基于以太坊的改进物联网设备访问控制机制研究

当前物联网设备节点动态性强且计算能力弱，导致物联网中的传统访问控制机制存在策略判决与策略权限管理效率较低、安全性不足等问题。提出基于以太坊区块链的物联网设备访问控制机制，结合基于角色的访问控制（RBAC）模型设计智能合约。对以太坊相关特性进行分析，建立结合用户组的改进RBAC模型。设计基于以太坊区块链技术的物联网设备访问控制架构及算法，通过编写图灵完备的智能合约实现物联网设备访问控制，融合以太坊区块链MPT树存储结构与星际文件系统对访问控制策略进行存储管理。在以太坊测试链上的实验结果表明，该机制具有较高的策略判决性能与安全性。

Research on Improved Access Control Mechanism of Internet of Things Devices Based on Ethereum

The high mobility and weak computation capabilities of Internet of Things(IoT)device nodes lead to some problems in the traditional access control mechanism of IoT,including low security,and inefficient management of policy decision and policy permissions.To address the problems,this paper proposes an access control mechanism for IoT devices based on Ethereum blockchain,and a smart contract designed by using the Role-Based Access Control(RBAC)model.First,this paper expounds the features of Ethereum and proposes an improved RBAC access control model combined with user groups.Then it designs the access control architecture and algorithm for IoT devices based on Ethereum blockchain technology,and writes Turing-complete smart contracts to realize access control for IoT devices.The storage structure of Ethereum blockchain MPT tree and InterPlanetary File System(IPFS)are used to store and manage access control strategies.The test results on the Ethereum test chain verify high security and policy decision performance of the proposed mechanism.