DOCSLIB.ORG

Using Blockchain to Support Data & Service Monetization

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Using Blockchain to Support Data & Service Monetization Using Blockchain to support Data & Service Monetization A Thesis Submitted to the College of Graduate and Postdoctoral Studies in Partial Fulfillment of the Requirements for the degree of Master of Science in the Department of Computer Science University of Saskatchewan Saskatoon By Obaro Ogheneyoma Odiete c Obaro Ogheneyoma Odiete, February/2018. All rights reserved. Permission to Use In presenting this thesis in partial fulfilment of the requirements for a Postgraduate degree from the University of Saskatchewan, I agree that the Libraries of this University may make it freely available for inspection. I further agree that permission for copying of this thesis in any manner, in whole or in part, for scholarly purposes may be granted by the professor or professors who supervised my thesis work or, in their absence, by the Head of the Department or the Dean of the College in which my thesis work was done. It is understood that any copying or publication or use of this thesis or parts thereof for financial gain shall not be allowed without my written permission. It is also understood that due recognition shall be given to me and to the University of Saskatchewan in any scholarly use which may be made of any material in my thesis. Requests for permission to copy or to make other use of material in this thesis in whole or part should be addressed to: Head of the Department of Computer Science 176 Thorvaldson Building 110 Science Place University of Saskatchewan Saskatoon, Saskatchewan S7N 5C9 Canada OR College of Graduate and Postdoctoral Studies University of Saskatchewan 116 - 110 Science Place Saskatoon SK S7N 5C9 Canada i Abstract Two required features of a data monetization platform are query and retrieval of the metadata of the resources to be monetized. Centralized platforms rely on the maturity of traditional NoSQL database systems to support these features. These databases, for example,mm MongoDB allows for very efficient query and retrieval of data it stores. However, centralized platforms come with a bag of security and privacy concerns, making them not the ideal approach for a data monetization platform. On the other hand, most existing decentralized platforms are only partially decentralized. In this research, I developed Cowry, a platform for publishing metadata describing available resources (data or services), discovery of published metadata including fast search and filtering. My main contribution is a fully decentralized architecture that combines blockchain and traditional distributed database to gain additional features such as efficient query and retrieval of metadata stored on the blockchain. ii Acknowledgements I would like to express sincere thanks to my supervisors, Dr. Ralph Deters and Dr. Kevin Schneider for their guidance and funding throughout the duration of my Masters program. I would also like to appreciate all the members of my thesis committee: Dr. Chanchal Roy, Dr. Anh Dinh and Dr. Julita Vassileva for their thoughtful comments. In addition, I acknowledge my friends and colleagues in MADMUC Lab especially Kiemute Oyibo, Ifeoma Adaji and Tanvi Jain for all the interesting discussions. I also appreciate friends from outside of the lab including Richard Lomotey and Johnson Iyilade. Finally, I thank my parents and family for their patience and abiding love. iii This thesis is dedicated to the Almighty God. iv Contents Permission to Use i Abstract ii Acknowledgements iii Contents v List of Tables vii List of Figures viii List of Abbreviations x 1 Introduction 1 1.1 Background . 1 1.2 Thesis Structure . 3 2 Problem Definition 4 2.1 Research Questions . 6 2.2 Research Objectives . 6 3 Literature Review 7 3.1 Blockchain . 7 3.1.1 Blockchain Ledger . 7 3.1.2 Blockchain Network . 8 3.1.3 Distributed Consensus . 9 3.1.4 Cryptocurrency . 