RU2707700C1 - Method of remote verification of documents - Google Patents

Abstract

FIELD: data processing.

SUBSTANCE: invention relates to cloud services and can be used for remote verification of documents, documents of personalities, commodity documentation of goods and implementation of verified conferencing.

EFFECT: possibility of absolutely accurate remote verification of a document without the need for its constant verification for the purpose of making corrections to one of the parties and without the possibility of reading or editing the document by the cloud service or third parties without transmitting such possibility to the parties.

6 cl

Description

The invention relates to cloud services and can be used for remote verification of documents, identity documents, commodity documentation of goods and the implementation of verified conference calls.

There are known cloud resources for public storage and editing of documents, which are some kind of verifiers, for example, https://helpcenter.onlyoffice.com/ru/ (launched on the network 07.07.2009., Selected as a prototype).

This resource works as follows.

Whether you are writing a contract, writing an article, or translating a text, it may require interaction with other people, especially at the final stage, to clarify the details or check the document for errors. In this case, the sequence of actions is approximately the same: sending a document - waiting for a result - correcting and editing - sending a document - waiting for a result - correcting and editing, and so on, until the result suits both sides.

To avoid this lengthy procedure and get the best result, without wasting time sending and waiting, you can use the Collaborative editing feature available in the online document editor. All that is needed for this is to send a link to the document to the right person and start collaborative editing of the document, commenting and discussing it in real time, without installing any additional programs.

The technical problem of the prototype is that information is stored only on the cloud server, and when someone wants to add data to the cloud, he is forced to double-check the data added earlier.

In addition, the meaning of verifying edited documents is that the cloud service itself monitors the editing of documents, and other users trust it. But if desired, the administrators of the cloud service resource can intervene in the process of editing user documents and read their confidential information, make changes to it. Therefore, there is no guarantee that the document created by users will be verified by them absolutely accurately and only by them without the intervention of a third party represented by a cloud service.

The objective of the invention is to remedy these disadvantages.

The technical result of the invention is the ability to absolutely accurately remotely verify a document without the need for constant verification of any changes by one of the parties, and without the possibility of reading or editing the document by a cloud service or by third parties without transferring such an opportunity by the parties.

Also, the technical result is the possibility of remote notarized verification of documents, both with the presence of the parties at the notary public, and without this presence.

Also, the technical result is the ability to conduct remote conference calls in courts without the need of one of the parties to the trial to be present in the courtroom of their region.

Also, the technical result is the ability to conduct remote interrogation of a witness or suspect, including at the international level.

Also, the technical result is the ability to verify documents for goods, when the whole chain from the initial producer to the final point of sale of goods becomes publicly available, which makes the market for product sales transparent for consumer control and taxation.

These technical results are achieved due to the fact that the claimed method of remote verification of documents, characterized in that the counterparties create the document proposed for certification by the parties, the counterparties exchange with each other the same copy of the document in electronic form, electronically sign their copy of the document, place the signed copy in Cloud storage using an application through which counterparties can upload specified documents to the network, read documents, change access status documents, characterized in that each of the contractors and other users of the cloud network, using the cloud site interface and a special application working with it, create an account in the form of a unique identifier (ID), under which a private key is formed as a sequence of randomly selected characters way; The electronic signature of each counterparty is the public key, which is formed from the private key in such a way that if a message with a document from the counterparty is signed with the private key, then when the message is decoded, you can get the public key, and in addition to the keys in the cloud, they store information in the form of files documents where files have attributes prohibiting deletion and editing; each of the counterparties, having signed the document using the application, uploads a copy of the document through it to the cloud storage, where this copy of the document as a closed file is processed to create a hash, while the hash is generated randomly with the help of other network users - miners who also use the application , and which are not counterparties for this verification procedure, and each of the counterparties, miners and other users of the cloud network undergoes a verification procedure a torus before gaining access to network documents, and persons with a license to verify are appointed as verifiers; the first of the miners, the application of which generated a hash for the document being verified, puts it in the cloud storage, while other miners use their applications to verify the validity of the actions of the previous miner and, in the case of an error of one of the miners due to the presence of illiquid data, applications of other miners correct the error automatically; in the case when all counterparties performed the function of signing a document with the same document hash, the document is considered signed by all parties - verified, which is notified via the application to each of the parties, and the document hash is formed accessible for download through the site server for all contractors Anytime.

