Abstract: Provided are systems and methods for inserting friction points into a user session with an online resource such as a website or mobile application. In one example, the method may include receiving user data, predicting a likelihood that the user will behave inappropriately when interacting with an online resource of the host platform based on the received user data, determining a friction point in response to the predicted likelihood the user will behave inappropriately being greater than a predetermined threshold, and modifying at least one of displayed content and interactive capabilities of the online resource which are available to the user based on the determined friction point.

Abstract: Systems and methods for embodiments of identity management systems and data models used by identity management systems are disclosed. Embodiments of the identity management systems and associated data models as disclosed herein may associate identities with their respective entitlements, while preserving the hierarchy imposed by the source system from which those identities or entitlement were derived, including the hierarchical structure that resulted in the (direct or effective) assignment of such an entitlement, along with the hierarchical nature of the digital assets to which those entitlements pertain.

Abstract: A blockchain based numerical value ranking method includes: using, by a first participant, a public key of the first participant to encrypt a private value of the first participant to obtain an encrypted text of the first participant; obtaining encrypted texts of other participants, and generating a challenge value having a preset bit length; based on the challenge value and the private value of the first participant, and the encrypted texts and public keys of the other participants, determining mixed results of the first participant with respect to the other participants; and determining a numerical value ranking result between the first participant and a second participant based on the mixed result of the second participant with respect to the first participant.

Abstract: This application relates to the field of wireless communications technologies, and discloses an encoding method and apparatus, to improve accuracy of reliability calculation and ordering for polarized channels. The method includes: obtaining a first sequence used to encode K to-be-encoded bits, where the first sequence includes sequence numbers of N polarized channels, the first sequence is same as a second sequence or a subset of the second sequence, the second sequence comprises sequence numbers of Nmax polarized channels, and the second sequence is the sequence shown in Sequence Q11 or Table Q11, K is a positive integer, N is a positive integer power of 2, n is equal to or greater than 5, K?N, Nmax=1024; selecting sequence numbers of K polarized channels from the first sequence; and performing polar code encoding on K the to-be-encoded bits based on the selected sequence numbers of the K polarized channels.

Abstract: Methods and systems for secure computation and communication are described herein. The method includes transforming identifications of a first dataset using a transforming scheme, dispatching the transformed identifications of the first dataset, receiving identifications of a second dataset, transforming the identifications of the second dataset, dispatching the transformed identifications of the second dataset, receiving a set of identifications, generating a first intersection of the received set of identifications and the transformed identifications of second dataset, and determining a first permutation based on the first intersection. The method also includes performing an oblivious shuffling based on the first permutation and a set of attributions to generate a first share. A size of the first share is the same as a size of the first intersection. The method further includes receiving a second share and constructing a first result based on the first share and the second share.

Abstract: A method for performing on-behalf tokenization for an automated teller machine (ATM) transaction to enable cardless transactions for any institutional entity includes: receiving, by a receiver of a processing server, a withdrawal request from a first computing system, the withdrawal request including at least a payment token and transaction data; validating, by a processor of the processing server, the payment token included in the withdrawal request; transmitting, by a transmitter of the processing server, the payment token to a second computing system; receiving, by the receiver of the processing server, cryptographic data from the second computing system; transmitting, by the transmitter of the processing server, at least the payment token, cryptographic data, and transaction data to a third computing system, wherein the first computing system, third computing system, and processing server are separate and distinct systems.

Abstract: A system and method for mapping licenses from disparate data sources and databases from third parties triggered by a system registration request, analyzing data structures for license information records and third-party information records, cross-referencing a license record with a third-party information record, flagging database records that reflect a license field record change, updating mapping-related procedures and queries, and providing a presentation of license information records and related status.

Abstract: A computer-implemented method for analyzing call interactions in an interactions database by a Proactive Fraud Exposure (PFE) engine is provided herein. The computer-implemented method may generate a voiceprint for each call interaction; (ii) use a machine learning technique to group the call interactions into one or more clusters based on respective voiceprints in the voiceprints database; (iii) store the one or more clusters; and (iv) rank and classifying the one or more clusters to yield a list of potential fraudsters. The computer-implemented method may further transmit the list of potential fraudsters to a user to enable the user to review said list of potential fraudsters and to add fraudsters from the list to a watchlist database.

