Additional Context
Actors
Manufacturers · Distributors · Customs agencies · Pharmacies/retailers · Regulators · Auditors · End consumers (verification only)
Problems
Problem 1: Provenance Verification Without Exposing Commercial Relationships
Supply chain participants must prove product origin, handling, and compliance without revealing supplier identities, pricing, or volume data. Competitors monitoring on-chain provenance trails can reverse-engineer sourcing strategies, margin structures, and supplier dependencies.
Requirements:
- Must hide: Supplier identities, pricing and volume data, routing and logistics details, inventory levels
- Public OK: Product authenticity status, compliance attestation validity, aggregate supply chain health metrics
- Regulator access: Full provenance trail for product safety investigations; origin verification for trade compliance
Constraints:
- Multi-party chains span jurisdictions with different disclosure rules
- Verification must work at point of use (pharmacies, retail, customs checkpoints)
- Legacy ERP and serialization system integration required
Problem 2: Multi-Party Attestation Chains Across Jurisdictions
Each supply chain handoff requires an attestation (shipped, received, inspected, cleared) from a different party in a different jurisdiction. Proving end-to-end compliance requires chaining these attestations without exposing the full chain to every participant.
Requirements:
- Must hide: Individual attestation details from non-adjacent parties; full chain structure from any single participant
- Public OK: Final compliance status (product is authentic and compliant)
- Regulator access: Ability to trace back through the full attestation chain for a specific product or batch
Constraints:
- Attestation standards differ across jurisdictions and industries
- Latency: customs clearance requires near-real-time verification
- Offline/low-connectivity verification at distribution points
Problem 3: Anti-Counterfeiting With Batch/Unit-Level Privacy
Counterfeit goods (particularly pharmaceuticals) are a safety and economic risk. Batch and unit-level tracking enables authenticity verification but creates a detailed map of logistics operations if exposed.
Requirements:
- Must hide: Batch routing, distribution volumes per outlet, inventory turnover rates
- Public OK: Authenticity check result (genuine/suspect), recall status
- Regulator access: Full batch genealogy for safety investigations and recalls
Constraints:
- Serialization mandates (EU FMD, US DSCSA) require unit-level tracking for pharmaceuticals
- Verification at point of dispensing must be fast and reliable
- Scale: millions of units per manufacturer per year
Recommended Approaches
Approach TBD. Key architectural considerations:
- Attestation chains with selective disclosure: each party attests to their step; downstream parties verify without seeing upstream details
- Commitment schemes for batch-level data: commit to logistics data on-chain, reveal only to authorized parties
- ZK proofs for compliance: prove regulatory compliance (origin, handling, temperature) without revealing logistics specifics
Open Questions
- Which supply chain sectors have the strongest near-term demand for on-chain provenance with privacy (pharmaceuticals, food, luxury goods)?
- How do existing serialization mandates (EU FMD, US DSCSA) interact with privacy-preserving provenance systems?
- What is the minimum viable attestation standard for cross-jurisdictional supply chain privacy?
- How to handle dispute resolution when provenance data is privacy-protected?
- Should each supply chain step be cryptographically verifiable through hardware/software provenance (e.g., Content Authenticity Initiative), and what are the trade-offs?
Notes And Links
- Related patterns: Verifiable Attestation, L2 Encrypted Offchain Audit, Commit and Prove
- Regulatory drivers: EU Falsified Medicines Directive (FMD), US Drug Supply Chain Security Act (DSCSA)
- See also: EPIC map (GovTech & EPIC team) — pharmaceuticals, food aid, supply integrity, customs