| CPC H04L 9/3247 (2013.01) [G06K 7/10722 (2013.01); G06K 7/1417 (2013.01); G06K 19/06037 (2013.01); G16H 10/40 (2018.01); G16H 10/60 (2018.01); H04L 9/14 (2013.01); H04L 9/30 (2013.01)] | 20 Claims |
|
1. An apparatus, comprising:
a processor that, when executing instructions stored in an associated memory, is configured to:
extract a data object from a machine-readable code, where the data object comprises a first field of data that is signed with a digital signature of a private key and a second field of data that is hashed before being signed with the digital signature so that a value of the second field is not disclosed when the second field is verified,
retrieve an identifier of an issuer of the data object from the data object,
retrieve a public key from a blockchain based on the identifier of the issuer,
verify the digital signature of the private key based on the public key,
verify that a schema identifier of the first field matches a schema identifier of a first stored schema on the blockchain,
verify that a hash of a schema identifier of the second field matches a hash of a second schema identifier of a second stored schema on the blockchain, and
verify that the data object is trustworthy based on both the verification of the digital signature and the verification of the schema identifiers.
|