates a block (S405a). Here, a node to create a transaction for processing predetermined data and add it to the blockchain may be a host node, and the host node may be changed for each data processing. Here, the host node may generate a transaction for data processing and a corresponding block, and generate a block hash in the process.

Next, the host node broadcasts the created block and the hash value of the block to the nodes grouped on the channel corresponding to data to be processed by the host node (S410a).

(식2)의 조건을 만족하는지를 확인하는 가상머신 자원 스케쥴링을 수행한다(S420a). Next, in order to perform the blockchain process of adding a new block, the resource (processing capacity) of each node is required for each node grouped in the same channel.

Virtual machine resource scheduling is performed to check whether the condition of (Equation 2) is satisfied (S420a).

Here, if there is a saturated node that does not satisfy the condition of (Equation 2) among the nodes grouped on the same channel, the saturated node makes a standby request to other nodes on the same channel, and resources are secured in the future to satisfy the above condition. When it is in this state, it transmits a processable message to the host node. At this time, the host node may perform step S410a again as needed.

If the condition of (Equation 2) is satisfied, the participating nodes verify the received block based on a predetermined consensus algorithm and add it to the blockchain (S430a).

3) Smart contract

7 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a blockchain in an embodiment of the present invention performing a smart contract.

In one embodiment, the transaction of the block processed in the blockchain process may be related to a smart contract. It may further include the step of performing the step (S300) of performing.

In one embodiment, the step of performing the smart contract process (S300) includes the step of generating a smart contract between arbitrary virtual machines belonging to the same channel (S310) and a transaction including at least some information of the generated smart contract. It may include a step of generating (S320).

In one embodiment, the step of generating a smart contract (S310) is the step of generating an electronic document including information on the first contract by a first virtual machine (S311), and among the first virtual machine and the second virtual machine. At least one may include digitally signing the electronic document and generating a signed smart contract (S312).

In this way, when a block is formed by using information about a smart contract as a transaction, in the step of performing the above-described blockchain process (S400), a plurality of virtual machines belonging to the same channel are used as participating nodes, and at least some of the smart contracts Broadcasting a transaction including information of and/or a block including the transaction to participating nodes (S410a) may be included. For example, a smart contract can broadcast a block included in a transaction to participating nodes. For example, in one embodiment of the present invention, one of the grouped nodes of a certain channel can create a document, encrypt the document to create a smart contract, and broadcast a block corresponding to it.

8 is a diagram showing smart contract processing according to an embodiment of the present invention, and shows an example of processing an annual salary contract as a smart contract, which can be performed through the following steps.

The host node, node A, creates a smart contract code corresponding to the annual salary contract and transmits it to other nodes (S311a).

Node A, which is the host node, generates a smart contract code including the contract period, work details, annual salary, number of vacation days per year, and other welfare information (S311b).

Node B confirms the content of the smart contract and then electronically signs it (S312a).

Node A digitally signs the smart contract digitally signed by node B and feeds back to node B (S312b).

In one embodiment, the digital signature may be based on a Public Key Infrastructure (PKI) method. For example, an electronic signature signed with a user's private key related to a document is stored, and the electronic signature and the user's public key can be disclosed to general users. In this way, the general user can confirm that the corresponding signature is a true signature digitally signed by a specific user. To this end, in the present invention, keys generated by a public key infrastructure (PKI) method may be used as a public key and a private key. In the present invention, the private key is used to digitally sign the information to be signed, and the public key can be used to verify the signature. For example, a signature may be generated by encrypting information to be signed or its hash value with a private key, and the generated signature is decrypted using a public key and compared with information to be signed or its hash value. can be verified Alternatively, another known digital signature method using a public key and a private key of the PKI method may be used.

9 is a diagram illustrating information stored in a block according to an embodiment of the present invention.

Regarding the smart contract created as shown in FIG. 8, the node can create a block composed of the annual salary contract signed with the smart contract as a transaction, as shown in FIG. 9, and the block is broadcast to nodes belonging to the same channel, so that each node The verifier responsible for accessing the field can verify this.

