Abstract
In the last few years, Internet of Things (IoT) and Blockchain (BC) technology have been ruling their respective research area. The integration of IoT and Blockchain enables delivering many effective and prominent services by incorporating in-built features like scalability, flexibility, and resilience along with availability and integrity. However, taking into account the constrained nature of IoT devices, it’s quite hard to implement BC peers on top of IoT devices. Additionally, the rate at which transactions are produced by a huge number of constrained devices, BC could not handle effectively. The proposed work presented a solution to cater to these challenges. It incorporates the Interplanetary File System (IPFS) for the distribution of resources generated by IoT devices. The proposed system is based on the Hyperledger Fabric BC framework and comprises smart contracts that are accountable for policy definition, policy enforcement, user identity management, and data retrieval. The experimental results illustrate that the running time taken by smart contract methods of the proposed solution is fairly less than the prominent work in the same domain. The performance evaluation clearly depicts how effectively the presented model achieves Confidentiality, Availability, Integrity, and prevents DoS and DDoS attacks.
Similar content being viewed by others
Data availability
Data sharing not applicable to this article as no datasets were generated or analysed during the current study.
References
Alphand O, Amoretti M, Claeys T, Dall'Asta S, Duda A, Ferrari G, Rousseau F, Tourancheau B, Veltri L Zanichelli F (2018) IoTChain: a blockchain security architecture for the internet of things. In: 2018 IEEE wireless communications and networking conference (WCNC) IEEE pp 1-6.
Atlam HF, Alassafi MO, Alenezi A, Walters RJ, Wills GB (2018) XACML for building access control policies in internet of things. In IoTBDS. pp. 253-260
Benet J. (2014) “IPFS-content addressed, versioned, P2P file system.”[Online]. Available: https://arxiv.org/abs/1407.3561
Bouij-Pasquier I, Ouahman AA, El Kalam AA, de Montfort MO (2015) SmartOrBAC security and privacy in the internet of things. In 2015 IEEE/ACS 12th international conference of computer systems and applications (AICCSA). pp. 1-8
Cirani S, Picone M, Gonizzi P, Veltri L, Ferrari G (2014) Iot-oas: an oauth-based authorization service architecture for secure services in iot scenarios. IEEE Sensors J 15(2):1224–1234
Cruz-Piris L, Rivera D, Marsa-Maestre I, De La Hoz E, Velasco JR (2018) Access control mechanism for IoT environments based on modeling communication procedures as resources. Sensors. 18(3):917
Ding S, Cao J, Li C, Fan K, Li H (2019) A novel attribute-based access control scheme using Blockchain for IoT. IEEE Access 7:38431–38441
El Bouanani S, El Kiram MA, Achbarou O, Outchakoucht A (2019) Pervasive-based access control model for IoT environments. IEEE Access 7:54575–54585
El-Aziz AA, Kannan A (2013) A comprehensive presentation to xacml. In: Third International Conference on Computational Intelligenceand Information Technology (CIIT 2013). pp. 155–161
Gaba P, Raw RS, Mohammed MA, Nedoma J, Martinek R (2022) Impact of block data components on the performance of blockchain-based VANET implemented on hyperledger fabric. IEEE Access 10:71003–71018
Gusmeroli S, Piccione S, Rotondi D (2013) A capability-based security approach to manage access control in the internet of things. Math Comput Model 58(5–6):1189–1205
Han D, Zhu Y, Li D, Liang W, Souri A, Li KC (2021) A Blockchain-based auditable access control system for private data in service-centric IoT environments. IEEE Transactions on Industrial Informatics
Han D et al (2021) A blockchain-based auditable access control system for private data in service-centric IoT environments. IEEE Transac Indust Inform 18(5):3530–3540
Hardt D (2012) “The oauth 2.0 authorization framework”, Internet Requests for Comments, RFC Editor, RFC 6749
Kaiwen S, Lihua Y (2014) Attribute-role-based hybrid access control in the internet of things. In: Asia-Pacific web conference springer, Cham pp 333-343.
Kalam AAE, Baida RE, Balbiani P, Benferhat S, Cuppens F, Deswarte Y, Miege A, Saurel C, Trouessin G (2003) Organization based access control. In: Proceedings POLICY 2003. IEEE 4th international workshop on policies for distributed systems and networks. (pp. 120-131)
Kamal M, et al. (2022) Privacy-aware genetic algorithm based data security framework for distributed cloud storage. Microprocessors and Microsystems 94, 104673
Kantara Initiative, Inc (2017) “User-managed access (uma),” https://kantarainitiative.org/confluence/display/uma/Home, visited on 5 Apr 2017.
Lakhan A (2022) Federated-Learning Based Privacy Preservation and Fraud-Enabled Blockchain IoMT System for Healthcare. IEEE J Biomed Health Inform
LakhanA, et al. (2022) Blockchain-Enabled Cybersecurity Efficient IIOHT Cyber-Physical System for Medical Applications. IEEE Transac Netw Sci Eng
Li Z, Hao J, Liu J, Wang H, Xian M (2020) An IoT-applicable access control model under double-layer Blockchain. IEEE Transact Circuits Syst II: Expr Briefs 68(6):2102–2106
Liu H, Han D, Li D (2020 Jan 21) Fabric-iot: a Blockchain-based access control system in IoT. IEEE Access 8:18207–18218
Maesa DDF, Mori P, Ricci L (2017) Blockchain based access control. In IFIP international conference on distributed applications and interoperable systems, springer, Cham. pp. 206-220
Mishra R, Yadav R (2020) Access control in IoT networks: analysis and open challenges. Available at SSRN 3563077
Mishra R, Yadav R, Nath P (2021) Blockchain-Based Decentralized Authorization Technique for Data Sharing in the Internet of Things. 5th International Conference on Information Systems and Computer Networks (ISCON). pp. 1–6 https://doi.org/10.1109/ISCON52037.2021.9702297
Novo O (2018) Blockchain meets IoT: an architecture for scalable access management in IoT. IEEE Internet Things J 5(2):1184–1195
Oktian YE., Lee SG (2020) BorderChain: Blockchain-based access control framework for the internet of things endpoint. IEEE Access, 9. 3592–3615
Ouaddah A, Abou Elkalam A, AitOuahman A (2016) FairAccess: a new Blockchain-based access control framework for the internet of things. Sec Commun Netw 9(18):5943–5964
Park J Sandhu R (2002) Towards usage control models: beyond traditional access control. In: Proceedings of the seventh ACM symposium on access control models and technologies, ACM. pp. 57-64
Pinno OJ, Gregio AR, De Bona LC (2017) Controlchain: Blockchain as a central enabler for access control authorizations in the iot. InGLOBECOM 2017 E global communications conference (pp. 1-6). IEEE.