Abstract: A system and method to facilitate matching of individuals/corporations to regulatory experts is disclosed. Accordingly, the method provides a streamlined process for disclosing a product or invention, including steps of detailing input related to a product from a client device, filtering through international intellectual property experts, and collaborating with a certified expert to organize and complete necessary documentation and paperwork. The end result is a product that is appropriately prepared for distribution in a foreign country. Input related to the product may be analyzed to determine a type of the product by using a processing device. Further, the method may include receiving input from one or more expert devices related to a field of expertise of one or more regulatory experts. Input may also be analyzed to determine an appropriate expert. Furthermore, the method may include a step of transmitting notifications between the expert device and the client device.

Abstract: A first feature is displayed within a first view of a user interface. A first selection of the first feature is configured to display a first set of identifiers corresponding to one or more tasks. A second feature is displayed within the first view of the user interface. A second selection of the second feature is configured to display a second set of identifiers corresponding to a set of workers. Each worker of the set of workers is associated with the one or more tasks and a first time that the one or more tasks are scheduled to be completed by. A set of status indicators are displayed. Each status indicator of the set of status indicators indicates whether the one or more tasks have been completed by the first time for the each worker of the set of workers based at least in part on the associating.

Abstract: Techniques for managing redundant or overlapping access rules are provided. Access rules are determined for evaluation. Performance metrics for the access rules prior to implementation and post implementation are determined. Overlapping access rules are identified. Performance of the overlapping access rules are evaluated to determine actions to be applied to the overlapping access rules. Recommended actions and adjustments can be automatically provided by the system based on the performance analysis.

Abstract: Receive a user request to perform a service request associated with user data. Select, based on the user request, a first service provider interface (SPI) integrated into a first service, the first SPI being configured to obtain and buffer the user data from a datastore associated with the first service into a first buffer of the first SPI. Obtain, by the first SPI, a first page of records of the user data from the datastore. Buffer, by the first SPI, the first page of records in the first buffer of the first SPI as the records of the first page of records are being obtained from the datastore. Provide, by the first SPI, the first page of records to a central controller engine. Store, by the central controller engine, the first page of records. Provide the first page of records to a user.

Abstract: Blockchain-based systems and methods related to creating and distributing cryptographically secure, digital tokens representing equity in assets corresponding to loan agreements. The system may comprise a transaction interface portal configured to collect and manage information pertaining to the origination of a loan agreement or a token transaction agreement. The system may include an underwriting smart contract configured to autonomously verify the value of an asset corresponding to a loan origination based at least partially on information not originating on the blockchain. The system may deliver tokens through a programmable escrow wallet configured to deliver tokens to buyers upon the satisfaction of encoded regulatory criterion. The system may be configured to determine the price of one or more tokens before delivery and adjust the price based at least on the appreciating value of the assets corresponding to the loan agreements and the number of tokens retired by the system.

Abstract: A method for propagating survival of cryptographic currency after inactivity over a predetermined period of time in a blockchain through the use of smart contracts includes: receiving a propagation request that includes unspent transaction output addresses, a digital signature, and a recipient address; generating a smart contract that is configured to self-execute after a predetermined period of time to initiate transfer of cryptographic currency from the output addresses to the recipient address; submitting the smart contract to a node in a blockchain network for addition to the blockchain; monitoring for new blockchain transactions involving any of the unspent transaction output addresses; generating a new smart contract to update the unspent transaction output addresses based on new blockchain transactions; and submitting the new smart contract to a node in a blockchain network after updating.

Abstract: An example operation may include one or more of receiving, by a retailer node, an encrypted inventory of goods data from a plurality of supplier nodes over a blockchain network, computing, by the retailer node, an ordering proportion based on the encrypted inventory of goods data, generating, by the retailer node, an ordering policy based on the ordering proportion, and executing a smart contract to order goods from the plurality of the supplier nodes based on the ordering policy.

Abstract: A bucket position acquisition unit acquires a plane position of a contour point of a bucket in a plan view from the top and a height thereof from a work machine having work equipment including a boom, an arm, and the bucket. A current status landform update unit updates a height in current status landform data related to the plane position of the bucket to an upper value on the basis of the height of the bucket in a case where a work state is a predetermined work state.

Abstract: Methods, systems, and computer readable medium for verifying interactions with digital components. The method includes receiving input indicating interaction associated with a digital component that is provided by a content provider and presented by a user interface of the user device, determining, by a trusted program of the user device, that the interaction is valid, generating, by the trusted program and based on the determination that the interaction is valid based on a validity evaluation, a digitally signed token that attests the validity of the interaction with the digital component, and providing, by the trusted program and to a third party, the digitally signed token as an indication of the validity of the interaction.