4) Block generation and consensus algorithm

In one embodiment of the present invention, in the step of performing a predetermined blockchain process between virtual machines belonging to the same channel (S400), as described above, a plurality of virtual machines belonging to the same channel are used as participating nodes of the blockchain. Then, broadcasting the transaction and/or a block including the transaction to participating nodes (S410), scheduling resources of virtual machines functioning as participating nodes (S420), each participating node receives the transaction and/or It may include a verification step of verifying the block (S430), and a step of adding the block verified in the verification step (S430) to the blockchain (S440).

Here, the verification step (S430) may include verifying the block based on a predetermined consensus algorithm of the block chain, or may be based on a known consensus algorithm.

The nodes of the block chain of the present invention hold the block chain in the manner of a shared ledger, and the processing of receiving newly generated transactions, the processing of generating blocks including them, and the request to add the created blocks to the block chain are sent to other nodes. At least one of the processing of transmitting to the node and the processing of adding the corresponding block to the blockchain owned or accessed by verifying the request for adding a block received from another node according to a predefined consensus algorithm can be performed. All or some of the nodes may perform at least one of validating blocks and/or transactions, determining the order of blocks and/or transactions, and adding new blocks to the blockchain according to a predefined consensus algorithm. there is. And only blocks verified by the consensus algorithm can be finally added to the blockchain. At this time, depending on the case, a plurality of blockchains with temporarily added blocks may exist at the same time, and the final blockchain may be determined by discarding a blockchain determined to be invalid by subsequent verification according to a consensus algorithm. As a result, the blockchains owned or connected by each node can be synchronized and shared. The consensus algorithm of the present invention may be an algorithm defined to perform the above functions, and is not limited to a specific consensus algorithm. For example, Proof-of-Work (POW) algorithm, Proof-of-Stake (POS) algorithm, Practical Byzantine Fault Tolerance (PBFT) algorithm, Elapsed Time Proof (Proof-of-Stake) algorithm. of Elapsed Time (PoET) algorithm, etc. may be used, and any algorithm designed to perform the above function may be used.

10 is a reference diagram for explaining an example of a blockchain consensus algorithm according to an embodiment of the present invention. The nodes of the present invention can verify the received block based on a predetermined consensus algorithm. In the embodiment of FIG. 10 , the blockchain system of the present invention may perform the consensus algorithm according to steps ① to ④ below using the Byzantine Fault Tolerance (BFT) method, which is one of the representative proof-of-stake methods.

① A subject requesting to write a contract, create a block corresponding to it, and add it to the blockchain is defined as a host node.

② The host node broadcasts a block containing contract {v} information to all nodes belonging to the same channel.

③ Each node shares the block containing the contract {v} information received from the host node with all other nodes. 10, node 1 receives {v} from node 2, node 1 receives {x} from node 3, node 2 receives {v} from node 1, node 2 receives {x} from node 3, Node 3 receives {v} from node 1, and node 3 receives {v} from node 2.

④ According to the consensus algorithm, blocks that are recognized for their multiple values are added to the blockchain. For example, in the embodiment of FIG. 10, the nodes agree on a true contract with {v} occupying a majority value among {v, v, x}, and according to the agreement, the contract {x} shared by node 3 is not an agreement. update the block chain with a block containing the information of the contract {v}. As in the embodiment of FIG. 10, if there is a problem with node 3, the blockchain system can secure the integrity of the blockchain by updating the blockchain with a block containing the agreed contract {v} information through the above-described operation. .

11 is a flowchart of a method for operating a multi-channel node based on a cloud virtual machine using a block chain according to an embodiment of the present invention.

As shown in FIG. 11, in the cloud virtual machine-based multi-channel node operating method using the block chain of the present invention, grouping virtual machines into channels (S2000), a node (virtual machine) belonging to the channel receives a document creation request A step of periodically or continuously checking whether a document is generated (S3001), a step of encrypting a document according to the request of the host node by using the node that made the request as a host node if there is a request for document creation (S3002), Creating a corresponding smart contract (S3003), generating an encrypted document and a block corresponding to the smart contract (S3004), broadcasting the generated block to participating nodes in the same channel (S4100), It may include verifying a block based on a predetermined agreement algorithm between nodes (S4300) and updating the block chain with a block that has passed the verification (S4400).

