• 专利附录
  • 专利说明
  • 权利要求
  • 类似技术
  • 同族专利
  • 引用文献
  • 法律状态
  • 优先权
    • 专利摘要:
    The invention relates to a system for traceability of a chain of processes carried out by several actors (201, 202, 203), comprising a database (100) for storing the information generated for each processing of said chain, and in which each actor can, after obtaining a right of access to said database, add a first piece of information (101, 103) signed by means of a certificate obtained from a secure hardware device (301, 302, 303) associated with said actor; and a second piece of information (102, 104) signed by a temporary certificate provided by a security server (400), said first and second items being associated with a timestamp within said database.
    公开号:FR3060788A1
    申请号:FR1662590
    申请日:2016-12-16
    公开日:2018-06-22
    发明作者:Charles PIRON;Thomas DOMINGOS;Steve PEGUET
    申请人:Bull SA;
    IPC主号:
    专利说明:

    ® FRENCH REPUBLIC
    NATIONAL INSTITUTE OF INDUSTRIAL PROPERTY © Publication number: 3,060,788 (to be used only for reproduction orders)
    ©) National registration number: 16 62590
    COURBEVOIE © Int Cl 8 : G 06 F12 / 02 (2017.01), G 06 F 12/14, H 04 L 9/14
    A1 PATENT APPLICATION
    ©) Date of filing: 16.12.16. ©) Applicant (s): BULL SAS Société par actions simpli- ©) Priority: trusted - FR. @ Inventor (s): PIRON CHARLES, DOMINGOS THO- MAS and PEGUET STEVE. (43) Date of public availability of the request: 22.06.18 Bulletin 18/25. ©) List of documents cited in the report preliminary research: Refer to end of present booklet (© References to other national documents ©) Holder (s): BULL SAS Simplified joint-stock company. related: ©) Extension request (s): ® Agent (s): NOVAGRAAF TECHNOLOGIES.
    TRACEABILITY OF A MULTI-ACTOR PROCESSING CHAIN BY BLOCK CHAIN, ALLOWING AT LEAST TWO LEVELS OF CONFIDENCE IN THE INFORMATION STORED.
    FR 3 060 788 - A1 (3 /) The invention relates to a system for the traceability of a chain of processing carried out by several actors (201, 202, 203), comprising a database (100) for storing the information generated for each processing of said chain, and in which each actor can, after obtaining a right of access to said database, add a first piece of information (101, 103) signed by means of a certificate obtained from '' a secure hardware device (301, 302, 303) associated with said actor; and a second piece of information (102,104) signed by a temporary certificate provided by a security server (400), said first and second pieces being associated with a time stamp within said database.

    i
    TRACEABILITY OF A MULTI-ACTOR PROCESSING CHAIN BY BLOCK CHAIN, ALLOWING AT LEAST
    TWO LEVELS OF INFORMATION CONFIDENCE
    STORED
    FIELD OF THE INVENTION
    The invention relates to the traceability of a processing chain involving several actors, with certification phases. It can in particular apply to product management (manufactured chain, food chain ... in logistics (internal or external logistics chain), but also to the management of legal acts (notarial acts, insurance, etc.) ), deeds of sale or rental, curriculum vitae..in short, to any treatment chain involving several actors to ensure the traceability of the treatment.
    BACKGROUND OF THE INVENTION
    There are IT solutions allowing the traceability of a processing chain.
    In general, these solutions come from private or public consortia based on a single, centralized management platform. Confidence in information linked to the chain of custody is ensured by this centralized platform.
    However, in certain situations, it is not possible or desirable to have a centralized platform. In the case of a multi-stakeholder process, i.e. involving separate legal entities (several companies, etc.), it is not always easy, legally or commercially, to decide on an actor who will play the central role of hosting the platform.
    It can be envisaged to distribute the platform on several sites, each associated with an actor for example, but the solutions proposed by means of a distributed database such as the NoSQL databases, for example Cassandra, remain based on a single reference base, called "Master", which is replicated and therefore shared on each of the sites.
    When the number of players is large, such a mechanism based on replication becomes too complex to implement and sees its performance greatly reduced.
    In addition, the governance of this type of architecture is unique: an actor remaining master and the other slaves. As a result, the main actor has a different role from that of other actors.
    It turns out that there are no satisfactory solutions to ensure the traceability of a processing chain involving several players and certification phases.
    SUMMARY OF THE INVENTION
    The object of the present invention is to provide a solution which at least partially overcomes the aforementioned drawbacks.
    More particularly, the invention aims to provide a process, as well as an associated platform, making it possible to establish, in a distributed and shared repository, trust between several actors, who may have their own interests and governance. It also aims to manage certification phases and at least two levels of information: certified information and non-certified information, these two levels of information can be produced by the same actor.
