Conference PaperPDF Available

A Secure and Practical Decentralized Ecosystem for Shareable Education Material



Traditionally, the university landscape is highly federated, which hinders potentials for coordinated collaborations. While the lack of a strict hierarchy on the inter-university level is critical for ensuring free research and higher education, this concurrency limits the access to high-quality education materials. Especially regarding resources such as lecture notes or exercise tasks we observe a high susceptibility to redundant work and lacking quality assessment of material created in isolation by individual university institutes. To remedy this situation, in this paper we propose CORALIS, a decentralized marketplace for offering, acquiring, discussing, and improving education resources across university borders. Our design is based on a permissioned blockchain to (a) realize accountable access control via simple on-chain license terms, (b) trace the evolution of encrypted containers accumulating bundles of shareable education resources, and (c) record user comments and ratings for further improving the quality of offered education material.
A Secure and Practical Decentralized Ecosystem for
Shareable Education Material
Roman Matzutt, Jan Pennekamp, and Klaus Wehrle
Communication and Distributed Systems
RWTH Aachen University, Germany
{matzutt, pennekamp, wehrle}
Abstract—Traditionally, the university landscape is highly fed-
erated, which hinders potentials for coordinated collaborations.
While the lack of a strict hierarchy on the inter-university level
is critical for ensuring free research and higher education, this
concurrency limits the access to high-quality education materials.
Especially regarding resources such as lecture notes or exercise
tasks we observe a high susceptibility to redundant work and
lacking quality assessment of material created in isolation by
individual university institutes. To remedy this situation, in
this paper we propose CORALIS, a decentralized marketplace
for offering, acquiring, discussing, and improving education
resources across university borders. Our design is based on a
permissioned blockchain to (a) realize accountable access control
via simple on-chain license terms, (b) trace the evolution of en-
crypted containers accumulating bundles of shareable education
resources, and (c) record user comments and ratings for further
improving the quality of offered education material.
Index Terms—blockchain platform; permissioned blockchain;
education material; quality assessment; collaborative work
Author manuscript.
2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including
reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or
reuse of any copyrighted component of this work in other works. DOI: 10.1109/ICOIN48656.2020.9016478
While universities have the common goal of providing
high-quality education to form young experts, the university
landscape is inherently federated and even a competitive envi-
ronment regarding publications and available funding sources.
This competitive aspect of research puts the modern university
landscape under high pressure [1] and thus researchers find
themselves in a dichotomy: A certain level of collaboration
among mutually trusting institutes proves profitable to gain
high-quality insights, but avoiding tight collaborations out of
the fear of losing a lead over competitors has also been es-
tablished as a rational approach. This dichotomy is especially
apparent when taking the universities’ duty to educate into
account. Currently, there exists no clear incentive for univer-
sities to collaboratively create or improve education resources,
such as lecture notes, slides, or exercise tasks. This status quo
introduces a major drawback: Similar education material is
frequently being created and maintained redundantly across
different institutes, potentially even within one university. If
institutes could instead invest this time into improving each
others’ education resources, we see a great potential for creat-
ing high-quality and highly vetted pools of education material
from which all students could benefit equally. While individual
contractual collaborations across university institutes [2] and
education repositories of varying focuses [3] exist, those
isolated approaches cannot unveil the full potential of globally
available high-quality education material. However, a versatile
range of education prospects is critical to properly prepare
students and seize creative opportunities. Yet, these aspects
are threatened by strong centralization in education [4].
Hence, in this paper we propose to create a decentralized
ecosystem that incentivizes the collaborative creation, main-
tenance, and improvement of education resources. Distributed
ledgers such as blockchain systems provide the means to create
such an ecosystem despite the inherent trust barriers regarding
inter-university collaborations. Popularized by Bitcoin and
Ethereum, distributed ledgers constitute a general medium for
the secure and accountable interaction of mutually distrusting
parties [5], [6]. Our proposed blockchain-based platform,
CORALIS, serves as a decentralized index of available educa-
tion resources, provides a marketplace with accountable access
control for these resources, and incentivizes collaboration
across university borders to improve them. To achieve these
desired properties, CORALIS relies on immutably recording
all relevant events on its underlying permissioned blockchain:
First, material providers, who can either be university teachers
or accepted third-party content creators, announce new educa-
tion resources in conjunction with simple and tunable license
terms to the platform. Subsequently, users, i.e., other university
teachers, interested in buying this material have to perform
an on-chain handshake beforehand that immutably records
both parties’ mutual agreement to trade the material under
the specified license terms. Finally, participants collaboratively
improve existing resources by rating them, discussing flaws or
improvements, and proposing improved versions of existing
material, either to resolve issues or to provide extensions.
Contributions. We make the following main contributions
to improve inter-university collaborations for creating and
sharing education material in a practical and secure manner.
We identify the need for a decentralized and transparent
platform to enable universities to collaboratively maintain
education material across university borders as well as the
open challenges for such a ecosystem.
We propose CORALIS, a design for a practical
blockchain-based platform that enables material providers
to securely share their material.
