System and method for information protection

The invention claimed is: 1. A computer-implemented method for information protection, comprising: committing a transaction amount t of a transaction with a first commitment scheme to obtain a transaction commitment value T, and committing a change y of the transaction with a second commitment scheme to obtain a change commitment value Y, the first commitment scheme comprising a transaction blinding factor r t , and the second commitment scheme comprising a change blinding factor r y ; encrypting a first combination of the change blinding factor r y and the change y with a first key KA; transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to a recipient node associated with a recipient of the transaction for the recipient node to verify the transaction; in response to that the recipient node successfully verifies the transaction, obtaining an encrypted second combination of the transaction blinding factor r t and the transaction amount t encrypted with a second key KB; and transmitting the encrypted first combination and the encrypted second combination to a plurality of nodes in a blockchain for the nodes in the blockchain to verify the transaction. 2. The method of claim 1 , wherein: the first commitment scheme comprises a Pedersen commitment based at least on the transaction blinding factor r t and with the transaction amount t being a corresponding committed value; and the second commitment scheme comprises a Pedersen commitment based at least on the change blinding factor r y and with the change y being a corresponding committed value. 3. The method of claim 1 , wherein transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to the recipient node associated with the recipient of the transaction for the recipient node to verify the transaction comprises: transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to the recipient node associated with the recipient of the transaction, causing the recipient node to verify if the transaction commitment value T is equal to the first commitment scheme committing the transaction amount t with the transaction blinding factor r t . 4. The method of claim 1 , wherein: obtaining the encrypted second combination comprises receiving from the recipient node the encrypted second combination and a signature SIGB associated with the encrypted second combination and the transaction commitment value T. 5. The method of claim 4 , wherein: the transaction amount t is tapped from one or more assets A 1 , A 2 , . . . , A k of a sender of the transaction; each of the assets is associated with (1) a Pedersen commitment based at least on a blinding factor r ak and a value of the each asset and (2) an encryption based at least on the blinding factor r ak and the value of the each asset; and the change y is a difference between the transaction amount t and the tapped assets. 6. The method of claim 5 , wherein, before transmitting the encrypted first combination and the encrypted second combination to the plurality of nodes in the blockchain, further comprising: verifying the signature SIGB; and in response to successfully verifying the signature SIGB, generating a signature SIGA associated with the assets A 1 , A 2 , . . . , A k , the first combination, the second combination, the transaction commitment value T, the change commitment value Y, and a difference between a sum of blinding factors corresponding to the assets A 1 , A 2 , . . . , A k and a sum of the transaction blinding factor r t and the change blinding factor r y . 7. The method of claim 6 , wherein transmitting the encrypted first combination and the encrypted second combination to the plurality of nodes in the blockchain comprises: transmitting the assets A 1 , A 2 , . . . , A k , the first combination, the second combination, the transaction commitment value T, the change commitment value Y, a difference between a sum of blinding factors corresponding to the assets A 1 , A 2 , . . . , A k and a sum of the transaction blinding factor r t and the change blinding factor r y , the signature SIGA, and the signature SIGB to the plurality of nodes in the blockchain. 8. The method of claim 7 , wherein transmitting the encrypted first combination and the encrypted second combination to the plurality of nodes in the blockchain for the nodes in the blockchain to verify the transaction comprises: transmitting the encrypted first combination and the encrypted second combination to the plurality of nodes in the blockchain, causing the nodes in the blockchain to, in response to successfully verifying the transaction, issue the transaction amount t to the recipient, eliminate the assets A 1 , A 2 , . . . , A k , and issue the change y to the sender. 9. A non-transitory computer-readable storage medium storing instructions that, when executed by a processor, cause the processor to perform operations comprising: committing a transaction amount t of a transaction with a first commitment scheme to obtain a transaction commitment value T, and committing a change y of the transaction with a second commitment scheme to obtain a change commitment value Y, the first commitment scheme comprising a transaction blinding factor r t , and the second commitment scheme comprising a change blinding factor r y ; encrypting a first combination of the change blinding factor r y and the change y with a first key KA; transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to a recipient node associated with a recipient of the transaction for the recipient node to verify the transaction; in response to that the recipient node successfully verifies the transaction, obtaining an encrypted second combination of the transaction blinding factor r t and the transaction amount t encrypted with a second key KB; and transmitting the encrypted first combination and the encrypted second combination to a plurality of nodes in a blockchain for the nodes in the blockchain to verify the transaction. 10. The storage medium of claim 9 , wherein: the first commitment scheme comprises a Pedersen commitment based at least on the transaction blinding factor r t and with the transaction amount t being a corresponding committed value; and the second commitment scheme comprises a Pedersen commitment based at least on the change blinding factor r y and with the change y being a corresponding committed value. 11. The storage medium of claim 9 , wherein transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to the recipient node associated with the recipient of the transaction for the recipient node to verify the transaction comprises: transmitting the transaction blinding factor r t , the transaction amount t, and the transaction commitment value T to the recipient node associated with the recipient of the transaction, causing the recipient node to verify if the transaction commitment value T is equal to the first commitment scheme committing the transaction amount t with the transaction blinding factor r t . 12. The storage medium of claim 9 , wherein: obtaining the encrypted second combination comprises receiving from the recipient node the encrypted second combination and a signature SIGB associated with the encrypted second combination and the transaction commitment value T. 13. The storage medium of claim 12 , wherein: the transaction amount t is tapped from one or more assets A 1 ,