    To this end, the present invention proposes a method of traceability of a chain of processing carried out by several actors, in which the information generated for each processing of said chain is stored in a database, and in which each actor may, after obtaining a right of access to said database, add a first piece of information signed by means of a certificate obtained from a secure hardware device associated with said actor; and a second piece of information signed by a temporary certificate provided by a security server, said first and second pieces being associated with a time stamp within said database.
    According to preferred embodiments, the invention comprises one or more of the following characteristics which can be used separately or in partial combination with one another or in total combination with one another:
    - said secure hardware device belongs to a list comprising a smart card, a USB key, a dual key, a smart card, a microcontroller for connected object, etc.
    - said database is a block chain;
    - said actors can access the information stored in said database by a man-machine interface.
    Another object of the invention relates to a use of the method described above for the traceability of a product within a supply chain, each step of said supply chain corresponding to a processing of said processing chain.
    Another object of the invention relates to a use of the method described above for the traceability of a legal act, in which each step of the realization of said act corresponds to a processing of said processing chain.
    Another object of the invention relates to a computer program comprising code executable by digital equipment for implementing the method described above.
    Another object of the invention relates to a system for the traceability of a chain of processing carried out by several actors, comprising a database for storing the information generated for each processing of said chain, and in which each actor can, after obtaining a right of access to said database, adding a first piece of information signed by means of a certificate obtained from a secure hardware device associated with said actor; and a second piece of information signed by a temporary certificate provided by a security server, said first and second pieces being associated with a time stamp within said database.
    According to preferred embodiments, the system according to the invention comprises one or more of the following characteristics which can be used separately or in partial combination with one another or in total combination with one another:
    - said database is a block chain;
    - the system also includes a man-machine interface allowing access to the information stored in said database, to said actors.
    Other characteristics and advantages of the invention will appear on reading the following description of a preferred embodiment of the invention, given by way of example and with reference to the accompanying drawings.
    BRIEF DESCRIPTION OF THE DRAWINGS
    FIG. 1 schematically represents an example of implementation of the invention.
    DETAILED DESCRIPTION OF THE INVENTION
    The invention can be implemented using blockchain technology, since this natively makes it possible to respond to the technical characteristics of the invention, in particular in terms of distribution of information and confidence in this information in the framework of a multi-actor context. Other implementations are possible and the invention should not be understood as being limited to this technology.
    A blockchain is a technology for storing and transmitting information, which can operate without a central control unit. It therefore makes it possible to produce a database in which the data is distributed among the actors acting on this basis. However, it has management mechanisms which allow it to be assured at all times of a sufficient level of confidence in the non-falsification of data.
    Blockchain technology is well known in the state of the art, in particular as the underlying technology of “bitcoin” digital currency. We can refer to the literature available on the internet, or, for example to patent applications US2016 / 0028552, US2016 / 0275461 ... which propose extensions of this technology.
    A block chain is based on the constitution of transaction blocks, each block being able to be linked to the previous one by a hash key. Creating or modifying a transaction within a block or an entire block therefore involves a cost, that of calculating the key. But falsifying a block requires falsifying the whole chain, so that the total cost becomes prohibitive and guarantees a level of confidence in the non-falsification of the whole of a block chain.
    Figure 1 shows schematically an implementation of the invention. Element 100 represents the database which can be implemented by a blockchain.
    This database is accessible by the various actors 201, 202, 203 and a chain of treatments 200. These treatments may relate to the traceability of a product, a legal act or any other concrete or abstract object. .
    We will see later the example of the tracing of a baggage, the tracing of a notarial act, but other examples of applications are possible, for which several actors must intervene during a process concerning this object and for which we want to keep a record of the treatments he undergoes. For example, it can be tracing the different locations of a piece of luggage (departure from the traveller's home, check-in at the airport, disembarking from the plane, etc.), the different stages of a notarial act (offer of purchase of real estate, certificate drawn up by a technical service provider, signature of the deed of sale, etc.)
    Actors 201, 202, 203 represent legally responsible entities. These can empower entities, or "certifiers", to sign and write items in the blockchain on their behalf. These “certifiers” can be:
    - Authorized persons;
    - Enabled connected objects.
    In the following, reference will often be made to the term "actor" to refer to the entity acting on their behalf.
    These authorizations are temporary and of different confidence levels, that is to say, as will be seen below, corresponding to a first type or to a second type of information element, depending on its position in the processing chain.