We discuss approaches for licensing shareable education
resources, especially regarding the increased flexibility of
integrating obtained resources into existing local reposi-
tories of education material.
To motivate the need for a blockchain-based management
system and market for digital education resources, we first
discuss our assumed scenario and subsequently derive re-
quirements and design goals for creating such a system that
especially take security and practicality into account.
In a traditionally highly federated field, collaborations be-
tween universities are seldom. In this work, we seek to remedy
this situation and note the following observations as a founda-
tion for our proposed ecosystem. We envision a collaborative
network consisting of interconnected university institutes and
third-party content providers with a dedicated representative;
the organization within a single institute is out of the scope of
this work. Institutes are obligated to educate students and thus
maintain a local repository of educational resources. Education
resources may be diverse, i.e., they encompass lecture notes,
slides, exercise and exam tasks.
We acknowledge that the creation of education material,
i.e., a collection of education resources, may become bur-
densome without immediate payoff in perspective. Following
the observed behaviors of users of peer-to-peer file sharing
platforms [7], we thus assume an asymmetry regarding the
demand and provision of educational material. While we
anticipate few heavy material providers, most institutes are
mere users, although any institute may assume both roles
simultaneously with varying shifts towards either extreme.
To avoid free-riding [8] of users, we must provide suitable
incentives to actively contribute to the community.
However, material providers demand keeping control over
their original education resources to be willing to share their
material with other institutes which are potentially unknown
to them. On the one hand, they must be able to decide whom
to grant access to certain education resources to maintain con-
fidentiality, e.g., considering highly specialized and research-
oriented material. This condition implies that they must be
able to maintain fine-granular access control. On the other
hand, if an institute decides to conditionally share its education
resources, the system must assure that users respect the terms
of use, e.g., properly attribute the work’s original source.
Finally, providing financial compensation for an institute’s
efforts would further incentivize active contribution of new
material or improvements.
Based on this scenario, we derive the following design goals
for an ecosystem facilitating the collaborative management of
education material across universities and their institutes.
(G1) Access Control and Accountability. Material
providers must be able to decide whom to grant access to
which of their education resources. Furthermore, they must be
able to specify the fee for utilization, i.e, the price, and license
terms associated with their work. Conversely, users must be
able to browse accessible education resources to decide which
material they want to request. All access-granting decisions
must be recorded in a tamper-proof log to introduce account-
ability and liability for both material providers and users.
(G2) Collaborative and Transparent Improvements. The
Blockchain-based Marketplace
for Education Material
Material Repository
Material Provider User
1. Create
2. Offer 3. Request
4. Accept
5. Leverage
7. Share 6. Improve
Material Repository
Fig. 1. Overview of our proposed blockchain-based platform for the
collaborative maintenance of education material across university borders
according to the CORALIS workflow: Material providers create and offer
education resources for users to request. After the material provider accepted
that request, the user may leverage it according to its terms of use. In a tit-
for-tat manner, the user can subsequently improve the obtained material and
share it again with the community.
whole evolution of education material should be recorded in a
transparent manner to enable participants to track changes and
updates for specific education resources, effectively introduc-
ing a variant of version control. This requirement encompasses
logging all traces of improvements to individual resources as
well as recording comments and questions from users.
(G3) Efficient and Sensible Storage Model. While ma-
terial providers require that all developments are immutably
recorded, we also acknowledge that education material must
be revocable. Furthermore, the distributed nature of local
repositories of each material provider must not hinder the
accessibility of data (for external users and collaborators).
This requirement is especially crucial when external users
contribute to existing education material stored in a local
repository under the control of a single material provider.
Next, we discuss our proposed approach for creating a
blockchain-based platform to achieve these design goals and
discuss challenges arising from our approach.
In this section, we first provide an overview of our proposed
blockchain-based platform for collaboratively managing edu-
cation material. Subsequently, we discuss how our platform
can achieve accountable access control. Besides, we highlight
challenges for the distributed storage of education material
considering a potentially large number of collaborators.
A. Design Overview
We base our blockchain-based platform, CORALIS, on a
general workflow for the collaborative maintenance of educa-
tion material. We illustrate the seven steps of this CORALIS
workflow in Figure 1 and introduce them in the following.
Material providers first Create a repository of education
resources. Then, they can choose to Offer selected material
to other institutes, who then assume the role of users. All
offered resources are announced on CORALIS’ underlying
permissioned blockchain, which is maintained collectively by
material providers and users. Consequentially, each institute
can create a local index of available education resources,
Bundle M1Type: Offer
TX ID: txoff,1
User: Bob
Loc:ID1= H(M1)
Meta:(L1, P1, T1)
Wit:Hmac(k, ID1)
New Material
Type: Request
TX ID: txreq,1
User: Alice
Price: P1
Type: Accept
TX ID: txacc,1
User: Bob
Auth:Enc(Alice, k)
Access Request
Type: Complaint
TX ID: txcpl,1
User: Alice
Wit: k‘
Optional: File
Slide Set
Fig. 2. We propose an on-chain three-way handshake for accountable access control that enforces education resources to be released only after the user
irrevocably accepted the material provider’s license terms and price asked. First, the provider offers new material in conjunction with relevant meta information.
