US20220337388A9 - Decentralized Methods and Systems for Storage, Access, Distribution and Exchange of Electronic Information and Documents over the Internet using Blockchain to protect against Cyber attacks and Theft - Google Patents

Decentralized Methods and Systems for Storage, Access, Distribution and Exchange of Electronic Information and Documents over the Internet using Blockchain to protect against Cyber attacks and Theft Download PDF

Info

Publication number
US20220337388A9
US20220337388A9 US16/834,585 US202016834585A US2022337388A9 US 20220337388 A9 US20220337388 A9 US 20220337388A9 US 202016834585 A US202016834585 A US 202016834585A US 2022337388 A9 US2022337388 A9 US 2022337388A9
Authority
US
United States
Prior art keywords
systems
electronic information
blockchain
decentralized
storage
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US16/834,585
Other versions
US11743027B2 (en
US20210306133A1 (en
Inventor
Johny Mathew
Nitin Duggal
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Haspit Inc
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to US16/834,585 priority Critical patent/US11743027B2/en
Publication of US20210306133A1 publication Critical patent/US20210306133A1/en
Publication of US20220337388A9 publication Critical patent/US20220337388A9/en
Application granted granted Critical
Publication of US11743027B2 publication Critical patent/US11743027B2/en
Assigned to HASPIT, INC. reassignment HASPIT, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: MATHEW, JOHNY, DUGGAL, NITIN
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/006Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols involving public key infrastructure [PKI] trust models
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/002Countermeasures against attacks on cryptographic mechanisms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0637Modes of operation, e.g. cipher block chaining [CBC], electronic codebook [ECB] or Galois/counter mode [GCM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
    • H04L2209/38
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Definitions