11 3.1.5 Types of Blockchain . 11 3.1.6 Blockchain as a Database . 12 3.2 Bitcoin . 13 3.2.1 Transaction Model . 14 3.2.2 Smart Contract . 14 3.3 MultiChain . 15 3.3.1 Mining Diversity . 15 3.3.2 Assets . 15 3.3.3 Streams . 15 3.3.4 Oracle . 16 3.4 Other Blockchain Platforms . 16 3.4.1 BigChainDB . 16 3.4.2 Hyperledger fabric . 16 3.5 Characteristics, Applications & Challenges of Blockchain . 17 3.5.1 Characteristics . 17 3.5.2 Applications . 17 3.5.3 Challenges . 18 3.6 Data Monetization Solutions . 18 3.7 Other Related works . 21 3.7.1 Access Control . 21 3.7.2 Provenance . 23 3.8 RESTful Web Services . 24 v 3.9 Summary . 25 4 Architecture 27 4.1 Design Objectives . 27 4.2 Design Considerations . 28 4.2.1 Cryptocurrency . 28 4.2.2 Hashing & Encryption . 28 4.2.3 Keys . 28 4.2.4 Reputation . 29 4.3 Cowry Architecture . 29 4.3.1 Application Layer . 31 4.3.2 Middleware Layer . 31 4.3.3 Blockchain Layer . 32 4.4 Sequence Diagrams . 35 4.5 Summary . 36 5 Implementation 37 5.1 Software Requirement . 37 5.2 Implementation . 37 5.2.1 Blockchain . 38 5.2.2 Cowry Middleware . 38 5.3 Deployment . 39 5.4 Summary . 40 6 Evaluation 41 6.1 Performance Evaluation . 41 6.1.1 Local Environment . 42 6.1.2 Cloud Environment . 49 6.2 Summary . 57 7 Conclusion 58 7.1 Contributions . 59 7.2 Limitations . 59 7.3 Future Works . 59 References 61 vi List of Tables 3.1 Summary of literature review . 26 5.1 Software requirements . 37 6.1 Local environment setup requirements . 42 6.2 Cloud environment setup requirements . 49 7.1 Comparison of Cowry data monetization platform and other platforms . 59 vii List of Figures 1.1 Continuously growing amount of data generated . 1 1.2 Data economy monetization example . 2 2.1 Illustration of the centralized model . 4 2.2 Illustration of the isolated model . 5 3.1 Sequence of blocks in a blockchain . 8 3.2 Merkle tree . 9 3.3 Digital signing of transaction . ..
Load more

Recommended publications
  • Not ACID, Not BASE, but SALT a Transaction Processing Perspective on Blockchains
    Not ACID, not BASE, but SALT A Transaction Processing Perspective on Blockchains Stefan Tai, Jacob Eberhardt and Markus Klems Information Systems Engineering, Technische Universitat¨ Berlin fst, je, [email protected] Keywords: SALT, blockchain, decentralized, ACID, BASE, transaction processing Abstract: Traditional ACID transactions, typically supported by relational database management systems, emphasize database consistency. BASE provides a model that trades some consistency for availability, and is typically favored by cloud systems and NoSQL data stores. With the increasing popularity of blockchain technology, another alternative to both ACID and BASE is introduced: SALT. In this keynote paper, we present SALT as a model to explain blockchains and their use in application architecture. We take both, a transaction and a transaction processing systems perspective on the SALT model. From a transactions perspective, SALT is about Sequential, Agreed-on, Ledgered, and Tamper-resistant transaction processing. From a systems perspec- tive, SALT is about decentralized transaction processing systems being Symmetric, Admin-free, Ledgered and Time-consensual. We discuss the importance of these dual perspectives, both, when comparing SALT with ACID and BASE, and when engineering blockchain-based applications. We expect the next-generation of decentralized transactional applications to leverage combinations of all three transaction models. 1 INTRODUCTION against. Using the admittedly contrived acronym of SALT, we characterize blockchain-based transactions There is a common belief that blockchains have the – from a transactions perspective – as Sequential, potential to fundamentally disrupt entire industries. Agreed, Ledgered, and Tamper-resistant, and – from Whether we are talking about financial services, the a systems perspective – as Symmetric, Admin-free, sharing economy, the Internet of Things, or future en- Ledgered, and Time-consensual.
