(19)
(11)EP 3 572 966 A1

(12)EUROPEAN PATENT APPLICATION
published in accordance with Art. 153(4) EPC

(43)Date of publication:
27.11.2019 Bulletin 2019/48

(21)Application number: 18742135.9

(22)Date of filing:  05.01.2018
(51)International Patent Classification (IPC): 
G06F 21/64(2013.01)
(86)International application number:
PCT/JP2018/000122
(87)International publication number:
WO 2018/135328 (26.07.2018 Gazette  2018/30)
(84)Designated Contracting States:
AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR
Designated Extension States:
BA ME
Designated Validation States:
MA MD TN

(30)Priority: 18.01.2017 JP 2017007089

(71)Applicant: Fujitsu Limited
Kawasaki-shi, Kanagawa 211-8588 (JP)

(72)Inventors:
  • SHIMA,Tsunekazu
    Kanazawa-shi, Ishikawa 921-8025 (JP)
  • KOGURE, Jun
    Kawasaki-shi Kanagawa 211-8588 (JP)

(74)Representative: Haseltine Lake Kempner LLP 
Lincoln House, 5th Floor 300 High Holborn
London WC1V 7JH
London WC1V 7JH (GB)

  


(54)BLOCKCHAIN MANAGEMENT METHOD, BLOCKCHAIN MANAGEMENT PROGRAM, BLOCKCHAIN MANAGEMENT DEVICE, AND BLOCKCHAIN MANAGEMENT SYSTEM


(57) [Object] To provide a blockchain management method capable of determining that, when a part of data is changed, a part other than the changed part is not tampered with.
[Solution] In a blockchain management method, a process is executed by a computer, the process including generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted, generating a second hash of data included in the first block, and adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.




Description

Technical Field



[0001] The present disclosure relates to a blockchain management method, a blockchain management program, a blockchain management device, and a blockchain management system.

Background Art



[0002] A technology called a blockchain is known (see, for example, PTL 1). In the blockchain, a plurality of blocks are arranged in time series. Each of the blocks stores a hash value (hereinafter, simply referred to as a hash) of the previous block and data related to a dealing called a transaction.

Citation List


Patent Literature



[0003] PTL 1: Japanese Patent No. 5858506

Summary of Invention


Technical Problem



[0004] Meanwhile, in a case where data related to privacy such as personal information and company information is included in the past data in a blockchain, it is sometimes wished to change a part of the data later in view of privacy protection.

[0005] Accordingly, in one aspect, it is an object to provide a blockchain management method, a blockchain management program, a blockchain management device, and a blockchain management system capable of determining that, when a part of data is changed, a part other than the changed part is not tampered with.

Solution to Problem



[0006] According to one embodiment, a blockchain management method is a blockchain management method in which a process is executed by a computer, the process including: generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted; generating a second hash of data included in the first block; and adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.

[0007] According to one embodiment, a blockchain management method is a blockchain management method in which a process is executed by a computer, the process including: determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted; generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block and obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block; and determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.

Advantageous Effects of Invention



[0008] When a part of data is changed, it is possible to determine that a part other than the changed part is not tampered with.

Brief Description of Drawings



[0009] 

[FIG. 1] FIG. 1 is a diagram for explaining an example of a blockchain management system.

[FIG. 2] FIG. 2 is an example of a hardware configuration of a node.

[FIG. 3] FIG. 3 is an example of a functional block diagram of the node.

[FIG. 4] FIG. 4 is a diagram for explaining an example of a blockchain according to a comparative example.

[FIG. 5] FIG. 5 is a diagram for explaining an example of a blockchain according to the present embodiment.

[FIG. 6] FIG. 6 is a flowchart illustrating an example of an operation of a user.

[FIG. 7] FIG. 7 is a flowchart illustrating an example of an operation related to generation of a block performed by a miner.

[FIG. 8] FIG. 8 is a flowchart illustrating an example of a block process.

[FIG. 9] FIG. 9 is a diagram for explaining an example of generation of a new block.

[FIG. 10] FIG. 10 is a diagram for explaining an example of changing data included in a block.

[FIG. 11] FIG. 11 is a flowchart illustrating an example of an operation related to block verification and block updating performed by the miner.

[FIG. 12] FIG. 12 is a flowchart illustrating an example of a second verification process.

[FIG. 13] FIG. 13 is a diagram for explaining an example of verification of a block.

[FIG. 14] FIG. 14 is a diagram illustrating an example of a data structure of an n-th block.


Description of Embodiments



[0010] Hereinafter, an embodiment of the present disclosure will be described with reference to the drawings.

[0011] FIG. 1 is a diagram for explaining an example of a blockchain management system S. The blockchain management system S includes a plurality of nodes 100, 150, 200, and 250, all of which serve as terminal devices. In FIG. 1, a smartphone is illustrated as an example of the node 100. A laptop personal computer (PC) is illustrated as an example of the node 150. Note that the nodes 100 and 150 are not limited to the smartphone or the PC, and may be, for example, a tablet terminal or a wearable terminal. The wearable terminal is, for example, a smart watch or the like. On the other hand, a desktop PC and a server are illustrated as examples of the nodes 200 and 250.

[0012] The nodes 100, 150, 200, and 250 are connected to one another via a communication network NW. Specifically, the nodes 100, 150, 200, and 250 are coupled to one another using a so-called peer-to-peer (P2P) network. The communication network NW is, for example, a wired network such as a local area network (LAN) or the Internet. In addition, wireless communication may be used for a part of the communication between the nodes 100, 150, 200, and 250. For example, as illustrated in FIG. 1, wireless communication may be used for communication between the node 100 and the nodes 150, 200, and 250. In this case, if the node 100 is included in a wirelessly communicable area AR, the node 100 may communicate with the nodes 150, 200, and 250 via a mobile base station BS.

