System and method for recording device lifecycle transactions as versioned blocks in a blockchain network using a transaction connector and broker service
First Claim
1. A method of updating a device, that has been authenticated with an immutable device unique identifier generated using device attributes discovered by an update client on the device, an update service in a supply chain network of providers and publishers, orchestration rules, a local ledger, and a blockchain broker service, the method comprising:
- authenticating, by the update service, the device using a device unique registration issued by the update service associated with the immutable device unique identifier;
sending, by the update client on the device, a device request for an update package for the device from the update service in the supply chain network, wherein the device request from the authenticated device includes a device manifest and discovered device attributes, and wherein the discovered device attributes comprises of static factory configured settings and dynamically configured properties;
receiving, by the update service, the device request;
processing, by the update service, the received device request using the orchestration rules to prepare update packages, initially signed and encrypted by providers in the supply chain, for the device based on the device manifest and device attributes;
preparing, by the update service, by re-signing and re-encrypting the update package, as the publisher in the supply chain, based on the orchestration rules established for a network service of the supply chain network;
sending, by the update service, the doubly signed and reencrypted update package to the device; and
recording, by the update service, a request log for the device as an entry in the local ledger, and distributing blocks of transaction records to the blockchain broker service to maintain a distributed ledger to reproduce history of update packages sent to a plurality of devices by a plurality of publishers in the supply chain.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of building a device historian, across a supply chain of device manufactures and managers, by a plurality of device management services comprising an enrollment service, an update service, a policy service, and an analytics service, a transaction connector, a blockchain broker service participating as a node in a blockchain network, and transaction filters. The method comprises sending, by the plurality of device management services a transaction record over the transaction connector to the blockchain broker service, receiving, by the blockchain broker service, the transaction record, filtering, by the blockchain broker service, information in the transaction record based on the transaction filters, preparing, by the blockchain broker service, a versioned block based on the filtered information from the transaction record, and adding, by the blockchain broker service, the versioned block to the blockchain network.
40 Citations
7 Claims
-
1. A method of updating a device, that has been authenticated with an immutable device unique identifier generated using device attributes discovered by an update client on the device, an update service in a supply chain network of providers and publishers, orchestration rules, a local ledger, and a blockchain broker service, the method comprising:
-
authenticating, by the update service, the device using a device unique registration issued by the update service associated with the immutable device unique identifier; sending, by the update client on the device, a device request for an update package for the device from the update service in the supply chain network, wherein the device request from the authenticated device includes a device manifest and discovered device attributes, and wherein the discovered device attributes comprises of static factory configured settings and dynamically configured properties; receiving, by the update service, the device request; processing, by the update service, the received device request using the orchestration rules to prepare update packages, initially signed and encrypted by providers in the supply chain, for the device based on the device manifest and device attributes; preparing, by the update service, by re-signing and re-encrypting the update package, as the publisher in the supply chain, based on the orchestration rules established for a network service of the supply chain network; sending, by the update service, the doubly signed and reencrypted update package to the device; and recording, by the update service, a request log for the device as an entry in the local ledger, and distributing blocks of transaction records to the blockchain broker service to maintain a distributed ledger to reproduce history of update packages sent to a plurality of devices by a plurality of publishers in the supply chain. - View Dependent Claims (2, 3)
-
-
4. A method of updating a device, that has been authenticated with an immutable device unique identifier generated using dynamic device attributes discovered by an update client on the device, a plurality of providers of update packages, an update service of a plurality of publishers in a supply chain network of providers and publishers, orchestration rules, a local ledger, and a blockchain broker service, the method comprising:
-
authenticating, by the update service, the device using a device unique registration issued by the update service associated with the immutable device unique identifier; sending, by the update client on the device, a device request for an update package for the device from the update service in the supply chain network, wherein the device request from the authenticated device includes a device manifest and discovered device attributes, and wherein the discovered device attributes comprises of static factory configured settings and dynamically configured properties; receiving, by the update service, the device request; processing, by the update service, the received device request using the orchestration rules to prepare update packages, initially signed and encrypted by providers in the supply chain, for the device based on the device manifest and device attributes; preparing, by the update service, by re-signing and re-encrypting the update package, as the publisher in the supply chain, based on the orchestration rules established for a network service of the supply chain network; sending, by the update service, the doubly signed and reencrypted update package to the device; and recording, by the update service, a request log for the device as an entry in the local ledger, and distributing blocks of transaction records to the blockchain broker service to maintain a distributed ledger to reproduce history of provider packages sent to a plurality of authenticated devices by a plurality of providers and publishers in the supply chain. - View Dependent Claims (5, 6)
-
-
7. A method of updating a device, that has been authenticated with an immutable device unique identifier generating using device attributes discovered by an update client on the device, an update service in a supply chain network of providers and publishers, orchestration rules, a local ledger, and a blockchain broker service, the method comprising:
-
authenticating, by the update service, the device using a device unique registration issued by the update service associated with the immutable device unique identifier; sending, by the update client, a device request for an update package for the device from the update service in the supply chain network, wherein the device request from the authenticated device includes a device manifest and discovered device attributes comprising static factory configured settings and dynamically configured properties; receiving, by the update service, the device request and authenticating the device; processing, by the update service, the received device request using the orchestration rules to prepare update packages, initially signed and encrypted by providers in the supply chain, for the device based on the device manifest and device attributes; preparing, by the update service, by re-signing and re-encrypting the update package, as the publisher in the supply chain, based on the orchestration rules established for a network service of the supply chain network; sending, by the update service, the doubly signed and reencrypted update package to the device; and recording, by the update service, a request log for the device as an entry in the local ledger, and distributing blocks of transaction records to the blockchain broker service to maintain a distributed ledger to reproduce history of the device, wherein the request log includes a publisher identifier or a provider identifier.
-
Specification