Why the blockchain

The use of blockchain in the Blockcerts treatment isn’t demonstrable to many people, who wonder why this can’t be done with PKI. It can be done with PKI, but this describes the advantages Blockchain offers.

In Blockcerts, the issuer uses their digital signature to provide a credential to a recipient, identified by a recipient-owned public key, and issued on the blockchain. The recipient’s credential contains the Merkle proof linking the credential with a specific blockchain transaction.

This is used to establish integrity of the credential; i.e. that it hasn’t been tampered with. Additionally, the recipient-owned public key embedded in the credentials permits the recipient to prove ownership.

To establish authenticity, one must establish that the issuer wielded the issuing key at the time the credential was issued. This is why a reliable timestamp is needed, expanded on below.

A reliable source of a timestamp, and the capability to be persuaded of the correctness of this value, is clearly significant in the case of a credential that expires, but it is also critical for a practical reason — the issuer must be able to rotate issuing keys, on a regular basis as part of security best practices, but more critically in response to a key leak.

To determine that a credential was issued by the issuer, while that issuing key was valid, requires skill of the timestamp — beyond anything written into the credential itself. Why? Because if the private key was leaked, there is nothing to prevent an attacker from issuing false credentials and backdating in the contents. That means, even if an issuer has publicly revoked the leaked credential, an independent verifier would not know the difference inbetween a valid and invalid credential unless there were some extra reliable source of when the transaction took place.

This could be done through use of a timestamping authority (TSA) — more commonly used in a PKI solution — but that places a dependency on a trusted third party.

On the other forearm, blockchain provides permanent, trusted timestamping by design. It requires massive computational effort — rewriting the entire blockchain — to tamper with the timestamps. So blockchain timestamps can prove existence of data before a certain point. Furthermore, it is a distributed ledger, and not dependent on a trusted party. This improves availability, capability to independently verify, and reduces single points of failure.

Related video:

admin_en | 1@1.com

Related Posts

How to Trade Bitcoins and CryptoCurrencies on Plus500 In this article, we’re going to demonstrate you how to trade the cryptocurrency of your choice on Plus500. You can presently trade a broad selection of coins including Bitcoin (BTC), Ethereum (ETH), Litecoin (LTC), or Dash (DASH). But before we begin displaying you how to trade, you […]

Where To Sell Bitcoin Cash (BCH) [Total list of Best BCH exchanges] On August 1, 2017, Bitcoin split into another currency known as Bitcoin Cash (BCH). As the Bitcoin network split, all major Bitcoin exchanges began working ceaselessly to credit their users’ accounts with the fresh cryptocurrency (BCH).

What Is Blockchain and How Does It Work? While everyone talks about blockchain, also known as mutual distributed ledger technology, just a few people actually know what this technology can do and how it could someday revolutionize the re/insurance industry, just by streamlining back-office processes.

Leave a Reply

Your email address will not be published. Required fields are marked *