Fabric Private Chaincode is an open source project created by IBM and Intel to enable a new form of smart contract, leveraging Intel® Software Guard Extensions (Intel® SGX) Trusted Execution Environment to help achieve confidentiality and integrity in The Linux Foundation’s Hyperledger Fabric blockchains.

This new model of smart contract is well suited to many applications where it is desirable to use the well-known blockchain properties of distributed, decentralized execution and immutable ledger. This is especially true where the data being processed needs to be kept confidential even from the participants running the blockchain network. Confidentiality alone isn’t sufficient to ensure that participants can trust such a smart contract; it also requires cryptographic integrity to enable participants to be confident the smart contract is the one they agreed to use, and hasn’t been tampered with.

The Fabric Private Chaincode project is a great example of how Intel SGX can boost the value of blockchain by enabling new business models based on a new model of trust. In existing Hyperledger Fabric architectures, integrity of smart contracts is assured by having multiple peers execute the same chaincode and verify that their results match. This works well for many use cases, but not for systems that require private execution. In addition to simply enabling operations on sensitive private data such as medical or contractual information, new trust models enabled by this new technology open up the interesting possibility of designing new kinds of markets that overcome age-old problems.

Learn how Hyperledger makes revolutionary cooperation and innovation possible

Private bid auctions example

In high-stakes auctions, economist Market Designers often go to great trouble to minimize incentives to game the system. It is important, for example, to limit the advantages that can be gained by watching opponent bidders’ votes before submitting one’s own vote, or attempting to conceal one’s own valuation of an asset until the opponent has revealed his or her valuation. But even a well-designed auction still relies on a model of security where the auctioneer must be trusted not to collude with a bidder.

In an auction such as a wireless spectrum auction, the stakes can be in the billions of dollars. Because such auctions are typically run by a large government agency, there are many individuals who must be trusted not to leak information to a bidder. The strong incentive of fraud combined with a security model that has a potentially large “attack surface” can add up to large insurance and legal costs for everyone involved.

Conversely, in a Fabric Private Chaincode system, it is possible to design a high-stakes auction in which the auctioneer is in fact a smart contract, for which the source code may be inspected beforehand by all parties to the auction. When the auction begins, the participants can use Intel SGX both to get a cryptographic attestation that provides evidence that the code hasn’t been modified and to limit visibility into the program while it executes. Not even the government agency running the auction can peek at the bids or tamper with the execution. This new trust model is more compatible with positive incentives to simply bid one’s true value of each asset.

Secret ballot voting systems example

Likewise, there are many ways a voting system can be gamed; for example, voting for a “spoiler candidate” to take votes away from a major party candidate in a first-past-the-post type election. Voting systems have been designed to minimize such manipulative incentives, but none is ideal for all situations. In many cases, it is desirable to allow for private voting, but again, one must trust that the person or organization that is collecting the votes is honest.

Existing systems to deal with this problem tend to be complex and expensive, with high redundancy among overseers and other safeguards. A decentralized voting system in which multiple parties can agree on the smart contract ahead of time, using Intel SGX to increase the confidence of its integrity and privacy, minimizes these incentives at very low cost. Such advanced trust architectures are applicable to many voting use cases, from public sector governmental elections to private blockchain ecosystem governance decisions.

Additional projects leveraging SGX Trusted Execution Environments

Fabric Private Chaincode is one of an increasing number of projects leveraging the power of Intel SGX Trusted Execution Environments. These include the related Hyperledger Avalon project which will enable off-blockchain smart contract execution, and commercial offerings such as Data-in-use Protection on the IBM Cloud.

We believe that by enabling wider adoption of Trusted Execution Environment technology for high stakes use cases today, we are helping to pave the way for much more general adoption in many other use cases in the future. We hope to follow in the footsteps of HTTPS, which was adopted as a way to secure credit card purchases online; but soon after gave us the pervasive encryption that secures nearly all web traffic today.

Intel and IBM are collaborating on the Fabric Private Chaincode project to enable new and more efficient models of trust for practical high stakes, real-world blockchain applications. This is an open source project, and we welcome you to try it out and consider using it for your own pilot application, or to join us and participate in the project.

Deploy the IBM Blockchain Platform across multiple environments

More from Cloud

Why is more sustainable asset management for utilities important?

Modern society is dependent on power grids like never before. From cars and buses to buildings, the shift from fossil fuels to electric energy carries enormous promise for a greener future. And utilities will play an essential role in this delicate balancing act, ensuring that increased demand is met with reliable supply, while enabling customers to be active participants and accelerators of the energy transition. Utility companies are hardly alone in this pursuit. According to the IBM 2022 CEO study, Own…

The people and operations challenge: How to enable an evolved, single hybrid cloud operating model

In a year’s time, the average enterprise will have more than 10 clouds, but limited architectural guardrails and implementation pressures will cause the IT landscape to become more complex, costlier and less likely to deliver better business outcomes. As businesses adopt a hybrid cloud approach to help drive digital transformation, leaders recognize the siloed, suboptimal workflows on their public cloud and private and on-prem estates. In fact, 71% of executives see integration across the cloud estate as a problem. These…

How data, AI and automation can transform the enterprise

Today’s data leaders are expected to make organizations run more efficiently, improve business value, and foster innovation. Their role has expanded from providing business intelligence to management, to ensuring high-quality data is accessible and useful across the enterprise. In other words, they must ensure that data strategy aligns to business strategy. Only from this foundation can data leaders foster a data-driven culture, where the entire organization is empowered to take advantage of automation and AI technologies to improve ROI. These…

Save energy, decarbonize and transition to renewables while operationalizing sustainability

Recent political and climate-related environmental events have impacted energy sourcing, supply and costs. The resulting energy crisis impacts all countries, industries, sectors and societies across Europe. Combined with imminent reporting requirements from the European Commission, saving and securing energy sustainably and moving to renewable energy sources equitably is imperative. The immediate energy crisis coincides with the equally crucial long-term journey to sustainability. A traditional management mindset could see this imperative as an onerous obligation that could cut into profitability. But…