It is permissible that at least one of the verifiers is a notary, and in the process of notarizing documents, a notary is able to identify the status of other notaries or other verifiers in the cloud network, while counterparties receive the status of a verified document from a notary without viewing it as a fact that verified parties signed a certain document.

It is permissible that the counterparties additionally give access to a copy of the document to a notary or to several notaries, where each of the notaries checks the document for its compliance with the requirements of the law, and if the document complies with the law, the notary overrides the notary’s signature on the counterparties.

It is permissible that a notary public conducts a conference call of the court session, where at least one of the parties is present at the notary and the notary verifies the status of the party and confirms or denies the identity of the person as a representative of one of the parties to the given legal process.

It is acceptable that at least one of the verifiers is an investigating investigator or a police officer who remotely interrogates a witness or accused in the presence of another verifier.

It is permissible that, as the information on the document being verified, the product data is placed in the cloud storage and each subsequent point of sale or processing of this product is verified by the formation of an additional hash in relation to who the goods were transferred through the sales chain from the initial producer to the final point of sale of goods in retail.

The implementation of the invention

The claimed method is practically implemented as follows.

The cloud network forms a special application for all network users, each of which downloads this application to their mobile device or computer and installs there.

At the same time, a private key is formed - a sequence of characters, is randomly generated when creating a unique user account (ID).

Also, when uploading data to a cloud service, a public key is generated from the private key. The peculiarity of generating a private key is that if a message is signed by a private key from a unique user, then when this message is decoded, you can get a public key.

In addition to the keys, the information is stored in a cloud environment so that it cannot be deleted and edited, unlike well-known cloud resources, where it is stored on cloud servers and when someone wants to add data to the cloud, he is forced to double-check the data added earlier and at the same time forced to trust the cloud.

In the stated decision, the tracking of public editing is carried out with the help of miners, which carry out the functions of verification and notarization. Miners - random people - check the signature of the document, check the correspondence of the data being sent, pull out the message itself and the public keys and confirm that this message corresponds to this public key. Each subsequent random miner, who next gained access to the key, checks the record left by the previous miner.

Miner - any network member performing work on checking documents on the network, for which he receives a reward from the system for each valid confirmation of the data he verified.

If the network receives information that someone wants to send information to the cloud service, the application begins to be distributed among all miners randomly, where the system seeks to transfer the application to the largest number of currently available online miners.

Miners begin to select a hash and the first of them, for whom the system identifies the fact of hash selection, the hash function forms a unique sequence of characters with a unique signature.

Each subsequent miner checks the already generated hash of the previous one. The more miners trying to create a hash, the harder it is to pick a hash and longer in time. The fewer miners, the easier it is to create a hash.

Thus, the system optimizes the number of people who want to work as a miner for a certain amount of reward.

If there is an error, the validating miner sends the illiquid data to the basket one step lower, if the miner makes a mistake and sends the correct data one step lower, other miners will also see the error of this miner and return the data to the right place. In the cloud service, there is also a verifier-person who has a license and can verify miners and other network participants who want to verify their identity through the verifier.

All network participants and miners go through the verification procedure.

For notarization of documents, there are two or more parties that need to be certified by a notary public, send to the cloud, verify the hash, then they can send it to a notary public, which certifies the fact that the parties signed a certain document. If it is necessary to generate a document, in relation to which its compliance with the law has been verified, the notary is given access to the document on an equal basis with other parties, the notary reads it, and if the document complies with the legislation, the notary overrides the already signed signature with the notary.

To gather several people to make a remote transaction for the purpose of vising a document at a notary, each of the people comes to the verifier in his region, then each of the documents of each of the people involved in the transaction, each of the notaries puts his copy of the document into the cloud, a hash is generated for him , and even a notary public can certify the document, near which there is not one of the parties to the transaction.

The claimed method also allows you to conduct court hearings without the need of one of the parties to the trial to be present in the courtroom of your region.

If there is a conference call somewhere, a special operator is connected instead of another court to a notary public near whom the participant in the process sits, while the notary confirms the identity of the participant in the process. This is possible because the court can identify the identity of the notary verifier.

It is also possible to remotely interrogate a witness or suspect, including at the international level, which is realized by participation as verifiers of either a notary or police officers in the building of the police department with video recording. Then the identity of the suspect or witness is verified by a notary or police, and the investigator in another region interrogates, also in the presence of his verifier of the same status.

