Soteria is a user right management system designed to safeguard user-data privacy in a transparent and provable manner in compliance to regulations such as GDPR and CCPA. Soteria represents user data rights as formal executable sharing agreements, which can automatically be translated into a human readable form and enforced as data are queried. To support revocation and to prove compliance, an indelible, audited trail of the hash of data access and sharing agreements are stored on a two-layer distributed ledger. The main chain ensures partition tolerance and availability (PA) properties while side chains ensure consistency and availability (CA), thus providing the three properties of the CAP (consistency, availability, and partition tolerance) theorem. Besides depicting the two-layer architecture of Soteria, this paper evaluates representative consensus protocols and reports performance statistics.

中文翻译：

---

Soteria：使用新型两层区块链技术的可证明合规的用户权限管理器

Soteria 是一个用户权限管理系统，旨在以透明和可证明的方式保护用户数据隐私，以符合 GDPR 和 CCPA 等法规。Soteria 将用户数据权利表示为正式的可执行共享协议，该协议可以自动转换为人类可读的形式并在查询数据时强制执行。为了支持撤销和证明合规性，数据访问和共享协议散列的不可磨灭的审计跟踪存储在两层分布式账本上。主链保证了分区容错性和可用性（PA）属性，而侧链保证了一致性和可用性（CA），从而提供了CAP（一致性、可用性和分区容错性）定理的三个属性。除了描绘 Soteria 的两层架构，