Then, users can request to access or purchase offered resources, thereby committing to abiding to their license terms. Finally, the provider accepts the request
and simultaneously provides the user with the symmetric key required to access the purchased resources. If the user is cheated, e.g., she receives a wrong
symmetric key, she can file an on-chain complaint to blame the misbehaving provider.
effectively establishing a marketplace for education material.
To acquire desired material in an accountable manner, a user
has to Request specific resources via an on-chain transaction,
which the material provider has to explicitly Accept on-
chain in return. After recording this mutual agreement on the
blockchain, the user may obtain and Leverage the acquired
material from the material provider. To contribute to the
community in a tit-for-tat manner, the user can subsequently
Improve the material and Share an updated version with
the community. Improvements can either consist of changing
education resources or discussing their content. Similar pro-
cesses are well-established on platforms such as GitHub [9].
Furthermore, ratings reflect resources’ perceived quality.
In the following, we first detail how CORALIS realizes
accountable access control (Goal G1) and discuss challenges
for keeping track of material improvements (Goal G2) as well
as the distributed storage of education material (Goal G3).
B. Achieving Accountable Access Control
Figure 2 illustrates our approach of recording a three-way
mutual agreement on the blockchain to address Goal G1,
i.e., to achieve accountability and access control. Material
providers keep all their education resources or compiled bun-
dles thereof in individual, symmetrically encrypted material
containers. This design ensures that the original provider
remains in control over their resources even if the storage
of material containers is outsourced to a third party as they
can decide whom to disclose the symmetric key kto. To offer
material to users, the provider publishes an offer transaction
toff to the blockchain, including an identifier of the material
container, meta information that determines the license terms
Lin a concise form, the price P, and additional index tags
T, and a witness of the container’s validity.
The witness is needed if disputes between providers and
users arise whether or not access has been granted correctly.
It consists of an HMAC constructed over the container’s
identifier using the symmetric key k. By publishing a request
transaction treq referring to toff, a user signals her interest
in obtaining the material while simultaneously committing to
paying the price Pand abiding to the license terms L. The
provider has to accept this request via an accept transaction
tacc, which provides the user with the key krequired to access
the material container’s contents. CORALIS makes the whole
mutual agreement process publicly verifiable to increase the
detectability of misconduct.
However, the provider could try and provide the user with
a wrong key k0to prevent her from accessing the material
regardless of her payment. To avoid this pitfall, users can file
an on-chain complaint against the provider’s tacc. By disclosing
her received key k0in case of a dispute, the user can prove that
the provider indeed shared k0in tacc and she can prove that
the validity witness of toff does not match k0. Unfortunately,
this approach cannot prevent the provider from constructing
a meaningless material container in the first place. We thus
propose to mitigate the impact of this inherent issue, which
is known from content-offloading scenarios [10], by allowing
users to post short and public on-chain ratings.
C. Transparently Storing Distributed Education Material
We now discuss challenges regarding storage requirements
(Goal G3). We first discuss how to integrate the potentially
large number of contributors for one material container into
our system and then consider different storage models.
CORALIS must efficiently link multiple user contributions
to the same education resource while respecting its confiden-
tiality against users without access permission. In Figure 3,
we detail how we integrate comments and improvements
to education resources into our system. To keep education
resources self-contained, we append comments addressing
them to their respective material containers, encrypted via the
same key k. However, comments are referenced on-chain as
well to maintain transparency (Goal G2). We refrain from
storing arbitrary user-generated data on-chain due to potential
negative and hard-to-resolve side effects [11], [12]. With this
approach, all relevant information for one material container
Material Container M1Material Container M2
Task: What is 7 and 3?
Solution: 15
Do you rather mean 10?
Please, be more formal.
Oh, right! Sorry!
Task: Solve 7 + 3 = ?
Solution: 10
Ah, much better!
Should calculators be
permitted for this task?
Adapted from: M1
Fig. 3. The blockchain of our CORALIS platform constitutes an immutable
ledger of the evolution of education resources that are stored off-chain.
Provider UserBlockchain
(a) Local Storage
Provider UserBlockchain
(b) Cloud Storage
Provider UserBlockchain
(c) Distributed Storage
Fig. 4. Encrypted material containers enable providers take various approaches to persistently storing their material. CORALIS is compatible with (a) local
per-provider repositories of education resources, (b) a centralized storage outsourced to, e.g., a public cloud, and (c) fully decentralized storage architectures.
can be obtained from a single source while the blockchain
attests the container’s integrity. Improvements, however, are
stored in a new material container that only references the
parent material container for transparency reasons. We chose
this design to better suit the users’ requirements of managing
their (improved) education resources locally. Yet, as shown
in Figure 4, our utilization of encrypted material containers
also allows outsourcing their material containers securely to
public clouds or a fully distributed storage to further address
Goal G3.
