Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems

Alessandro Marcelletti; Edoardo Marangone; Michele Kryston; Claudio Di Ciccio

doi:10.1007/978-3-032-02929-4_14

Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems

Alessandro Marcelletti^*
, Edoardo Marangone
, Michele Kryston
, Claudio Di Ciccio

^*Corresponding author for this work

Sub Process Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

Abstract

Blockchain enables novel, trustworthy Process-Aware Information Systems (PAISs) by enforcing the security, robustness, and traceability of operations. In particular, transparency ensures that all information exchanges are openly accessible, fostering trust within the system. Although this is a desirable property to enable notarization and auditing activities, it also represents a limitation for such cases where confidentiality is a requirement since interactions involve sensitive data. Current solutions rely on obfuscation techniques or private infrastructures, hindering the enforcement capabilities of smart contracts and the public verifiability of transactions. Against this background, we propose CONFETTY, an architecture for blockchain-based PAISs to preserve confidentiality and transparency. Smart contracts enact, enforce and store public interactions, while attribute-based encryption techniques are adopted to specify access grants to confidential information. We assess the security of our solution through a systematic threat model analysis and evaluate its practical feasibility by gauging the performance of our implemented prototype in different scenarios from the literature.

Original language	English
Title of host publication	Business Process Management Forum - BPM 2025 Forum, Proceedings
Editors	Arik Senderovich, Cristina Cabanillas, Irene Vanderfeesten, Hajo A. Reijers
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	238-255
Number of pages	18
ISBN (Print)	9783032029287
DOIs	https://doi.org/10.1007/978-3-032-02929-4_14
Publication status	Published - 2026
Event	BPM Forum held at the 23rd International Conference on Business Process Management, BPM 2025 - Seville, Spain Duration: 31 Aug 2025 → 5 Sept 2025

Publication series

Name	Lecture Notes in Business Information Processing
Volume	564 LNBIP
ISSN (Print)	1865-1348
ISSN (Electronic)	1865-1356

Conference

Conference	BPM Forum held at the 23rd International Conference on Business Process Management, BPM 2025
Country/Territory	Spain
City	Seville
Period	31/08/25 → 5/09/25

Bibliographical note

Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.

Keywords

Attribute-based encryption
Blockchain
Business process management
Distributed ledger technologies
Privacy
Security

Access to Document

10.1007/978-3-032-02929-4_14

Cite this

Marcelletti, A., Marangone, E., Kryston, M., & Di Ciccio, C. (2026). Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems. In A. Senderovich, C. Cabanillas, I. Vanderfeesten, & H. A. Reijers (Eds.), Business Process Management Forum - BPM 2025 Forum, Proceedings (pp. 238-255). (Lecture Notes in Business Information Processing; Vol. 564 LNBIP). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-032-02929-4_14

Marcelletti, Alessandro ; Marangone, Edoardo ; Kryston, Michele et al. / Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems. Business Process Management Forum - BPM 2025 Forum, Proceedings. editor / Arik Senderovich ; Cristina Cabanillas ; Irene Vanderfeesten ; Hajo A. Reijers. Springer Science and Business Media Deutschland GmbH, 2026. pp. 238-255 (Lecture Notes in Business Information Processing).

@inproceedings{78c3e1f273944c20b3191c33b01df2e5,

title = "Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems",

abstract = "Blockchain enables novel, trustworthy Process-Aware Information Systems (PAISs) by enforcing the security, robustness, and traceability of operations. In particular, transparency ensures that all information exchanges are openly accessible, fostering trust within the system. Although this is a desirable property to enable notarization and auditing activities, it also represents a limitation for such cases where confidentiality is a requirement since interactions involve sensitive data. Current solutions rely on obfuscation techniques or private infrastructures, hindering the enforcement capabilities of smart contracts and the public verifiability of transactions. Against this background, we propose CONFETTY, an architecture for blockchain-based PAISs to preserve confidentiality and transparency. Smart contracts enact, enforce and store public interactions, while attribute-based encryption techniques are adopted to specify access grants to confidential information. We assess the security of our solution through a systematic threat model analysis and evaluate its practical feasibility by gauging the performance of our implemented prototype in different scenarios from the literature.",

keywords = "Attribute-based encryption, Blockchain, Business process management, Distributed ledger technologies, Privacy, Security",

author = "Alessandro Marcelletti and Edoardo Marangone and Michele Kryston and \{Di Ciccio\}, Claudio",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.; BPM Forum held at the 23rd International Conference on Business Process Management, BPM 2025 ; Conference date: 31-08-2025 Through 05-09-2025",

year = "2026",

doi = "10.1007/978-3-032-02929-4\_14",

language = "English",

isbn = "9783032029287",

series = "Lecture Notes in Business Information Processing",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "238--255",