Abstract: Systems and methods for providing a threat intelligence system include a system provider device that downloads, through communication over a network and from one or more targeted websites, a plurality of images of a first environment. Based on an OCR process, the system provider device may extract a set of textual data corresponding to a subset of images of the plurality of images, where the subset of images depict text. The system provider device stores the set of textual data in an indexed and searchable database. The system provider device assigns a threat assessment score to each image based on the set of textual data, and the threat assessment score may be updated based on comparison of the set of textual data with other sets of textual data. Based on the threat assessment score being greater than a threshold value, the system provider device may generate a security alert.

Abstract: A multiply-redundant system that prevents a driver from starting and/or moving a vehicle if a compressed natural gas fill system is not correctly and completely disconnected from the vehicle. One or more sensors in combination with one or more optional microswitches combine to lock-out the vehicle's ignition or otherwise prevent it from starting and/or moving. For different levels of safety, different combinations of sensors can be used with the lowest level having a single proximity sensor sensing the presence or absence of a high-pressure fill hose. The highest level of safety being achieved by having separate proximity sensors on the fuel fill hose fitting, the gas cap cover and a manual safety valve along with a redundant microswitch. An optional override that may be restricted as to the number of times it can be used can allow starting with a faulty sensor in order to allow maintenance.

Abstract: A method for protecting entities against bots is provided. The method includes identifying a request from a client to access a protected entity; selecting an access policy in response to the access request, wherein the access policy includes at least one challenge to be performed by the client; identifying results of the at least one challenge, wherein the results are provided by the client upon completion of the challenge; determining a bias of the client based on the completion results, wherein the determined bias is utilized for a cyber-security assessment of the client; and granting access to the protected entity by the client based on the determined bias.

Abstract: Systems, devices, and methods are described herein for distributing syndicated content or content with one or more distribution restrictions. In one aspect, a method may include assigning a unique ID to a plurality of content items, where the unique ID of at least one of the content items is associated with one or more property distribution restrictions. The method may further include streaming in a video stream the content items to at least two properties and monitoring the unique IDs of the plurality of content items streamed in the video stream to detect least one content item associated with the one or more property distribution restrictions. The distribution of the least one content item associated with the one or more property distribution restrictions may be blocked from the one or more properties concurrently with streaming the video stream, based on the one or more property distribution restrictions.

Abstract: An authorization system includes a database, and at least one computer server in communication with the database. The database includes a plurality of database records, each including an account number and an associated card number. Each card number has fewer digits than the associated account number. The server is configured to receive, from a communications terminal, a request message that initiates a transaction with the server. The server is configured to request an authentication credential from the terminal, and in the database locate the card number that matches the received authentication credential and locate the account number that is associated with the located card number. The server is configured to request authorization of a test transaction using the account number, receive an authorization response confirming authorization of the test transaction, and authorize the initiated transaction in response to the authorization response. The test transaction is different from the initiated transaction.

Abstract: An identity authority computing device having a processor in communication with a database is described herein. The database stores a plurality of persistent user identifiers associated with a plurality of users. The processor is programmed to receive a service request over a public network, the service request including a service provider identifier and a single-use token value associated with one of the users. The processor is also programmed to determine at least one persistent user identifier associated in the database with the token value, and generate an updated service request including the at least one persistent user identifier. The processor further is programmed to generate an encrypted service request using a public encryption key associated with the service provider identifier, and transmit the encrypted service request to a service provider computing device associated with the service provider identifier.

Abstract: An article recognition device includes an image interface, a distance information interface, a support unit, and a processor. The support unit supports an article at a height equal to or greater than a minimum discrimination distance of a distance sensor from a reference plane of the distance sensor and includes a member of which a distance cannot be measured by the distance sensor. The processor acquires a captured image capturing the article supported by the support unit through the image interface, acquires distance information measured by the distance sensor toward the reference plane through the distance information interface, extracts an area having a height equal to or greater than the minimum discrimination distance from the reference plane as an article area of the article from the captured image based on the distance information, and recognizes the article from an image of the article area.

