BHE-AC: a blockchain-based high-efficiency access control framework for Internet of Things

Chai, Baobao; Yan, Biwei; Yu, Jiguo; Wang, Guijuan

doi:10.1007/s00779-020-01498-w

Cited by 11 publications

(5 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The suggested method made use of a tokens mechanism that enables users to request numerous resources in batches rather than individually. An extension of [17] is presented in [29], with a particular emphasis on the analysis of the results. However, the disadvantage of CapBAC-based authorisation systems or access control models is that users are granted access to resources solely based on capability tokens created for each policy.…”

Section: Smart Contracts-based Approachesmentioning

confidence: 99%

A Blockchain-based Decentralised and Dynamic Authorisation Scheme for the Internet of Things

Hameed¹,

Raza²,

Garg³

et al. 2022

Preprint

View full text Add to dashboard Cite

An authorisation has been recognised as an important security measure for preventing unauthorised access to critical resources, such as devices and data, within the Internet of Things (IoT) networks. To achieve authorisation, access control mechanisms are extensively utilised, restricting the user's actions within the network or system based on predetermined access control policies with specific control actions. Existing authorisation methods for the IoT network is based on traditional access control models, which have several drawbacks, including architecture centralisation, policy tampering, access rights validation, malicious third party policy assignment and control, and network-related overheads. The increasing trend of integrating Blockchain technology with IoT networks demonstrates its importance and potential to address the shortcomings of traditional IoT network authorisation mechanisms. However, existing Blockchain-based authorisation solutions for IoT networks overlook the importance of utilising the full potential of Blockchain technology and under-perform to handle the dynamicity of the underlying network in terms of malicious user behaviour, static policies, and auditability of user requests and resources. This paper proposes a decentralised secure, dynamic, and flexible authorisation scheme for IoT networks based on attribute-based access control (ABAC) fine-grained policies stored on a distributed immutable ledger. We design a Blockchain-based ABAC policy management framework divided into Attribute Management Authority (AMA) and Policy Management Authority (PMA) frameworks that use smart contract features to initialise, store, and manage attributes and policies on the Blockchain. To achieve flexibility and dynamicity in the authorisation process, we capture and utilise the environmental-related attributes in conjunction with the subject and object attributes of the ABAC model to define the policies. Furthermore, we designed the Blockchain-based Access Management Framework (AMF) to manage user requests to access IoT devices while maintaining the privacy and auditability of user requests and assigned policies. We implemented a prototype of our proposed scheme and executed it on the local Ethereum Blockchain. Finally, we demonstrated the applicability and flexibility of our proposed scheme for an IoT-based smart home scenario, taking into account deployment, execution and financial costs.

show abstract

Section: Smart Contracts-based Approachesmentioning

confidence: 99%

A Blockchain-based Decentralised and Dynamic Authorisation Scheme for the Internet of Things

Hameed¹,

Raza²,

Garg³

et al. 2022

Preprint

View full text Add to dashboard Cite

show abstract

“…Thus, the trade-off between the techniques and transactions performance must be researched to find the optimum level. From the extraction of this SLR, four frameworks were found to develop an access control that focuses on communication control between various entities such as IoT device, gateway, cloud and users [4], [68], [69], [47]. To accomplish the objective of the proposed framework, researchers have adopted blockchain technology to design control communication between various entities by validating data flows before attempting to communicate with other entities.…”

Section: Table III Access Control Modelmentioning

confidence: 99%

“…The 3 smart contracts have two functionalities: 1) contract level of communication between IoT actuators and sensors, and 2) contract to access data-sources and 3) interoperability of heterogeneous IoT smart contracts. In another approach, the authors in [4] developed access control in various entities and communication control frameworks for cloud-enabled IoT. This framework has three layers: the register model layer, blockchain-based token requesting mechanism layer and requesting data with token used to control the access of users in the system's layers.…”

