US 12,242,658 B2
Trusted data provenance
Gabriela Limonta, Espoo (FI); Kiti Muller, Helsinki (FI); and Ian Oliver, Soderkulla (FI)
Assigned to NOKIA TECHNOLOGIES OY, Espoo (FI)
Appl. No. 17/905,344
Filed by Nokia Technologies Oy, Espoo (FI)
PCT Filed Feb. 18, 2021, PCT No. PCT/FI2021/050118
§ 371(c)(1), (2) Date Aug. 31, 2022,
PCT Pub. No. WO2021/176134, PCT Pub. Date Sep. 10, 2021.
Claims priority of application No. 20205221 (FI), filed on Mar. 3, 2020.
Prior Publication US 2023/0088697 A1, Mar. 23, 2023
Int. Cl. G06F 21/64 (2013.01); H04L 9/08 (2006.01)
CPC G06F 21/64 (2013.01) [H04L 9/0825 (2013.01)] 20 Claims
OG exemplary drawing
 
1. An apparatus comprising at least one processor; and at least one memory storing instructions that, when executed by the at least one processor, cause the apparatus at least to perform:
receive, from an intermediate apparatus, a trusted aggregate data object comprising
an aggregate data object that comprises aggregate data comprising a respective trusted source data object for one or more data source apparatuses mapped to the intermediate apparatus and an intermediate apparatus quote that is descriptive of one or more aspects of a configuration of the intermediate apparatus upon production of the aggregate data, and
an intermediate apparatus signature comprising a digital signature derived based on the aggregate data object using a first key assigned to the intermediate apparatus;
verify, based at least in part on information received in the trusted aggregate data object, integrity of data included in the trusted aggregate data object and integrity of the intermediate apparatus by causing a key request to be transmitted to a first attestation server; and
discard, responsive to denial of the key request, the data included in the trusted aggregate data object.