The claimed method also allows verification of goods. Let's say the goods are sent to the processing point, and before that they get a hash and the data about the product falls into the blockchain. Each subsequent point of sale or processing of this product is verified in the system and forms an additional hash in relation to who the goods are transferred to. This is how information is added and the whole chain is visible from the initial producer to the final point of sale, which makes the market for product sales transparent for consumer control and taxation.

Technically claimed method, as one of the possible options for implementation, can be implemented, for example, as follows.

A cloud service can be a software package built on the basis of the Ethereum Blockchain implementation in Go language with the classic Proof of Work (PoW) or Proof of Authority (PoA) approach, but supplemented with new functionality. Thus, the claimed cloud service will support Ethereum Blockchain smart contracts and ERC-20 standard tokens and will be backward compatible with Ethereum Blockchain (API elements and Ethereum Blockchain protocols will be available).

The main problems that the new functionality is designed to solve are: instant confirmation of transactions, guaranteeing transactions, verification of accounts and data in the cloud network, ratings of network participants.

The main software elements of such a cloud service can be:

1. Fgeth node - implementation of the Go blockchain itself, including, including mining software, a wallet for working through the command line.

2. An electronic wallet with a visual interface for working with a node and Guarantor providers on the network.

3. Software for the work of verifiers

4. Software for the Guarantors

5. Smart contract for working with cloud service storage

6. FoodScan web service, which will provide additional visual information on the functioning of the cloud service, as well as API methods for obtaining this information.

7. Smart contracts of a cloud service for working with tokens of real currencies.

Technologies and programming languages: Go, C / C ++, Java, PHP, JavaScript, HTML, CSS, Solidity.

The software developed for working with the cloud service will be open source.

Mandatory cloud members:

1) Miners - nodes in the network that conduct transactions, form and verify blocks in the cloud network chain based on the consensus of PoW (Proof of Work) or PoA (Proof of Authority).

2) Accounts (regular users) that interact with each other through software.

3) Verifiers - cloud service accounts entered into the registry by him, which can enter information into the cloud service, the reliability of which they are ready to guarantee legally.

Optional participants in the cloud network: Guarantors - nodes in the network that act as providers of user transactions and provide additional functionality for instantly guaranteeing the completion of a transaction. Guarantors are used only to verify financial transactions.

Messages in transactions.

Each account (user) has the ability to send structured messages in transactions to other accounts.

Standard examples of such structuring can be a text description or account numbers.

A mechanism can also be implemented for attaching private information to transactions, when the information itself is not stored in the cloud itself, but on some private resource, which can only be accessed by the sender and receiver in our wallet using the data in the transaction.

Storage in own cloud service.

A smart contract can be used to work with storage. The ability to work with this smart contract should be built into the cloud service application in such a way that for the user it will look like a simple work with the client API. The smart contract code will be available in the public domain.

The repository will store the following information: a list of Guarantors, a list of Verifiers, data about verified users, additional data about user accounts and the system.

Any user of the system can enter information about any other user of the system or about himself in the registry. To do this, an API can be embedded in the cloud service client.

The smart contract will be managed by a cloud service account that will be able to add smart contract administrators who will have additional features for managing smart contract data and will help manage the ecosystem: add verifiers, suspend verifiers licenses, block unscrupulous Guarantors, but if to change the entered data by any (verified, unverified, verifiers, Guarantors, etc.) users of the system no they can not.

Verifiers.

The verifier is an already verified account approved and entered into the warehouse registry, which can leave information in the FOODCOIN REGISTRY system in the warehouse registry, the reliability of which it is ready to guarantee legally. The list of verifiers is stored in the warehouse registry. Add a verifier to the registry or suspend its license can either the administrator of the contract, which was appointed by the administrator of the cloud service (as a legal entity). The verifier is legally responsible for the information left in the cloud service and must have a valid state license on the right to provide the KYC service, information about the time of operation, which is stored in the registry of the cloud service storage.

Work through the API with verifiers will be built into the client of the cloud service. For work, the Verifier can use the web service or install special software that can work with the independently installed cloud service node in the network, on the computer, or use the guarantor provider nodes on the Internet, and can also integrate this functionality into its system, using the node API. Also, the verifier can enter into the warehouse register any information the reliability of which it is ready to guarantee according to the license obtained under the laws of the jurisdiction in which it is located.