Section: Table III Access Control Modelmentioning

confidence: 99%

“…Access control and authentication are considered to be the first lines of defence in restricting unauthorised users from gaining access to IoT resources that provide the data to the smart farming ecosystem. Authentication enables legitimate users to access resources in an authorised manner [4] supporting by access control as the main mechanism for authentication and authorisation, as well as the authority to control resources [5]. Authentication will guarantee that only authorised users are allowed to access a resource.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Decentralized Access Control using Blockchain Technology for Application in Smart Farming

Noor¹,

Razali²,

Malizan³

et al. 2022

IJACSA

View full text Add to dashboard Cite

The application of the Internet of Things (IoT) plays a crucial role in the fourth industrial revolution. The sophistication of technology due to the integration of heterogenous smart devices open a new threat from various aspects. Access control is the first line of defence to ensure that IoT resources are secure by preventing illegitimate users from gaining access to these resources. However, access control mechanisms face the limitation of technology in large scale IoT deployments since they are based on a centralized architecture. Significant research concerning decentralized access control solutions for securing IoT resources using combined techniques, such as blockchain, have caught much research attention in recent years. Nevertheless, research for decentralized access control for application in smart farming domain remain as a gap. Thus, this study presented a structured literature review on 81 articles related to the field of access control in IoT and blockchain technology to understand the challenges of centralized access control in securing IoT resources. This study serves as a foundation for decentralized access control using blockchain technology and its application to ensure the IoT actuators and sensors security with the aim to be applied in smart farming. This paper was deliberated based on systematic literature review that was searched from four different database platforms between 2018 and 2021. This study mostly addresses the relevant techniques/approaches including blockchain technology, access control model, key management mechanism and the combination of all three methods. The possible impacts, gap, procedures and evaluation of the decentralized access control are highlighted along with major trends and challenges.

show abstract

“…Lyu et al [7] presented a blockchain-based access-control framework, affording data owners the capacity to securely distribute, audit, and revoke access rights. However, as observed in [8], the distribution of user permissions occurs externally to the blockchain, rendering user rights susceptible to tampering. To achieve fine-grained secure access control, Wang et al [9] proposed a blockchain-based data-sharing scheme, where data owners encrypt their shared data using attribute-based encryption.…”

Section: Introductionmentioning

confidence: 99%

N-Accesses: A Blockchain-Based Access Control Framework for Secure IoT Data Management

Hu,

Yang,

Wang

et al. 2023

Sensors

View full text Add to dashboard Cite

With the rapid advancement of network communication and big data technologies, the Internet of Things (IoT) has permeated every facet of our lives. Meanwhile, the interconnected IoT devices have generated a substantial volume of data, which possess both economic and strategic value. However, owing to the inherently open nature of IoT environments and the limited capabilities and the distributed deployment of IoT devices, traditional access control methods fall short in addressing the challenges of secure IoT data management. On the one hand, the single point of failure issue is inevitable for the centralized access control schemes. On the other hand, most decentralized access control schemes still face problems such as token underutilization, the insecure distribution of user permissions, and inefficiency.This paper introduces a blockchain-based access control framework to address these challenges. Specifically, the proposed framework enables data owners to host their data and achieves user-defined lightweight data management. Additionally, through the strategic amalgamation of smart contracts and hash-chains, our access control scheme can limit the number of times (i.e., n-times access) a user can access the IoT data before the deadline. This also means that users can utilize their tokens multiple times (predefined by the data owner) within the deadline, thereby improving token utilization while ensuring strict access control. Furthermore, by leveraging the intrinsic characteristics of blockchain, our framework allows data owners to gain capabilities for auditing the access records of their data and verifying them. To empirically validate the effectiveness of our proposed framework and approach, we conducted extensive simulations, and the experimental results demonstrated the feasibility and efficiency of our solution.

show abstract

BHE-AC: a blockchain-based high-efficiency access control framework for Internet of Things

Cited by 11 publications

References 20 publications

A Blockchain-based Decentralised and Dynamic Authorisation Scheme for the Internet of Things

A Blockchain-based Decentralised and Dynamic Authorisation Scheme for the Internet of Things

Decentralized Access Control using Blockchain Technology for Application in Smart Farming

N-Accesses: A Blockchain-Based Access Control Framework for Secure IoT Data Management

Contact Info

Product

Resources

About