Abstract: Systems, methods, devices, and computer readable media related to fraud detection. Fraud detection is achieved using a flexible scripting language and syntax that simplifies the generation of fraud detection rules. The rules are structured as conditional IF-THEN statements that include data objects referred to as Anchors and Add-Ons. The Anchors and Add-Ons used to generate the rules also correspond to a distinct data path for the retrieval data from any of a variety of data sources. The retrieval of data from the various data sources is optimized based on data dependencies within the rules. By knowing the data dependencies of each rule and utilizing parallelization of rule execution, the retrievals of data from the data sources is achieved efficiently so the rules can be executed quickly.

Abstract: An uplink data transmission method includes a report procedure. The report procedure includes: obtaining a start page number according to a page queue header of a page queue, where the page queue has a plurality of page records in sequence, the start page number corresponds to one of the page records, each of the page records includes a page size, and the page size is a sum of data sizes of packets corresponding to the page record; summing the page size of the page record corresponding to the start page number and the page size of each of the subsequent page records one by one to calculate a first sum result; and outputting the first sum result as a report size.

Abstract: Disclosed herein are system, method, and computer program product embodiments for pooling requirements, such as placing of multiple purchase orders, while preserving the privacy of the requirements provided by requesters placing the orders. The approach involves receiving first encrypted information comprising a first request from a first client and second encrypted information comprising a second request from a second client. An encrypted intersection result of the first request and the second request can then be calculated using the first encrypted information and the second encrypted information, in their encrypted form without the need to decrypt either.

Abstract: The present disclosure illustrates systems and methods for automatically adjusting a following 3D asset based on a deformation of a related base 3D asset. The systems and methods may use geomaps to index the relationship between the following 3D asset and base 3D asset. By automatically adjusting a following 3D asset based on the base 3D asset, the following 3D asset may retain full functionality.

Abstract: At least one aspect of the present disclosure is directed to systems and methods of converting static content items into interactive content items. A data processing system can identify a first content item. The data processing system can divide, in accordance with a partition template, the visual content of the first content item into a plurality of segments. The partition template can define a number of segments to be formed from the visual content. The data processing system can generate a second script. The second script can assign each segment into a position. The script can enable movement of each segment within the frame. The script can determine that the segments are moved to a target position. The script can perform an action to provide information related to the visual content. The data processing system can provide the second content item to a client device.

Abstract: The present invention provides methods, apparatuses, and systems for delivering protected streaming content to a receiving device. In an aspect of the present invention, a broadcaster provides streaming content. To ensure viewers are properly authorized, the streaming content is encrypted with a traffic key. The traffic key is provided to the users via a key stream message, which is encrypted with a service key. The user obtains at least one rights object from a rights issuers and the at least one rights object includes the service key so that the streaming content may be used. The at least one rights object also contains information regarding usage rights that may be configured by the rights issuer so that, depending on the user and/or the receiving device, different rights may be available. The key stream message may include a program category variable value that indicates the type of content and in conjunction with the rights object, determines what usage rights exist for the streaming content.

Abstract: A shovel includes a cabin, a display device attached to the cabin, and a main pump. An internal combustion is configured to drive the main pump. An information acquiring device is provided. A controller is configured to calculate an amount of work based on the information acquired by the information acquiring device and to cause the display device to display the amount of work per predetermined period of time in a chronological order.

Abstract: A pre-processing and fulfillment system and method are described. In some implementations, the method may include receiving an order containing a retail component and a pharmacy component, processing the order for the pharmacy component and the retail component, and generating a tracking token identifying the order and authorizing a party to receive a component of the order. The method may include transmitting fulfillment instructions to a fulfillment system based on processed information for the order, and transmitting the tracking token to a computing device of the authorized party. Some implementations may also include receiving a signal indicating receipt of the tracking token and an authorized transfer of the component, and updating a status of the order based on the received signal.

Abstract: A method, system and computer-readable storage medium for controlling access to application data associated with an application configured on a computing device.

Abstract: Methods and systems for assembling remote workers in an online corporate environment are provided. The method includes a use of the system to filter a subpopulation from a population stored in a database, the population including members in the self-paced, online environment. The subpopulation can be selected to meet a first set of criteria for a grouping of members for a group interaction. Additional criteria can be added to provide control over the selection of members for the subpopulation and, thus, control over the design of groups to provide a desired group profile for the group interaction. The methods and systems provided can align and group members of the self-paced, online environment for a group interaction, as well as electronically proctor and otherwise monitor and control the interaction.