After describing our design for the CORALIS platform, we
now focus on the aspect of how material providers and users
can collaboratively utilize this ecosystem (Goals G1 and G2).
To this end, we first discuss how material providers can express
license terms in Section IV-A. Subsequently, we elaborate
on questions a license model must cover in our context in
Section IV-B. Finally, we discuss the degrees of enforceability
and challenges of disputes in Section IV-C.
A. Standards for Secure and Immutable License Agreements
As discussed in Section III-B, material providers must
specify license terms when offering new material and users can
only obtain material after immutably committing to abiding
to these terms on CORALIS’ blockchain. We now further
discuss the requirements for expressing license terms in our
context, outline an approach to implementing licensing terms
in CORALIS based on these requirements, and identify aspects
stemming from considerations regarding both usability and
technical applicability.
Completeness. The specification of license terms must
cover all relevant questions for any given type of education
material to allow material providers to express their intended
usage terms. This aspect is especially relevant for collabora-
tively created material.
Simple Formulation. CORALIS is intended to be a mar-
ketplace for quick and easy access to education material.
To support this intention, license terms should be presented
to interested users browsing available resources in a simple
form to ease their comprehensibility. Consequently, all desired
license terms should be easily expressible.
Concise Representation. As discussed in Section III-B,
license terms must be strictly tied to a purchase and, therefore,
they are included in the on-chain handshake between material
providers and users. Hence, license terms ideally should allow
for a concise on-chain representation.
Intuitively, these technical requirements contradict the us-
ability considerations. When giving material providers more
decision parameters when specifying license terms and re-
quiring those terms to be expressed comprehensibly for users,
these license terms inevitably gain a certain verbosity. This
observation stands in contrast to our requirement for concise
on-chain license terms. However, we can resolve this conflict
by creating a license chooser for CORALIS as implemented
for, e.g., End-User License Agreements (EULAs) [13] or
resources for the public domain under the Creative Commons
licenses [14]. A license chooser allows material providers
to easily specify their license terms by answering a few
questions and generating their final representation based on
the submitted decisions. Hence, we only need to store the
material provider’s decisions on-chain to be parsed in a com-
prehensible form for interested users. To this end, the compact
privacy policy language CPPL [15] promises to constitute a
well-suited building block for CORALIS. CPPL was initially
designed to enable owners of potentially sensitive data to
attach compressed privacy policies to their data items before
outsourcing them, e.g., storing them within a public cloud.
The compression of CPPL is especially efficient due to its
incorporation of domain-specific knowledge [15]. Thus, an
adaption of CPPL’s underlying compression scheme to express
CORALIS’ license terms is a very promising approach to
fulfill the identified requirements of completeness, simplicity,
and conciseness.
B. Considerations for a Comprehensive License Model
We now briefly present initial questions our license chooser
needs to incorporate to provide a suitable licensing model. We
identify the following fundamental specifications our license
model must be able to express.
Target Audience. While we envision CORALIS to establish
an open marketplace within the boundaries of the academic
context, material providers still need to be able to exclude
certain users from obtaining their resources. For instance,
material providers may disallow any utilization that directly
facilitates preparing students for research in military contexts.
Attribution. Material providers must be able to enforce
proper attribution of their original works to establish a non-
monetary incentive for creating material. Attribution terms
can, e.g., require to name the original author, her affiliation,
or funding sources in the context of an education resource.
Furthermore, varying levels of required attribution can be
specified, such as a copyright notice on each lecture slide,
or once on a dedicated slide, or no attribution at all.
Scope of Dissemination. A material provider must be able
to restrict the dissemination of her work to prevent its uncon-
trolled multiplication. For instance, she can choose to allow
certain fundamental exercise tasks to be freely distributed
online, while advanced exercises must only be distributed in
paper form among students attending a course.
Allowed Modifications. Finally, material providers can
grant certain rights to modify purchased resources. Especially
regarding the form of required attribution, unintended or poor
modifications of education resources gain the potential to harm
the original provider’s reputation. Dealing with modifications
of original work is a fundamental aspect for licensing of open
source software [16], hence we envision that we can further
seize experiences from that domain for our licensing model.
This initial framework serves as a foundation for future
considerations as CORALIS’ final licensing model will need
to remain more tunable to address even complex situations.
C. Handling Licensing Disputes
After specifying the requirements for a licensing model, we
now discuss to which extent CORALIS can help participants
to resolve disputes over potential violations of license terms.
Specifically, we argue that license terms cannot be technically
enforced and that material providers and users have inherently
conflicting interests. While material providers seek to protect
their original work to the largest extent possible, users and
their students can benefit from more relaxed terms of use.
Fundamentally, CORALIS cannot provide full enforceabil-
ity of license terms since various forms of misconduct are hard
to globally observe, monitor, or stem. For instance, users and
students can collude to distribute education resources among
each other that were only meant for presentation during a
lecture. Similarly, students can make unauthorized copies of
such resources. However, our platform transparently records
each user’s commitment to abide by the terms and therefore,
potential violations can be investigated publicly against the
license agreements. A related approach to public verifiability
is already implemented, e.g., when publicly showing sports
events without commercial subscriptions, where the broad-
caster requires viewers to report any observed misconduct [17].
