Since the Ethereum ecosystem and its core principles develop with the intention to take note of the information protection concerns, a brand new proposal recommends a modular compliance strategy as a technique to reconcile public blockchains with the General Data Protection Ordinance of the European Union (GDPR).
On Monday, a proposal designed by Eugenio Reggianini, member of the Ethereum community, proposed using the modular architecture for effective data management and privacy.
“By pushing personal data to the sides (items and DAPPS), using offchain memory with metadata erasure and the division roller cryptographically, we will concentrate the GDPR controller tasks on a small series of units, while the broader network only becomes processors or falls out of the frame,” said Regianini.
The transition from Ethereum to a modular architecture could enable the combination of varied data protection improvement technologies (Pets), which in line with Reggianini can achieve compliance with GDPR in authorizing blockchain environments.
Source: Ethrsarchbot
Technical roadmap: pets for rescue
The proposal describes several technologies which have already been integrated or proposed for Ethereum to scale back the exposure of the private data, including Proto-Danksharding (EIP-4844), whereby the lifespan of the transaction limits the blob lifespan to around 18 days and forces storage minimization.
Zero-knowledge-clammy non-interactive knowledge argument (ZK-Snarks) may also help improve privacy, since they affect validators that confirm the concise cryptographic evidence as an alternative of considering transactional loads, which dramatically reduces the visibility of onchain data.
Further PET integrations that would help with compliance with the GDPR are completely homomorphic encryption and trustworthy execution environments (TE-Stes), multi-party computation (MPC), drive builders separation (PBS) and peer data availability scanning (peerdas).
Ethereum modular compliance strategy
The proposal distinguishes the results of the GDPR within the three levels of the Ethereum network: the execution layer, the consensus layer and the information availability layer.
The execution layer would function as processors that only forward encrypted or blinded data, while the consensus layer would only validate obligations and zero-knowledge evidence. Finally, the information availability layer under Peerdas would only save anonymous shards for limited time frames and reconcile it in accordance with the information minimization principle of the GDPR.
By focusing the information protection disc on the appliance layer and using pets, it could protect the privacy of the users without affecting its core principles, Reggianini claimed.
Nevertheless, the success of the framework will rely on the excellent introduction of the community, the buy-in developer and a possible concentrate on the EU supervisory authorities.