During the verification procedure by a smart contract, two new voting addresses are created in the vault: Positive - for positive voting and Negative - for negative voting. Information about these addresses is entered into the repository and is tied to the verified user. For voting in the cloud service API, appropriate methods can be added. These voting methods will be available only to verified users and require the transfer of certain amounts to the appropriate addresses. Access to financial resources at these addresses will not be. Nevertheless, the voter will have access to methods for revoking his votes, thereby reducing any fund that he has replenished.

Guarantors.

A guarantor is an account and a node of a cloud service that acts as a provider of user transactions sent from official wallets and can, including for a fee, act as a guarantor of the transaction and instantly guarantee that the transaction is successful. If problems arise during the transaction, the Guarantor conducts it independently at the expense of his fund.

The list of GUARANTEES is stored in the warehouse registry.

Any verified user can declare himself a guarantor or add another verified user as a guarantor to the registry through the cloud service API. At the same time, a wallet will be formed using the smart contract of the storage registry. The wallet can be replenished both by the user himself, who is a potential Guarantor, and other network users. A potential Guarantor becomes a full Guarantor, if and only if the wallet is fully filled for the minimum amount and a node is deployed on the network with a public ip-address. Until the wallet is full, the Guarantor node will act only as a transaction provider. The guarantor may have limitations, for example, guarantee transactions only for the amount of the wallet - 10%.

For large transactions, a virtual stable currency can be created, tied to the exchange rate of some actual world currency. This currency will be an ERC token in the cloud service network.

Description of an example of conducting instant transactions in a cloud service environment. The algorithm of conducting an instant transaction between two verified network users in a cloud service system is described.

Algorithm:

1. The sender using the electronic wallet software selects the service of sending a guaranteed transaction with instant confirmation.

2. The e-wallet software is connected to the node of the Guarantor provider that provides this service.

3. The electronic wallet software initializes the transaction and signs it with a private key.

4. The node of the Guarantor-provider checks the availability of the necessary amount for conducting the transaction and paying commissions to the miners and the Guarantor, and also checks for the presence of incomplete user transactions in the network and whether the user account has been verified. Based on the received data, the Guarantor-provider node makes a decision to conduct a guaranteed instant transaction.

5. If the decision is positive, the sender transaction is sent to the network, where it will be added by miners to the cloud service in the future. The deferred function of the smart contract to verify the addition of the transaction by the miners to the cloud service is performed.

6. Noda Garanta creates an informational message, generates and signs it with his electronic signature.

7. The information message is instantly delivered to the wallet software of the recipient of funds.

8. The software of the recipient’s wallet verifies the signature of the instant message by invoking the function of the smart contract of the storage through the public randomly selected node of the Guarantor-provider in the network. The function is called instantly, since this function is not processed by the miners. If all is well, then the recipient in his wallet sees information about the guaranteed receipt of funds.

9. Miners process the transaction sent to the network by the Guarantor provider. If the miners do not add the transaction to the blockchain, the smart contract will launch a new transaction, which will transfer funds to the recipient at the expense of the Guarantor fund and reduce the Guarantor fund, for example, by 25%.

An example of verification in a cloud service.

In situations where counterparties need to certify a document of intent, purchase or other signatures of all parties, they need a mechanism to ensure that it is this document that was certified by these people, as well as the opportunity at any time to obtain proof of this fact.

This problem is solved by a system built in the declared cloud service. The classic use of EDS and a crypto key is the creation of a unique signature for a specific unique document. A signature is a unique sequence of characters unique to each specific document and each specific owner of a private key. EDS is a technology for obtaining a unique signature.

Unlike the EDS and the crypto key, the system is built on the basis of the declared cloud service and the PoW / PoA consensus algorithm and governs the methods for verifying the owners of private keys and the methods for storing signature facts. In PoW / PoA, miners collectively confirm the validity of the entire cloud service, and transactions are not considered fully “confirmed” until several new blocks are added to them. If an attacker tries to modify the information in an illegal way, then his transactions will be ignored by the rest of the network. Thus, in addition to creating a signature, a registry is formed where the fact of the signature is just like the data indicating who the owner of the private key is simultaneously stored in many places, thereby reducing the chance of data loss or compromise. To solve the current problem, a smart contract can be created in the cloud service. Smart contract (eng. Smart contract - "smart contract") is a computer algorithm designed to conclude and maintain self-executing contracts executed in the cloud.