To support the identification of license violations, mate-
rial providers need to enrich their resources with indicators
reflecting permitted use. Referring to our previous example,
permitted public transmissions of proprietary content can be
indicated by small overlay icons [17]. A similar approach can
be implemented to enable students to verify permitted use of
shown resources, for instance by displaying QR codes in con-
junction with the presented resource that link to the publicly
verifiable mutual agreement within CORALIS’ blockchain.
Furthermore, material providers can make use of cryptographic
means, such as Digital Rights Management (DRM) [18], to tie
digital resources to their respective license terms.
This restrictive approach, however, stands in stark contrast
to the interests of users and their students. Disallowing modifi-
cations to education resources and technically hindering such
modifications can ultimately enable large material providers
to essentially re-centralize the market for offered material [4].
Consequently, few global players would be enabled to effec-
tively steer higher education. Actively encouraging certain
levels of mutability, however, has the potential to greatly
improve the experiences of both users and their students. For
example, we consider education resources that are available
in an appropriate standardized text format (e.g., L
X code)
in small, self-contained chunks. This format enables users to
seamlessly integrate these well-vetted education resources into
their own material and thereby (a) successively and selectively
increase their material’s quality, (b) present material in a
unified look and respect, e.g., corporate design requirements,
and (c) tailor material to their students’ needs. To illustrate the
need for adapting education resources, consider the notation
of complex numbers as a simple example. In mathematics,
the imaginary unit is typically denoted by i, while jis used
in electrical engineering to avoid confusion with currents. By
enabling users to easily adjust such notation, they can effort-
lessly combine high-quality material from different sources.
Hence, especially a simple adaptability of education resources
promises great benefits for users and their students.
Even though CORALIS does not position itself explicitly
within this trade-off between protecting original work and
easing adaptability, disputes will likely arise over potential but
not explicit violations of agreed-upon license terms. As already
indicated, such disputes cannot be decided automatically in all
cases, hence we need to address the question of how to deal
with these situations on a completely decentralized platform.
To this end, we propose to enhance the on-chain complaints
of CORALIS (cf. Section III-B) such that material providers
can also file complaints after a successful initial agreement to
indicate alleged misconduct by users. However, our decentral-
ized platform does not designate a dedicated party to resolve
disputes based on these complaints. Instead of requiring all
participants of CORALIS to redundantly investigate on-chain
violation claims, we instead propose to adapt SmartJudge [6],
a general-purpose framework for dispute resolution on public
blockchains, for use in our ecosystem. Specifically, Smart-
Judge considers that interacting parties can mutually agree on a
tie-breaking instance in case of a dispute. A slight adaption of
this approach enables material providers and users to outsource
the dispute resolution to a small mutually accepted jury of
CORALIS participants to unburden the remaining participants.
In conclusion, CORALIS bears a high potential for exchang-
ing education resources among mutually not fully trusting
participants by providing an immutable and publicly verifiable
distributed ledger of agreed-upon license terms. However,
whether material providers decide to distribute their education
resources in a more restrictive or adaptable manner currently
remains an open question and will likely influence future
business models involving CORALIS. Our platform addresses
this issue through its general-purpose material containers (cf.
Section III-B), hence material providers can distribute their
material with varying degrees of technical protection.
CORALIS is related to work considering blockchain data
storage, distributed version control, and blockchain platforms
facilitating social interaction or education processes.
Currently, education resources are shared either based on
contractual agreements and commitments [2] or via isolated
teaching repositories [3]. While definitively providing a step
toward increased levels of collaboration, both approaches
suffer from a rather narrow scope regarding the availability of
vetted education resources. To maximize the benefit of high-
quality education resources, inspired by the concept of data
markets [19] and blockchain-like approaches to distributed
configurability [20], we instead rely on a blockchain platform
that is open to known material providers and users.
This choice raises questions regarding blockchain-backed
storage models. We have previously shown that on-chain con-
tent storage can have devastating consequences for the whole
ecosystem [11]. Hence, other approaches using a blockchain-
based storage typically rely on tying their data to immutable
on-chain evidence [21], [22], [23]. We share this general
pattern with other blockchain-based platforms that realize,
e.g., decentralized social networks [24] or a blockchain-based
consistency check for mirrored software packages [25].
Combining and extending these promising applications,
CORALIS facilitates the rating, discussion, and collabora-
tive improvement of education resources. Related work also
identified various benefits for blockchain platforms in educa-
tion [26], for instance, for purposes of immutably recording
student achievements [27], but also managing intellectual
properties [26]. However, to the best of our knowledge,
CORALIS is the first proposal to implement such a platform
as of now regardless of its focus on the academic landscape.