[0013] Next, a hardware configuration of the node 200 will be described with reference to FIG. 2. Since the nodes 100, 150, and 250 described above basically have the same hardware configuration as the node 200, the description thereof will be omitted.

[0014] FIG. 2 is an example of the hardware configuration of the node 200. As illustrated in FIG. 2, the node 200 includes at least a central processing unit (CPU) 200A, a random access memory (RAM) 200B, a read-only memory (ROM) 200C, and a network interface (I/F) 200D. The node 200 may include at least one of a hard disk drive (HDD) 200E, an input I/F 200F, an output I/F 200G, an input and output I/F 200H, and a drive device 200I, as required. The CPU 200A to the drive device 200I are coupled to one another by an internal bus 200J. A computer is realized by cooperation between at least the CPU 200A and the RAM 200B.

[0015] An input device 710 is coupled to the input I/F 200F. The input device 710 is, for example, a keyboard, a mouse, or the like.

[0016] A display device 720 is coupled to the output I/F 200G. The display device 720 is, for example, a liquid crystal display.

[0017] A semiconductor memory 730 is coupled to the input and output I/F 200H. The semiconductor memory 730 is, for example, a Universal Serial Bus (USB) memory, a flash memory, or the like. The input and output I/F 200H reads a program or data stored in the semiconductor memory 730.

[0018] The input I/F 200F and the input and output I/F 200H include, for example, a USB port. The output I/F 200G includes, for example, a display port.

[0019] A portable recording medium 740 is inserted into the drive device 2001. The portable recording medium 740 is, for example, a removable disc such as a compact disc (CD)-ROM or a digital versatile disc (DVD). The drive device 200I reads a program or data recorded on the portable recording medium 740.

[0020] The network I/F 200D includes, for example, a LAN port. The network I/F 200D is coupled to the communication network NW.

[0021]  The CPU 200A stores a program stored in the ROM 200C or the HDD 200E in the RAM 200B described above. The CPU 200A stores the program recorded on the portable recording medium 740 in the RAM 200B. As a result of the CPU 200A executing the stored program, various functions to be described later are realized and various processes to be described later are executed. Note that the program may be in accordance with a flowchart to be described later.

[0022] Next, each of functions of the nodes 100, 150, 200, and 250 will be described with reference to FIG. 3.

[0023] FIG. 3 is an example of a functional block diagram of the nodes 100 and 200. Since the node 150 basically has the same function as the node 100 and the node 250 basically has the same function as the node 200, the description thereof will be omitted.

[0024] As illustrated in FIG. 3, the node 100 includes a wallet tool WT, and the node 200 includes a wallet tool WT and a mining tool MT. Here, the wallet tool WT is a tool required to perform a dealing using a blockchain (specifically, bitcoin (registered trademark) or the like). On the other hand, the mining tool MT is a tool required to verify integrity and consistency of the dealing using the blockchain and to approve the dealing.

[0025] Here, the node 100 including the wallet tool WT without the mining tool MT may be called a user. Thus, in the following description, the nodes 100 and 150 will be described in other words as users 100 and 150. On the other hand, the node 200 including both of the wallet tool WT and the mining tool MT may be called a miner (an excavator). Thus, in the following description, the nodes 200 and 250 will be described in other words as miners 200 and 250.

[0026] Each of the wallet tools WT of the user 100 and the miner 200 includes a request accepting unit WT1 and a request transmission unit WT2. For example, when a data registration request is input to the user 100, the request accepting unit WT1 of the user 100 accepts the input data registration request. The data registration request is information for making a request for (requesting) registration of dealing data, and includes data to be registered. For example, when a data change request is input to the user 100, the request accepting unit WT1 of the user 100 accepts the input data change request. The data change request is information for making a request for (requesting) a change of the dealing data, and includes information specifying data to be changed and information after the change (for example, information for concealing a part related to privacy). In addition, when the request accepting unit WT1 accepts a data registration request or a data change request, the request transmission unit WT2 transmits by P2P the data registration request or the data change request accepted by the request accepting unit WT1. That is, since the P2P network is used in the present embodiment, when the request transmission unit WT2 of the user 100 transmits the data registration request or the data change request, the data registration request or the data change request is transmitted to the user 150, the miner 200, and the miner 250.

[0027] Next, the mining tool MT of the miner 200 includes a block generation unit MT1, a block verification unit MT2, and a block update unit MT3. For example, when the request transmission unit WT2 of the user 100 transmits a data registration request, the block generation unit MT1 of the miner 200 receives the data registration request. Upon receiving the data registration request, the block generation unit MT1 generates a block and stores data included in the data registration request in the block. For example, when the request transmission unit WT2 of the user 100 transmits a data change request, the block generation unit MT1 of the miner 200 receives the data change request. Upon receiving the data change request, the block generation unit MT1 changes a part of data included in a specific block among blocks managed by the blockchain, to data included in the data change request. Note that generating a block may be called mining a block.

[0028] The block verification unit MT2 verifies validity of the block generated or changed by the block generation unit MT1. More specifically, the block verification unit MT2 verifies validity of data included in the block generated or changed by the block generation unit MT1. Note that details of a verification process performed by the block verification unit MT2 will be described below.

