Blockchain-based Access Control Mechanism for Big Data

被引:0
作者
Liu A.-D. [1 ,2 ]
Du X.-H. [1 ,2 ]
Wang N. [1 ,2 ]
Li S.-Z. [1 ,2 ]
机构
[1] Information Engineering University, Zhengzhou
[2] Henan Provincial Key Laboratory of Information Security, Zhengzhou
来源
Ruan Jian Xue Bao/Journal of Software | 2019年 / 30卷 / 09期
基金
中国国家自然科学基金;
关键词
ABAC model; Access control; Big data security; Blockchain; Smart contract;
D O I
10.13328/j.cnki.jos.005771
中图分类号
学科分类号
摘要
In terms of the wide source, large dynamics, and distributed management characteristics of big data resources, the current mainstream centralized access control mechanisms have shortcomings, such as low efficiency, insufficient flexibility, and poor scalability. Therefore, this study proposes a blockchain-based big data access control mechanism based on the ABAC model. First, in this paper, the fundamental principle of blockchain technology is described and the attribute-based access control model is formalized. Then, big data access control architecture is presented based on blockchain technology, and the basic framework and flow of access control are analyzed. At the same time, to ensure the access control information is tamper-resistant, auditability, and verifiability, the transaction-based access control policy and entity attribute information management methods are also described in detail. In addition, a smart contract-based access control method is used to implement user-driven, transparent, dynamic, and automated access control for big data resources. Finally, simulation experiments validate the effectiveness of this mechanism, and then the views presented in this paper are summarized and prospected. © Copyright 2019, Institute of Software, the Chinese Academy of Sciences. All rights reserved.
引用
收藏
页码:2636 / 2654
页数:18
相关论文
共 37 条
[21]  
Joshi J.B.D., Bhatti R., Bertino E., Et al., Access-Control language for multidomain environments, IEEE Internet Computing, 8, 6, pp. 40-50, (2004)
[22]  
Lee H.K., Luedemann H., Lightweight decentralized authorization model for inter-domain collaborations, Proc. of the ACM Workshop on Secure Web Services, pp. 83-89, (2007)
[23]  
Maesa D.D.F., Mori P., Ricci L., Blockchain based access control, Proc. of the IFIP Int'l Conf. on Distributed Applications and Interoperable Systems, pp. 206-220, (2017)
[24]  
Zyskind G., Nathan O., Pentland A.S., Decentralizing privacy: Using blockchain to protect personal data, Proc. of the IEEE Security and Privacy Workshops, pp. 180-184, (2015)
[25]  
Ouaddah A., Elkalam A.A., Ouahman A.A., FairAccess: A new blockchain-based access control framework for the Internet of things, Proc. of the Security & Communication Networks, (2016)
[26]  
Ouaddah A., Mousannif H., Elkalam A.A., Ouahman A.A., Access control in the Internet of things: Big challenges and new opportunities, Computer Networks, 112, pp. 237-262, (2017)
[27]  
Ouaddah A., Elkalam A.A., Ouahman A.A., Towards a Novel Privacy-Preserving Access Control Model Based on Blockchain Technology in IoT, (2017)
[28]  
Ouaddah A., Bouij-Pasquier I., Elkalam A.A., Ouahman A.A., Security analysis and proposal of new access control model in the Internet of thing, Proc. of the Int'l Conf. on Electrical and Information Technologies, pp. 30-35, (2015)
[29]  
Azaria A., Ekblaw A., Vieira T., Et al., MedRec: Using blockchain for medical data access and permission management, Proc. of the Int'l Conf. on Open and Big Data, pp. 25-30, (2016)
[30]  
Ekblaw A., Azaria A., Halamka J.D., Lippman A., A Case Study for Blockchain in Healthcare: "MedRec" Prototype for Electronic Health Records and Medical Research Data, (2016)
1234