In this paper, we motivated the need for a blockchain-
based inter-university platform to facilitate the collaborative
creation and improvement of high-quality education resources
to effectively avoid redundant work. Our design focuses on
material providers who should remain in control and on the
establishment of accountable on-chain license agreements that
are publicly verifiable via our CORALIS blockchain. We
discussed the need for simple and concise license terms in
our system and proposed to combine a simple-to-understand
license chooser with a space-efficient policy language. Finally,
we argued that technical means to report violations of license
terms exist to resolve arising disputes within CORALIS.
Future work for CORALIS involves additional research
into applicable business models, e.g., to properly reflect
the trade-off between resource protection and flexibility in
a resource’s value or to further incentivize reviewing and
improving existing education resources. Besides, we aim to
evaluate the scalability limits of our proposed platform by
deploying a proof-of-concept implementation. We plan to
realize this implementation via established building blocks,
such as Hyperledger Fabric for the blockchain backend of
CORALIS, CPPL for our license agreements, and suitable
data formats for expressing well-protected as well as highly
adaptable education resources. Further, we see a potential for
CORALIS to create an ecosystem among commercial software
developers, i.e., to offer properly licensed, high-quality code
fragments for recurring patterns.
This work has been funded by the German Federal Ministry
of Education and Research (BMBF) under funding reference
number 16DHLQ013. The responsibility for the content of this
publication lies with the authors. Further, the authors thank
Erhard Cramer and Roberto Bernardo for the discussions.
[1] M. A. Edwards and S. Roy, “Academic Research in the 21st Century:
Maintaining Scientific Integrity in a Climate of Perverse Incentives and
Hypercompetition,” Environ. Eng., vol. 34, no. 1, 2017.
[2] W. Chan, “International Cooperation in Higher Education: Theory and
Practice,” JSIE, vol. 8, no. 1, 2004.
[3] S. Fincher, M. K¨
olling et al., “Repositories of Teaching Material and
Communities of Use: Nifty Assignments and the Greenroom,” in ICER,
[4] J. Onosko, “Race to the Top Leaves Children and Future Citizens
Behind: The Devastating Effects of Centralization, Standardization, and
High Stakes Accountability,Democracy and Education, vol. 19, no. 2,
[5] L. Bader, J. C. B¨
urger et al., “Smart Contract-based Car Insurance
Policies,” in GC Wkshps, 2018.
[6] E. Wagner, A. V¨
olker et al., “Dispute Resolution for Smart Contract-
based Two-Party Protocols,” in ICBC, 2019.
[7] I. Ullah, G. Doyen et al., “A Survey and Synthesis of User Behavior
Measurements in P2P Streaming Systems,” IEEE Commun. Surveys
Tuts., vol. 14, no. 3, 2012.
[8] M. Feldman and J. Chuang, “Overcoming free-riding behavior in peer-
to-peer systems,” SIGecom Exchanges, vol. 5, no. 4, 2005.
[9] GitHub,
[10] T. Zimmermann, J. R¨
uth et al., “Maintaining integrity and reputation in
content offloading,” in WONS, 2016.
[11] R. Matzutt et al., “A Quantitative Analysis of the Impact of Arbitrary
Blockchain Content on Bitcoin,” in FC, 2018.
[12] R. Matzutt, M. Henze et al., “Thwarting Unwanted Blockchain Content
Insertion,” in BTA, 2018.
[13] EULA Templates,
[14] Creative Commons,
[15] M. Henze, J. Hiller et al., “CPPL: Compact Privacy Policy Language,
in WPES, 2016.
[17] Sky Business,
terms and conditions/fighting fraud, accessed: 2019-11-13.
[18] EC-Council, Computer Forensics: Investigating Network Intrusions and
Cybercrime, 2nd ed. Cengage Learning, 2016.
[19] R. Matzutt et al., “myneData: Towards a Trusted and User-controlled
Ecosystem for Sharing Personal Data,” in INFORMATIK, 2017.
[20] M. Henze, B. Wolters et al., “Distributed Configuration, Authorization
and Management in the Cloud-Based Internet of Things,” in Trustcom,
[21] G. Zyskind, O. Nathan, and A. Pentland, “Decentralizing Privacy: Using
Blockchain to Protect Personal Data,” in SPW, 2015.
[22] G. Zyskind, O. Nathan, and A. Pentland, “Enigma: Decentralized
Computation Platform with Guaranteed Privacy,” arXiv preprint, 2015.
[23] H. Shafagh, L. Burkhalter et al., “Towards Blockchain-based Auditable
Storage and Sharing of IoT Data,” in CCSW, 2017.
[24] C. Li and B. Palanisamy, “Incentivized Blockchain-based Social Media
Platforms: A Case Study of Steemit,” in WebSci, 2019.
[25] F. Costa and R. de Queiroz, “Capivara: A decentralized package version
control using Blockchain,” arXiv preprint, 2019.
[26] C. Turcu, C. Turcu, and I. Chiuchisan, “Blockchain and its Potential in
Education,” in ICVL, 2018.
[27] W. Gr¨
ather et al., “Blockchain for Education: Lifelong Learning Pass-
port,” in ERCIM Blockchain, 2018.