    [Show full text]
  • Object-Oriented Design of Database Stored Procedures (PDF)
    Object-Oriented Design of Database Stored Procedures Michael Blaha, [email protected] Bill Huth, [email protected] Peter Cheung, [email protected] Abstract base I/O. One nice feature of SPs is their support for op- tional input parameters. An SP may have optional inputs Object-oriented (OO) software engineering techniques are if: (1) the definition lists all outputs before inputs and (2) often used with programming languages, but they also ap- optional inputs have default values. ply to relational databases. OO techniques are not only helpful for determining database structure, but also for de- 3. Financial Application Example signing stored procedure code. In fact, we were surprised by the magnitude of the stored procedure benefits. OO The examples in this article are based on an application for techniques boost development productivity as well as the managing syndicated loans. The loans can be huge, involv- quality, clarity, and maintainability of the resulting code. ing billions of dollars, and can arise from lending to gov- ernments and multinational corporations. Participation in a 1. Introduction loan must be spread across multiple lenders because the risk is too large for a single lender. Object-oriented (OO) techniques are versatile. They are not Figure 1 shows an excerpt of a UML class model for only helpful for developing programs and structuring data- the application. An Asset is something of value and can be bases, but they are also effective for designing stored proce- a Currency (such as US Dollars, Euros, and Yen), a Loan- dures. A stored procedure is programming code that runs in Instrument, or an OtherAsset (such as bonds and stock).
    [Show full text]
  • 10 Weeks to 0 Vulnerabilities Program
    10 WEEKS TO 0 CRITICAL VULNERABILITIES INJECTION ATTACKS Sherif Koussa @skoussa 1 HOUSEKEEPING • Why we’re all here • Recording for internal training purposes • Slides will be provided after the session • Your mic will be muted, please use “Q&A” for any questions 2 ABOUT ME 2006 2008 2010 Joined SANS Mentor & Founded OWASP GIAC Consultant Software Secured 1999 2007 2009 2019 Software Founded Wells Fargo Founded Development OWASP Chapter Security Engineer Reshift Security Certifications: GSSP-Java, GSSP-NET, GWAPT 3 Reshift integrates with your modern software development pipeline to help your team find and fix vulnerabilities. Penetration Testing as a Service company based out of Ottawa, Canada. 4 10 WEEK SCHEDULE 1. April 10th: Injection 2. April 17th : Broken Authentication 3. April 24th: Sensitive data Exposure 4. May 1st : External Entity Injection 5. May 8th : Broken Access Control 6. May 15th: Security Misconfiguration 7. May 22nd: Cross-site Scripting 8. May 29th: Insecure Deserialization 9. June 5th: Using Components with Known Vulnerabilities 10. June 12th: Insufficient Logging and Monitoring 5 SESSION 1: AGENDA 1.What are Injection Attacks and their impacts 2.Injection Theory 3.Types of Injection Attacks: • SQL Injection (Exercise) • JavaScript Server Side Injection • NoSQL Injection 5.Injection Attacks Mitigation 6. Tools and Resources 6 WHAT ARE INJECTION ATTACKS Injection attacks denote a wide range of attacks targeting the server, where the attacker supplies untrusted input to software. This gets processed by an interpreter
    [Show full text]
  • Polymorphic Stored Procedure? Venkat Subramaniam [email protected]
    Polymorphic Stored Procedure? Venkat Subramaniam [email protected] http://www.durasoftcorp.com/download Abstract A typical user of JDBC or ASP.NET issues a SQL query to the underlying database, grabs the fields returned by the record set/result set (or dataset) and then populates an object with the data fetched. Not considering the use of Entity Beans and JDO in Java, what does one do if the object being fetched is one of several types derived from a common base type? This article addresses one way this can be solved in an extensible manner. A Simple Data Access Scenario For some one who has spent significant time developing OO applications that used object-oriented databases and those that did not use any database at all, it is painful to use a relational database with objects. I am sure you have heard people with OODBMS experience talk about data access impedance mismatch when it comes to storing an object in a relational database. You hear less of this now than you did in the early nineties. While there is some market for ODBMS still, I have come to agree that relational databases are here to stay. After developing a couple of applications using relational databases, I was pondering about arriving at a solution to the problem of mapping the inheritance hierarchy in an extensible way. Is this really a good approach to follow, is for you to decide. I simply present here my thoughts on what I tried recently. Your comments are most welcome. Let’s consider a database with four tables: Customer, Account, CheckingAccount, SavingsAccount.