[0029] In a case where verification by the block verification unit MT2 is positive, the block update unit MT3 adds the block to the end of the blockchain or changes the change target block managed by the blockchain to the block whose data has been changed. Note that the blockchain is distributed to and shared among the users 100 and 150 and the miners 200 and 250. The users 100 and 150 may store a part of the blockchain which they are interested in, but the miners 200 and 250 desirably store the entire blockchain. Note that, instead of such distributing and sharing, one database (DB) may centrally manage the blockchain.

[0030] Next, a blockchain according to the present embodiment will be described in comparison with a blockchain according to a comparative example with reference to FIGs. 4, 5 and 14.

[0031] FIG. 4 is a diagram for explaining an example of a blockchain 10 according to the comparative example. FIG. 5 is a diagram for explaining an example of a blockchain 20 according to the present embodiment. FIG. 14 is a diagram illustrating an example of a data structure of an n-th block.

[0032] First, as illustrated in FIG. 4, the blockchain 10 includes an (n-1)-th block 11, an n-th block 12, and an (n+1)-th block 13. The (n-1)-th block 11 includes a hash h(n-2) of an (n-2)-th block (not illustrated) arranged immediately before, an area including data d0, and an area including data d1. Likewise, the n-th block 12 includes a hash h(n-1) of the (n-1)-th block 11 arranged immediately before, an area including data d2, and an area including data d3. The (n+1)-th block 13 includes a hash h(n) of the n-th block 12 arranged immediately before, an area including data d4, and an area including data d5. In each of the areas including the data d0 to d5, a change of the data is prohibited.

[0033] In addition, as illustrated on the lower side of the block 11, the hash h(n-1) is generated based on the hash h(n-2), the data d0, and the data d1 included in the (n-1)-th block 11, and a function H(). Likewise, the hash h(n) is generated based on the hash h(n-1), the data d2, and the data d3 included in the n-th block 12, and the function H(). The function H() is a hash function which generates a hash from elements included in a block. For example, in a case of a hash h(n), the hash h(n) is generated by using the function H() for the hash h(n-1), the data d2, and the data d3 which are all of elements of the n-th block 12. The hash h(n-1) is generated in the same manner as the hash h(n).

[0034] Here, in the blockchain 10 illustrated in FIG. 4, for example, suppose that the data d1 included in the block 11 is deleted and a hash h(n-1) is newly generated. Then, the hash h(n-1) is generated based on the hash h(n-2), the data d0, and the function H() without the data d1. On the other hand, the n-th block 12 includes the already generated hash h(n-1). When the hash h(n-1) that is generated after the data d1 is deleted is compared with the hash h(n-1) that is included in the block 12 and is generated before the data d1 is deleted, the hashes do not coincide with each other. In this way, since the two hashes h(n-1) are different from each other, it is possible to determine that there are some changes in the block 11. In other words, if the two (n-1) hashes are not different from each other, it is possible to determine that there is no change in the block 11. That is, it is possible to verify validity of the block 11.

[0035] In this way, the blockchain 10 according to the comparative example adopts a mechanism in which if data is changed, the block 11 including the changed data is detected. Therefore, even if there is an unauthorized change such as tampering with data, the block 11 including the data is easily detected. For this reason, there is almost no advantage to changing data in an unauthorized manner, and the change of the data is suppressed. However, in a case where a valid change is required to the data, it is not required to detect a block including the changed data, and this mechanism of the comparative example is not adaptable.

[0036] As illustrated in FIG. 5, the blockchain 20 according to the present embodiment includes an (n-1)-th block 21, an n-th block 22, and an (n+1)-th block 23. The (n-1)-th block 21 includes a hash h(n-2) of all of elements included in an (n-2)-th block (not illustrated) arranged immediately before, a hash h(n-2)' of some of the elements included in the (n-2)-th block, a change prohibition area AR0, and a change permission area AR1. Likewise, the n-th block 22 includes a hash h(n-1) of all of elements included in the (n-1)-th block 21 arranged immediately before, a hash h(n-1)' of some of the elements included in the (n-1)-th block 21, a change prohibition area AR2, and a change permission area AR3. The (n+1)-th block 23 includes a hash h(n) of all of elements included in the n-th block 22 arranged immediately before, a hash h(n)' of some of the elements included in the n-th block 22, a change prohibition area AR4, and a change permission area AR5.

[0037] Here, in a case of the n-th block 22, for example, all of the elements are the hash h(n-1), the hash h(n-1)', data stored in the change prohibition area AR2, and data stored in the change permission area AR3. Some of the elements are elements obtained by excluding the data stored in the change permission area AR3 from all of the elements. The (n-1)-th block 21 and the (n+1)-th block 23 are the same as the n-th block 22. Further, the change prohibition areas AR0, AR2, and AR4 described above are areas storing data, changing of which is prohibited. The change permission areas AR1, AR3, and AR5 are areas storing data, changing of which is permitted. For example, non-privacy data not related to privacy is stored in the change prohibition areas AR0, AR2, and AR4, and privacy data related to privacy is stored in the change permission areas AR1, AR3, and AR5. As an example, the n-th block 22 will be described with reference to FIG. 14. Non-privacy data is stored in a change prohibition field serving as the change prohibition area AR2, and privacy data is stored in a change permission field serving as the change permission area AR3. On the other hand, the above-described two hashes, that is, the hashes h(n-1) and h(n-1)', are stored in a hash field. The (n-1)-th block 21 and the (n+1)-th block 23 are the same as the n-th block 22. Note that the change permission areas AR1, AR3, and AR5 are respectively provided in advance in the blocks 21, 22 and 23.

