Reputation: 53
Hyperledger private data dynamic access
Is it possible to dynamically set access to private data in Hyperledger fabric 1.4? Unlike the collections file where we have to add the organizations that can have access to a particular "collection", is it possible to add access through chaincode?
Upvotes: 4
Views: 398
Answers (1)
Reputation: 793
Had to do some research on this myself, but since Fabric v1.4 it is possible to dynamically add peers to private data collections. Private data reconciliation ensures that all private data state in that collection, which was created prior to the peer joining, will be delivered to the new peer.
In more detail: With the collections file you specify an initial endorsement policy. This endorsement policy can be updated later through a SDK function called SetPrivateDataValidationParameter. After this update takes place, new private data key-value-pairs will be delivered according to the new endorsement policy.
Additionally, if you want to update the collections definition file itself, you can specify a new one when upgrading the chaincode. The collections definition file specifies, which peers are allowed to see the data, so in order to change that, you need to upgrade your chaincode.
Upvotes: 2
Related Questions
- Hyperledger Fabric Private Data Collection
- Hyperledger Fabric 2.2 - securing private data with collection-config
- Dynamic access control in Hyperledger Fabric
- Hyperledger Fabric, how to share private data with another peer node?
- Hyperledger Fabric: implementing chaincode level access control
- Hyperledger Fabric: Private Data and World State
- Question regarding Private Data Collection
- Managing privacy in hyperledger fabric
- Partial data privacy in Hyperledger Fabric
- Privacy on Hyperledger Fabric v1.0