    Blockchain 100 can be implemented in different ways. It allows the different actors to have access to the repository that it contains, that is to say the state at a given time, of information relating to the processing chain. It can be distributed to different players, in particular via a peer-to-peer mechanism (or "peer to peer" in English).
    According to the invention, the actors must obtain an access right before being able to access the block chain 100. To do this, they can obtain a temporary certificate from a security server 400.
    The exchange between the actors 201, 202, 203 and the security server 400 can function as a public key infrastructure, ICP, or "Public Key Infrastructure", PKI, in English. Such an infrastructure makes it possible to manage the life cycle of digital certificates, or electronic certificates, which have a temporary life in the context of the invention.
    Once obtained a certificate giving him access to the blockchain
    100, actors 201, 202, 203 can add information elements to it
    101, 102, 103, 104, typically through a certifier acting on their behalf, respectively.
    We can distinguish at least two types of information elements, each implementing a different level of necessary confidence.
    A first type of information element corresponds to a high level of desired confidence. In order to guarantee this level of confidence, this first type of information element is signed by means of a certificate obtained from a secure hardware device 301, 302, 303, associated with the actor, respectively 201, 202, 203 .
    For example, this secure hardware device, or security element, may be a smart card which has been previously supplied to the actor and containing such a certificate. It allows him to guarantee that he is the author of the information added by the actor. It can also be a USB key, a dual key, a microcontroller for a connected object, etc.
    Confidence in the piece of information is then ensured by the trust that the other actors in the processing chain have in this actor, and by this guarantee that he is indeed the author.
    Typically, this piece of information can meet a legal requirement: for example, it is a certification established by a specialized service provider, meeting standardization and / or legal requirements.
    In addition, actors can add pieces of information of a second type, corresponding to a lower level of confidence than the first type. These actors can be known and certified, that is to say having certificates and security means to register elements of the first type or else be unknown, that is to say, only authorized to register elements of the second type. These pieces of information can correspond to additional information, which can for example convey informative content of interest to the various actors, but without any normative or legal requirement.
    To do this, these pieces of information can be signed by a temporary certificate provided by the security server 400
    The same actor can add both an information element of the first type and an information element of the second type. It can also add several elements of the same type.
    In the example of FIG. 1, the actor 201 adds an information element 101 of a first type, and an information element 102 of a second type. Actor 202 adds information element 103 of a first type. Actor 203 adds a second type of information 104.
    Each addition of an item of information by an actor in the chain gives rise to a time stamp by a certified or trusted system or application, of the addition which is stored in the database 100 in association with said items of information.
    This confidence timestamp notably makes it possible to order the items of information between them, according to the events which caused their addition to the database. This allows for example to create or control semantic links between the elements, typically if an element must be added mandatory before another.
    According to one embodiment of the invention, a portal is provided, in the form of a man-machine interface, in order to allow access to the information elements 101, 102, 103, 104 stored in the database 100.
    In order to make the invention clearer, it is possible to describe some concrete use cases.
    One can cite in particular the case of a use of the invention for the traceability of a chain linked to a real estate transaction. Such a transaction involves several actors including, typically, a seller, a buyer, a notary and one or more specialized service providers.
    These specialized providers may be in charge of establishing diagnoses, as in particular those imposed by national laws, or for commercial purposes. It can be diagnostics ensuring the real surface of the property, its compliance with health standards (absence of lead, asbestos, etc.), its thermal insulation, etc.
    Once their diagnostic work has been carried out, specialized providers can add their diagnostic (or certification) report, in the form of a first type of information, i.e. signed by a smart card. or any other material security device that has been made available to them.
    ίο
    In this way, each other actor in the chain (buyer, notary, etc.) of the real estate transaction can be aware of the diagnostic report and can have a high level of confidence in it, since there is assurance that he has has been added by an authorized service provider.
    This same service provider can also add additional information, which can take the form of a piece of information of the second type, that is to say simply signed by a temporary certificate provided by the security server 400. This additional information may not be necessary for the real estate transaction, and in particular not useful to the notary for example, but may be advice to improve the real estate, a commercial offer in this sense, etc., such as for example the exposure of the property, improvements to be made to the insulation or the average noise level observed during the diagnosis.
    We understand that in such a context of real estate transaction, two levels of trust are interesting in order to take into account the certifying and / or legal elements, and the informative or commercial elements, insofar as the falsification has distinct consequences on the plans commercial and legal.
    The timestamp of each addition of information element makes it possible to manage the sequences between the associated events: thus the diagnoses must necessarily be dated before the signing of the purchase-sale contract of the property. The signing of the contract may also give rise to the addition of an element of information containing all or part of the contract, by the notary.