  • Blockchain technology (sometimes simply referred to as blockchain) is a decentralized system and methodology.
  • the blockchain is a data structure that stores a list of exchanges and can be viewed as a distributed electronic ledger that records information exchanges between source identifier(s) and destination identifier(s).
  • the information exchanges are bundled into blocks and every block (except for the first block) refers back to or is linked to a prior block in the chain.
  • Computer nodes maintain the blockchain and cryptographically validate each new block and thus the information exchanges contained in the corresponding block. This validation process includes solving a computationally difficult problem that is also easy to verify and is sometimes called a “proof-of-work.”
  • each block refers to or includes a cryptographic hash value of the prior block. Accordingly, once a block refers to a prior block, it becomes difficult to modify or tamper with the data (e.g., the information) contained therein. This is because even a small modification to the information will affect the hash value of the entire block.
  • Each additional block increases the difficulty of hacking, tampering and or stealing the contents of an earlier block. Thus, even though the contents of a blockchain may be available for all to see, they become practically immutable.
  • Embodiments of the present disclosure relate to storing, accessing, distributing, collaborating and or exchanging information securely and more particularly to system and methods that uses blockchain to protect the information and method for the users during transmission, storage and execution that automatically enforces legally binding and verification process.
  • This application allows users to not only store content, but also access, collaborate and distribute content.
  • this application is built around a decentralized system of user-operators who hold a portion of the overall data, creating an immutable and impenetrable security system of file storage, sharing, distribution and exchange where the security controls always reside with the authorized user(s).
  • This platform provides authorized users to automatically enter into a smart contract in the exchange of information including accessing, uploading, marking-up, editing, signing that is legally binding, where the information exchange is stored and tracked in the native blockchain using a public key & private key pair for cyber security against data theft, tampering and cyber attacks.
  • FIG. 1 show the overview of the architecture design of the native blockchain application;
  • first layer is the user interface which is accessed using a web browser client.
  • the second layer of the architecture is the web server, this is the layer where application is hosted, server can be Microsoft Azure, AWS, Apache web server etc.
  • the third layer is the server in which both the data and business logic is located.
  • Business logic is the portion of an application system which determines how data is transformed or calculated, and how it is routed to user or software (workflow).
  • the data access layer allows the client (or user) modules to be created with a higher level of abstraction.
  • the data access objects & business methods interact with the blockchain security layer in order to create blocks, fetch data from the database, execute methods and systems to mine the blocks etc. The creation of the block happens in this blockchain layer.
  • the blockchain layer has three components 1) Consensus Layer, a protocol that describes the format of rules and policies between users for smart contracting to automatically enforce legally binding and verification processes. The protocol must also allow new blocks to be added to the chain in the database. 2) Mining layer: Blocks are mined in order to validate the exchanges (proof of work) for security purposes. 3) Propagation layer: a protocol that determines how the blocks are transmitted between nodes in the network. The final layer is the database. All the transactions blocks including folders, subfolders, documents, text and other transactions are stored in MS SQL database.
  • FIG. 2 shows working of the PKI with blockchain in which the server uses public key infrastructure (PKI) for generation of the private and public keys for the authorized user during registration.
  • PKI public key infrastructure
  • CA certification authority
  • Public key and private key are issued by the CA to the user(s) and or business(es). Both public and private keys are stored in key vault and the vault reference is stored in the enterprise server database.
  • FIG. 3 diagram illustrates the process of creating and storing the document in native blockchain system.
  • the API blockchain layer
  • the metadata associated with the document i.e. user id, role id, account id, folder id, subfolder id
  • document details such as format of the file in this example it is a picture
  • format of the picture could be .PNG, JPEG etc.
  • picture size could be KB, MB etc., and all these corresponding details are collected in creating the block.
  • FIG. 4 shows the creation of the block, where the metadata is encrypted to create the object type block consisting of Index in order to identify the block, timestamp: time at which the block is created, previous hash: hash of the previous block, hash: hash of the current block & nonce (numbers of iteration required to create a hash) fields.
  • the first block will be a genesis block and it will not have previous block value or data.
  • the hash is generated with Index, Timestamp, Previous hash, Hash, Nonce using SHA-512.
  • a Genesis block is created to start the blockchain.
  • data will be empty and this can be kept empty or any data can be added.
  • Figure gives the hash value of the Genesis block which in this case is 0X6465462b3c3ec8841b54169588c97f7. This hash value will become the previous hash value in Block1.
  • Block1 the file uploaded by the user is encrypted (as shown in FIG. 4 ) HJTX3gAAAAMdib4lZvIi4I8jUnEWnkEwvGk0o using AES algorithm and this encrypted value is set as the value of the ‘data’ in block1.
  • Data will have block details like block id, here each file is considered as block.
  • User Details will have user's information's, user id, account id, user role.
  • Document Details will have file name, filetype, file size, modified time, file manifest, file path.
  • a hash value using Index, Timestamp, Previous hash, Hash, Nonce is generated using SHA-512 and set as the value of the “hash” in the block. And this process keeps on repeating on each upload or in case of any information exchange recorded in the system. This process prevents any cyberattack from stealing or tampering the electronic information exchanged and or stored.
  • FIG. 5 illustrates exchanging electronic information in blockchain network with other users automatically creates a smart contract between the users or nodes in the blockchain network.
  • a smart contract is a computer code running on top of a blockchain containing a set of rules under which the user(s) agree to interact with each other. If and when the pre-defined rules are met, the agreement is automatically enforced.
  • the smart contract code facilitates, verifies, and enforces the negotiation or performance of an agreement, transaction or exchange. It is the simplest form of decentralized automation.
  • the first condition to share files between users is that the users must have an account and have to be invited by the owner of the electronic information.
  • the sharing of the file or folder makes use of PKI
  • user A uses user B's public key to encrypt the document which is stored as a block
  • user B uses his own private key from the vault to decrypt the document from the sent block
  • this PKI infrastructure increases the security level of electronic information exchange during transmission, access and storage.
  • the enterprise sever maintains and protects the authorized users' private and public keys for all transactions including the creation, upload, markup, edit, comment and e-signature of the electronic information.
  • FIG. 6 illustrates document signing, it's one of the integral features of the smart contract which allows the users to sign a document electronically that is legally binding.
  • user A creates or uploads an electronic document which is represented as a block in the database.
  • User A shares the electronic document with user B by automatically entering into a smart contract for User B's electronic signature.
  • This allows user B to electronically sign the document, resulting in the automatic creation of a new version of the document that is stored as a new block in the database.
  • the signed document can be accessed by both users with their respective public and private keys. This provides the users with immutable and impenetrable security of the electronic file.
  • smart contracting features also allows users to edit, redline, comment, esign, markup documents using public and private key authentication where the credentials are shared using smart contracting, resulting in the creation of new versions of the document saved as immutable and impenetrable blocks added within the blockchain during each information exchange with an audit log.
  • FIG. 7 illustrates generation of a secure link using an email plugin extension that can be downloaded from the respective browser stores including Chrome, Firefox, Edge etc.
  • This email plugin extension will be added to the web mail applications for the specific browser once downloaded by the user.
  • This extension allows the web mail server to talk to the blockchain server. All the mail information is automatically transmitted to the blockchain server when the user clicks on the plugin, resulting in an encrypted link sent to the recipients of the email.
  • user A composes the mail and clicks on the blockchain extension button which redirects the page to the blockchain server, the user's login credentials are verified.
  • the mail attachment, message, to mail address, from mail address etc. is automatically imported into the blockchain server and added as a block in the native blockchain application.
  • the blockchain server in return generates a secure link.
  • This secure link is then exported to the user mail server and the previously composed mail is replaced with the secure link.
  • User A sends this mail with secure link to user B.
  • User B is able to view only the secure link in the email.
  • the user B must be a registered user on the blockchain application.
  • the user B will log in to the blockchain server to view the encrypted message stored in the block which is associated with the secure link.
  • a smart contract is automatically executed as shown in FIG. 8 , the block in the smart contract has details of the sender, receiver, number of block that has been shared (each block represents document), and transaction Id for each transaction. A separate transaction log is maintained to account for the number of transactions done by the users.
  • Smart contracts are automatically executed while sharing documents (i.e. through secure link sharing).
  • each transaction leads to the creation of the new block, and working is as similarly to the earlier process as explained above on the creation of document stored in the blockchain network.
  • the smart contract is stored in the database layer.
  • the smart contract and the block chain technology protects the user's data from being hacked, tampered and or stolen during transmission, sharing and storage over the Internet including on 3 rd party mail and web servers.
  • Mobile Application has been designed to provide users access to the blockchain file system on mobile devices including phone, tablets and or watches.
  • the users will be able to send text messages, upload electronic information including images, videos, files from their mobile phone and tablets on the blockchain server to protect against it from being stolen, tampered and or accessed by non-authorized users.
  • the request will be processed similar to the web application by making calls to a web API.
  • the request is forwarded to the blockchain layer for the creation of the block, else folder or subfolder is created.
  • the remaining block creation, storing, validation, proof of work process will be identical to the web application as described in the above document.

