Techniques for securing supply chain electronic transactions

US 10,616,183 B2
Filed: 02/23/2016
Issued: 04/07/2020
Est. Priority Date: 07/16/2009
Status: Active Grant

First Claim

Patent Images

1. A computer-readable storage device storing a plurality of instructions which, when executed by one or more processors, cause the one or more processors perform operations comprising:

transmitting, by a hub registry system, a first private key to a first device, the first device being one of a plurality of devices along a supply chain, the first private key being encrypted;

transmitting, by the hub registry system, a second private key to a second device, the second device being one of the plurality of devices along the supply chain, and the second private key being encrypted;

receiving, by the hub registry system, first encrypted transaction data, the first encrypted transaction data being encrypted with the first private key;

decrypting, by the hub registry system, the first encrypted transaction data using a first public key associated with the first device to authenticate a sender of goods;

storing, by the hub registry system, in an audit history for a chain of custody of the goods, at least part of the decrypted first encrypted transaction data;

receiving, by the hub registry system, second encrypted transaction data, the second encrypted transaction data comprising the first encrypted transaction data being further encrypted with the second private key;

decrypting, by the hub registry system, the second encrypted transaction data using a second public encryption key associated with the second device and the first public key associated with the first device to authenticate a receiver of the goods; and

storing, by the hub registry system, in the audit history for the chain of custody of the goods, at least part of the decrypted second encrypted transaction data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques for authenticating the identity of shippers and receivers of goods at each point along a supply chain. A central hub repository issues shippers and receivers a pair of public and private keys for encrypting communications between the shippers and receivers and the hub repository and for authenticating the identity of shippers and receivers. The hub repository may also maintain a log of all transactions between shippers and receivers to provide an audit trail that may be used to track the progress of goods along a supply chain.

58 Citations

View as Search Results

20 Claims

1. A computer-readable storage device storing a plurality of instructions which, when executed by one or more processors, cause the one or more processors perform operations comprising:
- transmitting, by a hub registry system, a first private key to a first device, the first device being one of a plurality of devices along a supply chain, the first private key being encrypted;
  
  transmitting, by the hub registry system, a second private key to a second device, the second device being one of the plurality of devices along the supply chain, and the second private key being encrypted;
  
  receiving, by the hub registry system, first encrypted transaction data, the first encrypted transaction data being encrypted with the first private key;
  
  decrypting, by the hub registry system, the first encrypted transaction data using a first public key associated with the first device to authenticate a sender of goods;
  
  storing, by the hub registry system, in an audit history for a chain of custody of the goods, at least part of the decrypted first encrypted transaction data;
  
  receiving, by the hub registry system, second encrypted transaction data, the second encrypted transaction data comprising the first encrypted transaction data being further encrypted with the second private key;
  
  decrypting, by the hub registry system, the second encrypted transaction data using a second public encryption key associated with the second device and the first public key associated with the first device to authenticate a receiver of the goods; and
  
  storing, by the hub registry system, in the audit history for the chain of custody of the goods, at least part of the decrypted second encrypted transaction data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. The computer-readable storage device of claim 1, wherein the first device is a reader device registered by the sender of the goods.
  - 3. The computer-readable storage device of claim 1, wherein the sender of the goods comprises a first point of a plurality of points along the supply chain.
  - 4. The computer-readable storage device of claim 1, wherein the first encrypted transaction data identifies the goods being shipped and the sender of the goods.
  - 5. The computer-readable storage device of claim 1, wherein the first private key is associated with the sender of the goods by the hub registry system.
  - 6. The computer-readable storage device of claim 1, wherein the audit history for the chain of custody of the goods comprises information tracking transportation of the goods between points along the supply chain.
  - 7. The computer-readable storage device of claim 1, wherein the operations further comprise:
    - providing, by the hub registry system, the audit history for the chain of custody of the goods to the sender of the goods and the receiver of the goods.
  - 8. The computer-readable storage device of claim 1, wherein the operations further comprise:
    - receiving, by the hub registry system, the second encrypted transaction data from the second device, the second device being a reader device registered to the receiver of the goods.
  - 9. The computer-readable storage device of claim 1, wherein the receiver of the goods comprises a point of a plurality of points along the supply chain.
  - 10. The computer-readable storage device of claim 1, wherein the second private key is associated with the receiver of the goods by the hub registry system.
  - 11. The computer-readable storage device of claim 1, wherein the second encrypted transaction data comprises additional information identifying the goods being received.
  - 12. The computer-readable storage device of claim 1, wherein the second encrypted transaction data identifies the receiver of the goods.
  - 13. The computer-readable storage device of claim 1, wherein the operations further comprise:
    - rejecting, by the hub registry system, a transaction associated with the first encrypted transaction data if authentication of one or more of the sender of the goods or the receiver of the goods failed.
  - 14. The computer-readable storage device of claim 13, wherein the operations further comprise:
    - storing, in the audit history for the chain of custody of the goods, a unique identifier associated with a shipment of goods, a first identifier associated with the sender of the goods, and a second identifier associated with the receiver of the goods;
      
      wherein rejecting the transaction associated with the first encrypted transaction data if authentication of one or more of the sender or the receiver of the goods failed further comprises;
      