    Another use of the invention may relate to the traceability of a product within a supply chain. Different products may have to follow a cycle, for which each stage can give rise to a marking in order to trace the course in this cycle.
    A first example may be to follow an agrifood product and thus be able to manage, in a decentralized manner, the different stages of certification.
    Another example may be tracking baggage when traveling by plane. For example, the declaration of baggage, during the purchase of the ticket by the traveler, or prior to his journey, gives rise to the addition of a first item of information in the database 100. This addition can be carried out from equipment located at the traveler or a travel organizer, or a travel organization system.
    Check-in at the departure airport may result in the addition of a second piece of information to the database. At the arrival airport, the unloading of baggage may give rise to the addition of a third element of information, and its reception by the traveler may give rise to the addition of a fourth element of information in the database, like the arrival of luggage and the traveler at the destination hotel, will ensure the tour operator the traceability of the arrival of the traveler and his property.
    As seen previously, this database 100 can be implemented by a block chain.
    The granularity of the blocks may depend on the field of application of the invention, and on operational choices. For example, each actor can add a block to the chain, and add information elements, first and / or second types. Also, it is possible to define daily blocks, within which the various actors can come to add the elements of information (first and / or second types), like as many transactions.
    Of course, the present invention is not limited to the examples and to the embodiments described and shown, but it is susceptible of numerous variants accessible to those skilled in the art.
    权利要求:
    Claims (10)
    [1" id="c-fr-0001]
    1. Method of traceability of a chain of processing carried out by several actors (201, 202, 203), in which the information generated for each processing of said chain is stored in a database (100), and in which each actor can, after obtaining a right of access to said database, add a first piece of information (101, 103) signed by means of a certificate obtained from a secure hardware device (301, 302 , 303) associated with said actor; and a second piece of information (102, 104) signed by a temporary certificate provided by a security server (400), said first and second items being associated with a time stamp within said database.
    [2" id="c-fr-0002]
    2. Method according to the preceding claim, wherein said secure hardware device belongs to a list comprising a smart card, a USB key, a dual key, a smart card, a microcontroller for connected object.
    [3" id="c-fr-0003]
    3. Method according to one of the preceding claims wherein said database is a block chain.
    [4" id="c-fr-0004]
    4. Method according to one of the preceding claims, wherein said actors can access the information stored in said database by a man-machine interface.
    [5" id="c-fr-0005]
    5. Use of the method according to one of the preceding claims for the traceability of a product within a supply chain, each step of said supply chain corresponding to a processing of said processing chain.
    [6" id="c-fr-0006]
    6. Use of the method according to one of claims 1 to 3, for the traceability of a legal act, in which each step of the realization of said act corresponds to a processing of said processing chain.
    [7" id="c-fr-0007]
    7. Computer program comprising code executable by digital equipment for implementing the method according to one of the preceding claims.
    [8" id="c-fr-0008]
    8. System for the traceability of a chain of processing carried out by several actors (201, 202, 203), comprising a database (100) for storing the information generated for each processing of said chain, and in which each actor can , after obtaining a right of access to said database, add a first piece of information (101, 103) signed by means of a certificate obtained from a secure hardware device (301, 302, 303) associated said actor; and a second piece of information (102, 104) signed by a temporary certificate provided by a security server (400), said first and second items being associated with a time stamp within said database.
    [9" id="c-fr-0009]
    9. System according to the preceding claim wherein said database is a block chain.
    [10" id="c-fr-0010]
    10. System according to one of claims 8 or 9 further comprising a man-machine interface allowing access to the information stored in said database, to said actors.