Abstract

Decentralized security methods and systems using a hybrid permission based blockchain with public key infrastructure (PKI) for storage, access, distribution, exchange and execution of electronic information including images, files, media between individuals and or nodes is more secure on connected devices and servers than traditional systems and software applications that are vulnerable to cyberattacks and theft. Email is a popular way of transferring documents and other forms of content. However, there does not exist a decentralized system to protect sensitive information against cyber attacks and theft such that the information can be shared, accessed, executed, and or distributed to other individual(s) and or systems—including save, upload, email, co-author, co-edit, redline, comment, markup, e-sign documents that automatically enforces legally binding and verification processes for and between individual(s) and or business(es). To store and distribute electronic information securely using a decentralized method and system, authorized individuals(s) are authenticated and automatically entered into a smart contract, using a private and public key authentication and verification process where the electronic information is stored as a block that is immutable and secure during both transmission and access by authorized user(s) only. The electronic information may be distributed using a webmail plugin extension and a decentralized storage vault using blockchain to enable secure transmission and storage, which may act in concert with software controlled by the registered owner of the electronic information. The electronic information is securely, transmitted to the registered members using a permission based blockchain on our servers. Decentralized systems and methods provide smart contracting when electronic information is exchanged between authorized and permitted user(s) where creating, uploading, accessing, viewing, editing, redlining, replying, printing, downloading, e-signing and or marking up are each stored as separate immutable blocks within the permission based blockchain allowing the system to securely track the version history and users activity to enforce legally binding and verification processes. Standard email, storage systems and web applications today lack the decentralized security systems and methods for authorized users) to access, control, share, add, modify and distribute the information exchange processes between connected devices and systems that protect against cyber attacks and data theft.

