Distributed, Centrally Authored Block Chain Network
A central service provider manages and writes transaction details to a private block chain network. Blocks of transaction records written onto the block chain by the central service provider are distributed to members of the block chain, thereby enabling data resiliency and self-verifiability. As the full block chain is available to members of the block chain network, the central service provider also ensures the privacy of transaction details by providing an assembled header and encrypted block of transaction records that are generated using a combination of symmetric and asymmetric cryptographic techniques. Altogether, the full block chain network is distributed across members of the block chain, but the members can only access and read transaction details in the block chain that they are authorized to view.
Much More than Average Length Specification
- Claim CLM-00001. 1. A method comprising:
generating, by a symmetric key generation module of a central service provider, a first symmetric key for a first party and a second symmetric key for a second party; encrypting the first symmetric key using a public key assigned to the first party and the second symmetric key using a public key assigned to the second party; generating a header comprising the encrypted first symmetric key and the encrypted second symmetric key; receiving details for each of a plurality of transactions, a first subset of the plurality of transactions involving the first party and a second subset of the plurality of transactions involving the second party; encrypting details of each of the transactions in the first subset using the first symmetric key generated for the first party; encrypting details of each of the transactions in the second subset using the second symmetric key generated for the second party; generating a block of transaction records for a time period corresponding to the received transactions, the block of transaction records comprising the encrypted details of transactions in the first subset and the encrypted details of transactions in the second subset; and transmitting the header and the block of transaction records to a client device of the first party, the client device of the first party adapted to use the transmitted header to decrypt the encrypted details of the first subset of the plurality of transactions involving the first party in the block of transaction records and unable to use the transmitted header to decrypt the encrypted details of the second subset of the plurality of transactions involving the second party.
- Claim CLM-00011. 11. A non-transitory computer-readable medium comprising computer program code that, when executed by a processor of a computer system, causes the processor to:
generate, by a symmetric key generation module of a central service provider, a first symmetric key for a first party and a second symmetric key for a second party; encrypt the first symmetric key using a public key assigned to the first party and the second symmetric key using a public key assigned to the second party; generate a header comprising the encrypted first symmetric key and the encrypted second symmetric key; receive details for each of a plurality of transactions, a first subset of the plurality of transactions involving the first party and a second subset of the plurality of transactions involving the second party; encrypt details of each of the transactions in the first subset using the first symmetric key generated for the first party; encrypt details of each of the transactions in the second subset using the second symmetric key generated for the second party; generate a block of transaction records for a time period corresponding to the received transactions, the block of transaction records comprising the encrypted details of transactions in the first subset and the encrypted details of transactions in the second subset; and transmit the header and the block of transaction records to a client device of the first party, the client device of the first party adapted to use the transmitted header to decrypt the encrypted details of the first subset of the plurality of transactions involving the first party in the block of transaction records and unable to use the transmitted header to decrypt the encrypted details of the second subset of the plurality of transactions involving the second party.