    [Show full text]
  • SQL Stored Procedures
    Agenda Key:31MA Session Number:409094 DB2 for IBM i: SQL Stored Procedures Tom McKinley ([email protected]) DB2 for IBM i consultant IBM Lab Services 8 Copyright IBM Corporation, 2009. All Rights Reserved. This publication may refer to products that are not currently available in your country. IBM makes no commitment to make available any products referred to herein. What is a Stored Procedure? • Just a called program – Called from SQL-based interfaces via SQL CALL statement • Supports input and output parameters – Result sets on some interfaces • Follows security model of iSeries – Enables you to secure your data – iSeries adopted authority model can be leveraged • Useful for moving host-centric applications to distributed applications 2 © 2009 IBM Corporation What is a Stored Procedure? • Performance savings in distributed computing environments by dramatically reducing the number of flows (requests) to the database engine – One request initiates multiple transactions and processes R R e e q q u u DB2 for i5/OS DB2DB2 for for i5/OS e e AS/400 s s t t SP o o r r • Performance improvements further enhanced by the option of providing result sets back to ODBC, JDBC, .NET & CLI clients 3 © 2009 IBM Corporation Recipe for a Stored Procedure... 1 Create it CREATE PROCEDURE total_val (IN Member# CHAR(6), OUT total DECIMAL(12,2)) LANGUAGE SQL BEGIN SELECT SUM(curr_balance) INTO total FROM accounts WHERE account_owner=Member# AND account_type IN ('C','S','M') END 2 Call it (from an SQL interface) over and over CALL total_val(‘123456’, :balance) 4 © 2009 IBM Corporation Stored Procedures • DB2 for i5/OS supports two types of stored procedures 1.
    [Show full text]
  • 2.2 Update, Insert, Delete Stored Procedure Examples
    SYSTEMS DESIGN / CAPSTONE PROJECT MIS 413 User Guide 2.2 Creating Update, Insert and Delete Stored Procedures This guide will demonstrate building Insert, Update and Delete Stored Procedures with a few input parameters using the Query Editor Tool. They all assume you have a person table with a personID (auto number), FN, LN, Email, PWD attributes. Example A: Update Stored Procedure The easiest manner to create a stored procedure is to let the wizard in SQL assist you. 1) Open SQL and the proper database 2) Expand the ‘programmability’ tab under your database 3) Right click on stored procedures and click ‘new stored procedure’ 4) Consistent and proper naming of your stored procedure will help you and future developers understand their purpose. A guideline for this class would be: Name of the Table, the Operation (select, update, etc.), Optional Word(s) as in: personUpdate 5) Add your name of the procedure (without the < > brackets) as in: CREATE PROCEDURE personUpdate in the first row of the stored procedure. 6) To build your first UPDATE, use the Design in Query Editor Option. Delete the following row in your Stored Procedure: SELECT <@Param1, sysname, @p1>, <@Param2, sysname, @p2> 7) Then right click in the blank area and select DESIGN IN QUERY EDITOR A dialog box will appear and select the name of the table to be updated. A general rule is you will only UPDATE one table at a time. Do not try to UPDATE 2 or more tables with one UPDATE statement. If you need to update more than one table, you can do two separate UPDATE statements in the same Stored Procedure.
    [Show full text]
  • JDBC Mock Test
    JJDDBBCC MMOOCCKK TTEESSTT http://www.tutorialspoint.com Copyright © tutorialspoint.com This section presents you various set of Mock Tests related to JDBC Framework. You can download these sample mock tests at your local machine and solve offline at your convenience. Every mock test is supplied with a mock test key to let you verify the final score and grade yourself. JJDDBBCC MMOOCCKK TTEESSTT IIIIII Q 1 - Which of the following is used generally used for altering the databases? A - boolean execute B - ResultSet executeQuery C - int executeUpdate D - None of the above. Q 2 - How does JDBC handle the data types of Java and database? A - The JDBC driver converts the Java data type to the appropriate JDBC type before sending it to the database. B - It uses a default mapping for most data types. C - Both of the above. D - None of the above. Q 3 - Which of the following can cause 'No suitable driver' error? A - Due to failing to load the appropriate JDBC drivers before calling the DriverManager.getConnection method. B - It can be specifying an invalid JDBC URL, one that is not recognized by JDBC driver. C - This error can occur if one or more the shared libraries needed by the bridge cannot be loaded. D - All of the above. Q 4 - Why will you set auto commit mode to false? A - To increase performance. B - To maintain the integrity of business processes. C - To use distributed transactions D - All of the above. Q 5 - Which of the following is correct about savepoint? A - A savepoint marks a point that the current transaction can roll back to.
