BCDiploma white paper Highlights #4 — Smart publication
BCDiploma will allow all higher education institutions to certify their diplomas and attestations on the blockchain Ethereum. Graduates will be provided with a simple “URL link” that they can share on social networks, post on their CV or send to a recruiter. This link is valid for a lifetime and provides a one-click access to the diploma together with all the relevant proofs of its authenticity.
But… how does it work? How does the school or institution transmit the diplomas to be certified? How are they stored? This is the question we are developing here.
Let’s project ourselves in an ideal world where diplomas are certified through BCDiploma. Your school has issued its Identification certificate and is about to certify the diplomas of your class with BCDiploma… how does this work out in practice?
The school administrator logs on to the BCDiploma DApp, sends the diplomas data (by simple file upload or by API) and confirms the request for encryption and “sending” to Ethereum.
These two operations are carried out by the Dapp BCDiploma and then by the SmartPublication smart contract.
- The data received by the DApp BCDiploma is encrypted by the Crypto Algo algorithm.
- For each diploma, the SmartPublication smart contract:
- Checks the validity of the school’s identification certificate;
- Publishes the encrypted diploma in the transaction data.
3. At the end of the treatment, the DApp:
- Generates and stores persistence keys in a secure location: the school owns these keys;
- Transmits securely the URL for reading diplomas issued at school, and according to the settings directly to the graduate;
- Returns an execution report to the school;
- Deletes all processed data (processing in memory).
The URL for reading a diploma cannot be reconstructed from the Ethereum transaction. On the other hand, you can only access the reading of the diploma if you know it.
The student is responsible for distributing his or her URL. It is up to them to decide whether they wish to distribute it on social networks or to address it personally, on request, to third parties. If the graduate wishes to assert his or her right to be forgotten to his or her school, the latter will be obliged, following verification of the identity of the requesting graduate, to delete the persistence key: at this point the diploma can no longer be deciphered by Reader App, nor by any other application implementing the BCD encryption protocol.