In one embodiment, the blockchain may support a public blockchain (Bitcoin, Ethereum, EOS, etc.), a private blockchain, or a consortium blockchain (Hyperledger, EEA, etc.). In one embodiment, the block chain may be operated in the form of a permissioned block chain. In a permissioned blockchain, only authorized participants can access the blockchain, and permissions can be set for that access. In this permissioned blockchain, only limited users participate in the blockchain network, there is a membership that manages user participation, and only some nodes that create blocks can participate in consensus. As an example, such a permissioned blockchain may be a private blockchain in which only limited users can create blocks and view data, or a consortium blockchain in which only limited users can create blocks but can be viewed by anyone, but is not limited thereto. don't

A block of the blockchain of the present invention may include at least one or more transactions. In one embodiment, a block may include a time stamp, and the time stamp may indicate time information (eg, block creation time) related to the block and/or transaction. Nodes that work with the blockchain of the present invention can create transactions and transmit and/or broadcast them to other nodes. All or some of the nodes may create a new block including at least one transaction newly generated in the system.

In the present invention, the block chain can prevent forgery and falsification of data registered in the block chain by connecting the cryptographic hash output of the message into a chain. Here, the hash function used to calculate the hash value is a function that satisfies the one-way characteristic, and has the characteristic of being a function that is easy to calculate the output value from the input but difficult to infer the input value using the output value. These hash functions include, for example, SHA-2 (SHA-224, SHA-256, SHA-384, and SHA-512), SHA3, or Cryptographic Hash functions registered as NIST standards, or other hash functions. can be used In this case, each block constituting the blockchain is interconnected to have a hash-based relationship. For example, blocks may be connected in such a way that a certain block has a hash chain structure in which a hash value of a previous block is stored. In a blockchain composed of blocks connected based on hashes, a change in the information of a block causes a change in the hash value of the block calculated from the corresponding block, which causes a change in the contents of the next block. Therefore, it inevitably results in the change of information of all blocks after the corresponding block. Therefore, if a malicious user manipulates a specific transaction in a block, the hash of the block chain is changed, so it can be easily verified whether or not the manipulation has occurred.

In addition, in the blockchain, a shared ledger method in which a large number of participants share the blockchain can be used to prevent forgery and falsification of blockchain data by a small number of participants. In this case, in a blockchain shared by a plurality of nodes, there is a possibility that the blockchain may be manipulated by a malicious user adding a block having manipulated data to the blockchain and sequentially adding the manipulated blocks. In blockchain, in order to prevent forgery and falsification of data by such malicious users, nodes of multiple blockchains receive newly generated transactions while holding their respective blockchains, create blocks that include them, and store the generated blocks. Requests to be added to the blockchain are sent to other nodes, and block addition requests received from other nodes are verified according to a pre-defined consensus algorithm. Eventually, blocks that are verified by multiple nodes and approved for addition are added to the blockchain. Added. Therefore, even if the block to be added to the blockchain is forged by a malicious user, multiple nodes sharing the blockchain can use the Proof-of-Work (POW) algorithm, Proof-of-Stake , POS) algorithm, etc., by discarding blocks determined to be invalid by verification according to a predefined consensus algorithm, a finally valid block chain can be left. As a result, the blockchains owned by the nodes can be synchronized and shared.

A cloud virtual machine-based multi-channel node operating system using a block chain according to an embodiment of the present invention includes a memory and at least one processor connected to the memory, and the at least one processor: It may be configured to perform a cloud virtual machine-based multi-channel node operating method.

A computer program executable by at least one processor of a cloud virtual machine-based multi-channel node operating system using a blockchain according to an embodiment of the present invention and stored in a computer-readable storage medium is a cloud using the above-described blockchain. It can be a computer program that performs a virtual machine-based multi-channel node operating method.

A computer readable storage medium recording a computer program according to an embodiment of the present invention may be a computer readable storage medium recording the above-described computer program.