[0038] The hash h(n-1) is generated based on a hash h(n-2) included in the (n-1)-th block 21, a hash h(n-2)' included in the block 21, data stored in the change prohibition area AR0, data stored in the change permission area AR1, and a function H(). That is, the hash h(n-1) is generated based on all of elements of the (n-1)-th block 21 and the function H(). On the other hand, the hash h(n-1)' is generated based on the hash h(n-2) included in the (n-1)-th block 21, the hash h(n-2)' included in the block 21, the data stored in the change prohibition area AR0, and the function H(). That is, the hash h(n-1)' is generated based on some of the elements obtained by excluding the data stored in the change permission area AR1 from all of the elements of the (n-1)-th block 21 and the function H(). Likewise, the hash h(n) is generated based on the hash h(n-1) included in the n-th block 22, the hash h(n-1)' included in the block 22, data stored in the change prohibition area AR2, data stored in the change permission area AR3, and a function H(). That is, the hash h(n) is generated based on all of elements of the n-th block 22 and the function H(). The hash h(n)' is generated based on the hash h(n-1) included in the (n-1)-th block 22, the hash h(n-1)' included in the block 22, the data stored in the change prohibition area AR2, and the function H(). That is, the hash h(n)' is generated based on some of the elements obtained by excluding the data stored in the change permission area AR3 from all of the elements of the n-th block 22 and the function H().

[0039] According to the mechanism of the present embodiment, in a case where data is not changed, it is possible to verify that the data is not changed by the same method as the comparative example. On the other hand, in a case where the data is changed by a valid change, a hash (for example, h(n-1)' or h(n)') is generated by using some of elements obtained by excluding the changed data from all of the elements of a block including the changed data. Therefore, if the hash generated by using some of the elements coincides with the corresponding hash included in the block arranged immediately after the block including the changed data, it is possible to verify that data other than the changed data is not changed. That is, even if a part of the data is changed, it is possible to secure validity of the block, and the valid blockchain is maintained.

[0040] Hereinafter, details of a process using the blockchain 20 according to the present embodiment will be described with reference to FIGs. 6 to 12.

[0041] First, an operation of the user 100 will be described with reference to FIG. 6. Since an operation of the user 150 is basically the same as the operation of the user 100, the description thereof will be omitted. FIG. 6 is a flowchart illustrating an example of the operation of the user 100. First, the request accepting unit WT1 waits for a request (NO in step S101). More specifically, the request accepting unit WT1 waits until there is a data registration request or a data change request. If there is a request (YES in step S101), the request accepting unit WT1 accepts the request (step S102), and the request transmission unit WT2 transmits the request accepted by the request accepting unit WT1 to the communication network NW (step S103). After the request transmission unit WT2 transmits the request, the process ends.

[0042] Next, an operation related to generation of a block performed by the miner 200 will be described with reference to FIG. 7. Since an operation of the miner 250 is basically the same as the operation of the miner 200, the description thereof will be omitted. FIG. 7 is a flowchart illustrating an example of the operation related to generation of a block performed by the miner 200. First, the block generation unit MT1 waits until a request is received (NO in step S201). Upon receiving a request (YES in step S201), the block generation unit MT1 executes a block process (step S202). Here, the block process is a process performed on a block according to a type of the request. Although details will be described below, in a case where the block generation unit MT1 receives a data registration request, the block generation unit MT1 generates a new block and adds data to the block. In a case where the block generation unit MT1 receives a data change request, the block generation unit MT1 changes data stored in a change permission area of a change target block to data of the data change request.

[0043] In addition, in parallel with the processing of step S202, the block generation unit MT1 monitors whether there is a predetermined notification from another miner 250 different from the miner 200 (step S203). Here, the predetermined notification means a notification indicating that the other miner 250 has generated a block or has changed a block. In the present embodiment, since the P2P network is used, the data registration request or the data change request transmitted by the request transmission unit WT2 reaches not only the miner 200 but also the miner 250. Therefore, if the miner 250 generates a block or changes a block based on the data registration request or the data change request, the miner 250 transmits the predetermined notification. Accordingly, the predetermined notification reaches the miner 200.

[0044] Here, in a case where there is no predetermined notification (NO in step S203), the block generation unit MT1 transmits the generated or changed block (step S204). More specifically, the block generation unit MT1 broadcasts the generated or changed block. Accordingly, the block generated or changed by the block generation unit MT1 reaches the users 100 and 150 and the miner 250.

[0045] On the other hand, in a case where there is a predetermined notification (YES in step S203), the block generation unit MT1 receives the block generated or changed by the miner 250 (step S205). After the processing of step S204 or step S205 is completed, the block generation unit MT1 ends the process.

[0046] Next, the block process described above will be described with reference to FIGs. 8 to 10.

[0047] FIG. 8 is a flowchart illustrating an example of the block process. FIG. 9 is a diagram for explaining an example of generation of a new block. FIG. 10 is a diagram for explaining an example of changing data included in a block.

[0048] First, upon receiving a request in the processing of step S201 described above, the block generation unit MT1 determines whether or not the request is a data change request (step S301) as illustrated in FIG. 8. In a case where the request is not the data change request (NO in step S301), the block generation unit MT1 generates a hash h(n)' (step S302). In other words, in a case where the request is a data registration request, the block generation unit MT1 generates the hash h(n)'.

[0049] Specifically, as illustrated in FIG. 9, first, the block generation unit MT1 specifies an n-th block 32 arranged at the end of a blockchain. Next, the block generation unit MT1 extracts a hash h(n-1)', a hash h(n-1), and data of "2016/3/6" representing a remittance date and data of "500" representing a remittance amount stored in the change prohibition area AR2, from the specified block 32. Further, the block generation unit MT1 combines the hash h(n-1)', the hash h(n-1), and the two pieces of data of "2016/3/6" and "500" by using a function combine() which combines character strings, so as to generate a combined character string. The block generation unit MT1 then generates a hash h(n)' from the combined character string by using a function sha512 which is one of hash functions.