Abstract: In one embodiment, a method includes receiving, from a requestor, a request for an on-demand product. The method further includes determining an eligibility token format applicable to the request, wherein the eligibility token format comprises a plurality of partial segments of identifying information. The method also includes prompting the requestor to provide a plurality of partial-segment values corresponding to the plurality of partial segments. In addition, the method includes receiving the plurality of partial-segment values in response to the prompting. Moreover, the method includes generating an eligibility token from the plurality of partial-segment values. The method also includes determining the requestor's eligibility for the on-demand product based, at least in part, on a lookup of the eligibility token in an eligibility token repository. The eligibility token repository includes a plurality of eligibility tokens of the eligibility token format.

Abstract: In an example, a subject using a user mobile-identification-credential device (UMD) requests vetting by a vetting system, which receives verified subject information associated with a level-n mobile identification credential (MIC-n) that UMD received from a level-n authorizing party system (APS-n). MIC-n is linked to lower level MIC-0 to MIC-(n?1). The vetting system, as level-n relying party system (RPS-n), uses the verified subject information associated with the linked MIC-0 to MIC-n to verify or not verify the identity of the subject, develops an identity profile of the subject, and determines a vetting result of the subject by calculating a composite trust score based on MIC trust values for the multiple levels of MIC. MIC-i (i=1 to n) is linked to MIC-(i?1) which UMD received from APS-(i?1), and APS-i is RPS-(i?1) which verified the identity of the subject using verified subject information associated with MIC-(i?1), such that MIC-0 to MIC-n are linked.

Abstract: Disclosed are various embodiments for detecting security breaches using watchdog transaction accounts. A security agent can initiate a purchase with a first electronic commerce system and provide a watchdog transaction account as payment for the purchase. The security agent can then store a record of the purchase which includes a merchant identifier for the merchant and the watchdog transaction account. Subsequently, a transaction authorization system can determine that authorization for a transaction with second electronic commerce system failed. If the transaction authorization system determines that the account used in the transaction with the second electronic commerce system, then the transaction authorization system can determine that the first electronic commerce system has suffered a security breach.

Abstract: Aspects described herein include a computer-implemented method (and related system and computer program product) comprising receiving, from a bonding service, an authorization request for a predefined authorized use of a good or service by a user. The authorization request indicates that the user meets one or more predefined criteria for the predefined authorized use. The method further comprises determining one or more penalty conditions of a bonding agreement for the predefined authorized use by the user, and receiving, from the bonding service, a confirmation that the user agrees to meet the one or more penalty conditions of the bonding agreement. The method further comprises receiving, from an owner of the good or service, an authorization of the authorization request, and transmitting, responsive to authorization of the authorization request, a token to the bonding service that enables the user to access the predefined authorized use of the good or service.

Abstract: According to an embodiment disclosed herein, an interface device to be connected to an external mobile device may comprise: a connector; at least one integrated circuit (IC); a memory for storing firmware for the at least one IC and instructions; and at least one processor configured to execute the stored instructions, wherein the instructions, when executed by the processor, cause the processor to: transmit identification data of the interface device, including data associated with the firmware, to the external mobile device through the connector when the interface device is connected to the external mobile device through the connector; receive firmware update data for the at least one IC, which corresponds to the identification data, from the external mobile device through the connector; verify the integrity of the firmware update data; and update the firmware stored in the memory by using the firmware update data when the integrity of the firmware update data has been verified.

Abstract: The present subject matter discloses a system(s) and a method(s) for determining a health state of an individual. According to an embodiment, a method comprises measuring, by a heart rate sensor, a heart rate of the individual during operation within the environment. The method further comprises outputting, by a pressure sensing platform, pressure data of the individual. Further, the method comprises outputting, by an image capturing device, image data of the individual. The method further comprises inferring, by a processing unit, an amount of fat of the individual in the image data. The method further comprises updating, by the processing unit, the amount of fat of the individual using the pressure data. The method further comprises controlling, by the processing unit, a threshold for determining the health state of the individual, using the amount of fat and the heart rate of the individual.

Abstract: An apparatus to target recipients of media content items comprises a camera, a communication interface, and a selector input device. The selector input device is communicatively coupled to the camera and the communication interface and has settings associated with groups of recipients. The groups of recipients include a first group and a second group. In response to receiving a selection of a first setting from the selector input device, the camera captures a first media content item and the communication interface transmits the first media content item to the first group. The selector input device can be a rotary wheel. To select the first setting from the plurality of settings, the user can rotate the rotary wheel to the first setting and press the rotary wheel. Other embodiments are described herein.