    [Show full text]
  • SQL Procedures, Triggers, and Functions on IBM DB2 for I
    Front cover SQL Procedures, Triggers, and Functions on IBM DB2 for i Jim Bainbridge Hernando Bedoya Rob Bestgen Mike Cain Dan Cruikshank Jim Denton Doug Mack Tom Mckinley Simona Pacchiarini Redbooks International Technical Support Organization SQL Procedures, Triggers, and Functions on IBM DB2 for i April 2016 SG24-8326-00 Note: Before using this information and the product it supports, read the information in “Notices” on page ix. First Edition (April 2016) This edition applies to Version 7, Release 2, of IBM i (product number 5770-SS1). © Copyright International Business Machines Corporation 2016. All rights reserved. Note to U.S. Government Users Restricted Rights -- Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp. Contents Notices . ix Trademarks . .x IBM Redbooks promotions . xi Preface . xiii Authors. xiii Now you can become a published author, too! . xvi Comments welcome. xvi Stay connected to IBM Redbooks . xvi Chapter 1. Introduction to data-centric programming. 1 1.1 Data-centric programming. 2 1.2 Database engineering . 2 Chapter 2. Introduction to SQL Persistent Stored Module . 5 2.1 Introduction . 6 2.2 System requirements and planning. 6 2.3 Structure of an SQL PSM program . 7 2.4 SQL control statements. 8 2.4.1 Assignment statement . 8 2.4.2 Conditional control . 11 2.4.3 Iterative control . 15 2.4.4 Calling procedures . 18 2.4.5 Compound SQL statement . 19 2.5 Dynamic SQL in PSM . 22 2.5.1 DECLARE CURSOR, PREPARE, and OPEN . 23 2.5.2 PREPARE then EXECUTE. 26 2.5.3 EXECUTE IMMEDIATE statement .
    [Show full text]
  • Using SQL and Result Sets in Stored Procedures
    Data Warehousing > Database Using SQL and Result Sets in Stored Procedures By Doug Frazier Using SQL and Result Sets in Stored Procedures Table of Contents Executive Summary 2 Executive Summary Introduction 2 The External Stored Procedure enhancement to utilize SQL access What is an External Stored Procedure? 3 is a powerful extension to Teradata Database 12.0. The addition of Returning Result Sets 9 the Java language and enabling Result Sets for Stored Procedures Stored Procedures Can Improve the 11 Database also significantly enhances the Teradata Database capabilities. Summary 12 Introduction queries and updates. The results of this customized logic and SQL can be then In an increasingly global economy, compa- returned to the client application as nies must consolidate their operational and multiple rows of data via Result Sets. decision logic within their data warehouse along with their data to provide not only a Why Use External Stored consistent view of their data, but a consis- Procedures? tent view of their business logic. Current Application developers can now write trends and technology are widening the extensions to the Teradata Database in the number of touch points that customers form of External Stored Procedures to not and suppliers use to access a company, only provide specialized logic, but to such as call centers, mobile devices, and access both data (DML) and database web access. To keep pace with these trends, structures (DDL). Additionally, the consistent decision policies must be potential to access external data via the implemented within the data warehouse. web or the file system extends External To address these issues and more, Teradata Stored Procedures’ usefulness significantly.