[0050] Referring back to FIG. 8, after the processing of step S302 is completed, the block generation unit MT1 generates a hash h(n) next (step S303). Specifically, as illustrated in FIG. 9, the block generation unit MT1 extracts the hash h(n-1)', the hash h(n-1), the data of "2016/3/6" representing the remittance date and the data of "500" representing the remittance amount stored in the change prohibition area AR2, and data of "A" representing a remittance source account and data of "C" representing a remittance destination account stored in the change permission area AR3, from the block 32. Further, the block generation unit MT1 combines the hash h(n-1)', the hash h(n-1), and the four pieces of data of "A", "C", "2016/3/6", and "500" by using the function combine() so as to generate a combined character string. Then, the block generation unit MT1 generates a hash h(n) from the combined character string by using the function sha512. Note that processing order of steps S302 and S303 may be reversed.

[0051] Referring back to FIG. 8, after the processing of step S303 is completed, the block generation unit MT1 adds the hash h(n)' and the hash h(n) to an (n+1)-th block next (step S304). Specifically, as illustrated in FIG. 9, the block generation unit MT1 generates an (n+1)-th block 33 to be coupled to the n-th block 32 arranged at the end of the blockchain, and adds the hash h(n)' and the hash h (n) to the (n+1)-th block 33. Although the generated (n+1)-th block 33 includes the change prohibition area AR4 and the change permission area AR5 in advance, data of the data registration request data is not yet stored in both of the change prohibition area AR4 and the change permission area AR5 immediately after the (n+1)-th block 33 is generated. In addition, the (n+1)-th block 33 may be generated, for example, between step S301 and step S302.

[0052] Referring back to FIG. 8, after the processing of step S304 is completed, the block generation unit MT1 divides the data next (step S305). More specifically, the block generation unit MT1 divides the data included in the data registration request into non-privacy data and privacy data. Note that the data registration request has information for dividing the data into non-privacy data and privacy data. The block generation unit MT1 divides the data based on the information.

[0053] After the processing of step S305 is completed, the block generation unit MT1 adds the non-privacy data to the change prohibition area AR4 next (step S306). For example, in a case where parts related to a data remittance date and a remittance amount among pieces of data of "A", "D", "2016/3/9", and "300" included in the data registration request correspond to the non-privacy data, the block generation unit MT1 adds the data of "2016/3/9" of the remittance date and the data of "300" of the remittance amount to the change prohibition area AR4 as illustrated in FIG. 9.

[0054] After the processing of step S306 is completed, the block generation unit MT1 adds the privacy data to the change permission area AR5 next (step S307). For example, in a case where parts related to a remittance source account and a remittance destination account among the pieces of data of "A", "D", "2016/3/9", and "300" included in the data registration request correspond to the privacy data, the block generation unit MT1 adds the data of "A" of the remittance source account and the data of "D" of the remittance destination account to the change permission area AR5 as illustrated in FIG. 9. After the processing of step S307 is completed, the block generation unit MT1 ends the process. Note that processing order of steps S306 and S307 may be reversed.

[0055] On the other hand, in a case where the request is a data change request (YES in step S301) in the processing of step S301, the block generation unit MT1 obtains a change target block (step S308). Since the data change request includes data to be changed, the block generation unit MT1 specifies a block including the data and obtains the specified block as the change target block, based on the data to be changed.

[0056] After the processing of step S308 is completed, the block generation unit MT1 changes data of the change permission area AR5 next (step S309). Since the data change request includes information for specifying data to be changed, the block generation unit MT1 specifies the data to be changed based on the information, and changes a part corresponding to privacy data (specifically, the remittance source account and the remittance destination account) to a specific symbol (for example, "*" or the like). Therefore, in a case where the block generation unit MT1 obtains the n-th block 32, data of the remittance source account and data of the remittance destination account of the change permission area AR5 of the block 32 are changed to specific symbols as illustrated in FIG. 10. Accordingly, the part related to privacy is concealed and the privacy is secured. After the processing of step S309 is completed, the block generation unit MT1 generates a hash of all of elements included in the block 32 including the changed data. The block generation unit MT1 adds the hash of some elements and the generated hash of all of the elements to the block 33, which is added next to the block 32 including the changed data. The block generation unit MT1 then ends the process.

[0057] Next, an operation related to block verification and block updating performed by the miner 200 will be described with reference to FIG. 11. Since an operation of the miner 250 is basically the same as the operation of the miner 200, the description thereof will be omitted. FIG. 11 is a flowchart illustrating an example of the operation related to block verification and block updating performed by the miner 200.

[0058] After the block generation unit MT1 ends the process, the block verification unit MT2 determines whether or not a block to be verified is a block related to a data change (step S401). As described with reference to steps S204 and S205 in FIG. 7, while the block generation unit MT1 itself generates or changes a block, the block generation unit MT1 receives a block generated by the miner 250 or receives a block changed by the miner 250. The block verification unit MT2 specifies a processing step of a block input from the block generation unit MT1, and determines whether or not the block to be verified is a block related to a data change.

[0059] In a case where the block to be verified is not a block related to a data change (NO in step S401), the block verification unit MT2 executes a first verification process (step S402). The first verification process is a process of verifying validity of the generated block. Specifically, the first verification process is performed by checking whether or not a hash calculated from a block chained immediately before the block to be verified coincides with a hash, recorded in the block to be verified, of the block chained immediately before the block to be verified.

