Take for example a lab that is supposed to keep Phizer vaccine at -30C to keep it from going bad. That lab has automated sensors that are set up to automatically log temperature every hour into some internal database. Say there was a power outage and the person responsible for monitoring goofed up and didn't notice, the problem didn't get fixed and instead of taking responsibility he just updated internal database to make it look like there was no problem. Now, if the automated sensors were writing data to the blockchain, then he couldn't just cook the books after the fact.
But your still absolutely trusting the lab 100%.
Specifically, your trusting that the data being written to the block chain is relevant. And not just some script running to make you feel good.
Also, even if the data being written to the block chain is correct, what is to stop me from marking the effected lot as disposed, then simply recording it as new production, and shipping it to you anyway?
Lets expand the example above and say the hospital administering vaccine randomly tested the batch and realized it's no good. What do they do now?
Ask the supplier what is going on.
Can they really trust the supplier now?
depends on how the supplier responds. and the shipper responds. And the hospitals own personnel respond.
If you think about it, there are a ton of people involved besides the supplier.
Do they test every batch coming from the supplier now?
The supplier normally does that for them, and sends in an certificate from a third party lab.
Do they cancel the contract and try to find a new supplier?
Either supplier is good
or the supplier is in prison for fraudulently altering the lab certificate (which is trivial to trace)
or something went wrong after the batch sample was pulled for the lab cert, which typically will not by the suppliers fault. Regardless, the next step is a 3rd party audit paid for by the hospital.
followed by a lessons learned / SOP update commitment from the guilty party
followed by business as usual
It is not uncommon for the supplier to deal with being audited by each customer once a quarter anyway. For sensitive stuff once a month. These are third party audits paid for by the customer from a provider agreed upon before hand. They typically are no warning (the auditor shows up outside your office one day and you drop what your doing to deal with it).
In my opinion the best third party auditor is the NSF:
https://www.nsf.org/
in my limited experience their auditors always had their act together and there was no need to explain to them what they were looking at. They were always helpful and good to work with.
Take for example a lab that is supposed to keep Phizer vaccine at -30C to keep it from going bad.
This specific problem is typically solved by slipping one of these into the batch:
These are mechanical recorders started by pulling a small tab on the recorder. They are tamperproof, and have to be destructively opened by the customer. They have a sheet of paper on the inside that records when it was started, and has a graph on it of the metric your interested in over time.
Cost wise:
cheap disposable strip recorder
vs
stupidity: block chain + computers to run said chain + engineers to maintain said chain + internet connections + security for internet connections + electricity + temperature sensors + all the other BS associated with that
Nobody has ever hacked a mechanical strip recorder from a computer in Russia. They are also annoying sensitive. Not only recording you opening the fridge door, it is going to be obvious if you touched one with your hot little hand.