Dynamic Access Control and Trust Management for Blockchain-Empowered IoT

【Author】 Wang, Peng; Xu, Ning; Zhang, Haibin; Sun, Wen; Benslimane, Abderrahim

【Source】IEEE INTERNET OF THINGS JOURNAL

【影响因子】10.238

【Abstract】The Internet of Things (IoT), while providing comprehensive interconnection and ubiquitous services, poses security issues by enabling resources sharing among various devices from different untrusted authorities. Blockchain, as a distributed ledger, provides a traceable and verifiable platform to ensure the secure access control in IoT. The existing works based on blockchain may bring up intolerable computing overhead and delay to the lightweight IoT devices. In this article, we propose a dynamic and lightweight attribute-based access control framework for blockchain-empowered IoT, to achieve secure and fine-grained authorization. The proposed scheme allows access to resources by evaluating attributes, operations, and the environment relevant to a request. The access policy is executed through smart contract in blockchain for security and flexibility. To further adapt to IoT device constraints, we design a access control framework based on decentralized application (DApp), which can maintain tamper proof in a timely manner and be adapt to the delay-intolerant application. When delay-intolerant access is required, access can be allowed according to local replica of the blockchain, without a consensus of blockchain network. Considering the time-varying attributes of IoT devices, a trust management scheme is proposed based on the Markov chain to resist the security fluctuation caused by the vulnerability of IoT devices. In the experiments, we deploy our system prototype on Ethereum to evaluate the feasibility and effectiveness of the scheme. The results show the proposed scheme can achieve secure, high throughput, and flexible access control in IoT.

【Keywords】Internet of Things; Security; Smart contracts; Authorization; Smart homes; Trust management; Logic gates; Access control; blockchain; Internet of Things (IoT); smart contract; trust management

【发表时间】2022 AUG 1

【收录时间】2022-08-28

【文献类型】理论模型

【主题类别】

区块链技术-协同技术-物联网