Smart Contract-Based Access Control for the Internet of Things

Zhang, Yuanyu; Kasahara, Shoji; Shen, Yulong; Jiang, Xiaohong; Wan, Jianxiong

doi:10.1109/jiot.2018.2847705

Cited by 574 publications

(357 citation statements)

References 28 publications

Supporting

Mentioning

355

Contrasting

Unclassified

Order By: Relevance

“…RELATED WORK The work in [16] presents a blockchain-based decentralized authorization system where authorization proofs can be efficiently verified. The work in [17] presents a decentralized access control system where IoT devices are required to interact directly with the blockchain and are assumed to be always connected, while [18], [19] present solutions where policies and access control decisions are directly recorded on Bitcoin's blockchain. The work in [20] present a system based on OAuth 2.0 where a smart contract generates authorization tokens, which a key server verifies in order to provide private keys that allow clients to access a protected resource.…”

Section: Discussionmentioning

confidence: 99%

Interledger Smart Contracts for Decentralized Authorization to Constrained Things

Siris

Dimopoulos

Fotiou

et al. 2019

IEEE INFOCOM 2019 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

We present models that utilize smart contracts and interledger mechanisms to provide decentralized authorization for constrained IoT devices. The models involve different tradeoffs in terms of cost, delay, complexity, and privacy, while exploiting key advantages of smart contracts and multiple blockchains that communicate with interledger mechanisms. These include immutably recording hashes of authorization information and policies in smart contracts, resilience through the execution of smart contract code on all blockchain nodes, and cryptographically linking transactions and IoT events recorded on different blockchains using hash and time-lock mechanisms. The proposed models are evaluated on the public Ethereum testnets Rinkeby and Ropsten, in terms of execution cost (gas), delay, and reduction of data that needs to be sent to the constrained IoT devices.

show abstract

Section: Discussionmentioning

confidence: 99%

Interledger Smart Contracts for Decentralized Authorization to Constrained Things

Siris

Dimopoulos

Fotiou

et al. 2019

IEEE INFOCOM 2019 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)

View full text Add to dashboard Cite

show abstract

“…This section introduces the main components of the Ethereum protocol [15], that is a popular choice for blockchain systems tailored for IoT applications [3], [16], [17]. The common trait of Ethereum with other blockchain protocols can be found in [18].…”

Section: Blockchain Protocolmentioning

confidence: 99%

Delay and Communication Tradeoffs for Blockchain Systems With Lightweight IoT Clients

Danzi

Kalør

Stefanović

et al. 2019

IEEE Internet Things J.

108

View full text Add to dashboard Cite

The emerging blockchain protocols provide a decentralized architecture that is suitable of supporting Internet of Things (IoT) interactions. However, keeping a local copy of the blockchain ledger is infeasible for low-power and memoryconstrained devices. For this reason, they are equipped with lightweight software implementations that only download the useful data structures, e.g. state of accounts, from the blockchain network, when they are updated. In this paper, we consider and analyze a novel scheme, implemented by the nodes of the blockchain network, which aggregates the blockchain data in periodic updates and further reduces the communication cost of the connected IoT devices. We show that the aggregation period should be selected based on the channel quality, the offered rate, and the statistics of updates of the useful data structures. The results, obtained for the Ethereum protocol, illustrate the benefits of the aggregation scheme in terms of a reduced duty cycle of the device, particularly for low signal-to-noise ratios, and the overall reduction of the amount of information transmitted in downlink (e.g., from the wireless base station to the IoT device). A potential application of the proposed scheme is to let the IoT device request more information than actually needed, hence increasing its privacy, while keeping the communication cost constant. In conclusion, our work is the first to provide rigorous guidelines for the design of lightweight blockchain protocols with wireless connectivity.

show abstract

“…The work in [14] presents a blockchain-based decentralized access control system where IoT devices interact directly with the blockchain and are always connected, while [15] presents a system where policies and access control events are directly recorded on Bitcoin's blockchain. [16] presents a smart contract-based system for providing access control to IoT devices while satisfying access policies in terms of the minimum time interval between consecutive accesses. The above works all assume that the IoT device can directly access the blockchain, which is not possible in constrained IoT environments.…”

Section: Related Workmentioning

confidence: 99%

OAuth 2.0 meets Blockchain for Authorization in Constrained IoT Environments

Siris

Dimopoulos

Fotiou

et al. 2019

2019 IEEE 5th World Forum on Internet of Things (WF-IoT)

View full text Add to dashboard Cite

We present models for utilizing blockchain and smart contract technology with the widely used OAuth 2.0 open authorization framework to provide delegated authorization for constrained IoT devices. The models involve different tradeoffs in terms of privacy, delay, and cost, while exploiting key advantages of blockchains and smart contracts. These include linking payments to authorization grants, immutably recording authorization information and policies in smart contracts, and offering resilience through the execution of smart contract code on all blockchain nodes.

show abstract

Smart Contract-Based Access Control for the Internet of Things

Cited by 574 publications

References 28 publications

Interledger Smart Contracts for Decentralized Authorization to Constrained Things

Interledger Smart Contracts for Decentralized Authorization to Constrained Things

Delay and Communication Tradeoffs for Blockchain Systems With Lightweight IoT Clients

OAuth 2.0 meets Blockchain for Authorization in Constrained IoT Environments

Contact Info

Product

Resources

About