Such contracts are recorded in the form of code existing in a distributed registry of a cloud service that is supported, managed and executed by a network of computers.

The functions of the smart contract will be:

1) The function of signing a document, which receives the hash of an electronic document (archive of documents) and enters into the cloud service system a record that the account that called this function signs / disagrees with the information in the document (archive of documents), The date the entry was made is saved.

2) The function of receiving hashes-documents from the cloud service that the account has signed.

3) The function of obtaining information about accounts that have signed a submitted document hash.

4) The function of ordering remote notarization of a hash document, under which the parties to the cloud service have already signed.

Only verified cloud service accounts can use the functions of a smart contract.

Since the cloud service system is built on blockchain technology, it is impossible to delete or fake the changes made. Miners that contribute information to the blockchain are always randomly selected.

The guarantee that the accounts that signed the document are certain individuals or legal entities is confirmed by the information provided by the Verifier (has a valid state license on the right to provide KYC (Know Your Customer) service, information about the time it is stored in the warehouse registry) of the cloud service. For non-verified accounts, the electronic signature functionality is not available in the vault smart contract. The software has a built-in mechanism for obtaining the hash of an electronic document and any change in the document will lead to the fact that the received hash will be completely different.

Software for working with the verification system may have:

1. Fgeth node - implementation of the Go blockchain itself, including, including mining software, a wallet for working through the command line.

2. An electronic wallet with a visual interface for working with a node and providers on the network.

3. A smart contract for working with storage in a cloud service.

Verification of documents through the work of only a cloud service.

Document signing algorithm:

1. Contractors create a document (archive of documents) in any way possible (the document can be created electronically or simply scanned), which they are going to assure.

2. Counterparties exchange with each other the same copy of a document (archive) in electronic form in any way possible.

3. Counterparties, using the visual interface, download a copy of the document (archive) into a special application developed by the cloud service to obtain a hash document (archive).

4. Next, the counterparties, using the visual interface of the application, choose the creation of an electronic signature for this document in the cloud service system.

5. The application, having connected to the node, generates and sends a transaction to call the hash document signing function in the smart contract (described above) with the parameters I agree / disagree.

6. In order for the miners to enter information into the cloud service system obtained as a result of the function of signing a hash document, each of the parties must have enough funds to pay for this function or enough rights for such actions if the verification process is free.

7. Information about the signature of the document (archive) is successfully entered into the cloud service system and can be requested and received at any time and anywhere using the cloud service application.

A document is considered signed by all parties if and only if all counterparties have performed the function of signing a document with the same hash of the document. In this method, information on the content of the signed document is owned only by the contractors themselves.

An example of document verification through a cloud service and remote notarization.

The registry of the cloud service system includes Verifiers with a valid license for notarial activities within the framework of the legislation of the country where they received it. The registry of verifiers and their licenses are controlled by a cloud service system.

These Verifiers can act as a third party in the transaction and verify it remotely, as well as participate in future dispute resolution, if necessary. For their activities, they can charge a fee in the cloud service system.

The steps are added to the previous algorithm:

- One or each of the parties can, using the visual interface of the cloud service application, order a remote "notarization" by selecting the "notary verifier" from the list.

- The application, having connected to the node, generates and sends a transaction to call the smart contract function, which will register the application for remote certification in the cloud service system. A fee may be charged for this operation from the account that requested this service. Information about the cost of services will also be reflected in the visual interface of the application.

- The “notary verifier” in the visual interface of his application will receive a request with information about the hash of the document (archive) and the addresses of counterparty accounts. Having received information about the remote verification request, the Notary Verifier, similar to the previously described steps, verifies the hash of the document using the visual interface of its application.

- The smart contract can automatically check the fact of payment for the service and the presence of signatures in the cloud service system of other contractors for a given hash of the document and enter information into the cloud service system that the notary verifier confirms this fact.

In this scheme, another option is possible. Anyone can turn to a "notary", pointing to a smart contract and ask for paper assurance that specific individuals have put their signatures under the same document. “Notary” sees that all counterparties have signed the same document and agreed with it. Thus, the notary does not even need to send any hashes of documents, since he assures the events.

