| CPC G06F 21/6227 (2013.01) [G06F 16/27 (2019.01); G06F 16/955 (2019.01); H04L 9/3263 (2013.01); G06F 2221/2141 (2013.01); H04L 9/50 (2022.05)] | 9 Claims |
|
1. A method comprising the steps of: at a server comprising a processor, a memory, and a network interface device connected to a peer-to-peer network, maintaining a local key management data store and a plurality of blockchain copies comprising a data blockchain copy, an audit blockchain copy, and a metadata blockchain copy, wherein the blockchain copies comprise data blocks that are linked and secured using cryptography;
receiving a data operation from a user electronic device;
verifying that the user electronic device has access against the local key management data store, wherein the verifying comprises;
requesting a specific encryption key for decrypting data associated with the data operation;
receiving the specific encryption key as a key address;
generating an encrypted key address by encrypting the key address for providing temporary access to the specific encryption address; and
providing the encrypted key address to the user electronic device;
responsive to the verifying, approving the data operation;
after the data operation has been approved, running the data operation and recording metadata about the data operation to generate results of the data operation;
updating the plurality of blockchain copies comprising writing first data blocks with the results of the data operation to the data blockchain copy, writing second data blocks with details of the user electronic device to the audit blockchain copy, and writing third data blocks with the recorded metadata to the metadata blockchain copy; and
time-stamping and broadcasting the updated plurality of blockchain copies to the peer-to-peer network for replication.
|