USER ACCOUNT MANAGEMENT VIA A DISTRIBUTED LEDGER
First Claim
1. A method for providing user access to a set of data stored in a distributed ledger, the distributed ledger stored by a plurality of node computing entities, the method comprising:
- receiving, by a first node computing entity of the plurality of node computing entities and comprising at least one processor, a memory, and a communications interface configured to communicate via at least one network, a share key request indicating that a first user account has authorized a second user account to have access to a set of data stored in the distributed ledger;
encrypting, by the first node computing entity, a data access key for accessing the set of data using an encrypting key corresponding to the second user account;
generating, by the first node computing entity, a block comprising the encrypted data access key;
signing, by the first node computing entity, the block comprising the encrypted data access key using a signing key corresponding to the first user account; and
posting, by the first node computing entity, the signed block comprising the encrypted data access key to the distributed ledger.
1 Assignment
0 Petitions
Accused Products
Abstract
User access to a set of data stored in a distributed ledger, wherein the distributed ledger is stored by a plurality of node computing entities, is provided. A first node computing entity receives a share key request indicating that a first user account has authorized a second user account to have access to a set of data stored in the distributed ledger. A data access key (DAK) for accessing the set of data is encrypted using an encrypting key of the second user account. A block comprising the encrypted DAK is generated, signed using a signing key of the first user account, and posted to the distributed ledger. The block is authenticated using an authentication key of the first user account and accessed via a decrypting key of the second user account such that the second user account may use the DAK to access the set of data.
148 Citations
20 Claims
-
1. A method for providing user access to a set of data stored in a distributed ledger, the distributed ledger stored by a plurality of node computing entities, the method comprising:
-
receiving, by a first node computing entity of the plurality of node computing entities and comprising at least one processor, a memory, and a communications interface configured to communicate via at least one network, a share key request indicating that a first user account has authorized a second user account to have access to a set of data stored in the distributed ledger; encrypting, by the first node computing entity, a data access key for accessing the set of data using an encrypting key corresponding to the second user account; generating, by the first node computing entity, a block comprising the encrypted data access key; signing, by the first node computing entity, the block comprising the encrypted data access key using a signing key corresponding to the first user account; and posting, by the first node computing entity, the signed block comprising the encrypted data access key to the distributed ledger. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An apparatus for providing user access to a set of data stored in a distributed ledger, the distributed ledger stored by a plurality of node computing entities, the apparatus being one of the plurality of node computing entities, the apparatus comprising at least one processor, a communications interface configured for communicating via at least one network, and at least one memory storing computer program code, the at least one memory and the computer program code configured to, with the processor, cause the apparatus to at least:
-
receive a share key request indicating that a first user account has authorized a second user account to have access to a set of data stored in the distributed ledger; encrypt a data access key for accessing the set of data using an encrypting key corresponding to the second user account; generate a block comprising the encrypted data access key; sign the block comprising the encrypted data access key using a signing key corresponding to the first user account; and post the signed block comprising the encrypted data access key to the distributed ledger. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer program product for providing user access to a set of data stored in a distributed ledger the distributed ledger stored by a plurality of node computing entities, the computer program product comprising at least one non-transitory computer-readable storage medium having computer-executable program code instructions stored therein, the computer-executable program code instructions comprising program code instructions configured to, when executed by a processor of a node computing entity of the plurality of node computing entities:
-
receive a share key request indicating that a first user account has authorized a second user account to have access to a set of data stored in the distributed ledger; encrypt a data access key for accessing the set of data using an encrypting key corresponding to the second user account; generate a block comprising the encrypted data access key; sign the block comprising the encrypted data access key using a signing key corresponding to the first user account; and post the signed block comprising the encrypted data access key to the distributed ledger. - View Dependent Claims (20)
-
Specification