43results about How to "No tampering" patented technology

The invention discloses a joint learning method and system based on a public block chain and an encrypted neural network. The method comprises the following steps of: enabling the terminal to downloada universal neural network model pre-constructed on the server; performing Training using local data, obtaining gradient updating data and encrypting the gradient updating data; acquiring encrypted data and a first identification code, sending the encrypted data to a server; calculating a hash value of the first identification code and uploading the hash value to the block chain; enabling a server to decrypte encrypted data, obtaining the sum of the second identification code and the gradient updating data, calculating the hash value of the second identification code, then verifying whether the hash value of the first identification code is consistent with the hash value of the second identification code or not, if yes, updating the universal neural network model by using the sum of the gradient updating data, otherwise, not updating, and repeating the above steps until the model meets a preset convergence condition. In the process of completing deep network training, user informationcan be prevented from being leaked, and it is guaranteed that transmission data are not leaked or tampered.

The embodiment of the invention relates to a method and a device for embedding watermarking information and a method and a device for authenticating the watermarking information. The method for embedding the watermarking information comprises the following steps: generating watermarking information to be embedded; acquiring a reference frame index of a current macro block in video data; and embedding the watermarking information into the reference frame index. The method and the device for embedding the watermarking information and the method and the device for authenticating the watermarking information can better utilize the watermarking information to protect and authenticate video content, are easy to realize, and have little influence on video quality.

The invention provides a Root privilege based procedure upgrading method which comprises steps as follows: an upgrade package of an installed application is acquired; the upgrade package is installed when characteristic information of the upgrade package is different from characteristic information of the installed application; and the installed application is uninstalled when the upgrade package is installed correctly. The invention further provides a Root privilege based procedure upgrading device. With adoption of the scheme, when Root privilege is provided, the application can be subjected to package name and / or signature upgrading, and loss of users is avoided.

The invention discloses an electronic equipment data credible acquisition and evidence storage method based on the blockchain technology, and the method comprises the steps: generating a unique public and private key pair for electronic equipment according to an equipment manufacturer name, an equipment model and an equipment SN number; through a private key signature and public key signature verification mode, guaranteeing that the server can confirm the identity of the device when the data collected by the device is sent to the server in real time, and guaranteeing that the data is not tampered. A strict progressive increase operation sequence number is maintained for each device, and a timestamp synchronization mode is adopted, so that the data uploading sequence of the devices is consistent with the collection sequence. And the data uploaded by the equipment is not lost or deleted in an offline period in a mode of maintaining a strict progressive increase operation sequence number for each piece of equipment. And the server stores the public key of the electronic equipment and is bound with the information of the electronic equipment. The whole process of data from collection to storage is transparent, credible and non-tampering through the block chain and encryption technology.

The invention belongs to the technical field of systematic safety of Internet of Vehicles, and discloses a networked vehicle remote upgrading system and method with anti-attack bidirectional authentication, a CA certificate system is used for performing identity authentication on a vehicle through a digital certificate in an Internet of Vehicles network, and supporting bidirectional authenticationbetween a TSP and a networked vehicle. A TSP system is used for supporting remote upgrading of vehicles. A T-BOX system is used for detecting the IP of the TSP during upgrading; wherein the IP is notthe IP of the TSP, and the data packet of the IP is discarded; and in a non-upgrading state, external communication is compared according to rules in the security rule base of the firewall, and rulesof the rule base are updated through TSP real-time operation. According to the invention, the reliability authentication of the bidirectional identity between the networked vehicle T-BOX and the vehicle remote service provider TSP is realized, and the identity counterfeiting is prevented; reliability of data transmission between the T-BOX and the TSP is achieved, and illegal stealing and tampering of automobile upgrading software in the transmission process are prevented.

The invention discloses a trusted execution environment (TEE) multi-node authentication method, which comprises the following steps of: assuming that a plurality of TEE computing nodes form a computing resource pool, and uniformly distributing computing resources by a computing resource management system; and setting a unified access and authentication node (AuthNode) for the the resource pool, wherein the node assists a user in completing the remote authentication process of all distributed TEE computing nodes. The method has the following advantages: 1, a user can authenticate the code security in the cloud computing environment, and realizes security protection on the computing process through the TEE; 2, the privacy protection of user data can be achieved, the user data are uploaded to the cloud environment in an encrypted state, and the data are only decrypted and used in the TEE; 3, the user can authenticate the correctness of the calculation result to ensure that the calculation result is not tampered; and 4, complete remote authentication is only carried out in a program deployment stage, the TEE authentication process is completed in the cloud environment, the user only needs to carry out simple local verification in the calculation process, and the execution efficiency is high.

The invention relates to a webpage tamper proofing method realized by a windows driver layer. The webpage tamper proofing method includes: monitoring a kernel call function of a relative file operation at the driver layer, and proofing the webpage tamper by determining whether to permit the operation or not according to launch progresses of the call and the to-be-operated object file of the call. Compared with polling technique and event triggering technique normally used at present, the webpage tamper proofing method realized by the windows driver layer has the advantages of low resources occupation, high response speed and can absolutely avoid webpage tamper and the like.