Pradhan NR et al (2022) A blockchain based lightweight peer-to-peer energy trading framework for secured high throughput micro-transactions. Sci Rep 12(1):14523
Pradhan NR et al (2022) A Novel Blockchain-Based Healthcare System Design and Performance Benchmarking on a Multi-Hosted Testbed. Sensors 22(9):3449
Putra GD, Dedeoglu V, Kanhere SS, Jurdak R, Ignjatovic A (2021) Trust-based Blockchain authorization for IoT. arXiv preprint arXiv:2104.00832.
Razzaq A (2022) Blockchain-based Secure Data Transmission for Internet of Underwater Things, Available at SSRN 4127827
Riad K, Yan Z (2017) Multi-factor synthesis decision-making for trust-based access control on cloud. Int J Coopera Inform Syst 26(04):1750003
Rizzardi A, et al. (2022) Securing the access control policies to the Internet of Things resources through permissioned blockchain. Concurrency and Computation: Practice and Experience, e6934.
Sandhu RS (1998) Role-based access control. In: Advances in computers Elsevier, Vol. 46. pp. 237–286
Sciancalepore S, Piro G, Caldarola D, Boggia G, Bianchi G (2017) OAuth-IoT: an access control framework for the internet of things based on open standards. In 2017 IEEE symposium on computers and communications (ISCC) (pp. 676-681). IEEE
Shammar EA, Zahary AT, Al-Shargabi AA (2022) An attribute-based access control model for internet of things using hyperledger fabric blockchain. Wirel Commun Mob Comput 2022:1–25
Shi N, Tan L, Yang C, He C, Xu J, Lu Y, Xu H (2021) BacS: a blockchain-based access control scheme in distributed internet of things. Peer-to-peer Netw Appl 14(5):2585–2599
Singh J, Thakur D, Gera T, Shah B, Abuhmed T, Ali F (2021) Classification and analysis of android malware images using feature fusion technique. IEEE Access 9:90102–90117
Siris VA, Dimopoulos D, Fotiou N, Voulgaris S, Polyzos GC (2020 Feb 15) Decentralized authorization in constrained IoT environments exploiting interledger mechanisms. Comput Commun 152:243–251
Sisi Z, Souri A (2021) Blockchain technology for energy-aware mobile crowd sensing approaches in Internet of Things. Transac Emerg Telecommun Technol, e4217.
Srinivasu PN et al (2021) An AW-HARIS based automated segmentation of human liver using CT images. Comput Mater Contin 69(3):3303–3319
Sun S, Du R, Chen S, Li W (2021) Blockchain-based IoT access control system: towards security, lightweight, and cross-domain. IEEE Access 9:36868–36878
Sun S, Du R, Chen S, Li W (2021) Blockchain-based IoT access control system: towards security, lightweight, and cross-domain. IEEE Access 9:36868–36878
Tamang J, Dieu Nkapkop JD, Ijaz MF, Prasad PK, Tsafack N, Saha A, Kengne J, Son Y (2021) Dynamical properties of ion-acoustic waves in space plasma and its application to image encryption. IEEE Access 9:18762–18782
Viriyasitavat W, Hoonsopon D (2018) Blockchain characteristics and consensus in modern business processes. J Ind Inf Integr 13:32–39
Vulli A et al (2022) Fine-Tuned DenseNet-169 for Breast Cancer Metastasis Prediction Using FastAI and 1-Cycle Policy. Sensors 22(8):2988
Ye N, Zhu Y, Wang RC, Malekian R, Qiao-Min L (2014) An efficient authentication and access control scheme for perception layer of internet of things. Appl Mathem Inform Sci 8(4):1617
Zhang X, Parisi-Presicce F, Sandhu R, Park J (2005) Formal model and policy specification of usage control. ACM Transac Inform Syst Sec (TISSEC) 8(4):351–387
Zhang Y, Kasahara S, Shen Y, Jiang X, Wan J (2018) Smart contract-based access control for the internet of things. IEEE Internet Things J 6(2):1594–1605
Code availability
Code is available.
Funding
The authors declare that they have competing interests and funding.
Author information
Authors and Affiliations
Contributions
All authors read and approved the final manuscript.
Corresponding author
Ethics declarations
Conflict of interests
On behalf of all authors, the corresponding author states that there is no conflict of interest.
Additional information
Publisher’s note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.
About this article
Cite this article
Mishra, R.K., Yadav, R.K. & Nath, P. Blockchain DrivenAccess control architecture for the internet of things. Multimed Tools Appl 82, 31397–31421 (2023). https://doi.org/10.1007/s11042-023-14881-5
Received:
Revised:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11042-023-14881-5