The cloud virtual machine-based multi-channel node operating system/device using the block chain of the present invention is configured to include a communication unit, a storage unit (temporary/non-temporary storage device, memory, etc.) and a control unit (at least one processor or logic circuit, etc.) It can be. Here, the storage unit may temporarily/non-temporarily store at least some of program instructions and databases for executing functions of each device, and as the program instructions stored in the storage unit are executed by the control unit, the above-described functions of each device may be executed. there is. As such a device, a commercially available computer may be used or an embedded system may be designed and used.

The sequence of operations described in the method or process disclosed herein is described as an example. Accordingly, the order of each step can be adjusted as needed within the spirit of the present invention. That is, the steps do not necessarily have to be performed in the order of the identification numbers, and are performed in parallel within the scope of achieving the object of the present invention, or steps assigned with higher identification numbers are steps assigned with lower identification numbers. It may start earlier.

In addition, the device and system disclosed in this specification may include means capable of performing the functions described in this specification, and may be implemented as an independent device or system, or may be interlocked or integrated with other systems, if necessary. .

The techniques described herein may be implemented at least in part in hardware, software, firmware, or any combination thereof. These may be implemented, for example, in one or more processors, DSP, ASIC, FPGA, or equivalent integrated or discrete logic circuitry, or any combination of at least one or more of these. Such hardware, software and firmware may be implemented within one or multiple systems or devices to support the operations and functions disclosed herein, or may be implemented in interlocking or integrated form with other systems or devices. . Further, the components described herein may be implemented separately or together with discrete but interoperable logic devices. Each function and operation separately described in this specification is described as such to emphasize each function, and such functions do not have to be realized in separate hardware, firmware, or software components, and do not have to be implemented in common or It may also be integrated into a combination of discrete hardware and/or software. The term “processor” or “processing circuit” may generally refer to any of the foregoing logic circuits, alone or in combination with other logic circuits, or any other equivalent circuit. A control unit comprising hardware may perform one or more of the techniques of this disclosure.

Also, the techniques described herein may be implemented or stored in a computer readable storage medium containing instructions. And the instructions stored in the computer readable medium can cause methods and operations related to the instructions to be performed by a processor in each device. Computer readable storage media may include RAM, ROM, PROM, EPROM, EEPROM, flash memory, hard disk, CD-ROM, magnetic media, optical media, or other storage media.

Claims (20)

As a cloud virtual machine-based multi-channel node operation method using blockchain,
Allocating one or more channels for each virtual machine to a plurality of virtual machines existing on a cloud server; and
Including performing a predetermined blockchain process between virtual machines belonging to the same channel,
The virtual machine functions as a participating node that performs verification in a blockchain system,
The step of performing the blockchain process is,
broadcasting at least one of a transaction or a block including the transaction to the participating nodes using a plurality of virtual machines belonging to the same channel as the participating nodes;
resource scheduling of the virtual machine functioning as the participating node; and
A verification step of verifying at least one of the transactions or blocks received by each participating node;
The resource scheduling step of the virtual machine,
determining whether a sum of resource capacities of all channels allocated to a virtual machine exceeds a predetermined threshold value;
When it is determined that the sum of resource capacities of all channels allocated to the virtual machine exceeds a predetermined threshold, determining the corresponding virtual machine determined to exceed the threshold as a node whose resource capacity is saturated; and
If there is a node whose resource capacity is saturated, the nodes of the channel including the node wait without performing at least the verification step of the blockchain process until the saturation of the resource capacity of the corresponding node is resolved. A method for operating a multi-channel node based on a cloud virtual machine using a block chain, comprising the step of generating a request to do so. According to claim 1,
A cloud virtual machine-based multi-channel node operating method using a blockchain, wherein at least two virtual machines having different channels exist on a cloud server. According to claim 1,
A cloud virtual machine-based multi-channel node operating method using a blockchain, further comprising generating a plurality of virtual machines on the cloud server. According to claim 1,
A cloud virtual machine-based multi-channel node operating method using a blockchain, further comprising authenticating a user accessing the virtual machine. According to claim 1,
The channel is a channel assigned and set to process a predetermined task of the company, a cloud virtual machine-based multi-channel node operating method using a block chain. According to claim 1,
The performing of the blockchain process may further include generating, by a host node, a block including the transaction corresponding to a predetermined contract task, prior to the broadcasting, by a host node. How to operate a machine-based multi-channel node. According to claim 1,
In the step of determining whether the threshold is exceeded, if the condition of Equation 1 below is not met, it is determined that the sum of the resource capacities of all channels allocated to the virtual machine exceeds a predetermined threshold, Cloud virtual machine-based multi-channel node operation method using