[0060] After the processing of step S402 is completed, the block verification unit MT2 determines whether or not the verification is OK next (step S403). That is, the block verification unit MT2 determines whether or not the verification is positive. For example, the block verification unit MT2 compares the hash calculated from the block chained immediately before the block to be verified with the hash, recorded in the block to be verified, of the block chained immediately before the block to be verified. In a case where the hashes coincide with each other, the block verification unit MT2 determines that the verification is OK. Conversely, in a case where the block verification unit MT2 compares the hash calculated from the block chained immediately before the block to be verified with the hash, recorded in the block to be verified, of the block chained immediately before the block to be verified and the hashes do not coincide with each other, the block verification unit MT2 determines that the verification is NG.

[0061]  In a case where the verification is OK (YES in step S403), the block update unit MT3 adds the block to the blockchain (step S404), returns to the processing of step S401, and waits. On the other hand, in a case where the verification is NG (NO in step S403), the block update unit MT3 skips the processing of step S404, returns to the processing of step S401, and waits. Accordingly, a new block including data included in the data registration request is added at the end of the existing blockchain and the blockchain is updated to a new blockchain.

[0062] On the other hand, in a case where the block to be verified is a block related to a data change (YES in step S401), the block verification unit MT2 executes a second verification process (step S405). Specifically, in a case where a block to be verified is a block changed by the block generation unit MT1 or a block changed by the miner 250, the block verification unit MT2 executes the second verification process. That is, the second verification process is a process of verifying validity of the changed block. Note that details of the second verification process will be described later.

[0063] After the processing of step S405 is completed, the block verification unit MT2 determines whether or not verification is OK next (step S406). That is, the block verification unit MT2 determines whether or not the verification is positive. In a case where the verification is OK (YES in step S406), the block update unit MT3 changes a block of the blockchain (step S407), returns to the processing of step S401, and waits. Accordingly, the block including data before a change is updated to a block including the changed data. On the other hand, in a case where the verification is NG (NO in step S406), the block update unit MT3 skips the processing of step S407, returns to the processing of step S401, and waits.

[0064] Next, the second verification process described above will be described with reference to FIGs. 12 and 13.

[0065] FIG. 12 is a flowchart illustrating an example of the second verification process. FIG. 13 is a diagram for explaining an example of verification of a block.

[0066] First, in a case where a block to be verified is a block related to a data change in the processing of step S401 described above, the block verification unit MT2 generates a hash h(n) as illustrated in FIG. 12 (step S501). Specifically, as illustrated on the lower side of FIG. 13, first, the block verification unit MT2 specifies an n-th block 32 to be changed. Next, the block verification unit MT2 extracts a hash h(n-1)', a hash h(n-1), data of "2016/3/6" representing a remittance date and data of "500" representing a remittance amount stored in the change prohibition area AR2, and two pieces of changed data of "****" and "****" stored in the change permission area AR3, from the specified block 32. Further, the block verification unit MT2 combines the hash h(n-1)', the hash h(n-1), and the four pieces of data of "2016/3/6", "500", "****", and "****" by using the function combine() so as to generate a combined character string. The block verification unit MT2 then generates a hash h(n) from the combined character string by using the function sha512.

[0067] After the processing of step S501 is completed, next, the block verification unit MT2 obtains a hash h(n) from an (n+1)-th block (step S502) and compares the hash h(n) with the hash h(n) to determine whether or not the hashes coincide with each other (step S503). In the present embodiment, since the hash h(n) is generated by using the changed data while the hash h(n) is generated by using the data before the change, the hash h(n) and the hash h(n) differ from each other. For example, in a case where the data before the change and the data after the change coincide with each other, that is, in a case where the data is simply updated to the same data, the hash h(n) and the hash h(n) coincide with each other.

[0068] In a case where the hash h(n) and the hash h(n) do not coincide with each other (NO in step S503), the block verification unit MT2 generates a hash h(n)' (step S504). Specifically, as illustrated on the upper side of FIG. 13, the block verification unit MT2 first specifies an n-th block 32 to be changed. Next, the block verification unit MT2 extracts a hash h(n-1)', a hash h(n-1), and data of "2016/3/6" representing a remittance date and data of "500" representing a remittance amount stored in the change prohibition area AR2, from the specified block 32. Further, the block verification unit MT2 combines the hash h(n-1)', the hash h(n-1), and the two pieces of data of "2016/3/6" and "500" by using the function combine() so as to generate a combined character string. The block verification unit MT2 generates a hash h(n)' from the combined character string by using the function sha512.

[0069] After the processing of step S504 is completed, next, the block verification unit MT2 obtains a hash h(n)' from the (n+1)-th block (step S505) and compares the hash h(n)' with the hash h(n)' to determine whether or not the hashes coincide with each other (step S506). In the present embodiment, since the hash h(n)' is generated by using non-changed data, the hash h(n)' and the hash h(n)' coincide with each other. For example, when data stored in the change prohibition area AR2 is changed by tampering or the like, the hash h(n)' and the hash h(n)' differ from each other.

[0070] In a case where the hash h(n)' coincides with the hash h(n)' (YES in step S506), the block verification unit MT2 determines that the data stored in the change prohibition area AR2 is not changed and stores verification OK in the verification result (step S507). Also in the case where the hash h(n) and the hash h(n) coincide with each other (YES in step S503) in the processing of step S503 described above, the block verification unit MT2 executes the processing of step S507 in a similar manner. On the other hand, in a case where the hash h(n)' and the hash h(n)' do not coincide with each other (NO in step S506), the block verification unit MT2 determines that the data stored in the change prohibition area AR2 is changed and stores verification NG in the verification result (step S508). Accordingly, the block verification unit MT2 may determine whether or not the verification is OK in the processing of subsequent step S406 (see FIG. 11).