Description

    TECHNICAL FIELD
  • Blockchain technology (sometimes simply referred to as blockchain) is a decentralized system and methodology. The blockchain is a data structure that stores a list of exchanges and can be viewed as a distributed electronic ledger that records information exchanges between source identifier(s) and destination identifier(s). The information exchanges are bundled into blocks and every block (except for the first block) refers back to or is linked to a prior block in the chain. Computer nodes maintain the blockchain and cryptographically validate each new block and thus the information exchanges contained in the corresponding block. This validation process includes solving a computationally difficult problem that is also easy to verify and is sometimes called a “proof-of-work.”
  • The integrity (e.g., confidence that a previously recorded exchange has not been modified) of the entire blockchain is maintained because each block refers to or includes a cryptographic hash value of the prior block. Accordingly, once a block refers to a prior block, it becomes difficult to modify or tamper with the data (e.g., the information) contained therein. This is because even a small modification to the information will affect the hash value of the entire block. Each additional block increases the difficulty of hacking, tampering and or stealing the contents of an earlier block. Thus, even though the contents of a blockchain may be available for all to see, they become practically immutable.
    • BACKGROUND
  • Embodiments of the present disclosure relate to storing, accessing, distributing, collaborating and or exchanging information securely and more particularly to system and methods that uses blockchain to protect the information and method for the users during transmission, storage and execution that automatically enforces legally binding and verification process.
  • A network designed to create a content-addressable, peer-to-peer method of storing and sharing hypermedia in a distributed file system that is decentralized for more security compared to traditional systems to protect against data theft, cyber attacks and tampering. This application allows users to not only store content, but also access, collaborate and distribute content. As opposed to a centrally located server this application is built around a decentralized system of user-operators who hold a portion of the overall data, creating an immutable and impenetrable security system of file storage, sharing, distribution and exchange where the security controls always reside with the authorized user(s).
  • This platform provides authorized users to automatically enter into a smart contract in the exchange of information including accessing, uploading, marking-up, editing, signing that is legally binding, where the information exchange is stored and tracked in the native blockchain using a public key & private key pair for cyber security against data theft, tampering and cyber attacks.
    • BRIEF DESCRIPTION OF THE FIGURES & DETAILED DESCRIPTION
  • FIG. 1 show the overview of the architecture design of the native blockchain application; first layer is the user interface which is accessed using a web browser client. The second layer of the architecture is the web server, this is the layer where application is hosted, server can be Microsoft Azure, AWS, Apache web server etc. The third layer is the server in which both the data and business logic is located. Business logic is the portion of an application system which determines how data is transformed or calculated, and how it is routed to user or software (workflow). The data access layer allows the client (or user) modules to be created with a higher level of abstraction. The data access objects & business methods interact with the blockchain security layer in order to create blocks, fetch data from the database, execute methods and systems to mine the blocks etc. The creation of the block happens in this blockchain layer. The blockchain layer has three components 1) Consensus Layer, a protocol that describes the format of rules and policies between users for smart contracting to automatically enforce legally binding and verification processes. The protocol must also allow new blocks to be added to the chain in the database. 2) Mining layer: Blocks are mined in order to validate the exchanges (proof of work) for security purposes. 3) Propagation layer: a protocol that determines how the blocks are transmitted between nodes in the network. The final layer is the database. All the transactions blocks including folders, subfolders, documents, text and other transactions are stored in MS SQL database.
  • FIG. 2 shows working of the PKI with blockchain in which the server uses public key infrastructure (PKI) for generation of the private and public keys for the authorized user during registration. Here certification authority (CA) will be either owned by the business itself or by the certificate providers. Public key and private key are issued by the CA to the user(s) and or business(es). Both public and private keys are stored in key vault and the vault reference is stored in the enterprise server database.
  • FIG. 3 diagram illustrates the process of creating and storing the document in native blockchain system. For example, when user “A” uploads an image i.e. the file is received by the API (blockchain layer) in base64 format, the metadata associated with the document i.e. user id, role id, account id, folder id, subfolder id, document details such as format of the file in this example it is a picture, format of the picture could be .PNG, JPEG etc., picture size could be KB, MB etc., and all these corresponding details are collected in creating the block.
  • FIG. 4 shows the creation of the block, where the metadata is encrypted to create the object type block consisting of Index in order to identify the block, timestamp: time at which the block is created, previous hash: hash of the previous block, hash: hash of the current block & nonce (numbers of iteration required to create a hash) fields. The first block will be a genesis block and it will not have previous block value or data.
    •  GENERATION OF HASH
  • The hash is generated with Index, Timestamp, Previous hash, Hash, Nonce using SHA-512. At the beginning, a Genesis block is created to start the blockchain. In the Genesis block, data will be empty and this can be kept empty or any data can be added. Figure gives the hash value of the Genesis block which in this case is 0X6465462b3c3ec8841b54169588c97f7. This hash value will become the previous hash value in Block1.
  • The blocks original form will be OBJECT type. In Block1, the file uploaded by the user is encrypted (as shown in FIG. 4) HJTX3gAAAAMdib4lZvIi4I8jUnEWnkEwvGk0o using AES algorithm and this encrypted value is set as the value of the ‘data’ in block1.
