This document discusses using Oraclize as an oracle service on the Corda platform. Oracles allow decentralized applications to access external data by linking blockchains to data sources outside the ledger. While Corda is not a blockchain, its applications still require deterministic logic and cannot directly access non-deterministic data sources. Oraclize acts as a data carrier that can securely connect Corda applications to web APIs and other contexts. It delivers data along with "authenticity proofs" to cryptographically guarantee the data has not been tampered with. This allows sensitive Corda applications to leverage external data without compromising security. The document demonstrates how Oraclize can be integrated with Corda and how its authenticity proofs can

1. Full auditability powered by Corda & Oraclize: a trust-minimised
approach to Trusted Computing
Thomas Bertani
London - September 12th, 2018

2. Problem: the “walled garden” limitation
DECENTRALIZED
APPLICATION
BLOCKCHAIN
Due to technical limitations, decentralized applications are walled in their own
garden and cannot fetch external data directly. Still, data-rich smart contracts are
enabling decentralized applications to have a concrete impact on the real-world.
Practically speaking, blockchain oracles provide a connection between blockchain
applications and any other context, like the Web.

3. Oraclize, today: the leading oracle service for blockchain apps
DECENTRALIZED
DATA-RICH
APPLICATION
BLOCKCHAIN
Oraclize implements an high security layer which enables the delivery of data to
blockchain applications. Along with data, Oraclize delivers “authenticity proofs” -
strong cryptographic guarantees protecting against data tampering.
Thanks to its security guarantees, to it being general purpose and to its integration
with multiple blockchains, Oraclize is today the most widely used oracle service,
being adopted by both blockchain startups and enterprises.

4. Oraclize on Corda?
What do oracles really bring to the
ledger?
● real world data
● data coming from different
contextes/networks
○ Internet
○ another blockchain
○ ..
● non-repudiable permanent
claims around some facts
● deterministic results on
non-deterministic
computations
“oracles: network services that link
the ledger to the outside world by
providing facts that affect the
validity of transactions.”
(R3 Corda docs)
Corda is not a blockchain, but it has
a ledger in need of deterministic
logics. As such, its context cannot
reach out to non-deterministic
datasources.

5. Oracles 101: introducing three distinct entities
application
Requires the data.
(i.e.: a CordApp)
oracle
Provides the data.
(Corda Service)
data source
The data.
(Ledger agnostic)

6. Warning: security should NOT be compromised
DATA-RICH
CORDAPP
CORDA TESTNET
Being security one of the key features we wanted to get in the first place, it is important
that such security is not compromised when interacting with an external context.
When going from PoC to production, having a reliable technology is essential.
Oraclize implements an high security layer which enables the delivery of data to different
contexts. Along with data, Oraclize delivers “authenticity proofs” - strong cryptographic
guarantees protecting against data tampering.

7. The Oraclize solution
Oraclize acts as a data-carrier connecting two
contexts (like a given Corda network to a Web API) in
a standard and reliable way.
Along with the data that was requested, Oraclize
delivers “authenticity proofs” - strong cryptographic
guarantees protecting against data tampering.
a complete vendor-agnostic solution to authenticate
processes without relying on central points of failure

8. Trust model: authenticity proofs on data.. and offchain executions!
Based on TLS Notary Based on Trusted Computing Based on native signatures
Guarantees the authenticity of data
via a fully auditable challenge game
around the TLS handshake process.
Guarantees the authenticity of
data via multiple techniques
(sw/hw isolation):
● Qualcomm TEE
● Android SafetyNet
● Ledger Nano S Attestation
● Samsung Knox
● Intel SGX
Guarantees the authenticity of data
thanks to a specially crafted protocol,
defined by an IETF standard
proposal:
“cavage-http-signatures-09”.
The signatures are provided by the
datasource directly and are on-chain
verifiable.

9. The Oraclize approach
DECENTRALIZED
DATA-RICH
APPLICATION
BLOCKCHAIN
+ thin connection
layer with multiple
blockchain
platforms
+ extends the
network
capabilities
+ Web APIs
+ different protocols
(IPFS/SWARM, ..)
+ auditable offchain
computation
+ multiple authenticity proofs (based on TLS Notary, on
Trusted Computing and on native signatures)
+ authenticity proof verification tool

10. Trust model: authenticity proofs
A
AA
B
BB
C
CC
The capabilities of an isolated context can be
extended thanks to claims backed by
attestation techniques (Trusted Computing, ..).
Oraclize leverages those techniques to offer a
reliable data-transport-layer connecting the two
worlds, where the security is granted by
cryptographic guarantees proving the
authenticity of data.
Today, Oraclize supports authenticity proofs
based on a variety of technologies.

11. Trust model: the importance of attestators diversity
It all comes down to attestation: the authenticated claim of an attestator which moves the trust away
from the operator to the attestator.
IF operator == attestator:
these techniques overcomplicate things (a signature is enough)
IF attestators come together in a consortium:
explicit agreement and intent to cooperate make this diversity weaker
IF independent third party uses these techniques as a service (Oraclize):
stronger claims obtained by the chaining of claims
Amazon
(TLSNotary)
Google
(SafetyNet)
Qualcomm
(Android
proof)
Ledger
(Ledger
proof)
Chain of claims coming from:

12. Bundling all these into a box: the Oraclize engine
TLS Notary
Qualcomm TEE
Intel SGX
Ledger TEEOther
Multiple layers of protection.
A
AA
B
BB
C
CC

13. Getting started: Oraclize on Corda
https://github.com/oraclize/corda-api

14. Demo / 1

15. Demo / 2

16. Trust model: authenticity proofs verification

17. Trust model: auth proofs verification on Corda
Thanks to the Corda architecture, verifying authenticity proofs before using
the data (coming from the oracle) is convenient, making the whole process
secure and seamless.

18. Find us on the R3 Marketplace

19. Oraclize on Corda?
What do oracles really bring to the
ledger?
● real world data
● data coming from different
contextes/networks
○ Internet
○ another blockchain
○ ..
● non-repudiable permanent
claims around some facts
● deterministic results on
non-deterministic
computations
“oracles: network services that link
the ledger to the outside world by
providing facts that affect the
validity of transactions.”
(R3 Corda docs)
Corda is not a blockchain, but it has
a ledger in need of deterministic
logics. As such, its context cannot
reach out to non-deterministic
datasources.

20. Oraclize
World’s most widely
adopted blockchain
oracle service
Service running since
2015
Integrated with a variety
of blockchain platforms
Presented at 100+
conferences around the
world
500,000+ data-requests
processed on the
Ethereum Mainnet only
De-facto standard to
connect Dapps with
the real-world
DECENTRALIZED
DATA-RICH
APPLICATION
BLOCKCHAIN
Oraclize acts as a “data carrier”, connecting
decentralized applications and Web APIs in a
standard, reliable and secure way.

21. Current status ~ the Oraclize adoption on Ethereum
850+ devs in
our community
500k+ API
requests from
Ethereum
mainnet
700+ public
GitHub
repositories
operating for 3
years
on mainnet (!)
tens of thousands
of
testnet queries
every day

22. Our numbers
● integrations with 6+ different blockchains:
● - Ethereum (both public and private) / BlockApps Strato / Quorum
● - Bitcoin
● - Rootstock
● - EOS
● - R3 Corda
● - Hyperledger Fabric
●
● authenticity proofs based on 4 different technologies/attestators

23. Ecosystem

24. Questions?
info @ oraclize.it
Twitter: @oraclizeit