浏览全部资源
扫码关注微信
物联网环境下基于区块链技术的私有数据访问控制模型
Private data access control model based on block chain technology in the internet of things environment
- 物联网学报 2022年6卷第4期 页码:169-182
- 作者机构:
1. 数据智能与智慧社会国家重点实验室(培育)基地,湖南 长沙 410205
2. 新零售虚拟现实技术湖南省重点实验室,湖南 长沙 410205
3. 湖南工商大学计算机学院,湖南 长沙 410205
4. 湖南工商大学前沿交叉学院,湖南 长沙 410205
- 作者简介:
[ "蒋伟进(1964- ),男,博士,湖南工商大学计算机学院二级教授,主要研究方向为网络安全、社会计算、区块链技术和群体智能感知" ]
[ "罗田甜(1998- ),女,湖南工商大学前沿交叉学院硕士生,主要研究方向为区块链技术、网络安全和社会计算" ]
[ "杨莹(1999- ),女,湖南工商大学计算机学院硕士生,主要研究方向为复杂网络、网络安全和区块链技术" ]
[ "李恩(1995- ),男,湖南工商大学计算机学院硕士生,主要研究方向为网络安全和区块链技术" ]
[ "周文颖(1999- ),女,湖南工商大学计算机学院硕士生,主要研究方向为网络安全、区块链技术和社会计算" ]
- 基金信息:国家自然科学基金资助项目;The National Natural Science Foundation of China(61772196);湖南省自然科学基金资助项目;The Natural Science Foundation of Hunan Province(2020JJ4249);湖南省研究生科研创新项目;The Hunan Provincial Innovation Foundation for Postgraduate(CX20221139);湖南省教育厅科学研究项目;The Key Scientific Research Project of Education Department of Hunan Province(21A0374)
DOI:10.11959/j.issn.2096-3750.2022.00304
中图分类号: TP309纸质出版日期:2022-12-30,
网络出版日期:2022-12,
- 稿件说明:
移动端阅览
蒋伟进, 罗田甜, 杨莹, 等. 物联网环境下基于区块链技术的私有数据访问控制模型[J]. 物联网学报, 2022,6(4):169-182.
WEIJIN JIANG, TIANTIAN LUO, YING YANG, et al. Private data access control model based on block chain technology in the internet of things environment. [J]. Chinese journal on internet of things, 2022, 6(4): 169-182.
蒋伟进, 罗田甜, 杨莹, 等. 物联网环境下基于区块链技术的私有数据访问控制模型[J]. 物联网学报, 2022,6(4):169-182. DOI: 10.11959/j.issn.2096-3750.2022.00304.
WEIJIN JIANG, TIANTIAN LUO, YING YANG, et al. Private data access control model based on block chain technology in the internet of things environment. [J]. Chinese journal on internet of things, 2022, 6(4): 169-182. DOI: 10.11959/j.issn.2096-3750.2022.00304.
摘要
基于传统“中心化”的访问控制技术已经无法保证当前物联网环境中私有数据访问控制的安全性问题。以基于属性的访问控制(ABAC
attribute-based access control)模型为基础,提出了一种基于区块链的物联网访问控制框架和私有数据访问控制模型。首先,对访问控制的基本框架与流程进行了详细的阐述与分析,并提出了可审计的访问控制模型,通过存储在区块链网络中的请求、响应和访问记录,对私有数据的访问控制策略进行系统管理;接着,提出了一种基于区块链技术的可审计访问控制系统,可以在物联网中提供分布式、细粒度和动态性的访问控制管理,实现了对数据的有效管理和可审计访问,并采用基于智能合约的访问控制方法实现对物联网资源全程透明、可追溯、自动化的访问控制。最后,通过仿真实验和性能测试验证了该访问控制模型和系统的有效性和安全性。
Abstract
The traditional “centralized” access control technology can no longer guarantee the security of private data access control in the current internet of things environment.Based on the ABAC (attribute-based access control) model
a blockchain based access control framework for the internet of things and a private data access control model were proposed.Firstly
the basic framework and process of access control were described and analyzed in detail
and an auditable access control model was proposed to systematically manage the access control policies of private data through the requests
responses and access records stored in the blockchain network.Then
an auditable access control system based on blockchain technology was proposed
which can provide distributed
fine-grained and dynamic access control management in the internet of things
realize the effective management and auditable access to data
and adopt the access control method based on smart contract to realize the transparent
traceable and automatic access control over the internet of things resources.Finally
simulation experiments and performance tests verify the effectiveness and security of the access control model and system.
关键词
区块链物联网访问控制智能合约数据安全
Keywords
blockchainIoTaccess controlsmart contractdata security
references
LIU H, HAN D Z, LI D . Fabric-IoT:a blockchain-based access control system in IoT[J]. IEEE Access, 2020(8): 18207-18218.
BABUN L, DENNEY K, CELIK Z B ,et al. A survey on IoT platforms:communication,security,and privacy perspectives[J]. Computer Networks, 2021,192:108040.
YANG Y S, ZHONG M S, YAO H Q ,et al. Internet of things for smart ports:technologies and challenges[J]. IEEE Instrumentation & Measurement Magazine, 2018,21(1): 34-43.
史锦山, 李茹 . 物联网下的区块链访问控制综述[J]. 软件学报, 2019,30(6): 1632-1648.
SHIJ S, LI R . Survey of blockchain access control in Internet of Things[J]. Journal of Software, 2019,30(6): 1632-1648.
