• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Microcontroller Tips

Microcontroller engineering resources, new microcontroller products and electronics engineering news

  • Products
    • 8-bit
    • 16-bit
    • 32-bit
    • 64-bit
  • Applications
    • 5G
    • Automotive
    • Connectivity
    • Consumer Electronics
    • EV Engineering
    • Industrial
    • IoT
    • Medical
    • Security
    • Telecommunications
    • Wearables
    • Wireless
  • Learn
    • eBooks / Tech Tips
    • EE Training Days
    • FAQs
    • Learning Center
    • Tech Toolboxes
    • Webinars/Digital Events
  • Resources
    • Design Guide Library
    • DesignFast
    • LEAP Awards
    • Podcasts
    • White Papers
  • Videos
    • EE Videos & Interviews
    • Teardown Videos
  • EE Forums
    • EDABoard.com
    • Electro-Tech-Online.com
  • Engineering Training Days
  • Advertise
  • Subscribe

What’s a distributed compliance ledger and how is one integrated into Matter?

December 5, 2022 By Jeff Shepard

A distributed ledger is a type of database that’s shared, copied, and synchronized within a decentralized network. The general principal is similar to the blockchain technology used by cryptocurrencies like Bitcoin. The distributed compliance ledger (DCL) developed by the Connectivity Standards Alliance (CSA), developers of Matter, is a type of distributed ledger used during the Matter installation and update processes to share and access safety- and security-relevant information.

This FAQ begins with an overview of blockchain technology, looks at how the CSA implements distributed ledgers, reviews the five databases that make up the CSA distributed compliance ledger, and closes by presenting the difference between the CSA’s DCL and the Matter-specific DCLs supported by individual CSA members.

Blockchain technology was developed to support secure digital interactions and provides the basis for cryptocurrencies (also called cyber currencies). It provides a tamper-resistant and collaborative ledger for transactional records. It’s called a blockchain since the data for the transactional records is grouped into blocks. A given block is connected to the previous block. The connection relies on a unique identifier (hash) based on the previous block’s data. If the data in one block changes, its hash changes. Any change causes a domino effect seen in all subsequent blocks and provides evidence of tampering. That structure of interdependencies makes a blockchain network very difficult to alter or destroy and supports collaborative and resilient recordkeeping. The block header includes (Figure 1):

  • Previous Block Hash – Refers to the hash of the previous (parent) block in the chain.
  • Timestamp – The creation time of this block (seconds from Unix Epoch)
  • Nonce – A counter used for the proof-of-work algorithm, especially for ‘mining’ operations
Figure 1: The interconnections and interdependencies of the blocks in a blockchain support secure recordkeeping. (Image: National Institute of Standards and Technology)

Blockchains are relatively basic data structures that can be stored as a simple database or flat file. For example, Bitcoin stores its blockchain data using Google’s LevelDB database. The backward links and hash data are the key differentiators of blockchains. The hash identifiers for the individual block are generated using the SHA256 cryptographic hash algorithm on the block’s header. Each block includes the hash of the previous block (its “parent”) inside its header. The series of hashes linking each “child” block to its parent creates the blockchain that goes back to the original block, called the “genesis” block.

The previous block hash field is inside the block header and contributes to the current block’s hash. A child’s identity (hash) changes if the parent’s identity changes. Suppose a parent block is modified in any way; its hash changes. The parent’s new hash causes a change in the previous block hash pointer of the child and causes the child’s hash to change. That causes a change in the block hash pointer of the grandchild, changing the grandchild’s hash. A change to any hash forces a recalculation in all subsequent blocks. The blockchains used in cryptocurrency are very long, and any recalculation would demand a huge amount of computational effort making the blockchain essentially immutable and a key source of the security of cryptocurrencies. The use of distributed ledgers is another distinguishing characteristic of the blockchains used for cryptocurrencies.

Distributed ledgers
As the name implies, a distributed ledger relies on a decentralized structure. It’s a type of database shared, synchronized, and replicated in a decentralized network of users. It’s used to record transactions like exchanges of data or assets among network members. While blockchain networks for cryptocurrencies are very long with large numbers of entries (blocks), a distributed ledger can also be used for much smaller networks of entries.

A key element in a distributed ledger is that network members govern by consensus on any updates to ledger entries. Like the blocks in a blockchain, every record in a distributed ledger has a unique time stamp and a unique cryptographic hash (also called its signature’). The ledger provides an unchangeable and auditable history of all transactions without the need for central control.

Matter’s distributed compliance ledger
Matter’s distributed compliance ledger (DCL) is like a distributed ledger as described above, but in this case, it’s administrated and controlled by a centralized authority, the CSA. Matter’s DCL is designed to enable the Matter installation process for new devices on a network to access security and safety-related information and ensure network integrity.

Matter’s DCL is a network of independent servers operated by the CSA and its partners (Figure 2). Each DCL server includes a complete copy of the database. The original data is managed and controlled by the CSA. The DCL is implemented by connecting all the servers using a cryptographically secured protocol. The DCL makes it difficult to manipulate the data in the database and increases the security of Mater devices and networks.

Figure 2: The distributed compliance ledger for the Matter ecosystem consists of a network of independent servers. (Image: matter-smarthome)

Matter’s DCL contains extensive information about each device, including:

  • Supplier information, including the company name, product brand, and internet address
  • Device information, including its identification or serial number and whether it has passed tests for conformity
  • A list of root certificates from product attestation authorities (PPA) from the certification process and the current version of the device’s software

The last bullet is important: manufacturers can use the DCL to update device firmware. When an update is available, the DCL is modified to provide a link to the manufacturer’s server, where new software can be downloaded, either automatically or manually, as appropriate.