Abstract: Media content items is provided to content consumers for playback by the disclosed system that includes plurality of nodes interacting with each other based on a defined protocol in communication network. A first node associated with a first participant receives a request for playback of a media content from a content consumer. A second node associated with a second participant provides media content rights to the first participant and/or the content consumer. The first node further provides media content metadata to the consumer device for consumption. A plurality of instances of a distributed media rights transaction ledger, associated with respective node, includes a plurality of media content rights transactions which corresponds to an acquisition of the media content rights by the first participant and/or content consumer prior to the consumption of the media content, and are managed by the plurality of nodes in accordance with the defined protocol.

Abstract: A health and fitness management system that employs an algorithm to determine suggested recommended actions for a user to improve their health and fitness. The system obtains a user's health indicating measurement from a respective acquisition device. The user is never informed of the acquired data. The health indicating measurement can include a heart/pulse rate, blood pressure measurement, weight, etc. Base line data (age, ideal age, initial weight, current weight, ideal weight, etc.) can be considered in the algorithm. Examples include the user's environment, sleep habits, exercise routines, medical records, and the like. The health index number is used to determine recommended actions, which can include changes to environments, routines, activities, etc. Data collection, the algorithm, and other features of the system can be provided by an Application operating on a portable computing device. Features of the portable computing device can be employed to automatically acquire data for the algorithm.

Abstract: Methods and systems for improved creation, monitoring, and updating of energy transactions are provided. In one embodiment, a method is provided that includes receiving a request to originate a contract for an energy transaction. Transaction information concerning the energy transaction may be received and may identify a type of energy resource and parties for the energy transaction. A requirement for the energy transaction may be identified within the contract codex and at least one condition may be determined based on the requirement. An updated contract may be generated by adding the at least one condition to the contract. Information regarding the updated contract may be stored on the distributed ledger.

Abstract: A method for providing a game service and a server for performing the same are disclosed. A method by which a server provides a game service can comprise the steps of: receiving image data including motion data from a user terminal; generating skill motion sequence data of a game character corresponding to the motion data; and adjusting a skill motion of the game character on the basis of the generated skill motion sequence data.

Abstract: Systems and methods for transferring value. A method includes posting, by a user device to a blockchain, a deposit transaction comprising a deposit value and conditions and updating, by the user device, a state according to a transaction amount. The method also includes transmitting, by the user device, a state update of the state to a server computer and responsive to transmitting the state update, and receiving, by the user device, a payment complete message comprising a tuple from the server computer. The method also includes verifying, by the user device, the conditions and processing, by the user device, a server deposit transaction on the blockchain in response to verifying.

Abstract: Systems, methods, and computer program products for evaluating situational awareness of a cyberspace operational environment in a security control server in connection with a cyber-liability insurance transaction. The system may include a security control server that generates a model representing a cyber-liability insurance transaction. The security control server may further generate a ranked list of recommended security controls that are designed to reduce cyber-risks, and thereby the premium, associated with the cyber-liability insurance transaction model. Additionally, the security control server may continuously and automatically monitor one or more security controls implemented by a cyber-liability insurance consumer to insured information technology assets to evaluate compliance with the cyber-liability insurance transaction model.

Abstract: Methods, systems, and computer-readable media for secure offline transmission of a plurality of data segments from a sending device to one or more receiving devices. The sending device and the one or more receiving devices may communicate via an offline local network. A secure, encrypted container may be created at the receiving device to temporarily cache the received data segments one at a time and the encrypted storage container prevents access by one or more applications of the receiving device to data stored therein based on storage instructions from the sending device. The encrypted container may be configured to store the data segments such that less than all of the data segments are stored at the receiving device at any one time.

Abstract: An example operation may include one or more of receiving, by a retailer node, an encrypted inventory of goods data from a plurality of supplier nodes over a blockchain network, computing, by the retailer node, an ordering proportion based on the encrypted inventory of goods data, generating, by the retailer node, an ordering policy based on the ordering proportion, and executing a smart contract to order goods from the plurality of the supplier nodes based on the ordering policy.

Abstract: A method for accessing listings in a data exchange includes creating a first listing in a data exchange, the first listing referencing a first database of a plurality of databases and specifying identity-based sharing of the first database, creating a second listing in the data exchange, the second listing referencing a second database of the plurality of databases and data of the first database shared according to the identity-based sharing of the first database, and receiving an instruction from a user of the data exchange, the instruction referencing the second listing and instructing the addition of the second listing to a set of consumed data shares accessible by the user.