Attribute-based access control scheme for data sharing on hyperledger fabric

With the popularization of the IoT and big data, the application value of data has become increasingly prominent. Therefore, it is particularly important to ensure the legitimate use of privacy data in the process of data sharing through access control. Traditional schemes usually use a trusted central organization to implement access control. However, a fully trusted central organization does not exist, and the access process of centralized access control is also opaque. In order to solve these problems, in this paper, we propose a decentralized attribute-based and fine-grained access control scheme for data sharing on Hyperledger Fabric. Firstly, the encrypted data is stored on the InterPlanetary File System (IPFS) and the returned hash is saved in the blockchain, by virtue of the immutability of blockchain. Secondly, a decentralized fine-grained attribute-based access control through smart contracts to prevent unauthorized users from accessing data resource. Thirdly, the linear integer secret sharing algorithm is used to achieve symmetric key sharing among multiple attributes to ensure the security of the key. Finally, the security analysis of the proposed scheme and the performance evaluation using the Hyperledger Caliper tool show the feasibility and effectiveness of the new scheme.