[0071] As described above, according to the present embodiment, the miner 200 serving as a blockchain management device includes the block generation unit MT1, the block verification unit MT2, and the block update unit MT3. The block generation unit MT1 generates a hash h(n)' of data included in a part obtained by excluding the change permission area AR3 from the n-th block 32 including the change prohibition area AR2 and the change permission area AR3 and a hash h(n) of data included in the block 32. Further, the block generation unit MT1 adds the hash h(n)' and the hash h(n) to the (n+1)-th block 33, which is added next to the block 32 and includes the change prohibition area AR4 and the change permission area AR5. For example, the block generation unit MT1 adds the hash h(n)' and the hash h(n) to the (n+1)-th block 33, which is chained immediately after the block 32 and includes the change prohibition area AR4 and the change permission area AR5. The miner 200 manages the block 33 to which the hash h(n)' and the hash h(n) are added, so that a part of the data may be changed for a valid reason.

[0072] In addition, the block verification unit MT2 determines whether or not a hash h(n) of data included in the block 32 coincides with a hash h(n) of data included in the block 33 which is added next to the block 32 and includes the change prohibition area AR4 and the change permission area AR5. For example, the block verification unit MT2 determines whether or not the hash h(n) of the data included in the block 32 coincides with the hash h(n) of the data included in the block 33 which is chained immediately after the block 32 and includes the change prohibition area AR4 and the change permission area AR5. In addition, in a case where the hash h(n) and the hash h(n) do not coincide with each other, the block verification unit MT2 generates a hash h(n)' of data included in a part obtained by excluding the change permission area AR3 from the block 32 and obtains a hash h(n)' of data included in a part obtained by excluding the change permission area AR5 from the block 33. In a case where the hash h(n)' and the hash h(n)' coincide with each other, the block verification unit MT2 determines that data stored in the change prohibition area AR4 of the block 32 is not changed. In a case where it is determined that the data stored in the change prohibition area AR4 of the block 32 is not changed, the block update unit MT3 changes the block 32 to a block in which data stored in the change permission area AR3 of the block 32 is changed. Accordingly, it possible to verify that the data stored in the change prohibition area AR2 is not changed.

[0073] Although the preferred embodiment of the present invention has been described in detail above, embodiments are not limited to the specific embodiment according to the present invention, and various modifications and changes may be made within the scope of the essence of the present invention described in the claims.

[0074] Specifically, although the embodiment in which two pieces of data are stored in one change prohibition area and two pieces of data are stored in one change permission area has been described in the present embodiment, embodiments are not limited particularly to such an embodiment. For example, one block may include a plurality of change prohibition areas and a plurality of change permission areas for respective pieces of data to be stored. In this case, a hash of all of elements of the block is generated and a hash of some of the elements obtained by excluding data stored in each of the plurality of change permission areas from all of the elements of the block is generated, so that it is possible to obtain the same effect as the effect of the present embodiment. For example, privacy importance may be associated with the plurality of change permission areas.

[0075] Note that the following appendixes will be further disclosed in association with the above description.

(Appendix 1) A blockchain management method in which a process is executed by a computer, the process including: generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted; generating a second hash of data included in the first block; and adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.

(Appendix 2) The blockchain management method according to appendix 1, further including: a process of dividing, in a case where a received request is a data registration request, data of the registration request into data of which change is prohibited and data of which change is permitted and storing the divided data in each of the first area and the second area of the second block.

(Appendix 3) The blockchain management method according to appendix 1 or 2, further including: a process of changing, in a case where a received request is a data change request, data stored in the second area of the first block to data of the change request.

(Appendix 4) The blockchain management method according to any one of appendices 1 to 3, further including: a process of generating, in a case where data in the second area of the first block is changed, a third hash of data included in the first block including the changed data; and a process of adding the first hash and the third hash to the second block which is added next to the first block including the changed data.

(Appendix 5) A blockchain management method in which a process is executed by a computer, the process including: determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted; generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block and obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block; and determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.

(Appendix 6) The blockchain management method according to appendix 5, further including: a process of changing, in a case where it is determined that the data stored in the first area of the first block is not changed, the first block to a third block in which data stored in the second area of the first block is changed.

(Appendix 7) A blockchain management program causing a computer to execute a process, the process including: generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted; generating a second hash of data included in the first block; and adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.

(Appendix 8) A blockchain management program causing a computer to execute a process, the process including: determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted; generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block; obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block; and determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.

(Appendix 9) A blockchain management device including: a processing unit configured to execute a process, the process including generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted, generating a second hash of data included in the first block, and adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.

(Appendix 10) The blockchain management device according to appendix 8, in which the processing unit divides, in a case where a received request is a data registration request, data of the registration request into data of which change is prohibited and data of which change is permitted and stores the divided data in each of the first area and the second area of the second block.

(Appendix 11) The blockchain management device according to appendix 8 or 9, in which the processing unit changes, in a case where a received request is a data change request, data stored in the second area of the first block to data of the change request.

(Appendix 12) The blockchain management device according to any one of appendices 9 to 11, in which the processing unit generates, in a case where data of the second area in the first block is changed, a third hash of data included in the first block including the changed data, and the processing unit adds the first hash and the third hash to the second block which is added next to the first block including the changed data.

(Appendix 13) A blockchain management device including: a processing unit configured to execute a process, the process including determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted, generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block, obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block, and determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.

