Enabling Decentralized and Auditable Access Control for IoT through Blockchain and Smart Contracts

Author:

Truong Hien1,Hernández-Ramos José L.2ORCID,Martinez Juan A.3,Bernal Bernabe Jorge4ORCID,Li Wenting5,Marin Frutos Agustin4,Skarmeta Antonio4ORCID

Affiliation:

1. Elisa Corporation, Helsinki, Finland

2. European Commission, Joint Research Centre, Ispra 21027, Italy

3. Odin Solutions, R&D Department, Murcia 30820, Spain

4. University of Murcia, Department of Information and Communication Engineering, Murcia, Spain

5. NEC Laboratories Europe, Heidelberg 69115, Germany

Abstract

The increase in the interconnection of physical devices and the emergence of the 5 G paradigm foster the generation and distribution of massive amounts of data. The complexity associated with the management of these data requires a suitable access control approach that empowers citizens to control how their data are shared, so potential privacy issues can be mitigated. While well-known access control models are widely used in web and cloud scenarios, the IoT ecosystem needs to address the requirements of lightness, decentralization, and scalability to control the access to data generated by a huge number of heterogeneous devices. This work proposes CapBlock, a design that integrates a capability-based access control model and blockchain technology for a fully distributed evaluation of authorization policies and generation of access credentials using smart contracts. CapBlock is intended to manage the access to information in federated IoT environments where data need to be managed through access control policies defined by different data providers. The feasibility of CapBlock has been successfully evaluated in the scope of the EU research project IoTCrawler, which aims at building a secure search engine for IoT data in large-scale scenarios.

Funder

European Union’s Horizon 2020 Research and Innovation Programme

Publisher

Hindawi Limited

Subject

Computer Networks and Communications,Information Systems

同舟云学术

1.学者识别学者识别

2.学术分析学术分析

3.人才评估人才评估

"同舟云学术"是以全球学者为主线,采集、加工和组织学术论文而形成的新型学术文献查询和分析系统,可以对全球学者进行文献检索和人才价值评估。用户可以通过关注某些学科领域的顶尖人物而持续追踪该领域的学科进展和研究前沿。经过近期的数据扩容,当前同舟云学术共收录了国内外主流学术期刊6万余种,收集的期刊论文及会议论文总量共计约1.5亿篇,并以每天添加12000余篇中外论文的速度递增。我们也可以为用户提供个性化、定制化的学者数据。欢迎来电咨询!咨询电话:010-8811{复制后删除}0370

www.globalauthorid.com

TOP

Copyright © 2019-2024 北京同舟云网络信息技术有限公司
京公网安备11010802033243号  京ICP备18003416号-3