    1/1
    类似技术:
    公开号 | 公开日 | 专利标题
    FR3060788B1|2019-07-05|TRACEABILITY OF A CHAIN OF BLOCKS OF MULTI-ACTORS PROCESSES, ALLOWING AT LEAST TWO LEVELS OF CONFIDENCE TO STOCKEY INFORMATION
    Hughes et al.2019|Beyond Bitcoin: What blockchain and distributed ledger technologies mean for firms
    EP3251046B1|2021-03-24|Systems and methods for managing networked commitments of secure entities
    Raval2016|Decentralized applications: harnessing Bitcoin's blockchain technology
    EP3343425B1|2019-03-06|System and method for the creation and management of decentralized authorizations for connected objects
    WO2019010064A1|2019-01-10|Blockchain object deployment and synchronization across blockchains
    EP3635597B1|2021-12-01|Systems and methods of content transaction consensus
    US20200059364A1|2020-02-20|Methods and systems for implementing zero-knowledge proofs in transferring partitioned tokens on distributed ledger-based networks
    CN110400221B|2021-09-10|Data processing method, system, storage medium and computer equipment
    Vos2016|Blockchain-based land registry: Panacea, illusion or something in between
    Evans2019|Cryptokitties, cryptography, and copyright
    Jin et al.2019|Application of a blockchain platform to manage and secure personal genomic data: a case study of LifeCODE. ai in China
    US20200236168A1|2020-07-23|Decentralized data flow valuation and deployment
    FR3021789A1|2015-12-04|
    Gatteschi et al.2020|Blockchain technology use cases
    Wibowo et al.2019|Improving data security, interoperability, and veracity using blockchain for one data governance, case study of local tax big data
    Domingue et al.2019|The FAIR TRADE framework for assessing decentralised data solutions
    Khudnev2017|Blockchain: foundational technology to change the world
    FR3062499A1|2018-08-03|METHOD FOR REDUCING THE SIZE OF A BLOCKED CHAIN TYPE DATABASE, DEVICE AND PROGRAM THEREOF
    US11048780B2|2021-06-29|Preventing fraud in digital content licensing and distribution using distributed ledgers
    Mahajan et al.2016|Big data security
    US20220069996A1|2022-03-03|Systems And Methods For Generating Customized Non-Fungible Tokens
    JP2017525072A|2017-08-31|Embedded cloud analytics
    EP3863219A1|2021-08-11|Method and device for assessing matching of sets of structured data protected by encryption
    US20220021728A1|2022-01-20|System and method for providing a secure network
    同族专利:
    公开号 | 公开日
    US20180176022A1|2018-06-21|
    FR3060788B1|2019-07-05|
    EP3337091A1|2018-06-20|
    US11159331B2|2021-10-26|
    引用文献:
    公开号 | 申请日 | 公开日 | 申请人 | 专利标题
    FR2878099A1|2004-11-16|2006-05-19|France Telecom|METHOD OF ESTABLISHING A DIGITAL CERTIFICATE|
    US20160098723A1|2014-10-01|2016-04-07|The Filing Cabinet, LLC|System and method for block-chain verification of goods|
    CN107408174B|2015-01-30|2021-10-01|E·马伊姆|System and method for managing networking commitments for secure entities|
    US10044696B2|2015-12-22|2018-08-07|Mcafee, Llc|Simplified sensor integrity|
    US10193858B2|2015-12-22|2019-01-29|Mcafee, Llc|Attestation device custody transfer protocol|
    WO2017136956A1|2016-02-12|2017-08-17|Royal Bank Of Canada|Methods and systems for digital reward processing|
    CA3015394A1|2016-02-22|2017-08-31|Royal Bank Of Canada|Electronic document platform|CN108804928A|2018-07-09|2018-11-13|武汉工商学院|The secure and trusted block chain and management method of data in a kind of traceability system|
    CN110958211A|2018-09-27|2020-04-03|北京云雾链网络科技有限公司|Data processing system and method based on block chain|
    CN109660356A|2018-12-18|2019-04-19|深圳前海微众银行股份有限公司|Data cochain method, apparatus, equipment and computer readable storage medium|
    CN110958229A|2019-11-20|2020-04-03|南京理工大学|Credible identity authentication method based on block chain|
    CN111754243A|2020-05-26|2020-10-09|广东正迪科技股份有限公司|Product information dynamic management system based on block chain|
    法律状态:
    2017-11-20| PLFP| Fee payment|Year of fee payment: 2 |
    2018-06-22| PLSC| Publication of the preliminary search report|Effective date: 20180622 |
    2019-12-24| PLFP| Fee payment|Year of fee payment: 4 |
    2020-12-29| PLFP| Fee payment|Year of fee payment: 5 |
    优先权:
    申请号 | 申请日 | 专利标题
    FR1662590|2016-12-16|
    FR1662590A|FR3060788B1|2016-12-16|2016-12-16|TRACEABILITY OF A CHAIN OF BLOCKS OF MULTI-ACTORS PROCESSES, ALLOWING AT LEAST TWO LEVELS OF CONFIDENCE TO STOCKEY INFORMATION|FR1662590A| FR3060788B1|2016-12-16|2016-12-16|TRACEABILITY OF A CHAIN OF BLOCKS OF MULTI-ACTORS PROCESSES, ALLOWING AT LEAST TWO LEVELS OF CONFIDENCE TO STOCKEY INFORMATION|
    EP17202619.7A| EP3337091A1|2016-12-16|2017-11-20|Traceability of a chain of multi-player processes by a blockchain, providing at least two levels of confidence for the stored information|
    US15/846,017| US11159331B2|2016-12-16|2017-12-18|Traceability of a multi-actor job string by block chain, allowing at least two levels of confidence in the information stored|
    [返回顶部]