(Appendix 14) The blockchain management device according to appendix 13, in which the processing unit changes, in a case where it is determined that the data stored in the first area of the first block is not changed, the first block to a third block in which data stored in the second area of the first block is changed.

(Appendix 15) A blockchain management system including a plurality of nodes, the system including: a first node that transmits a data registration request; and a second node that generates, in a case of receiving the registration request, a first hash of data included in a partial block obtained by excluding a first area from a first block including the first area in which a data change is prohibited and a second area in which the data change is permitted, generates a second hash of data included in the first block, adds the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted, and divides data of the registration request into data of which change is prohibited and data of which change is permitted and stores the divided data in each of the first area and the second area of the second block.

(Appendix 16) A blockchain management system including a plurality of nodes, the system including: a first node that transmits a data change request; and a second node that determines, in a case of receiving the change request, whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted, generates, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block and obtains a fourth hash of data included in a second partial block obtained by excluding the second area from the second block, determines that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other, and changes data stored in the second area of the first block to data of the change request.


Reference Signs List



[0076] 

S blockchain management system

100, 150 node (user)

WT wallet tool

WT1 request accepting unit

WT2 request transmission unit

200, 250 node (miner)

MT mining tool

MT1 block generation unit

MT2 block verification unit

MT3 block update unit




Claims

1. A blockchain management method in which a process is executed by a computer, the process comprising:

generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted;

generating a second hash of data included in the first block; and

adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.


 
2. The blockchain management method according to claim 1, further comprising:
a process of dividing, in a case where a received request is a data registration request, data of the registration request into data of which change is prohibited and data of which change is permitted and storing the divided data in each of the first area and the second area of the second block.
 
3. The blockchain management method according to claim 1 or 2, further comprising:
a process of changing, in a case where a received request is a data change request, data stored in the second area of the first block to data of the change request.
 
4. The blockchain management method according to any one of claims 1 to 3, further comprising:

a process of generating, in a case where data in the second area of the first block is changed, a third hash of data included in the first block including the changed data; and

a process of adding the first hash and the third hash to the second block which is added next to the first block including the changed data.


 
5. A blockchain management method in which a process is executed by a computer, the process comprising:

determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted;

generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block and obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block; and

determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.


 
6. The blockchain management method according to claim 5, further comprising:
a process of changing, in a case where it is determined that the data stored in the first area of the first block is not changed, the first block to a third block in which data stored in the second area of the first block is changed.
 
7. A blockchain management program causing a computer to execute a process, the process comprising:

generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted;

generating a second hash of data included in the first block; and

adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.


 
8. A blockchain management program causing a computer to execute a process, the process comprising:

determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted;

generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block;

obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block; and

determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.


 
9. A blockchain management device comprising:
a processing unit configured to execute a process, the process including

generating a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted,

generating a second hash of data included in the first block, and

adding the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted.


 
10. The blockchain management device according to claim 9,
wherein the processing unit divides, in a case where a received request is a data registration request, data of the registration request into data of which change is prohibited and data of which change is permitted and stores the divided data in each of the first area and the second area of the second block.
 
11. The blockchain management device according to claim 8,
wherein the processing unit changes, in a case where a received request is a data change request, data stored in the second area of the first block to data of the change request.
 
12. The blockchain management device according to any one of claims 9 to 11,
wherein the processing unit generates, in a case where data in the second area of the first block is changed, a third hash of data included in the first block including the changed data, and
adds the first hash and the third hash to the second block which is added next to the first block including the changed data.
 
13. A blockchain management device comprising:
a processing unit configured to execute a process, the process including

determining whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted,

generating, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block,

obtaining a fourth hash of data included in a second partial block obtained by excluding the second area from the second block, and

determining that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other.


 
14. The blockchain management device according to claim 13,
wherein the processing unit changes, in a case where it is determined that the data stored in the first area of the first block is not changed, the first block to a third block in which data stored in the second area of the first block is changed.
 
15. A blockchain management system including a plurality of nodes, the system comprising:

a first node that transmits a data registration request; and

a second node that generates, in a case of receiving the registration request, a first hash of data included in a partial block obtained by excluding a second area from a first block including a first area in which a data change is prohibited and the second area in which the data change is permitted, generates a second hash of data included in the first block, adds the first hash and the second hash to a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted, and divides data of the registration request into data of which change is prohibited and data of which change is permitted and stores the divided data in each of the first area and the second area of the second block.


 
16. A blockchain management system including a plurality of nodes, the system comprising:

a first node that transmits a data change request; and

a second node that determines, in a case of receiving the change request, whether or not a first hash of data included in a first block including a first area in which a data change is prohibited and a second area in which the data change is permitted coincides with a second hash of data included in a second block which is added next to the first block and includes a first area in which a data change is prohibited and a second area in which the data change is permitted, generates, in a case where the first hash and the second hash do not coincide with each other, a third hash of data included in a first partial block obtained by excluding the second area from the first block and obtains a fourth hash of data included in a second partial block obtained by excluding the second area from the second block, determines that data stored in the first area of the first block is not changed in a case where the third hash and the fourth hash coincide with each other, and changes data stored in the second area of the first block to data of the change request.


 




Drawing














































Search report







Cited references

REFERENCES CITED IN THE DESCRIPTION



This list of references cited by the applicant is for the reader's convenience only. It does not form part of the European patent document. Even though great care has been taken in compiling the references, errors or omissions cannot be excluded and the EPO disclaims all liability in this regard.

Patent documents cited in the description