... It can be accomplished as a new platform for keeping track of learning achievements through digital hashes, enabling learners to securely move their learning records from one institution to another [31]. Blockchain can therefore be used in addressing issues for students and remaining stakeholders with regard to accumulating shareable resources through a transparent process for everyone [35]. ...
... A Blockchain platform, for example, is proposed to ease access to high-quality education materials, a decentralized marketplace for offering, acquiring, discussing, and improving education resources across different universities. It innovatively allows control via on-chain license terms in tracing the evolution of encrypted containers, while accumulating bundles of shareable resources and user records to improve the quality of content [35]. This trend of research emphasizes diverse systems amongst academic projects, therefore improving higher education in areas such as collaborative virtual reality, 360° courses, Blockchain for digital credentials, and digital tutors, in the process of experiencing and creating new solutions [36]. ...
... Blockchain literature therefore favours technical knowledge and innovation in higher education. A better coordination between universities in sharing educational resources [35], experimentation [9] and new creative solutions [2,12,32], for example, is suggested. It is a new technology able to bring up improvements in what comes to managing information, while ensuring its privacy and authenticity for all stakeholders, in particular HEIs and students, which are considered central actors in the at once organizational and technological process. ...
Full-text available
Blockchain has emerged as an important concept at the interface of ICT and higher education. It is a system in which a record of transactions is maintained across several computers that are linked in a peer-to-peer network. Hence, it allows the creation of a decentralized environment, where data are not under the control of any third-party organization. This study presents a Systematic Bibliometric Literature Review (LRSB in further text) of research on blockchain applications in the higher education field. The review integrated 37 articles presenting up-to-date knowledge on current implications pertaining to the use of blockchain technology for improving higher education processes. The LRSB findings indicate that blockchain is being used to build up new interventions to improve the prevailing ways of sharing, delivering and securing knowledge data and personal student records. The application of blockchain technology is carrying on a conceptual progress in the higher education sector where it has added substantial value by ameliorated efficiency, effectiveness, privacy control, technological improvement and security of data management mechanisms. Challenges posed by current literature and further research directions are suggested.
... Blockchain has been used in the micro accreditation to meet the hiring requirements of employers [14]. A practical and safe, decentralised ecosystems are developed for educational materials for sharing using blockchain [15]. ...
Full-text available
The utilisation of blockchain has moved beyond digital currency to other fields such as health, the Internet of Things, and education. In this paper, we present a systematic mapping study to collect and analyse relevant research on blockchain technology related to the higher education field. The paper concentrates on two main themes. First, it examines state of the art in blockchain-based applications that have been developed for educational purposes. Second, it summarises the challenges and research gaps that need to be addressed in future studies.
Conference Paper
Full-text available
Advances in Blockchain and distributed ledger technologies are driving the rise of incentivized social media platforms over Blockchains, where no single entity can take control of the information and users can receive cryptocurrency as rewards for creating or curating high-quality contents. This paper presents an empirical analysis of Steemit, a key representative of the emerging incentivized social media platforms over Blockchains, to understand and evaluate the actual level of decentralization and the practical effects of cryptocurrency-driven reward system in these modern social media platforms. Similar to Bitcoin, Steemit is operated by a decentralized community, where 21 members are periodically elected to cooperatively operate the platform through the Delegated Proof-of-Stake (DPoS) consensus protocol. Our study performed on 539 million operations performed by 1.12 million Steemit users during the period 2016/03 to 2018/08 reveals that the actual level of decentralization in Steemit is far lower than the ideal level, indicating that the DPoS consensus protocol may not be a desirable approach for establishing a highly decentralized social media platform. In Steemit, users create contents as posts which get curated based on votes from other users. The platform periodically issues cryptocurrency as rewards to creators and curators of popular posts. Although such a reward system is originally driven by the desire to incentivize users to contribute to high-quality contents, our analysis of the underlying cryptocurrency transfer network on the blockchain reveals that more than 16% transfers of cryptocurrency in Steemit are sent to curators suspected to be bots and also finds the existence of an underlying supply network for the bots, both suggesting a significant misuse of the current reward system in Steemit. Our study is designed to provide insights on the current state of this emerging blockchain-based social media platform including the effectiveness of its design and the operation of the consensus protocols and the reward system.
Conference Paper
Full-text available
Blockchain systems promise to mediate interactions of mutually distrusting parties without a trusted third party. However, protocols with full smart contract-based security are either limited in functionality or complex, with high costs for secured interactions. This observation leads to the development of protocol-specific schemes to avoid costly dispute resolution in case all participants remain honest. In this paper, we introduce SmartJudge, an extensible generalization of this trend for smart contract-based two-party protocols. SmartJudge relies on a protocol-independent mediator smart contract that moderates two-party interactions and only consults protocol-specific verifier smart contracts in case of a dispute. This way, SmartJudge avoids verification costs in absence of disputes and sustains interaction confidentiality among honest parties. We implement verifier smart contracts for cross-blockchain trades and exchanging digital goods and show that SmartJudge can reduce costs by 46-50% and 22% over current state of the art, respectively.