The invention discloses an electronic warrant issuing method, a cloud server and an electronic warrant system. The method comprises the following steps of pushing a project list according to order data and a project selection request; receiving the selected items and primarily screening a financial institution based on the attributes of the items to obtain a primarily reviewed financial institution list; based on the bid amount of the selected item, interacting with the transaction center system to obtain a guarantee residual responsibility and a guarantee upper limit of the financial institution; carrying out secondary screening on the first-review financial institution list; when the guarantee residual responsibility of the financial institution exceeds the guarantee upper limit and joint guarantee exists, or when the guarantee residual responsibility of financial institutions does not exceed the guarantee upper limit, the financial institutions being reserved; generating a final financial institution list based on the reserved financial institutions and feeding back the final financial institution list; and receiving the selected financial institution, generating a warranty order and sending the warranty order to the selected financial institution system. More financial institutions with the qualification of dealing are provided for enterprises for selection, market business is expanded for guarantee companies, financial industry chains are expanded, and insurance companies obtain associated business.

The invention provides a method for bill circulation. The method is applied to a main node of a first sub-network. The first sub-network comprises a plurality of first nodes including the main node, the plurality of first nodes correspond to a plurality of bill transfer platforms, the second sub-network comprises a plurality of second nodes corresponding to a plurality of bill discount banks, themethod comprises the following steps: receiving bill information from a bill holder, wherein the bill holder is one of a plurality of clients; broadcasting the bill information to the first sub-network; in response to the fact that the ticket holder is changed from one client to another client, obtaining a transaction record and performing first verification, and generating a block containing thetransaction record after the first verification is passed; and sending the block to the second sub-network for second verification, and adding the block to a block chain after the second verificationis passed. The invention further provides a system for bill circulation, computer equipment and a computer readable storage medium.

The invention provides an identity authentication method, identity authentication equipment, a server and an identity authentication-based encryption method and aims to solve the counterfeiting and repudiation prevention problems of identity authentication. The method comprises the following steps of: combining a written signature with a digital signature; acquiring the written signature handwriting of a user through the identity authentication equipment such as a universal serial bus (USB) key; combining the written signature handwriting with transaction data and performing digital signing; and transmitting signature data and the encrypted written signature handwriting to a verification party (such as an Internet bank background system). The signature data is verified by the verification party, so that the written signature handwriting and confidentiality data are not tampered in a transmission process; simultaneously, the truth of the written signature handwriting is verified by the verification party, so that the signature of the written signature handwriting by a user is ensured.

The invention discloses a secure software downloading and starting method. The method comprises the following steps of 1, checking a startup program realized by software by adopting a hardware logic circuit; 2, reading a downloading flag field by the startup program or the hardware logic circuit; and 3, if the downloading flag field displays that an existing device is in an application downloadable stage, checking a downloading instruction processing program by the startup program, and then executing the downloading instruction processing program; and if the downloading flag field displays that the existing device is in an application non-downloadable stage, checking an application by the startup program, and then executing the application. According to the method, attacks performed on the device by attackers through adopting different means can be resisted, so that the device security is improved.

The invention discloses a method for program content illegal tampering preventing. The method comprises the steps that (1) a scrambler receives a TS, and PES groups are obtained by analysis; (2) the scrambler packages check codes and a package counter of a first PES group and a package counter of a second PES group to an ECM package, and the ECM package is inserted into the TS; (3) the scrambler sends the TS to a modulator; (4) the modulator modulates the TS and then sends the TS to a terminal; (5) the terminal receives the TS, and the ECM package and the PES groups are obtained by analysis; and (6) whether the check codes of the first PES group in the ECM package are matched with check codes generated by checking of the corresponding PES group is judged, if yes, the TS is subjected to decoding playing, otherwise, checking errors are hinted, and decoding is stopped. According to the method, program content illegal tampering can be effectively prevented, the content safety of a digital television is guaranteed, achieving is easy, and promoting is easy.

The present disclosure provides a method for ticket transfer, the method is applied to the master node of the first subnetwork, the first subnetwork includes multiple first nodes including the master node, multiple first nodes and multiple Corresponding to a bill transfer platform, the second sub-network includes a plurality of second nodes corresponding to a plurality of bill discount banks, the method includes: receiving bill information from a bill holder, and the bill holder is one of the plurality of clients one of; broadcast the note information to the first sub-network; in response to the change of the ticket holder from the one client to another client, acquire the transaction record and perform the first verification, in the first verification Generate a block containing the transaction record after passing; send the block to the second sub-network for second verification, and add the block to the block chain after the second verification passes. The present disclosure also provides a system for ticket circulation, a computer device and a computer-readable storage medium.

