Capability-based IoT access control using blockchain

被引：0

作者：

Yue Liu ^{[1
,2
]}

Qinghua Lu ^{[1
,2
]}

Shiping Chen ^{[1
,2
]}

Qiang Qu ^{[3
]}

Hugo OConnor ^{[2
]}

KimKwang Raymond Choo ^{[4
]}

He Zhang ^{[5
]}

机构：

[1] School of Computer Science and Engineering, University of New South Wales

[2] Data,CSIRO

[3] Shenzhen Institutes of Advanced Technology, Chinese Academy of Sciences

[4] Department of Information Systems and Cyber Security, University of Texas at San Antonio

[5] Software Institute, Nanjing

来源：

Digital Communications and Networks | 2021年 / 7卷 / 04期

关键词：

D O I：

暂无

中图分类号：

TN929.5 [移动通信]; TP393 [计算机网络]; TP311.13 [];

学科分类号：

081201 ; 1201 ;

摘要：

Internet of Things(IoT) devices facilitate intelligent service delivery in a broad range of settings, such as smart offices, homes and cities. However, the existing IoT access control solutions are mainly based on conventional identity management schemes and use centralized architectures. There are known security and privacy limitations with such schemes and architectures, such as the single-point failure or surveillance(e.g., device tracking). Hence,in this paper, we present an architecture for capability-based IoT access control utilizing the blockchain and decentralized identifiers to manage the identity and access control for IoT devices. Then, we propose a protocol to provide a systematic view of system interactions, to improve security. We also implement a proof-of-concept prototype of the proposed approach and evaluate the prototype using a real-world use case. Our evaluation results show that the proposed solution is feasible, secure, and scalable.

引用

页码：463 / 469

页数：7

共 50 条

[21] Exploration of blockchain-enabled decentralized capability-based access control strategy for space situation awareness
Xu, Ronghua
Chen, Yu
Blasch, Erik
Chen, Genshe
OPTICAL ENGINEERING, 2019, 58 (04)
[22] Capability-based egress network access control for transferring access rights
Suzuki, S
Shinjo, Y
Hirotsu, T
Itano, K
Kato, K
Third International Conference on Information Technology and Applications, Vol 2, Proceedings, 2005, : 488 - 495
[23] ON ACCESS CHECKING IN CAPABILITY-BASED SYSTEMS
KAIN, RY
LANDWEHR, CE
IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, 1987, 13 (02) : 202 - 207
[24] JCCAP: Capability-based access control for Java']Java Card
Hagimont, D
Vandewalle, JJ
SMART CARD RESEARCH AND ADVANCED APPLICATIONS, 2000, 52 : 365 - 388
[25] FECAC: Fine-Grained and Efficient Capability-Based Access Control for Enterprize-Scale IoT Systems
Wang, Qiong
Feng, Xia
Wang, Liangmin
Wu, Haiqin
Dudder, Boris
IEEE INTERNET OF THINGS JOURNAL, 2025, 12 (07): : 8669 - 8684
[26] A Federated Capability-based Access Control Mechanism for Internet of Things (IoTs)
Xu, Ronghua
Chen, Yu
Blasch, Erik
Chen, Genshe
SENSORS AND SYSTEMS FOR SPACE APPLICATIONS XI, 2018, 10641
[27] A capability-based security approach to manage access control in the Internet of Things
Gusmeroli, Sergio
Piccione, Salvatore
Rotondi, Domenico
MATHEMATICAL AND COMPUTER MODELLING, 2013, 58 (5-6) : 1189 - 1205
[28] MULTIPLE ACCESS CONTROL POLICIES IN CAPABILITY-BASED PROTECTION SYSTEMS.
Antonelli, Silvano
Iazeolla, Giuseppe
Journal of Information Processing, 1983, 6 (01) : 16 - 22
[29] SEAL: Capability-Based Access Control for Data-Analytic Scenarios
Rasifard, Hamed
Gopinath, Rahul
Backes, Michael
Nemati, Hamed
PROCEEDINGS OF THE 28TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, SACMAT 2023, 2023, : 67 - 78
[30] Exploiting Smart Contracts for Capability-Based Access Control in the Internet of Things
Nakamura, Yuta
Zhang, Yuanyu
Sasabe, Masahiro
Kasahara, Shoji
SENSORS, 2020, 20 (06)

← 1 2 3 4 5 →