  • Data will have block details like block id, here each file is considered as block. User Details will have user's information's, user id, account id, user role. Document Details will have file name, filetype, file size, modified time, file manifest, file path. As mentioned above a hash value using Index, Timestamp, Previous hash, Hash, Nonce is generated using SHA-512 and set as the value of the “hash” in the block. And this process keeps on repeating on each upload or in case of any information exchange recorded in the system. This process prevents any cyberattack from stealing or tampering the electronic information exchanged and or stored.
  • During the upload of the document private and public keys are used, authorized user's public key is used to encrypt the data for transmission to the server and is stored in the blockchain. While accessing the information the authorized user's private key is used to decrypt the electronic information. FIG. 5 illustrates exchanging electronic information in blockchain network with other users automatically creates a smart contract between the users or nodes in the blockchain network. A smart contract is a computer code running on top of a blockchain containing a set of rules under which the user(s) agree to interact with each other. If and when the pre-defined rules are met, the agreement is automatically enforced. The smart contract code facilitates, verifies, and enforces the negotiation or performance of an agreement, transaction or exchange. It is the simplest form of decentralized automation. In this case smart contract is only for sharing the file. The first condition to share files between users is that the users must have an account and have to be invited by the owner of the electronic information. The sharing of the file or folder makes use of PKI, user A uses user B's public key to encrypt the document which is stored as a block, user B uses his own private key from the vault to decrypt the document from the sent block, this PKI infrastructure increases the security level of electronic information exchange during transmission, access and storage. The enterprise sever maintains and protects the authorized users' private and public keys for all transactions including the creation, upload, markup, edit, comment and e-signature of the electronic information.
  • FIG. 6 illustrates document signing, it's one of the integral features of the smart contract which allows the users to sign a document electronically that is legally binding. For example, user A creates or uploads an electronic document which is represented as a block in the database. User A shares the electronic document with user B by automatically entering into a smart contract for User B's electronic signature. This allows user B to electronically sign the document, resulting in the automatic creation of a new version of the document that is stored as a new block in the database. The signed document can be accessed by both users with their respective public and private keys. This provides the users with immutable and impenetrable security of the electronic file. Similarly, smart contracting features also allows users to edit, redline, comment, esign, markup documents using public and private key authentication where the credentials are shared using smart contracting, resulting in the creation of new versions of the document saved as immutable and impenetrable blocks added within the blockchain during each information exchange with an audit log.
  • FIG. 7 illustrates generation of a secure link using an email plugin extension that can be downloaded from the respective browser stores including Chrome, Firefox, Edge etc. This email plugin extension will be added to the web mail applications for the specific browser once downloaded by the user. This extension allows the web mail server to talk to the blockchain server. All the mail information is automatically transmitted to the blockchain server when the user clicks on the plugin, resulting in an encrypted link sent to the recipients of the email. As shown in the figure user A composes the mail and clicks on the blockchain extension button which redirects the page to the blockchain server, the user's login credentials are verified. The mail attachment, message, to mail address, from mail address etc. is automatically imported into the blockchain server and added as a block in the native blockchain application. The blockchain server in return generates a secure link. This secure link is then exported to the user mail server and the previously composed mail is replaced with the secure link. User A sends this mail with secure link to user B. User B is able to view only the secure link in the email. To view the secure message, the user B must be a registered user on the blockchain application. The user B will log in to the blockchain server to view the encrypted message stored in the block which is associated with the secure link. When a document or secure email link is shared with another user in the blockchain network, a smart contract is automatically executed as shown in FIG. 8, the block in the smart contract has details of the sender, receiver, number of block that has been shared (each block represents document), and transaction Id for each transaction. A separate transaction log is maintained to account for the number of transactions done by the users. Smart contracts are automatically executed while sharing documents (i.e. through secure link sharing). Here each transaction leads to the creation of the new block, and working is as similarly to the earlier process as explained above on the creation of document stored in the blockchain network. The smart contract is stored in the database layer. The smart contract and the block chain technology protects the user's data from being hacked, tampered and or stolen during transmission, sharing and storage over the Internet including on 3rd party mail and web servers.
  • Mobile Application has been designed to provide users access to the blockchain file system on mobile devices including phone, tablets and or watches. In addition, the users will be able to send text messages, upload electronic information including images, videos, files from their mobile phone and tablets on the blockchain server to protect against it from being stolen, tampered and or accessed by non-authorized users. The request will be processed similar to the web application by making calls to a web API. The request is forwarded to the blockchain layer for the creation of the block, else folder or subfolder is created. The remaining block creation, storing, validation, proof of work process will be identical to the web application as described in the above document.