Conference Paper
Full-text available
Processes in the insurance economy are often cumbersome and expensive because of the inherently opposing interests of insurers and customers. Smart contracts bear a large potential to simplify these processes and thereby reduce costs. In this paper, we present CAIPY, our smart contract-based ecosystem for simple and transparent car insurance. In CAIPY, smart contracts do not replace but support current processes to enable significant cost savings, e.g., by removing the necessity for manual inspection of insurance claims in presence of tamper-resistant car sensors. However, the involved parties can resort to well-established processes at any time, trading off cost efficiency against process reliability. CAIPY thus showcases how smart contracts can support insurers without introducing new risks.
Conference Paper
Full-text available
Since the introduction of Bitcoin in 2008, blockchain systems have seen an enormous increase in adoption. By providing a persistent, distributed, and append-only ledger, blockchains enable numerous applications such as distributed consensus, robustness against equivocation, and smart contracts. However, recent studies show that blockchain systems such as Bitcoin can be (mis)used to store arbitrary content. This has already been used to store arguably objectionable content on Bitcoin's blockchain. Already single instances of clearly objectionable or even illegal content can put the whole system at risk by making its node operators culpable. To overcome this imminent risk, we survey and discuss the design space of countermeasures against the insertion of such objectionable content. Our analysis shows a wide spectrum of potential countermeasures, which are often combinable for increased efficiency. First, we investigate special-purpose content detectors as an ad hoc mitigation. As they turn out to be easily evadable, we also investigate content-agnostic countermeasures. We find that mandatory minimum fees as well as mitigation of transaction manipulability via identifier commitments significantly raise the bar for inserting harmful content into a blockchain.
Conference Paper
Full-text available
Personal user data is collected and processed at large scale by a handful of big providers of Internet services. This is detrimental to users, who often do not understand the privacy implications of this data collection, as well as to small parties interested in gaining insights from this data pool, e.g., research groups or small and middle-sized enterprises. To remedy this situation, we propose a transparent and user-controlled data market in which users can directly and consensually share their personal data with interested parties for monetary compensation. We define a simple model for such an ecosystem and identify pressing challenges arising within this model with respect to the user and data processor demands, legal obligations, and technological limits. We propose myneData as a conceptual architecture for a trusted online platform to overcome these challenges. Our work provides an initial investigation of the resulting myneData ecosystem as a foundation to subsequently realize our envisioned data market via the myneData platform.
Blockchains primarily enable credible accounting of digital events, e.g., money transfers in cryptocurrencies. However, beyond this original purpose, blockchains also irrevocably record arbitrary data, ranging from short messages to pictures. This does not come without risk for users as each participant has to locally replicate the complete blockchain, particularly including potentially harmful content. We provide the first systematic analysis of the benefits and threats of arbitrary blockchain content. Our analysis shows that certain content, e.g., illegal pornography, can render the mere possession of a blockchain illegal. Based on these insights, we conduct a thorough quantitative and qualitative analysis of unintended content on Bitcoin’s blockchain. Although most data originates from benign extensions to Bitcoin’s protocol, our analysis reveals more than 1600 files on the blockchain, over 99% of which are texts or images. Among these files there is clearly objectionable content such as links to child pornography, which is distributed to all Bitcoin participants. With our analysis, we thus highlight the importance for future blockchain designs to address the possibility of unintended data insertion and protect blockchain users accordingly.
Conference Paper
Today the cloud plays a central role in storing, processing, and distributing data. Despite contributing to the rapid development of IoT applications, the current IoT cloud-centric architecture has led into a myriad of isolated data silos that hinders the full potential of holistic data-driven analytics within the IoT. In this paper, we present a blockchain-based design for the IoT that brings a distributed access control and data management. We depart from the current trust model that delegates access control of our data to a centralized trusted authority and instead empower the users with data ownership. Our design is tailored for IoT data streams and enables secure data sharing. We enable a secure and resilient access control management, by utilizing the blockchain as an auditable and distributed access control layer to the storage layer. We facilitate the storage of time-series IoT data at the edge of the network via a locality-aware decentralized storage system that is managed with the blockchain technology. Our system is agnostic of the physical storage nodes and supports as well utilization of cloud storage resources as storage nodes.
Conference Paper
Recent technology shifts such as cloud computing, the Internet of Things, and big data lead to a significant transfer of sensitive data out of trusted edge networks. To counter resulting privacy concerns, we must ensure that this sensitive data is not inadvertently forwarded to third-parties, used for unintended purposes, or handled and stored in violation of legal requirements. Related work proposes to solve this challenge by annotating data with privacy policies before data leaves the control sphere of its owner. However, we find that existing privacy policy languages are either not flexible enough or require excessive processing, storage, or bandwidth resources which prevents their widespread deployment. To fill this gap, we propose CPPL, a Compact Privacy Policy Language which compresses privacy policies by taking advantage of flexibly specifiable domain knowledge. Our evaluation shows that CPPL reduces policy sizes by two orders of magnitude compared to related work and can check several thousand of policies per second. This allows for individual per-data item policies in the context of cloud computing, the Internet of Things, and big data.