The manufacturer writes the data to the database to add a new product to the DCL. It’s not ‘active’ until approved by the CSA. Once the device has passed certification and the CSA has received the confirmation from the PPA, the CSA adds “certified” to the status list letting all members of the Matter ecosystem know that this is an approved device and ready to be added to Matter networks.

Database access is restricted. Device makers can only add data for their own products that are linked to their vendor identification (VendorID) number. Software updates must also be linked to the VendorID, or they will be rejected. Official CSA PPA bodies or the CSA can confirm or revoke device compliance data. Every Matter user is granted read-only access to the DCL. The DCL is structured as a series of five databases called schemas:

  • Vendor schema includes general information like the company’s legal name, primary brand name associated with the VendorID, the home page for the vendor website, and so on.
  • Device Model schema has general information like ProductName, Product ID, PartNumber, Commissioning information, and so on, which is common across all software versions of the product.
  • Device Software Version Model scheme includes detailed software version-specific information, like the Release Notes URL, Firmware Digests, OTA Software Image URL, and so on. The DCL only includes the URL; manufacturers must store the OTA images on their own server.
  • Compliance Test Result schema includes the device’s compliance and test result data.
  • PAA Schema is a list of approved Device Attestation Certificates (DACs) from the PAAs.

Participants in the Matter ecosystems consult the DCL for:

  • Confirming device certification compliance status
  • Verifying DAC status, including tracing back to the PAA
  • Obtaining commissioning instructions, links to manuals, and product information
  • Checking OTA software status and the available upgrade of the device to the latest firmware

Manufacturers are not required to have DCL servers. If they elect to have one, it must meet all CSA requirements, including only communicating using the approved cryptographically secure protocol. CSA provides DCL server setup services that allow public access to DCL information using a DCL client. It also provides CSA members with write access to add Matter device information to the DCL. A manufacturer’s DCL is different. The basic configuration allows access only to the manufacturer’s customers. However, a manufacturer can grant access to its DCL server to non-customers (Figure 3).

Figure 3: The DCL maintained in the CSA’s server can be accessed by any users of the Matter ecosystem, while manufacturer-maintained DCL servers can have more limited access. (Image: Connectivity Standards Alliance)

Summary
Matter’s DCL is based on principles underlying the blockchains used for cryptocurrencies. It’s a specialized form of distributed ledger designed to support the Matter installation process for new devices on a network by providing access to security and safety-related information and ensuring network integrity. It also supports OTA firmware updates for connected devices. The CSA maintains the primary DCL servers, and manufacturers can also maintain dedicated versions of the DCL on their own servers.

References
Benefits of matter #4 – Security and privacy, matter-smarthome
Blockchain, National Institute of Standards and Technology
Blockchain basics: Introduction to distributed ledgers, IBM
Connectivity Standards Alliance Distributed Compliance Ledger and the IoT, Connectivity Standards Alliance
The Blockchain, O’Reilly
When Distributed Ledger Technology meets Internet of Things – Benefits and Challenges, Institute of Computer Science Foundation for Research & Technology – Hellas

You may also like:


  • When to use standalone or MCU-hosted Matter platforms

  • How does Matter support multiple fabrics?

  • What can designers make with Matter?

  • What are the constituents of Matter?

  • How does Matter work as middleware for IoT devices?

Filed Under: Applications, FAQ, Featured, Security Tagged With: FAQ

Primary Sidebar

Featured Contributions

Five challenges for developing next-generation ADAS and autonomous vehicles

Securing IoT devices against quantum computing risks

RISC-V implementation strategies for certification of safety-critical systems

What’s new with Matter: how Matter 1.4 is reshaping interoperability and energy management

Edge AI: Revolutionizing real-time data processing and automation

More Featured Contributions

EE TECH TOOLBOX

“ee
Tech Toolbox: Internet of Things
Explore practical strategies for minimizing attack surfaces, managing memory efficiently, and securing firmware. Download now to ensure your IoT implementations remain secure, efficient, and future-ready.

EE Learning Center

EE Learning Center

EE ENGINEERING TRAINING DAYS

engineering
“bills
“microcontroller
EXPAND YOUR KNOWLEDGE AND STAY CONNECTED
Get the latest info on technologies, tools and strategies for EE professionals.

RSS Current EDABoard.com discussions

  • Elektronik devre
  • Powering a USB hub: safely distributing current from a shared power supply
  • RF-DC rectifier impedance matching
  • How can I get the frequency please help!
  • 12VAC to 12VDC 5A on 250ft 12AWG

RSS Current Electro-Tech-Online.com Discussions

  • 100uF bypass Caps?
  • Fuel Auto Shutoff
  • Actin group needed for effective PCB software tutorials
  • how to work on pcbs that are thick
  • compatible eth ports for laptop

DesignFast

Design Fast Logo
Component Selection Made Simple.

Try it Today
design fast globle

Footer

Microcontroller Tips

EE World Online Network

  • 5G Technology World
  • EE World Online
  • Engineers Garage
  • Analog IC Tips
  • Battery Power Tips
  • Connector Tips
  • DesignFast
  • EDA Board Forums
  • Electro Tech Online Forums
  • EV Engineering
  • Power Electronic Tips
  • Sensor Tips
  • Test and Measurement Tips

Microcontroller Tips

  • Subscribe to our newsletter
  • Advertise with us
  • Contact us
  • About us

Copyright © 2025 · WTWH Media LLC and its licensors. All rights reserved.
The material on this site may not be reproduced, distributed, transmitted, cached or otherwise used, except with the prior written permission of WTWH Media.

Privacy Policy