Claims (1)

1. DECENTRALIZED METHODS AND SYSTEMS FOR STORAGE, ACCESS, DISTRIBUTION AND EXCHANGE OF ELECTRONIC INFORMATION AND DOCUMENTS OVER THE INTERNET USING BLOCKCHAIN TO PROTECT AGAINST CYBER ATTACKS AND THEFT.
US16/834,585 2019-10-08 2020-03-30 Decentralized methods and systems for storage, access, distribution and exchange of electronic information and documents over the internet using blockchain to protect against cyber attacks and theft Active 2040-06-05 US11743027B2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US16/834,585 US11743027B2 (en) 2019-10-08 2020-03-30 Decentralized methods and systems for storage, access, distribution and exchange of electronic information and documents over the internet using blockchain to protect against cyber attacks and theft

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201962912313P 2019-10-08 2019-10-08
US16/834,585 US11743027B2 (en) 2019-10-08 2020-03-30 Decentralized methods and systems for storage, access, distribution and exchange of electronic information and documents over the internet using blockchain to protect against cyber attacks and theft

Publications (3)

Publication Number Publication Date
US20210306133A1 US20210306133A1 (en) 2021-09-30
US20220337388A9 true US20220337388A9 (en) 2022-10-20
US11743027B2 US11743027B2 (en) 2023-08-29

Family

ID=77856588

Family Applications (1)

Application Number Title Priority Date Filing Date
US16/834,585 Active 2040-06-05 US11743027B2 (en) 2019-10-08 2020-03-30 Decentralized methods and systems for storage, access, distribution and exchange of electronic information and documents over the internet using blockchain to protect against cyber attacks and theft

Country Status (1)

Country Link
US (1) US11743027B2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114172735B (en) * 2021-12-11 2023-07-14 中国人民解放军战略支援部队信息工程大学 Double-chain hybrid block chain data sharing method and system based on intelligent contracts
CN114266069B (en) * 2021-12-22 2023-05-02 重庆傲雄在线信息技术有限公司 House transaction electronic data sharing system and method based on blockchain technology
CN115022352B (en) * 2022-07-28 2024-03-08 江苏荣泽信息科技股份有限公司 End edge cloud fusion-based segmented side chain data acquisition and storage system
CN115081404B (en) * 2022-08-22 2022-11-15 佳瑛科技有限公司 Block chain-based shared document editing management method and device

