公开(公告)号：US20230351035A1

公开(公告)日：2023-11-02

申请号：US17937995

申请日：2022-10-04

Applicant: Huazhong University of Science and Technology

Inventor： Weiqi DAI ,  Liangliang YU ,  Hai JIN ,  Deqing ZOU

IPC: G06F21/62 ,  G06F21/60 ,  H04L9/08 ,  H04L9/06 ,  H04L9/32

CPC classification number: G06F21/6218 ,  G06F21/602 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0618 ,  H04L9/3221 ,  H04L9/3297

Abstract: The present invention relates to system and method for user-controllable sharing of authorization for private data, wherein the system at least comprises: a blockchain node, for recording and verifying transaction information and/or completing payment, a client, for encrypting a symmetric key into a re-encryption key to be sent to an IPFS node, so that after a re-encryption request it sends to the IPFS node is verified as valid, the client sends the symmetric key to a server; the IPFS node, for calling a zero-knowledge proof verification contract from the blockchain node in response to the re-encryption request from the client, and performing authorization and verification; a server, for sending first encrypted data involving user authorization to the IPFS node, and/or acquiring the symmetric key sent by the client and capable of decrypting authorization data. In the present invention, the control of authorized contents is transferred to the user from the service provider, enabling the user to control authorization. Besides, during authorization, authorization data contents, data flows and user behaviors are hidden, making use of the data protected from pry of service providers.