SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR PRIVACY-PRESERVING TRANSACTION VALIDATION MECHANISMS FOR SMART CONTRACTS THAT ARE INCLUDED IN A LEDGER

US 20170155515A1
Filed: 12/03/2015
Published: 06/01/2017
Est. Priority Date: 11/26/2015
Status: Active Grant

First Claim

Patent Images

1. A method of processing digital transactions in a network of computer systems comprising:

creating a digital message including;

a specification of a set of validator computer systems to validate the computer program instructions and results of execution of the computer program instructions, wherein each validator computer system is provided with a signing key, andcomputer program instructions to be executed to perform at least one function relating to a digital transaction, wherein the computer program instructions are encrypted so that the computer program instructions are accessible only by the specified set of validator computer systems;

signing the digital message using a user-private system key;

generating a copy of the digital message for each specified validator computer system and signing the copy for each specified validator computer system with that validator computer system'"'"'s public signing key;

transmitting the digital messages over the network to at least the plurality of validator computer systems; and

receiving a validation result from at least some of the plurality of validator computer systems, wherein a validation result is generated at a validator computer system by;

decrypting the signed digital message,executing the computer program instructions in the digital message to determine if the computer program instructions are valid,generating a result indicating whether the computer program instructions are valid, andsigning the result with a system provided signing key and with the signing key provided in the digital message.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The system, method, and computer program product described herein may provide the capability to handle a variety of types of transactions, not just payment transactions. In addition, system, method, and computer program product described herein may provide the capability for users to be able to control the confidentiality of their transactions, for the system to control access to transactions, for the system to be capable of auditing transactions, and to provide accountability of the validating entities.

174 Citations

21 Claims

1. A method of processing digital transactions in a network of computer systems comprising:
- creating a digital message including;
  
  a specification of a set of validator computer systems to validate the computer program instructions and results of execution of the computer program instructions, wherein each validator computer system is provided with a signing key, andcomputer program instructions to be executed to perform at least one function relating to a digital transaction, wherein the computer program instructions are encrypted so that the computer program instructions are accessible only by the specified set of validator computer systems;
  
  signing the digital message using a user-private system key;
  
  generating a copy of the digital message for each specified validator computer system and signing the copy for each specified validator computer system with that validator computer system'"'"'s public signing key;
  
  transmitting the digital messages over the network to at least the plurality of validator computer systems; and
  
  receiving a validation result from at least some of the plurality of validator computer systems, wherein a validation result is generated at a validator computer system by;
  
  decrypting the signed digital message,executing the computer program instructions in the digital message to determine if the computer program instructions are valid,generating a result indicating whether the computer program instructions are valid, andsigning the result with a system provided signing key and with the signing key provided in the digital message.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - determining that the digital message is valid if at least a threshold number of validation results indicate that the digital message is valid.
  - 3. The method of claim 1, wherein the digital message further comprises a specification of a set of user computer systems to be parties to the transaction, wherein each user computer system is provided with a signing key, and the method further comprises providing access to the computer program instructions only to the specified user computer systems using the signing key.
  - 4. The method of claim 3, wherein the digital message further comprises a specification of a computer program instruction execution role for each of the specified user computer systems.
  - 5. The method of claim 3, wherein the specified validator computer systems do not have access to identities of the specified user computer systems.
  - 6. The method of claim 1, wherein the result further comprises a result of execution of the computer program instructions.
  - 7. The method of claim 1, wherein the result is encrypted so that only authorized parties can see the result.

8. A system for processing digital transactions in a network of computer systems, the system comprising a processor, memory accessible by the processor, and computer program instructions stored in the memory and executable by the processor to perform:
- creating a digital message including;
  
  a specification of a set of validator computer systems to validate the computer program instructions and results of execution of the computer program instructions, wherein each validator computer system is provided with a signing key, andcomputer program instructions to be executed to perform at least one function relating to a digital transaction, wherein the computer program instructions are encrypted so that the computer program instructions are accessible only by the specified set of validator computer systems;
  
  signing the digital message using a user-private system key;
  
  generating a copy of the digital message for each specified validator computer system and signing the copy for each specified validator computer system with that validator computer system'"'"'s public signing key;
  
  transmitting the digital messages over the network to at least the plurality of validator computer systems; and
  
  receiving a validation result from at least some of the plurality of validator computer systems, wherein a validation result is generated at a validator computer system by;
  
