Technology

Technology2018-07-28T16:55:00+00:00

Cognida’s Technology Supports A Comprehensive Software Platform
Enabling Multi-Blockchain Management

Cognida Service Interface

The Cognida Network™ and its open source platform enable enterprises to more securely manage connected devices, systems and shared information using blockchain agnostic technology.

Cognida’s Service Interfaces secure digital assets on the network, enabling enterprise IT administrators to enforce their security policies and establish trusted connected relationships, owning and controlling their data, even when sharing with service providers and third parties.

Enterprises can leverage Cognida’s Service Network Interface to connect to trusted service networks where they can administer third-party cloud services from a single interface, enabling administrators to manage privacy, access, and security of their data on remote systems through a unified platform.

As enterprises adopt new distributed technologies, the data landscape is evolving away from centralized services maintained behind corporate firewalls to a complex distributed landscape. This trend has corporate data scattered across devices and services outside the enterprises’ administrative control.

The decentralized features of blockchain offer solutions for enterprises to regain control in this distributed data landscape. To onboard these solutions, the gap between enterprises and blockchains must be bridged so that the blockchains’ integrity is not altered and organizations can retain and administer service relationships with trusted service providers.

Cognida offers blockchain agnostic services, enabling enterprises to choose one or more blockchain services to meet their needs. API libraries are provided for specific blockchain networks that translate native blockchain transactions to standard Cognida enterprise API operations.

Providing multi-sign in a blockchain agnostic manner presents challenges, since the diverse methods used by various blockchains either support or don’t support this feature. Cognida’s approach employs its secure admin message queue coupled with a multi-sign script and template established on a service node with blockchain account access.

Cognida’s Transaction Engines provide a suite of blockchain agnostic functions that are translated to one or more target blockchains used by the system. Administrative operations establish subscribers and subscriber permissions on a target blockchain. Information services perform read operations to a target blockchain in a similar manner as they would a centralized permission authorization server. Information services can also store data hashes on a target blockchain. This feature can be used to verify data integrity or log accesses to subscription data.

Cognida’s Distributed Permissions technology removes a single point of failure by using distributed blockchains that have immutable properties. This allows multiple stakeholders the capability of interacting and retrieving data.

Blockchains can be built that require permission to read the information on the blockchain, that limits the parties who can transact on the blockchain and that set who can serve the network by writing new blocks into the chain.

Cognida’s blockchain management platform and network enables enterprises to determine who may act as transaction validator on their network. For example, the developer or administrator may choose to make the system of record available for everyone to read, but they may not wish to allow anyone to be a node, serving the network’s security, transaction verification or mining. Cognida’s technology makes multiple approaches to permission management flexible while at the same time secure.

Blockchain permissions are managed at an administration service node which performs digitally signed permission entries on target service node’s ledger. Permission data stored on the target service nodes blockchain ledger are digitally signed by an approved permission signer. Permission data itself is encrypted to remain anonymous on the blockchain.

Cognida’s platform enables third-party services to address volatile cryptocurrencies associated with Blockchains to offer predictable cost structures, with a single-payment interface across multiple vendors and services.

Ledger data is anonymized and unreadable outside trusted stakeholders, leading to trusted relationships on the network.

Service providers can work more efficiently with enterprises, offering smart contracts for streamlined billing, retail, wholesale, service management, and supply chain management.

Cognida’s service API is a REST API that requires all API calls to be digitally signed. The method used for authorizing digital signatures can be administered by the enterprise IT admin. Options can include JSON Web Tokens (JWT), which use a challenge to the requestor for authorization. Additional options can include a random number and shared secret embedded into the digital signature.

Cognida’s admin API can be in band with the service API or out of band, utilizing a secure administration messaging system. This enables remote administration of service nodes that are behind a firewall and inaccessible from the public Internet.

Cognida’s system and network administrators appreciate the intuitive and convenient features of the Cognida interface, which supports administration hierarchies common in enterprises. Features include extensive permission and access controls of cloud services, with the ability to securely manage permissions on remote and cloud systems.

Cognida’s Agent Administration Portal is a secure web interface performing digitally signed API operations on an administration subscription service.

The Cognida Agent executes a recurring process to update its status, logs and checks the blockchain secured admin message queue for digitally signed instructions from a qualified administrator.

The Administration web interface manages template libraries for services and assets. These libraries are stored in a JSON format and functions as a container library, prompting the administrator to enter information required for a specific instance of a service or digital asset. This container library customizes necessary JSON records required to execute Agent processes or communicate with a digital asset. Install operations are posted to the Agent’s admin queue which, when received prompt the Agent to update or retrieve required JSON records from its admin subscription, install required scripts and update its JSON configuration file with any new recurring processes to be performed.

The Cognida Agent Core is a script based, template driven, programmable engine. It is incorporated into every service interface. In addition, it can be incorporated into mobile computers and into secure enterprise and cloud applications to provide remote administration, protocol translation, data transformation, and other services requiring flexible programmable functionality.

Administration is handled via a blockchain-secured message queueing service. This enables administrators to manage metadata and configuration of agents without necessarily having access to data itself.

Cognida’s Agent Core is a Python 3 based program that executes Python 3 and Python 2.7 scripts that utilize JSON formatted script templates. Scripts perform command line and protocol operations and an agent handles the logging of transactions and exporting of data using JSON templates to format export data.

Enterprises can maintain private service script, device, and profile libraries, as well as utilize open source libraries that will be made available to the Cognida development community. Scripts enable agents to communicate with local digital assets and translate messages and asset data to a common sharable format.

Cognida’s Service Network includes Blockchain Secured Subscription Services (providing service interface secured messaging and document data services for shared data as well as service messaging) and the Service Network Interface, which provides one or more enterprise managed service nodes where data and metadata sharing policies can be enforced between secured enterprise assets and network services.

The related Service Provider Interface establishes digitally signed and authenticated interfaces between service providers and enterprise subscription services and other digital assets.

An additional benefit of the Cognida Service Network is its unification of trusted identities and their association with a single public key. This establishes a single identity that can be used across organizations and services as well as between enterprises and services, eliminating the need for managing multiple identity keys or user login credentials.

Cognida’s open source library offers tools for enterprises to administer public/private keys within their organization to secure devices and user accounts on devices. The Cognida Service Interface can be deployed on existing applications and services that utilize distributed Blockchain ledgers to offload key based authentication and authorization functions, as well as performing any encryption/decryption and blockchain-based data integrity operations.

The Cognida Platform establishes blockchain-secure network service interfaces on public and private (enterprise) networks that connect to one or more digital assets. This establishes secure service nodes on a network where all access to digital assets and their information is enforced by the service interface. This provides enterprise administrators tools to secure unsecure legacy systems and enforce security policies on distributed data and cloud services, IoT devices, and mobile devices.

Technical Paper
Contact us today!