Traceability verification system, method and program for the same
First Claim
1. A traceability system for using a certificate issued by a certificate authority device to trace a supply chain by a signature chain, the traceability system comprising at least one computer processor adapted to implement:
- a signature chain for the supply chain issued by the certificate authority device, wherein in the supply chain a deliverer receives a supply of parts for products from disclosed suppliers and undisclosed private suppliers to at a delivery destination, the deliverer ships the products comprising the parts to at least one third party, the disclosed suppliers being identified to the third party and the undisclosed private suppliers being unidentified to the third party, the signature chain comprising;
a first signature based on a first individual certificate issued to a disclosed supplier device selected from the disclosed suppliers;
at least one second signature based on a group certificate issued by the certificate authority device, the group certificate being common to a plurality of the undisclosed private suppliers; and
a third signature based on a second individual certificate of a supplier manager after said signature chain is signed by the at least one second signature;
a verifier device configured to verify said signature chain while maintaining confidentiality of said private suppliers, wherein the verifying is based on a group public key received from said certificate authority device.
0 Assignments
0 Petitions
Accused Products
Abstract
A system for enabling verification in traceability of a supply chain while maintaining confidentiality of private suppliers. A group signature is applied to an undisclosed supplier. The undisclosed supplier previously receives registration to the certificate authority device, and performs a group signature based on the certificate issued by the certificate authority device. A disclosed supplier and the undisclosed supplier sign and generate a signature chain when they ship parts. A verifier device receives a signature chain with products shipped from the supplier manager device, divides a signature of the disclosed supplier from a signature chain, and verifies the undisclosed supplier from the group signature. Identification of the undisclosed supplier is performed by a third-party auditor system requested to do so by the verifier device by using a group private key.
-
Citations
6 Claims
-
1. A traceability system for using a certificate issued by a certificate authority device to trace a supply chain by a signature chain, the traceability system comprising at least one computer processor adapted to implement:
-
a signature chain for the supply chain issued by the certificate authority device, wherein in the supply chain a deliverer receives a supply of parts for products from disclosed suppliers and undisclosed private suppliers to at a delivery destination, the deliverer ships the products comprising the parts to at least one third party, the disclosed suppliers being identified to the third party and the undisclosed private suppliers being unidentified to the third party, the signature chain comprising; a first signature based on a first individual certificate issued to a disclosed supplier device selected from the disclosed suppliers; at least one second signature based on a group certificate issued by the certificate authority device, the group certificate being common to a plurality of the undisclosed private suppliers; and a third signature based on a second individual certificate of a supplier manager after said signature chain is signed by the at least one second signature; a verifier device configured to verify said signature chain while maintaining confidentiality of said private suppliers, wherein the verifying is based on a group public key received from said certificate authority device. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsSaito, Mika, Watanabe, Yuji, Yuriyama, Madoka, Yoshizawa, Takeo
-
Primary Examiner(s)Kalinowski, Alexander
-
Assistant Examiner(s)DEGA, MURALI K
-
Application NumberUS12/536,483Publication NumberTime in Patent Office1,406 DaysField of Search705 1- 45, 705 50- 79US Class Current705/76CPC Class CodesG06Q 20/3821 Electronic credentialsG06Q 20/3829 involving key managementG06Q 30/0601 Electronic shopping [e-shop...H04L 2209/56 Financial cryptography, e.g...H04L 63/0823 using certificates cryptogr...H04L 63/126 the source of the received ...H04L 9/3255 using group based signature...H04L 9/3265 using certificate chains, t...