The invention relates to the field of communication security, in particular to a traceable data security fidelity method. Among them, the security strategy includes the security strategies in three aspects of the data fidelity stage, the data transmission stage and the data traceability stage; the strategy method of the data fidelity stage is to use the data fidelity system to perform data curing and data preservation on the data. Processing and recording data handover track information processing; the strategy method in the data transmission stage is that the user at the receiving end checks the data through the data fidelity system to determine the correctness of the data; the strategy method in the data traceability stage is that the user at the receiving end After discovering data errors, by querying the data transfer track information in the data fidelity system, the data reported with errors will be handed over and returned step by step according to the transfer track information. After each handover, the data will be re-verified at the upper-level node until the cause of the error is found .

The invention provides an integrity authentication method and device for virtual client equipment. The method comprises the following steps: an SD-WAN controller sends an integrity challenge signaling to the virtual client equipment; receiving a first integrity measurement list sent by the virtual client device, wherein the first integrity measurement list is generated by the virtual client device by using the integrity measurement system structure and signed by using the virtual trusted computing chip; performing integrity authentication on the virtual client device according to the first integrity measurement list; if the integrity authentication of the virtual client device is passed, indication information is sent to the virtual client device, and the indication information is used for indicating the credibility of a physical client device where the virtual client device is located. In the invention, the SD-WAN controller performs integrity authentication on the virtual client device, so that the virtual operating system of the virtual client device can be ensured not to be tampered, the predictability of the behavior of the virtual operating system is ensured, and the security of the system is improved.

The present invention relates to a cross-departmental data sharing system and method based on block chain technology. The system includes a query server, a sorting node, and multiple departmental storage centers. In each departmental storage center, a data acquisition module is connected to a data processing server, and the data The processing server is connected to the distributed storage system and the query server respectively, and the distributed storage system is connected to the query server; the data processing server acts as the peer node of the blockchain, and the sorting node transmits information to the storage centers of each department through the message channel. Compared with the existing technology, the present invention uses blockchain technology to directly store structured data on the chain, which can ensure that the data will not be tampered with. The hash value verification can also be traced, which further limits the behavior of tampering with the data and improves the security and credibility of the data sharing system.

The invention discloses a secure software downloading and starting method. The method comprises the following steps of 1, checking a startup program realized by software by adopting a hardware logic circuit; 2, reading a downloading flag field by the startup program or the hardware logic circuit; and 3, if the downloading flag field displays that an existing device is in an application downloadable stage, checking a downloading instruction processing program by the startup program, and then executing the downloading instruction processing program; and if the downloading flag field displays that the existing device is in an application non-downloadable stage, checking an application by the startup program, and then executing the application. According to the method, attacks performed on the device by attackers through adopting different means can be resisted, so that the device security is improved.

The invention provides a secret sharing cloud storage method. The method includes the preprocessing state, the distribution stage, the reconstruction stage and the recovery and verification stage. At the preprocessing stage, preprocessing is conducted on electronic medical records through the HC-A, and the preprocessing result is directly used for the distribution stage; at the distribution stage, n shares are generated through the HC-A and distributed to the CP1, the K and the CPn; at the reconstruction stage, the CPre obtains t or more shares from the CP1, the K and the CPn, and the preprocessing result of the electronic medical records are recovered and sent to the HC-B; at the recovery and verification stage, the electronic medical records are recovered through the HC-B, and the correctness of the electronic medical records is verified. According to the method, while it is ensured that the calculation cost of users is reduced, it can be ensured that neither cloud service providers storing the electronic medical records nor cloud service providers recovering the electronic medical records can obtain the records.

The invention discloses a security processing method, a security processing device, a processing chip and network equipment. The method comprises the following steps of: obtaining a security processing way for Internet protocol security (IPsec) data requiring security processing; if authentication processing is determined to be required after encryption processing is performed on the IPsec data according to the security processing way, obtaining an encryption algorithm for the encryption processing of the IPsec data; determining an authentication processing way for the authentication processing of the IPsec data according to the obtained encryption algorithm, wherein the authentication processing way comprises a software authentication processing way and a hardware authentication processing way; performing hardware encryption processing on the IPsec data according to the obtained encryption algorithm; and performing the authentication processing on the hardware-encrypted IPsec data according to the determined authentication processing way. By the technical scheme provided by the invention, the problem of relatively lower processing efficiency in the authentication processing of the IPsec data in the prior art is solved.

The present invention provides a two-stage hash chain storage method for data or files, wherein the first hash storage calculation process includes: obtaining the first hash value after calculating the hash of the uploaded first file (F1) (H1), and mark the first timestamp (T1); store the first hash value (H1) and the first timestamp (T1) on the blockchain of the blockchain traceability system at the same time; the second hash The storage calculation process includes: attaching the first hash value (H1) and blockchain additional information (Z) to the first file (F1) to obtain the second file (F2); ) hash calculation to obtain the second hash value (H2), and mark the second time stamp (T2); store the second hash value (H2) and the second time stamp (T2) in the blockchain traceability system at the same time on the blockchain. The blockchain traceability system simultaneously stores information in three dimensions: file, file hash, and timestamp, to solve the problem of data errors during the chaining process.