    [Show full text]
  • Declare Section Code in Stored Procedure
    Declare Section Code In Stored Procedure Anurag never tangle any gorgets spared deliriously, is Janus jaspery and unresisted enough? Taxidermic and light-hearted Lancelot exuviated almost daftly, though Frederick stun his transudations bemires. Pedate and elocutionary Maxim subordinate so undesirably that Sanders reutters his fixtures. To other developers are in stored procedure that case of creating a stored procedures, may still appear only. Provide Name and Description. These statements are always replicated. Loved the dark chocolate! TODO: we should review the class names and whatnot in use here. That is, the table is used for both input and output. The following example uses the OUTPUT cursor parameter to pass a cursor that is local to a procedure back to the calling batch, procedure, or trigger. Pass values to a stored procedure. See also the discussion about when to use a stored procedure vs. Stored routines may call other stored routines. Stored procedues in SQL allows us to create SQL queries to be stored and executed on the server. We use stored procedures for all of our reporting needs. The string variable must be long enough to hold the returned value. Here is the new SP that uses an UPDATE. Select Procedures in the Database Browser or Object Palette. As we saw, when sharing temp tables, this causes recompilations in the inner procedure, because the temp table is a new table every time. After an Oracle stored procedure has been loaded into the shared pool of the SGA, it remains there until it is paged out of memory to make room for other Oracle stored procedures.
    [Show full text]
  • CSE315 –Spring 2007 Experiment 1 – Chaining, Savepoints and Nesting
    CSE315 –Spring 2007 Experiment 1 – Chaining, Savepoints and Nesting Due date: Feb 21, 2007 Goal: Chaining, savepoints and nested transactions are all mechanisms that can be used to divide a task into parts that can be committed or aborted separately. The purpose of this experiment is to investigate how these mechanisms work in Sybase. Description: The task is to implement a transaction that raises the salary of faculty members in three different ways: using chaining, savepoints and nesting. The purpose of the transaction is to give all faculty members the same percentage raise, but the total salary after the raise has been given must not $100000. The transaction iterates a basic subtask that raises all faculty salaries by one percent (from their current value, hence compound interest) and then checks to see if the total salary exceeds $100000. If so, the last iteration is undone. If not, another iteration of the subtask is initiated. Create an instance of the Faculty table for this experiment using the script CREATE TABLE Faculty ( FacId char(9) NOT NULL, Name char(50) NOT NULL, Password char(20) NOT NULL, Validity char(1) NOT NULL, Town char(20), salary float NULL, PRIMARY KEY (FacId) ) Insert into Faculty values ('200000001','200000001' , '200000001',' V' ,'city41', 500.0) Insert into Faculty values ('200000002','200000002', '200000002', 'V' , 'city9', 500.0) Insert into Faculty values ('200000003','200000003' , '200000003', 'V' , 'city14', 500.0) Insert into Faculty values ('200000004','200000004' , '200000004', 'V' , 'city9', 500.0) Insert into Faculty values ('200000005','200000005' , '200000005', 'V' , 'city38', 500.0) Steps: 1. Create and initialize the Faculty table.
    [Show full text]
  • Schema Execute Dbo Stored Prodcured
    Schema Execute Dbo Stored Prodcured HomoiothermicRuddy vintage his and astrometry submental attirings Hewet pinnacledunconscionably, sibilantly but and Turki rechristen Taber never his unsocialism pandies so charmlesslyrefreshfully. butand renormalizing springily. Treacly her eateriesTynan still rapaciously. peculate: weightlessness and revivalist Wolfgang mulcts quite inanely Product on my name which database column; instead and execute stored procedure and related to ensure to replace keywords replace keywords replace the inclusion of Build dynamic SQL Pass Through query with parameter values. It may seem overly complex at first, but we will learn how we can overcome that by automation. Your attack surface is constantly evolving. You may have encountered the term in other contexts, but not in SQL Server. Developers, Database Administrators, and Solution Architects who want to get started SQL Server quickly. How to Shrink MDF Database Data File of SQL Server. Your search results will appear here. How long can a floppy disk spin for before wearing out? Microsoft Query runs the SQL statement. Passing Java Arrays in Oracle Stored Procedure From Mule ESB Flow. USER AS DBUSER FROM sys. It is true, though, that this requires that she has direct access to run queries in SSMS or similar. You can also specify a role that exists in the database, and the procedure will detect that and instead and the certificate user to the role. If your CLR module makes some external access outside SQL Server you may want to use the security context of the user who is currently logged into SQL Server, rather than the service account for SQL Server. In the example above our stored procedure attempts to retrieve records from a table based on the value of a parameter.
    [Show full text]