(Equation 1)
(Where VM _i (Ch _j ) is an identifier indicating the capacity of a resource that virtual machine VM _i has for channel Ch _j , i is the index of the virtual machine, and j is the index of the channel). According to claim 1,
In the resource scheduling step of the virtual machine, when it is determined that the sum of the resource capacities of all channels allocated to the virtual machine does not exceed a predetermined threshold, the corresponding virtual machine performs at least the verification step during the blockchain process A cloud virtual machine-based multi-channel node operating method using a blockchain, further comprising the step of determining a node capable of According to claim 8,
In the step of performing the blockchain process, when all nodes of a channel are determined to be nodes capable of performing the verification step, the verification step is performed between virtual machines belonging to the corresponding channel. Cloud virtual machine-based multi-channel node operation method. According to claim 1,
checking whether a node belonging to the channel generates a document creation request;
encrypting the document according to the request of the host node by setting the node that made the request as a host node when there is a request for generating the document;
Creating a smart contract corresponding to the encrypted document; and
Further comprising generating a block corresponding to the encrypted document and its smart contract;
In the broadcasting step, the generated block is broadcast to participating nodes within the same channel, a cloud virtual machine-based multi-channel node operating method using a blockchain. According to claim 1,
The verification step comprises verifying the block based on a predetermined consensus algorithm of the block chain, a cloud virtual machine-based multi-channel node operating method using a block chain. According to claim 1,
A cloud virtual machine-based multi-channel node operating method using a blockchain, further comprising adding the block verified in the verification step to the blockchain. According to claim 1,
The transaction includes at least one of personnel information, financial information, and contract information of a predetermined group, a cloud virtual machine-based multi-channel node operating method using a block chain. According to claim 1,
The channel is a channel established based on at least one of personnel, finance, and contracts of a predetermined group, a cloud virtual machine-based multi-channel node operating method using a block chain. According to claim 1,
Creating a smart contract between arbitrary virtual machines belonging to the same channel; and
A cloud virtual machine-based multi-channel node operating method using a blockchain, further comprising generating a transaction including at least some information of the generated smart contract. According to claim 15,
In the broadcasting, a plurality of virtual machines belonging to the same channel are used as participating nodes, and at least one of a transaction including at least some information of the smart contract or a block including the transaction is sent to the participating nodes. Broadcasting, cloud virtual machine-based multi-channel node operation method using blockchain. According to claim 15,
The step of creating the smart contract,
Generating, by a first virtual machine, an electronic document including information on a first contract; and
At least one of a first virtual machine and a second virtual machine digitally signing the electronic document to generate the signed smart contract, a cloud virtual machine-based multi-channel node operating method using a blockchain. As a cloud virtual machine-based multi-channel node operating system using blockchain,
Memory; and
at least one processor coupled to the memory;
The at least one processor is:
A cloud virtual machine-based multi-channel node operating system using a blockchain, configured to perform the method of operating a cloud virtual machine-based multi-channel node using a blockchain according to any one of claims 1 to 17. A computer program executable by at least one processor of a cloud virtual machine-based multi-channel node operating system using a block chain and stored in a computer readable storage medium, comprising the block chain according to any one of claims 1 to 17. A computer program stored in a computer-readable storage medium that performs a method of operating a cloud virtual machine-based multi-channel node using a computer program. A computer-readable storage medium recording a computer program for performing the cloud virtual machine-based multi-channel node operating method using the block chain according to any one of claims 1 to 17.

Images