TY - GEN
T1 - An Attribute-Based Distributed Access Control for Blockchain-enabled IoT
AU - Wang, Peng
AU - Yue, Yanlin
AU - Sun, Wen
AU - Liu, Jiajia
N1 - Publisher Copyright:
© 2019 IEEE.
PY - 2019/10
Y1 - 2019/10
N2 - In IoT, a flexible and trustworthy access control framework is of significance to ensure the security of lightweight IoT devices. The conventional centralized access control framework is no longer fit for the open and large-scale IoT environments. In this paper, we propose an attribute-based distributed access control framework (ADAC) for IoT using blockchain technology. The attributes, such as manufacturer and object-specified attribute, are considered in the proposed ADAC for more fine-grained access control in the open and lightweight IoT devices. Particularly, we design a smart contract system, which includes a subject contract (SC), an object contract (OC), an access control contract (ACC) and multiple policy contracts (PCs), to manage and access attributes of IoT devices for distributed and trustworthy access control (DTAC). SC and OC are responsible for managing subject attribute and object attribute information, respectively. PCs are used to manage access control policies. ACC performs authorization judgment by accessing attributes and policies. Finally, a case study is performed to demonstrate the workflow and show that ADAC could achieve fine-grained and flexible access control for IoT.
AB - In IoT, a flexible and trustworthy access control framework is of significance to ensure the security of lightweight IoT devices. The conventional centralized access control framework is no longer fit for the open and large-scale IoT environments. In this paper, we propose an attribute-based distributed access control framework (ADAC) for IoT using blockchain technology. The attributes, such as manufacturer and object-specified attribute, are considered in the proposed ADAC for more fine-grained access control in the open and lightweight IoT devices. Particularly, we design a smart contract system, which includes a subject contract (SC), an object contract (OC), an access control contract (ACC) and multiple policy contracts (PCs), to manage and access attributes of IoT devices for distributed and trustworthy access control (DTAC). SC and OC are responsible for managing subject attribute and object attribute information, respectively. PCs are used to manage access control policies. ACC performs authorization judgment by accessing attributes and policies. Finally, a case study is performed to demonstrate the workflow and show that ADAC could achieve fine-grained and flexible access control for IoT.
KW - access control
KW - blockchain
KW - Internet of Things
KW - smart contract
UR - http://www.scopus.com/inward/record.url?scp=85077519298&partnerID=8YFLogxK
U2 - 10.1109/WiMOB.2019.8923232
DO - 10.1109/WiMOB.2019.8923232
M3 - 会议稿件
AN - SCOPUS:85077519298
T3 - International Conference on Wireless and Mobile Computing, Networking and Communications
BT - 2019 International Conference on Wireless and Mobile Computing, Networking and Communications, WiMob 2019
PB - IEEE Computer Society
T2 - 15th International Conference on Wireless and Mobile Computing, Networking and Communications, WiMob 2019
Y2 - 21 October 2019 through 23 October 2019
ER -