      generating a shipment exception message indicating authentication of one or more of the sender of the goods or the receiver of the goods failed;
      
      sending the shipment exception message to the sender of the goods and the receiver of the goods; and
      
      storing information from the shipment exception message in the audit history for the chain of custody of the goods.
  - 15. The computer-readable storage device of claim 1, wherein the first encrypted transaction data and the second encrypted transaction data include a unique identifier associated with shipment of the goods;
    - wherein the unique identifier associated with the shipment of goods is associated with a radio-frequency identification (RFID) tag associated with the shipment of the goods; and
      
      wherein the first device and second device each comprise RFID reader devices.
  - 16. The computer-readable storage device of claim 15, wherein the operations further comprise registering one or more reader devices comprising:
    - receiving a particular request to register a particular reader device of the one or more reader devices from a sender of the goods or receiver of the goods;
      
      wherein the particular reader device is configured to read the unique identifier from an identifier tag associated with the shipment of the goods;
      
      validating a network address associated with the particular request to determine whether the network address includes a set of network addresses of registered senders of the goods and receivers of the goods;
      
      adding at least one of a network address and a hardware-specific identifier of the particular reader device to a set of registered devices associated with the sender of the goods or receiver of the goods;
      
      generating a private key and a public encryption key for the particular reader device based on the at least one of a network address and a hardware-specific identifier of the particular reader device;
      
      wherein the first private key is located at a facility associated with the sender of the goods; and
      
      wherein the particular reader device located at the facility associated with the sender of the goods scans the identifier tag to determine the unique identifier associated with the shipment of the goods.
  - 17. The computer-readable storage device of claim 16, wherein decrypting the first encrypted transaction data further comprises:
    - identifying the first public key associated with the first device based on at least one of the network address and the hardware-specific identifier of the first device located at the facility associated with the sender of the goods, the first public key being located at the facility associated with the sender of the goods;
      
      wherein the second device is reader device located at a facility associated with the receiver of the goods; and
      
      wherein the second device scans the unique identifier tag to determine the unique identifier.
  - 18. The computer-readable storage device of claim 17, wherein decrypting the second encrypted transaction data further comprises:
    - identifying the second public key based on at least one of the network address and the hardware-specific identifier of the second device, the second public key being located at the facility associated with the receiver of the goods.

19. A computer-implemented method comprising:
- transmitting, by a hub registry system, a first private key to a first device, the first device being one of a plurality of devices along a supply chain, the first private key being encrypted;
  
  transmitting, by the hub registry system, a second private key to a second device, the second device being one of the plurality of devices along the supply chain, and the second private key being encrypted;
  
  receiving, by the hub registry system, first encrypted transaction data, the first encrypted transaction data being encrypted with the first private key;
  
  decrypting, by the hub registry system, the first encrypted transaction data using a first public key associated with the first device to authenticate a sender of goods;
  
  storing, by the hub registry system, in an audit history for a chain of custody of the goods, at least part of the decrypted first encrypted transaction data;
  
  receiving, by the hub registry system, second encrypted transaction data, the second encrypted transaction data comprising the first encrypted transaction data being further encrypted with the second private key;
  
  decrypting, by the hub registry system, the second encrypted transaction data using a second public encryption key associated with the second device and the first public key associated with the first device to authenticate a receiver of the goods; and
  
  storing, by the hub registry system, in the audit history for the chain of custody of the goods, at least part of the decrypted second encrypted transaction data.

20. A system comprising:
- one or more processors; and
  
  a memory coupled with the one or more processors, the memory configured to store instructions that when executed by the one or more processors cause the one or more processors to;
  
  transmit a first private key to a first device, the first device being one of a plurality of devices along a supply chain, the first private key being encrypted;
  
  transmit a second private key to a second device, the second device being one of the plurality of devices along the supply chain, and the second private key being encrypted;
  
  receive first encrypted transaction data, the first encrypted transaction data being encrypted with the first private key associated with a first device;
  
  decrypt the first encrypted transaction data using a first public key associated with the first to authenticate a sender of goods;
  
  store in an audit history for a chain of custody of the goods, at least part of the decrypted first encrypted transaction data;
  
  receive second encrypted transaction data, the second encrypted transaction data comprising the first encrypted transaction data being further encrypted with the second private key associated with a second device;
  
  decrypt the second encrypted transaction data using a second public encryption key associated with the second device and the first public key associated with the first device to authenticate a receiver of the goods; and
  
  store in the audit history for the chain of custody of the goods, at least part of the decrypted second encrypted transaction data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Syngkon, Daio, Flierl, Susan
Primary Examiner(s)
Kim, Tae K
Assistant Examiner(s)
Pan, Peilang

Application Number

US15/051,437
Publication Number

US 20160173457A1
Time in Patent Office

1,505 Days
Field of Search

713170
US Class Current
CPC Class Codes

G06Q 10/08   Logistics, e.g. warehousing...

G06Q 10/0833   Tracking

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0428   wherein the data content is...

H04L 9/3247   involving digital signatures

Techniques for securing supply chain electronic transactions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

58 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Techniques for securing supply chain electronic transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

58 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links