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100100743A1 (en) * 2008-10-17 2010-04-22 Microsoft Corporation Natural Visualization And Routing Of Digital Signatures
US8713692B2 (en) * 2012-04-01 2014-04-29 Richard Lamb Crowd validated internet document witnessing system
US20190394242A1 (en) * 2012-09-28 2019-12-26 Rex Wig System and method of a requirement, active compliance and resource management for cyber security application
US20180351830A1 (en) * 2013-02-20 2018-12-06 The Marlin Company Storage of media content of an electronic media distribution system in a secure distributed database
US10032133B2 (en) * 2014-01-24 2018-07-24 Adobe Systems Incorporated Automatically identifying authorized signatories from an organization for executing an electronic document
US9992022B1 (en) * 2017-02-06 2018-06-05 Northern Trust Corporation Systems and methods for digital identity management and permission controls within distributed network nodes
US20180336202A1 (en) * 2017-05-18 2018-11-22 0934781 B.C. Ltd System and method to represent documents for search in a graph
US11062035B2 (en) * 2018-04-30 2021-07-13 Innoplexus Ag Secure document management using blockchain
US20190356481A1 (en) * 2018-05-18 2019-11-21 Qredo Ltd. System and method for securing digital assets
US20200134221A1 (en) * 2018-10-25 2020-04-30 Toshiba Tec Kabushiki Kaisha System and method for blockchain document access and distribution control
US10795945B2 (en) * 2018-12-04 2020-10-06 Sap Se Digital documents in a distributed storage environment
US11068915B2 (en) * 2019-05-31 2021-07-20 At&T Intellectual Property I, L.P. Flexible behavioral chain framework for permission-based enterprise-focused blockchain applications

Also Published As

Publication number Publication date
US11743027B2 (en) 2023-08-29
US20210306133A1 (en) 2021-09-30

Similar Documents

Publication Publication Date Title
US11025435B2 (en) System and method for blockchain-based cross-entity authentication
US10685099B2 (en) System and method for mapping decentralized identifiers to real-world entities
TWI725793B (en) System and method for mapping decentralized identifiers to real-world entities
US10756885B2 (en) System and method for blockchain-based cross entity authentication
EP3610606B1 (en) Managing sensitive data elements in a blockchain network
US11314695B2 (en) Method and system for real-time collaboration and annotation-based action creation and management
US9674156B2 (en) Event-triggered release through third party of pre-encrypted digital data from data owner to data assignee
US10275603B2 (en) Containerless data for trustworthy computing and data services
US20210306133A1 (en) Decentralized Methods and Systems for Storage, Access, Distribution and Exchange of Electronic Information and Documents over the Internet using Blockchain to protect against Cyber attacks and Theft
EP2513804B1 (en) Trustworthy extensible markup language for trustworthy computing and data services
CN111066020A (en) System and method for creating decentralized identity
CN111095327A (en) System and method for verifying verifiable claims
US9100171B1 (en) Computer-implemented forum for enabling secure exchange of information
JP2012518330A (en) Reliable cloud computing and cloud service framework
WO2021198750A1 (en) System and method to manage information and documents on a native blockchain network system including permissioned blockchain, storage, sharing, organisation, porting and various applications
Basu et al. A framework for blockchain-based verification of integrity and authenticity
Alniamy et al. Blockchain-based secure collaboration platform for sharing and accessing scientific research data
CN115665145A (en) Sensitive data management system and method based on block chain
CN117675383A (en) Data transmission architecture and data transmission method for networked collaborative design
CN116055105A (en) Cloud storage data processing method, device and server

Legal Events

Date Code Title Description
FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: MICROENTITY

FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO MICRO (ORIGINAL EVENT CODE: MICR); ENTITY STATUS OF PATENT OWNER: MICROENTITY

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

FEPP Fee payment procedure

Free format text: PETITION RELATED TO MAINTENANCE FEES GRANTED (ORIGINAL EVENT CODE: PTGR); ENTITY STATUS OF PATENT OWNER: MICROENTITY

STPP Information on status: patent application and granting procedure in general

Free format text: FINAL REJECTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT RECEIVED

STCF Information on status: patent grant

Free format text: PATENTED CASE

AS Assignment

Owner name: HASPIT, INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:DUGGAL, NITIN;MATHEW, JOHNY;SIGNING DATES FROM 20230911 TO 20230913;REEL/FRAME:065187/0560