HU V C, KUHN D R, FERRAIOLO D F ,et al. Attribute-based access control[J]. Computer, 2015,48(2): 85-88.
ZENG S A, HUO R, HUANG T ,et al. Survey of blockchain:principle,progress and application[J]. Journal on Communications. 2020,41(01): 134-151.
田国华, 胡云瀚, 陈晓峰 . 区块链系统攻击与防御技术研究进展[J]. 软件学报, 2021,32(5): 1495-1525.
TIAN G H, HU Y H, CHEN X F . Research progress on attack and defense techniques in block-chain system[J]. Journal of Software, 2021,32(5): 1495-1525.
房梁, 殷丽华, 郭云川 ,等. 基于属性的访问控制关键技术研究综述[J]. 计算机学报, 2017,40(7): 1680-1698.
FANG L, YIN L H, GUO Y C ,et al. A survey of key technologies in attribute-based access control scheme[J]. Chinese Journal of Computers, 2017(7): 1680-1698.
SUDARSAN S V, SCHELÉN O, BODIN U . Survey on delegated and self-contained authorization techniques in CPS and IoT[J]. IEEE Access, 2021(9): 98169-98184.
BELIM S, BELIM S . Implementation of mandatory access control in distributed systems[J]. Automatic Control and Computer Sciences, 2018,52(8): 1124-1126.
KAMBOJ P, KHARE S, PAL S . User authentication using Blockchain based smart contract in role-based access control[J]. Peer-to-Peer Networking and Applications, 2021,14(5): 2961-2976.
AGHILI S F, SEDAGHAT M, SINGELÉE D, ,et al. MLS-ABAC:efficient multi-level security attribute-based access control scheme[J]. Future Generation Computer Systems, 2022,131: 75-90.
刘明达, 陈左宁, 拾以娟 ,等. 区块链在数据安全领域的研究进展[J]. 计算机学报, 2021,44(1): 1-27.
LIU M D, CHENZ N, SHIY J ,et al. Research progress of blockchain in data security[J]. Chinese Journal of Computers, 2021,44(1): 1-27.
ZYSKIND G, NATHAN O, PENTLAND A . Decentralizing privacy:using blockchain to protect personal data[C]// Proceedings of 2015 IEEE Security and Privacy Workshops. Piscataway:IEEE Press, 2015: 180-184.
KOŠŤÁL K, HELEBRANDT P, BELLUŠ M, ,et al. Management and monitoring of IoT devices using blockchain[J]. Sensors (Basel,Switzerland), 2019,19(4): 856.
DING S, CAO J, LI C ,et al. A novel attribute-based access control scheme using blockchain for IoT[J]. IEEE Access, 2019(7): 38431-38441.
ZHOU L, WANG L, AI T ,et al. BeeKeeper 2.0:confidential blockchain-enabled IoT system with fully homomorphic computation[J]. Sensors (Basel,Switzerland), 2018,18(11): E3785.
HENRY R, HERZBERG A, KATE A . Blockchain access privacy:challenges and directions[J]. IEEE Security & Privacy, 2018,16(4): 38-45.
CAI Z P, ZHENG X . A private and efficient mechanism for data uploading in smart cyber-physical systems[J]. IEEE Transactions on Network Science and Engineering, 2020,7(2): 766-775.
KUZMIN A, . Blockchain-based structures for a secure and operate IoT[C]// Proceedings of 2017 Internet of Things Business Models,Users,and Networks. Piscataway:IEEE Press, 2017: 1-7.
ZHANG Y Y, KASAHARA S, SHEN Y L ,et al. Smart contract-based access control for the internet of things[J]. IEEE Internet of Things Journal, 2019,6(2): 1594-1605.
PAL S, RABEHAJA T, HITCHENS M ,et al. On the design of a flexible delegation model for the internet of things using blockchain[J]. IEEE Transactions on Industrial Informatics, 2020,16(5): 3521-3530.
SONG L H, LI M C, ZHU Z K ,et al. Attribute-based access control using smart contracts for the internet of things[J]. Procedia Computer Science, 2020,174: 231-242.
SAINI A, ZHU Q Y, SINGH N ,et al. A smart-contract-based access control framework for cloud smart healthcare system[J]. IEEE Internet of Things Journal, 2021,8(7): 5914-5925.
YANG W T, GUAN Z T, WU L F ,et al. Secure data access control with fair accountability in smart grid data sharing:an edge blockchain approach[J]. IEEE Internet of Things Journal, 2021,8(10): 8632-8643.
FOTIOU N, PITTARAS I, SIRIS V A ,et al. Secure IoT access at scale using blockchains and smart contracts[C]// Proceedings of 2019 IEEE 20th International Symposium on. Piscataway:IEEE Press, 2019: 1-6.
0
浏览量
246
下载量
0
CSCD
- 网络PDF下载
- Meta-XML下载
- BibTeX下载
- Endnote下载
- RefMan 下载
- NoteExpress下载
- NoteFirst下载
关联资源
相关文章
相关作者
相关机构
- 技术支持由北京北大方正电子有限公司提供 京ICP备09064830号-19
京公网安备11010802024621 - 本系统建议在Chrome、 IE9+ 以上版本浏览器阅读本站内容,360浏览器请切换至极速模式
- Cookies帮助我们提供服务并提供个性化体验。使用本网站,即表示您同意我们使用Cookies
- 总访问量:42508 今日访问量:303