  decrypting the signed digital message,executing the computer program instructions in the digital message to determine if the computer program instructions are valid,generating a result indicating whether the computer program instructions are valid, andsigning the result with a system provided signing key and with the signing key provided in the digital message.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, further comprising:
    - determining that the digital message is valid if at least a threshold number of validation results indicate that the digital message is valid.
  - 10. The system of claim 8, wherein the digital message further comprises a specification of a set of user computer systems to be parties to the transaction, wherein each user computer system is provided with a signing key, and the method further comprises providing access to the computer program instructions only to the specified user computer systems using the signing key.
  - 11. The system of claim 10, wherein the digital message further comprises a specification of a computer program instruction execution role for each of the specified user computer systems.
  - 12. The system of claim 10, wherein the specified validator computer systems do not have access to identities of the specified user computer systems.
  - 13. The system of claim 8, wherein the result further comprises a result of execution of the computer program instructions.
  - 14. The system of claim 8, wherein the result is encrypted so that only authorized parties can see the result.

15. A computer program product for processing digital transactions in a network of computer systems, the computer program product comprising a non-transitory computer readable medium and computer program instructions stored on the non-transitory computer readable medium and executable by a processor to perform:
- creating a digital message including;
  
  a specification of a set of validator computer systems to validate the computer program instructions and results of execution of the computer program instructions, wherein each validator computer system is provided with a signing key, andcomputer program instructions to be executed to perform at least one function relating to a digital transaction, wherein the computer program instructions are encrypted so that the computer program instructions are accessible only by the specified set of validator computer systems;
  
  signing the digital message using a user-private system key;
  
  generating a copy of the digital message for each specified validator computer system and signing the copy for each specified validator computer system with that validator computer system'"'"'s public signing key;
  
  transmitting the digital messages over the network to at least the plurality of validator computer systems; and
  
  receiving a validation result from at least some of the plurality of validator computer systems, wherein a validation result is generated at a validator computer system by;
  
  decrypting the signed digital message,executing the computer program instructions in the digital message to determine if the computer program instructions are valid,generating a result indicating whether the computer program instructions are valid, andsigning the result with a system provided signing key and with the signing key provided in the digital message.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The computer program product of claim 15, further comprising:
    - determining that the digital message is valid if at least a threshold number of validation results indicate that the digital message is valid.
  - 17. The computer program product of claim 15, wherein the digital message further comprises a specification of a set of user computer systems to be parties to the transaction, wherein each user computer system is provided with a signing key, and the method further comprises providing access to the computer program instructions only to the specified user computer systems using the signing key.
  - 18. The computer program product of claim 17, wherein the digital message further comprises a specification of a computer program instruction execution role for each of the specified user computer systems.
  - 19. The computer program product of claim 17, wherein the specified validator computer systems do not have access to identities of the specified user computer systems.
  - 20. The system of claim 15, wherein the result further comprises a result of execution of the computer program instructions.
  - 21. The system of claim 15, wherein the result is encrypted so that only authorized parties can see the result.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Androulaki, Elli, DeCaro, Angelo, Kramp, Thorsten, Vukolic, Marko, Sorniotti, Alessandro

Granted Patent

US 9,992,028 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/64   Protecting data integrity, ...

G06Q 20/065   using e-cash

G06Q 20/0658   e-cash managed locally

G06Q 20/3829   involving key management

G06Q 2220/00   Business processing using c...

H04L 2209/56   Financial cryptography, e.g...

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/0823   using certificates cryptogr...

H04L 63/102   Entity profiles

H04L 63/123   received data contents, e.g...

H04L 9/006   involving public key infras...

H04L 9/008   involving homomorphic encry...

H04L 9/0833   involving conference or gro...

H04L 9/14   using a plurality of keys o...

H04L 9/30   Public key, i.e. encryption...

H04L 9/3242   involving keyed hash functi...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

H04L 9/50   using hash chains, e.g. blo...

SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR PRIVACY-PRESERVING TRANSACTION VALIDATION MECHANISMS FOR SMART CONTRACTS THAT ARE INCLUDED IN A LEDGER

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

174 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM, METHOD, AND COMPUTER PROGRAM PRODUCT FOR PRIVACY-PRESERVING TRANSACTION VALIDATION MECHANISMS FOR SMART CONTRACTS THAT ARE INCLUDED IN A LEDGER

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

174 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links