On the Design of a Flexible Delegation Model for the Internet of Things Using Blockchain

The Internet of things (IoT) presents new opportunities and challenges due to its scale and dynamic nature. One significant challenge for the IoT is the need for security, in particular access control solutions, that are designed to meet the characteristics of these systems. Delegation of rights, from one entity to another, is a crucial component of an access control system. The IoT requires a secure, flexible, and fine-grained delegation model. While there has been considerable work in the area of delegation, much of it assumes a centralized, well-resourced system and these solutions have limited capacity in the context of the IoT. Where delegation models for the IoT have been proposed they typically provide only coarse-grained control over the delegation of rights. Moreover, many of them require a centralized trusted authority, which can suffer from a single-point failure and is not an ideal base for a large and dynamic system like the IoT. In this paper, we propose an identity-less, asynchronous, and decentralized delegation model for the IoT based on blockchain technology. We describe system components, architecture, and key aspects related to the security of the system. We use attributes to validate an entity rather than depending upon unique identities. We demonstrate the feasibility of our model through use-case examples and analyze the performance with a proof of concept testbed implementation using Ethereum private blockchain.

[1]  Wei Ni,et al.  Survey on blockchain for Internet of Things , 2019, Comput. Commun..

[2]  Ayman I. Kayssi,et al.  An architecture for the Internet of Things with decentralized data and centralized control , 2015, 2015 IEEE/ACS 12th International Conference of Computer Systems and Applications (AICCSA).

[3]  Michael Hitchens,et al.  Design and implementation of a secure and flexible access-right delegation for resource constrained environments , 2019, Future Gener. Comput. Syst..

[4]  Satoshi Nakamoto Bitcoin : A Peer-to-Peer Electronic Cash System , 2009 .

[5]  Laura Ricci,et al.  Blockchain Based Access Control , 2017, DAIS.

[6]  Hajar Mousannif,et al.  Access control in the Internet of Things: Big challenges and new opportunities , 2017, Comput. Networks.

[7]  Lida Xu,et al.  The internet of things: a survey , 2014, Information Systems Frontiers.

[8]  Khaled Salah,et al.  A User Authentication Scheme of IoT Devices using Blockchain-Enabled Fog Nodes , 2018, 2018 IEEE/ACS 15th International Conference on Computer Systems and Applications (AICCSA).

[9]  Baruch Awerbuch,et al.  An on-demand secure routing protocol resilient to byzantine failures , 2002, WiSE '02.

[10]  Günter Müller,et al.  Privacy with Delegation of Rights by Identity Management , 2006, ETRICS.

[11]  Jameela Al-Jaroodi,et al.  Blockchain in Industries: A Survey , 2019, IEEE Access.

[12]  Xiaohong Jiang,et al.  Smart Contract-Based Access Control for the Internet of Things , 2018, IEEE Internet of Things Journal.

[13]  Vijay Varadharajan,et al.  On Design of A Fine-Grained Access Control Architecture for Securing IoT-Enabled Smart Healthcare Systems , 2017, MobiQuitous.

[14]  Genshe Chen,et al.  Exploration of blockchain-enabled decentralized capability-based access control strategy for space situation awareness , 2018, Optical Engineering.

[15]  Domenico Rotondi,et al.  A capability-based security approach to manage access control in the Internet of Things , 2013, Math. Comput. Model..

[16]  Trevor Kiviat,et al.  Beyond Bitcoin: Issues in Regulating Blockchain Transactions , 2015 .

[17]  Abdellah Ait Ouahman,et al.  Towards a Novel Privacy-Preserving Access Control Model Based on Blockchain Technology in IoT , 2017 .

[18]  Tiago M. Fernández-Caramés,et al.  A Review on the Use of Blockchain for the Internet of Things , 2018, IEEE Access.

[19]  Antonio F. Gómez-Skarmeta,et al.  DCapBAC: embedding authorization logic into smart things through ECC optimizations , 2016, Int. J. Comput. Math..

[20]  Francesco Longo,et al.  Blockchain-Based IoT-Cloud Authorization and Delegation , 2018, 2018 IEEE International Conference on Smart Computing (SMARTCOMP).

[21]  Genshe Chen,et al.  BlendCAC: A BLockchain-Enabled Decentralized Capability-Based Access Control for IoTs , 2018, 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData).

[22]  Oscar Novo,et al.  Blockchain Meets IoT: An Architecture for Scalable Access Management in IoT , 2018, IEEE Internet of Things Journal.

[23]  Choong Seon Hong,et al.  Internet of things forensics: Recent advances, taxonomy, requirements, and open challenges , 2019, Future Gener. Comput. Syst..

[24]  Salil S. Kanhere,et al.  Blockchain based Proxy Re-Encryption Scheme for Secure IoT Data Sharing , 2018, 2019 IEEE International Conference on Blockchain and Cryptocurrency (ICBC).

[25]  Jamie Walters,et al.  MediaSense - an Internet of Things Platform for Scalable and Decentralized Context Sharing and Control , 2012, ICDT 2012.