Presentation is loading. Please wait.

Presentation is loading. Please wait.

Private Data OBJECTS Smart Contracts For Data Access AND MORE

Published by恋丁 连 Modified over 5 years ago

Similar presentations

Presentation on theme: "Private Data OBJECTS Smart Contracts For Data Access AND MORE"— Presentation transcript:

1 Private Data OBJECTS Smart Contracts For Data Access AND MORE
Mic Bowman Intel Labs

2 Legal Disclaimers Intel technologies’ features and benefits depend on system configuration and may require enabled hardware, software or service activation. Performance varies depending on system configuration. No computer system can be absolutely secure. Check with your system manufacturer or retailer or learn more at Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors. Performance tests, such as SYSmark and MobileMark, are measured using specific computer systems, components, software, operations and functions. Any change to any of those factors may cause the results to vary. You should consult other information and performance tests to assist you in fully evaluating your contemplated purchases, including the performance of that product when combined with other products. For more information go to All information provided here is subject to change without notice. Contact your Intel representative to obtain the latest Intel product specifications and roadmaps. Copyright © 2018 Intel Corporation. All rights reserved. Intel, the Intel logo, Intel Experience What’s Inside, the Intel Experience What’s Inside logo, Intel Inside, the Intel Inside logo, and Intel Xeon are trademarks of Intel Corporation in the U.S. and/or other countries. *Other names and brands may be claimed as the property of others.

3 Private Data Objects (PDOs)
Private Data Objects enable sharing of data and coordinating action amongst distrusting parties. Privacy Preserving Smart Contract Access Policy: Smart contract defines data access and update policies Confidentiality: Data can only be accessed through SGX enclave executing the smart contract Stickiness: Policies are enforced wherever the object resides Blockchain-based Ledger Commitment: Auditable record of agreements and policy Integrity: Ensures that there is one authoritative instance of an object Coordination: Guarantees atomicity of updates across interacting objects

4 Example: Transient-Driver Profiles
Trends Changing sense of vehicle ownership (long-term owner  short-term lease) Insurance companies moving to metered services Solution Requirements Verifiable and representative log of driver history over all vehicles Rapid evaluation of that history leading to personalized quotes Without exposing personal information inappropriately Driver Profile Personalized Insurance Quote Insurance Risk Analytics

5 Example: Transient-Driver Profiles
Trends Changing sense of vehicle ownership (long-term owner  short-term lease) Insurance companies moving to metered services PDO Solution Contracts ensure appropriate access to the driver profile Blockchain provides immutable, verifiable log for profile integrity Analysis occurs inside enclave to protect data access Driver Profile Contract Blockchain Driver Rating Contract Insurance company analytics can be applied to a verifiable driver profile without exposing any personal data about the driver.

6 Smart Contracts Today Redundant Compute Replaces Centralized Trust
Multiple Organizations Decentralized Trust Redundant Computations and a Final Vote Compute and Vote Every validator executes every update on every transaction All of the validators must agree on the result for it to be committed Single Organization Centralized Trust Single Computation Public, Inefficient, Slow Backlog of 90K messages pending execution Around 20,000 servers are involved in creating a crypto-kitty with Ethereum Contract details are public The agreement and its current state can be seen by everyone Performance impact can be significant Trust is in redundancy No scale-out; single server performance Contract updates must be deterministic All validators must compute the same result Pseudo-random is possible but public state  results are predictable

7 Multiple Organizations
Smart Contracts Based On Intel SGX Replace Redundant Compute with Trusted Execution Compute and Compare Update executes in one enclave and produces a proof of correctness Other validators verify the proof and accept the update Single Organization Centralized Trust Single Computation Multiple Organizations Decentralized Trust Trusted Computation and Attestation Private, Efficient, Scalable

8 Private Data Objects in SGX
How It Works With SGX: An SGX enclave executes an operation on the PDO smart contract The enclave generates a “proof of correctness” that is verified by the ledger The ledger ensures that updates to the PDO are serialized Implication Ledger doesn’t need contract or state The contract and its state can be kept private (encrypted and off chain) Performance impact is minimal Only execute once, SGX overhead More servers  better performance! Updates need not be deterministic No need for global agreement

9 Access/Use Policy Universally Enforced
Contract state is always encrypted outside of the enclave Even the contract owner cannot see the contract state The smart contract may allow externalization of data Consequence: access policy is enforced no matter how the data is shared This enables some interesting policies Differentially private access that doesn’t require the data owner to see the data Owner of the data can prove “compliance” to a set of operations on the data External bid for a contract job Constrained analysis on visual data Automated data aging De-anonymized research data may be released after 5 years Multi-participant, confidential audit Verifiable financial transactions Information provenance

10 Traffic Planning Scenario for Information Sharing
The intersection at Rosedale & 209th backs up every weekday afternoon How to solve the problem? Put in a stoplight at that intersection (expensive) Redirect traffic away from that intersection (possibly less expensive) Need source & destination for cars going through the intersection But… getting that information is hard… for many reasons Would you trust your DOT with the knowledge of where you are at all times when you are driving? Even if it would most likely lead to a better commute?