editor = "Arik Senderovich and Cristina Cabanillas and Irene Vanderfeesten and \{A. Reijers\}, Hajo",

booktitle = "Business Process Management Forum - BPM 2025 Forum, Proceedings",

address = "Germany",

}

Marcelletti, A, Marangone, E, Kryston, M & Di Ciccio, C 2026, Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems. in A Senderovich, C Cabanillas, I Vanderfeesten & H A. Reijers (eds), Business Process Management Forum - BPM 2025 Forum, Proceedings. Lecture Notes in Business Information Processing, vol. 564 LNBIP, Springer Science and Business Media Deutschland GmbH, pp. 238-255, BPM Forum held at the 23rd International Conference on Business Process Management, BPM 2025, Seville, Spain, 31/08/25. https://doi.org/10.1007/978-3-032-02929-4_14

Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems. / Marcelletti, Alessandro; Marangone, Edoardo; Kryston, Michele et al.
Business Process Management Forum - BPM 2025 Forum, Proceedings. ed. / Arik Senderovich; Cristina Cabanillas; Irene Vanderfeesten; Hajo A. Reijers. Springer Science and Business Media Deutschland GmbH, 2026. p. 238-255 (Lecture Notes in Business Information Processing; Vol. 564 LNBIP).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems

AU - Marcelletti, Alessandro

AU - Marangone, Edoardo

AU - Kryston, Michele

AU - Di Ciccio, Claudio

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2026.

PY - 2026

Y1 - 2026

N2 - Blockchain enables novel, trustworthy Process-Aware Information Systems (PAISs) by enforcing the security, robustness, and traceability of operations. In particular, transparency ensures that all information exchanges are openly accessible, fostering trust within the system. Although this is a desirable property to enable notarization and auditing activities, it also represents a limitation for such cases where confidentiality is a requirement since interactions involve sensitive data. Current solutions rely on obfuscation techniques or private infrastructures, hindering the enforcement capabilities of smart contracts and the public verifiability of transactions. Against this background, we propose CONFETTY, an architecture for blockchain-based PAISs to preserve confidentiality and transparency. Smart contracts enact, enforce and store public interactions, while attribute-based encryption techniques are adopted to specify access grants to confidential information. We assess the security of our solution through a systematic threat model analysis and evaluate its practical feasibility by gauging the performance of our implemented prototype in different scenarios from the literature.

AB - Blockchain enables novel, trustworthy Process-Aware Information Systems (PAISs) by enforcing the security, robustness, and traceability of operations. In particular, transparency ensures that all information exchanges are openly accessible, fostering trust within the system. Although this is a desirable property to enable notarization and auditing activities, it also represents a limitation for such cases where confidentiality is a requirement since interactions involve sensitive data. Current solutions rely on obfuscation techniques or private infrastructures, hindering the enforcement capabilities of smart contracts and the public verifiability of transactions. Against this background, we propose CONFETTY, an architecture for blockchain-based PAISs to preserve confidentiality and transparency. Smart contracts enact, enforce and store public interactions, while attribute-based encryption techniques are adopted to specify access grants to confidential information. We assess the security of our solution through a systematic threat model analysis and evaluate its practical feasibility by gauging the performance of our implemented prototype in different scenarios from the literature.

KW - Attribute-based encryption

KW - Blockchain

KW - Business process management

KW - Distributed ledger technologies

KW - Privacy

KW - Security

UR - https://www.scopus.com/pages/publications/105015524489

U2 - 10.1007/978-3-032-02929-4_14

DO - 10.1007/978-3-032-02929-4_14

M3 - Conference contribution

AN - SCOPUS:105015524489

SN - 9783032029287

T3 - Lecture Notes in Business Information Processing

SP - 238

EP - 255

BT - Business Process Management Forum - BPM 2025 Forum, Proceedings

A2 - Senderovich, Arik

A2 - Cabanillas, Cristina

A2 - Vanderfeesten, Irene

A2 - A. Reijers, Hajo

PB - Springer Science and Business Media Deutschland GmbH

T2 - BPM Forum held at the 23rd International Conference on Business Process Management, BPM 2025

Y2 - 31 August 2025 through 5 September 2025

ER -

Marcelletti A, Marangone E, Kryston M, Di Ciccio C. Balancing Confidentiality and Transparency for Blockchain-Based Process-Aware Information Systems. In Senderovich A, Cabanillas C, Vanderfeesten I, A. Reijers H, editors, Business Process Management Forum - BPM 2025 Forum, Proceedings. Springer Science and Business Media Deutschland GmbH. 2026. p. 238-255. (Lecture Notes in Business Information Processing). doi: 10.1007/978-3-032-02929-4_14