Secure Key Management for Blockchain Transactions
US-2024420118-A1 · Dec 19, 2024 · US
Distributed, centrally authored block chain network
US2017366357A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2017366357-A1 |
| Application number | US-201715625946-A |
| Country | US |
| Kind code | A1 |
| Filing date | Jun 16, 2017 |
| Priority date | Jun 16, 2016 |
| Publication date | Dec 21, 2017 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A central service provider manages and writes transaction details to a private block chain network. Blocks of transaction records written onto the block chain by the central service provider are distributed to members of the block chain, thereby enabling data resiliency and self-verifiability. As the full block chain is available to members of the block chain network, the central service provider also ensures the privacy of transaction details by providing an assembled header and encrypted block of transaction records that are generated using a combination of symmetric and asymmetric cryptographic techniques. Altogether, the full block chain network is distributed across members of the block chain, but the members can only access and read transaction details in the block chain that they are authorized to view.
First claim
Opening claim text (preview).
What is claimed is: 1 . A method comprising: generating a symmetric key for a party; encrypting the symmetric key using a public key assigned to the party; generating a header comprising the encrypted symmetric key; receiving details of a transaction for a transfer of assets involving the party; encrypting the details of the transaction using the symmetric key generated for the party; generating a block of transaction records for a time period corresponding to the received transactions, the block of transaction records comprising the encrypted details of the transaction; and transmitting the header and the block of transaction records to the party. 2 . The method of claim 1 , further comprising: generating a second symmetric key for a second party; and encrypting the second symmetric key using a public key assigned to the second party, wherein the generated header further comprises the encrypted second symmetric key. 3 . The method of claim 2 , further comprising: receiving details of a second transaction for a transfer of assets involving the second party; and encrypting the details of the second transaction using the second symmetric key generated for the second party, wherein the block of transaction records further comprises the encrypted details of the second transaction. 4 . The method of claim 3 , further comprising transmitting the header and the block of transaction records to the second party. 5 . The method of claim 1 , wherein the header further comprises: an encrypted symmetric key for an external system generated by encrypting the generated symmetric key using a public key of the external system; and an encrypted symmetric key for a central service provider generated by encrypting the generated symmetric key using a public key of the central service provider. 6 . The method of claim 5 , further comprising transmitting the header and the block of transaction records to the external system. 7 . The method of claim 1 , wherein each transaction record in the block comprises an envelope comprising a digital signature. 8 . The method of claim 1 , wherein each transaction record in the block further comprises a hash value identifying a previous transaction record in the block. 9 . The method of claim 1 , wherein the symmetric key generated for the party is valid for the time period of the block of transaction records. 9 . A non-transitory computer-readable medium comprising computer program code that, when executed by a processor of a computer system, causes the processor to: generate a symmetric key for a party; encrypt the symmetric key using a public key assigned to the party; generate a header comprising the encrypted symmetric key; receive details of a transaction for a transfer of assets involving the party; encrypt the details of the transaction using the symmetric key generated for the party; generate a block of transaction records for a time period corresponding to the received transactions, the block of transaction records comprising the encrypted details of the transaction; and transmit the header and the block of transaction records. 10 . The non-transitory computer-readable medium method of claim 9 , further comprising computer program code that, when executed by the processor of the computer system, causes the processor to: generate a second symmetric key for a second party; and encrypt the second symmetric key using a public key assigned to the second party, wherein the generated header further comprises the encrypted second symmetric key. 11 . The non-transitory computer-readable medium method of claim 10 , further comprising computer program code that, when executed by the processor of the computer system, causes the processor to: receive details of a second transaction for a transfer of assets involving the second party; and encrypt the details of the second transaction using the second symmetric key generated for the second party, wherein the block of transaction records further comprises the encrypted details of the second transaction. 12 . The non-transitory computer-readable medium method of claim 11 , further comprising computer program code that, when executed by the processor of the computer system, causes the processor to transmit the header and the block of transaction records to the second party. 13 . The non-transitory computer-readable medium method of claim 9 , wherein the header further comprises: an encrypted symmetric key for an external system generated by encrypting the generated symmetric key using a public key of the external system; and an encrypted symmetric key for a central service provider generated by encrypting the generated symmetric key using a public key of the central service provider. 14 . The non-transitory computer-readable medium method of claim 13 , further comprising computer program code that, when executed by the processor of the computer system, causes the processor to transmit the header and the block of transaction records to the external system. 15 . The non-transitory computer-readable medium method of claim 9 , wherein each transaction record in the block comprises an envelope comprising a digital signature. 16 . The non-transitory computer-readable medium method of claim 9 , wherein each transaction record in the block further comprises a hash value identifying a previous transaction record in the block. 17 . The non-transitory computer-readable medium method of claim 9 , wherein the symmetric key generated for the party is valid for the time period of the block of transaction records. 18 . A method for viewing private transactions, the method comprising: receiving a header and a block of transaction records comprising encrypted transaction records; retrieving a private key in a key pair previously assigned to a member of a block chain network; identifying the encrypted symmetric key digitally signed by a public key in the key pair; decrypting the header using the private key to obtain a symmetric key; and decrypting transaction records of the block of transaction records using the symmetric key to obtain transaction details involving a transfer of assets. 19 . The method of claim 18 , wherein decrypting transaction records of the block of transaction records comprises: identifying one or more encrypted transaction records signed by a digital key; and decrypting the identified one or more encrypted transaction records using the symmetric key. 20 . The method of claim 17 , wherein decrypting the header yields a plurality of symmetric keys, and wherein decrypting transaction records of the block of transaction records comprises decrypting a subset of the transaction records using each symmetric key of the plurality of symmetric keys, wherein each subset of transaction records decrypted by a symmetric key is different from another subset of transaction records decrypted by a different symmetric key.
Assignees
Inventors
Classifications
using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates · CPC title
involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD · CPC title
Business processing using cryptography · CPC title
involving key management · CPC title
Financial cryptography, e.g. electronic payment or e-cash · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2017366357A1 cover?
- A central service provider manages and writes transaction details to a private block chain network. Blocks of transaction records written onto the block chain by the central service provider are distributed to members of the block chain, thereby enabling data resiliency and self-verifiability. As the full block chain is available to members of the block chain network, the central service provid…
- Who is the assignee on this patent?
- Bank Of New York Mellon
- What technology area does this patent fall under?
- Primary CPC classification H04L9/3247. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Thu Dec 21 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).