11 How To Use PDO For Route Data
Observations Details of the smart contract are available for public inspection Driver data is always encrypted outside of the enclave, even DOT cannot see it Analysis of the data occurs through the smart contract inside the enclave Driver data can be removed from future use, and the contract can prove that it has been removed And… we could add “rewards” for participation if appropriate DOT implements a smart contract to collect route information from drivers Any individual may put route data into the contract Any individual may remove from the contract route data they put in DOT may only see heat maps of source and destination through a specific intersection Contract enforces a form of k-anonymity DOT may only request data about (for example) 10 intersections per day

12 Summary Private Data Objects enable sharing of data and coordinating action amongst mutually distrusting parties. Status Prototype code available through Hyperledger Labs Contracts are defined in a functional language evaluated in an enclave Contracts for driver profiles, asset markets with fair exchange & auctions Ongoing Work Support more ledgers Support additional contract interpreters

13 Links DEMO: PAPER: CODE:

Download ppt "Private Data OBJECTS Smart Contracts For Data Access AND MORE"

Similar presentations

Transforming Business with Advanced Analytics: Introducing the New Intel® Xeon® Processor E7 v2 Family Seetha Rama Krishna Director, APAC HPC Solutions.

Transforming Business with Advanced Analytics: Introducing the New Intel® Xeon® Processor E7 v2 Family Seetha Rama Krishna Director, APAC HPC Solutions.
Making the most of Satellite Navigation and Tracking Integration with your Business System.

Making the most of Satellite Navigation and Tracking Integration with your Business System.
Wade Wegner Windows Azure Technical Evangelist Microsoft Corporation Windows Azure AppFabric Caching.

Wade Wegner Windows Azure Technical Evangelist Microsoft Corporation Windows Azure AppFabric Caching.
Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.

Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.
McGraw-Hill/Irwin Copyright © 2008, The McGraw-Hill Companies, Inc. All rights reserved.

McGraw-Hill/Irwin Copyright © 2008, The McGraw-Hill Companies, Inc. All rights reserved.
Taking and Processing Purchase Orders in Microsoft Dynamics ® AX 2012 Purchase Order Process.

Taking and Processing Purchase Orders in Microsoft Dynamics ® AX 2012 Purchase Order Process.
Privacy By Design Sample Use Case Privacy Controls Insurance Application- Vehicle Data.

Privacy By Design Sample Use Case Privacy Controls Insurance Application- Vehicle Data.
© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
Private Cloud: Application Transformation Business Priorities Presentation.

Private Cloud: Application Transformation Business Priorities Presentation.
Intel® Solid-State Drive Data Center TCO Calculator The data in this presentation is based on your analysis and business assumptions when using the Intel®

Intel® Solid-State Drive Data Center TCO Calculator The data in this presentation is based on your analysis and business assumptions when using the Intel®
Microsoft - Partner Confidential Information PIN number and PIN Ordering February 2012.

Microsoft - Partner Confidential Information PIN number and PIN Ordering February 2012.
Conditions and Terms of Use

Conditions and Terms of Use
ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:

ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:
Usage Notes Revision date: Feb 2011 Objective & Audience: This content provides sales conversation “starters” for companies that sell IT security solutions.

Usage Notes Revision date: Feb 2011 Objective & Audience: This content provides sales conversation “starters” for companies that sell IT security solutions.
Project Portfolio Management Business Priorities Presentation.

Project Portfolio Management Business Priorities Presentation.
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.

Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
Data Center Management Microsoft System Center. Objective: Drive Cost of Data Center Management 78% Maintenance 22% New Issue:Issue: 78% of IT budgets.

Data Center Management Microsoft System Center. Objective: Drive Cost of Data Center Management 78% Maintenance 22% New Issue:Issue: 78% of IT budgets.
Service Pack 2 System Center Configuration Manager 2007.

Service Pack 2 System Center Configuration Manager 2007.
INTEL CONFIDENTIAL Intel® Smart Connect Technology Remote Wake with WakeMyPC November 2013 – Revision 1.2 CDI/IBP #: 514349.

INTEL CONFIDENTIAL Intel® Smart Connect Technology Remote Wake with WakeMyPC November 2013 – Revision 1.2 CDI/IBP #:
Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

Chapter 6 Internal Control in a Financial Statement Audit McGraw-Hill/IrwinCopyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

Similar presentations

Ads by Google