The notary can add information to the smart contract, which confirms the fact that a particular counterparty signed the smart contract (i.e. was not hacked and did it voluntarily).

In this method, the contents of the signed document can be owned only by the counterparties themselves, without disclosing the contents to the “notary verifier”.

Another example of document verification through the use of a cloud service and remote notarization may differ from the previous one in that the following points are added to the algorithm of the previous section:

1. Counterparties send an electronic copy of the document to a remote notary verifier.

2. The notary verifier, using the visual interface, downloads a copy of the document (archive) into the cloud service application to obtain a hash of the document (archive). Further, the “Notary Verifier”, similarly to paragraphs “5” - “7”, verifies the hash of the document using the visual interface of its application.

In this method, the content of the signed document is disclosed to the “notary verifier” and the notary can check the document for compliance with the requirements of the law.

An example of identity verification for video conferencing in courts or during interrogations through the use of a cloud service and remote notarization may differ from the previous one in that the following points are added to the algorithm of the previous section:

- The notary verifier, is present in the same place with the verified identity, and using the visual interface, uploads a copy of the verified identity document (archive) to the cloud service application to receive the hash of the document (archive). Further, the “Notary Verifier”, similarly to points 5-7 for verification, verifies the hash of the document using the visual interface of its application.

- The other side of video conferencing, having received a verified identity document (archive), also uploads it to the cloud service application to receive a hash of a document (archive) and then, similarly to points 5-7 on verification, verifies the hash of a document using the visual interface of its application.

Claims (6)

1. A method of remote verification of documents, characterized in that the counterparties create the document proposed for certification by the parties, the counterparties exchange with each other the same copy of the document in electronic form, electronically sign their copy of the document, put the signed copy in the cloud storage using the application, through which counterparties can upload these documents to the network, read documents, change the status of access to documents, characterized in that each of the counterparties and other benefits ovateley cloud network using the cloud interface site and application that runs with it, creating an account in the form of a unique identifier (ID), under which the private key is generated in the form of a sequence of characters, which are selected at random; The electronic signature of each counterparty is the public key, which is formed from the private key in such a way that if a message with a document from the counterparty is signed with the private key, then when the message is decoded, you can get the public key, and in addition to the keys in the cloud, they store information in the form of files documents where files have attributes prohibiting deletion and editing; each of the counterparties, having signed the document using the application, uploads a copy of the document through it to the cloud storage, where this copy of the document as a closed file is processed to create a hash, while the hash is generated randomly with the help of other network users - miners who also use the application , and which are not counterparties for this verification procedure, and each of the counterparties, miners and other users of the cloud network undergoes a verification procedure a torus before gaining access to network documents, and persons with a license to verify are appointed as verifiers; the first of the miners, the application of which generated a hash for the document being verified, puts it in the cloud storage, while other miners use their applications to verify the validity of the actions of the previous miner and, in the case of an error of one of the miners due to the presence of illiquid data, applications of other miners correct the error automatically; in the case when all counterparties performed the function of signing a document with the same document hash, the document is considered signed by all parties - verified, which is notified via the application to each of the parties, and the document hash is formed accessible for download through the site server for all contractors Anytime. 2. The method according to p. 1, characterized in that at least one of the verifiers is a notary, and during the notarial verification of documents the notary is able to identify the status of other notaries or other verifiers in the cloud network, while the counterparties receive the status of a verified document from the notary without viewing it as a fact that verified parties have signed a certain document. 3. The method according to p. 2, characterized in that the counterparties additionally give access to a copy of the document to a notary or to several notaries, where each of the notaries checks the document for its compliance with the requirements of the law and, if the document complies with the law, the notary overlayes its own signature of the counterparties signature of a notary. 4. The method according to p. 2, characterized in that by means of a notary, a conference call is conducted at the court session, where at least one of the parties is present at the notary and the notary verifies the status of the party and confirms or denies the identity of the person as a representative of one of the parties to this trial . 5. The method according to claim 2, characterized in that at least one of the verifiers is an investigating investigator or a police officer who remotely interrogates a witness or accused in the presence of another verifier. 6. The method according to p. 1, characterized in that as the information on the document being verified, the data on the product are placed in the cloud storage and each subsequent point of sale or processing of this product is verified by the formation of an additional hash in relation to whom the goods were transferred along the sales chain from the initial manufacturer to the final point of sale of goods at retail.