Capability-based IoT access control using blockchain |
| |
Authors: | Yue Liu Qinghua Lu Shiping Chen Qiang Qu Hugo O'Connor Kim-Kwang Raymond Choo He Zhang |
| |
Affiliation: | 1. School of Computer Science and Engineering, University of New South Wales, Australia;2. Data61, CSIRO, Australia;3. Shenzhen Institutes of Advanced Technology, Chinese Academy of Sciences, China;4. Department of Information Systems and Cyber Security, University of Texas at San Antonio, USA;5. Software Institute, Nanjing University, China |
| |
Abstract: | Internet of Things (IoT) devices facilitate intelligent service delivery in a broad range of settings, such as smart offices, homes and cities. However, the existing IoT access control solutions are mainly based on conventional identity management schemes and use centralized architectures. There are known security and privacy limitations with such schemes and architectures, such as the single-point failure or surveillance (e.g., device tracking). Hence, in this paper, we present an architecture for capability-based IoT access control utilizing the blockchain and decentralized identifiers to manage the identity and access control for IoT devices. Then, we propose a protocol to provide a systematic view of system interactions, to improve security. We also implement a proof-of-concept prototype of the proposed approach and evaluate the prototype using a real-world use case. Our evaluation results show that the proposed solution is feasible, secure, and scalable. |
| |
Keywords: | Blockchain Internet of things Capability-based access control Identity management Architecture design |
本文献已被 ScienceDirect 等数据库收录! |
|