HomeTECHNOLOGYBLOCKCHAINBlockchain, Security, And Privacy: Let's Be Clear

Blockchain, Security, And Privacy: Let’s Be Clear

The technology of the moment called Blockchain is the set of a series of consolidated solutions, assembled in an architecture “philosophically” born from a democratic vision – we could define it anarchic – of exchange of money without intermediaries.

The Origins

In 2009, a paper entitled A Peer-to-Peer Electronic Cash System appeared on a cryptographic mailing list. The document describes “a peer-to-peer version of electronic money [which] would allow online payments to be sent directly from one entity to another without going through a financial institution.” This electronic money is Bitcoin. Although the concept of “technological anarchism” is rooted in the IT underground, the great revolution of Bitcoin was, in the paper that decreed its birth, the detailed description of an infrastructure built on the distributed trust which, in the following years, would have attracted the attention of all economic sectors.

In The Beginning, It Was The Coin

The idea behind Bitcoin is the possibility of exchanging cryptocurrency within a network based on the trust distributed among all participating nodes, without the need for intermediaries. The intuition of the concept of distributed trust, guaranteed and strengthened by a series of technical solutions, which we will describe later, has introduced a new infrastructural paradigm that we will call, for simplicity, Blockchain.

Then Came The Asset And The Transaction 

Let’s imagine extending the concept of cryptocurrency exchange with a more generic concept of asset exchange or, even better, transaction. The flow of this transaction within the Blockchain can be summarized as follows: A transaction between two actors is recorded and digitally signed. 

It is written inside a block, which, once approved by the rest of the network, is “chained” to the previous one through appropriate cryptographic algorithms. The resulting “chain” is inserted inside a distributed ledger, of which each participating node receives a copy. The introduction of an infrastructural scheme such as the one described allows us to highlight some characteristics that make this technology of great interest for present and future business applications.

Characteristics Of The Blockchain

The Blockchain is:

Decentralized

Each participant in the network receives a copy of the entire transaction log (Distributed Ledger). The decentralization of data and resources allows the entire infrastructure to guarantee the integrity of the data managed, the availability of resources (distributed equally on all nodes), and resilience in the event of the unavailability of one or more nodes.

Immutable

The data contained in the distributed ledger cannot be modified. The immutability feature of the Blockchain content guarantees the integrity of the information and the “non-repudiation” of the transactions saved within it.

Safe

The data is encrypted, the transactions are digitally signed and time-stamped, and each block is linked with the previous and the next. To obtain a high level of trust, Blockchain adopts various technological solutions to guarantee the identity of the actors (digital signature), the security of the information saved (public key encryption), and the consistency of the data concerning changes (one-way encryption, hash) and the timestamp of the data.

Transparent

Each participant can access the transaction history. Distributing a copy of the Blockchain to all participating nodes allows everyone to have access to the transaction details.

Blockchain And Personal Data

Can we consider Blockchain technology compatible with the GDPR? The answer is yes. Contrary to what we have read or heard in some contexts unbalanced towards a hyper-conservative and inelastic approach, we can re-read some characteristics of the Blockchain as enabling full compliance with the GDPR, particularly with the principle of the right to be forgotten. The most common observations are the following: The identity of the actor of a blockchain transaction is associated with the public key. Can the public key be considered personal data? No, there is no direct association between a natural person and a public key. 

In the case of essential private transfer, the public key would be associated with another identity, another person. How can including personal data in a transaction guarantee the right to be forgotten? The transaction can be encrypted with public key cryptography. Eliminating the public / private key pair makes it impossible to trace the plaintext. Evidently, in this context, the correct design of a Blockchain and its adaptation in obtaining full regulatory compliance are delegated to those who decide to implement a solution of this type. The tools are there. They must be used correctly.

Trust And Smart Contract

The technological and philosophical evolution of the Blockchain leads to the introduction of the concept of a Smart Contract. Based on the distributed trust paradigm, a Smart Contract can be considered an actual contract guaranteed, validated, and stored within each network node. The Smart Contract is code executed within the nodes participating in the Blockchain. The advantages deriving from the provision of consumable services in a safe, distributed, and guaranteed manner across the entire network are evident. The concept of a Smart Contract allows us to introduce some practical applications of the Blockchain.

Practical Applications

Once the features underlying blockchain technology have been introduced, the questions are:

  1. What are the practical applications?
  2. How to build a business case starting from a use case?
  3. Is the technology ripe for use in enterprise environments?

The answer to these three questions is: yes. Some sectors have already understood the opportunity of the improvements introduced by using the Blockchain.

Automotive

  1. Verification and certification of the «previous life» of the vehicle
  2. Traceability of spare parts throughout the supply chain
  3. Vehicle identity certification in “connected car” applications

Fintech

  1. Simplification of payment system infrastructures
  2. Sharing of historical bank transaction data
  3. Reduction of the complexity of the audits on the payment history (saved on the distributed ledger)

Charities And Charitable Giving

  1. Traceability of donations
  2. Saving the allocation history, usage analysis
  3. Reduction of the complexity of donation systems

Trucking

  1. Certified traceability of trips and stops
  2. Integration with the IoT world for the management of an immutable ledger for the collection of position data and monitoring of the vehicle fleet
  3. Integration with artificial intelligence for predictive maintenance

School And University

  1. Digitization and verification of school/university credits
  2. Distributed and shared database of academic information

Energy Sector

  1. Secure communication between a network and intelligent devices
  2. Secure log management of distributed networks
  3. Management of P2P energy exchange in contexts of microgrids and remuneration in cryptocurrency for re-injection into the network

Firearms Safety

  1. Traceability of gun owners
  2. Traceability of weapons
  3. Immediate identification of the requirements (and “judicial” history) of the buyers

IOT

  1. Decentralization of IoT device management
  2. Secure device authentication
  3. Implementation of IoT log collection systems for Operation and Security Monitoring

Copyright

  1. Registration of intellectual property
  2. Use of smart contracts to calculate authors’ fees
  3. Optimization of the payment process for royalties

Healthcare

  1. Management of supply and use of materials, Supply chain of medical equipment
  2. Interoperability of patient data and transparency in medical record management
  3. Immutability of medical records, integrity, and audit of collected data
  4. Management of data collected from medical trials of new medicines/tools

Agrifood

  1. Traceability of the origin of raw materials
  2. Management of the supply chain up to the final consumer
  3. Continuous batch monitoring
  4. Integration with IoT (Smart Agrifood) and AI systems to develop optimization strategies for production and management processes.

Also Read: Augmented Reality And New E-Shopping Services

RELATED ARTICLES

RECENT ARTICLES