区块链前沿 | 文献

【Author】 Lu, Xin; Zhang, Zijian; Ma, Teng; Li, Meng; Zhou, Tyler; Shen, Wei; Zhu, Liehuang

【Source】IEEE INTERNET OF THINGS JOURNAL

【影响因子】10.238

【Abstract】Blockchain uses smart contract technology to automate the execution of Internet of Things (IoT) data trading and facilitate the flow and application of IoT data. The verifiability of the blockchain system requires data to be open and transparent. Directly using smart contracts for IoT data trading may expose sensitive data generated by IoT devices, thereby increasing the risk of data leakage and abuse. The trusted execution environment represented by software guard extension (SGX) provides new ideas for trusted execution of IoT data trading based on smart contracts. SGXs is a set of hardware security enhancement technologies launched by Intel, which aims to protect the execution of sensitive data and code through the hardware isolation and security encryption capabilities provided by the processor. However, we found that due to SGX's lack of a checksum mechanism for the execution state of smart contracts, a rollback attack can lead to errors when the account state of IoT data trading is replayed. To address the above issues, we propose a trusted execution environment for IoT data trading with rollback protection. First, we design a freshness checking mechanism for the execution state of IoT data trading contracts for rollback protection. In addition, we propose a "chain-of-trust"-based authentication model to realize trust metrics and remote proofs for the proposed trusted execution environment for IoT data trading. Finally, we then provide a formal security analysis and comprehensive performance evaluation.

【Keywords】Smart contracts; Internet of Things; Protection; Security; Privacy; Operating systems; Software; Internet of Things (IoT); privacy protection; rollback attack; smart contracts; trusted execution environment

【发表时间】2024 OCT 15

【收录时间】2024-10-20

【文献类型】实验仿真

【主题类别】

区块链技术-协同技术-物联网

【DOI】 10.1109/JIOT.2024.3422005

Trusted Execution Environment With Rollback Protection for Smart Contract-Based IoT Data Trading

评论

Vulnerabilities and attacks assessments in blockchain 1.0, 2.0 and 3.0: tools, analysis and countermeasures

Evaluation on the application mode of blockchain technology in water transportation engineering project management

Cashing out crypto: state of practice in ransom payments

Cryptocurrency and digital currency based on blockchain-enabled IoT: a bibliometric literature review