Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

A Distributed Blockchain-based Access Control for the Internet of Things

Ebtihal Abdulrahman, Suhair Alshehri, Ali Alzubaidy, Asma Cherif

TL;DR

This work addresses the need for scalable, privacy-preserving access control in the IoT by proposing DBC-ABAC, a distributed blockchain based ABAC model implemented on Hyperledger Fabric. It decentralizes ABAC components via smart contracts, uses edge computing to bring decisions closer to data producers, and stores data off-chain in a distributed storage system to reduce blockchain load. The approach demonstrates improved latency and throughput relative to selected baselines and enables dynamic policy management with delegation and revocation. The study provides a practical blueprint for integrating ABAC with a permissioned blockchain in IoT contexts, with demonstrated performance benefits and a clear path toward production deployment, though it notes current limitations such as single-machine evaluation and scope restrictions for consensus and data storage integrations.

Abstract

Recently, the Internet of Things (IoT) environment has become increasingly fertile for malicious users to break the security and privacy of IoT users. Access control is a paramount necessity to forestall illicit access. Traditional access control mechanisms are designed and managed in a centralized manner, thus rendering them unfit for decentralized IoT systems. To address the distributed IoT environment, blockchain is viewed as a promising decentralised data management technology. In this thesis, we investigate the state-of-art works in the domain of distributed blockchain-based access control. We establish the most important requirements and assess related works against them. We propose a Distributed Blockchain and Attribute-based Access Control model for IoT entitled (DBC-ABAC) that merges blockchain technology with the attribute-based access control model. A proof-of-concept implementation is presented using Hyperledger Fabric. To validate performance, we experimentally evaluate and compare our work with other recent works using Hyperledger Caliper tool. Results indicate that the proposed model surpasses other works in terms of latency and throughput with considerable efficiency.

A Distributed Blockchain-based Access Control for the Internet of Things

TL;DR

This work addresses the need for scalable, privacy-preserving access control in the IoT by proposing DBC-ABAC, a distributed blockchain based ABAC model implemented on Hyperledger Fabric. It decentralizes ABAC components via smart contracts, uses edge computing to bring decisions closer to data producers, and stores data off-chain in a distributed storage system to reduce blockchain load. The approach demonstrates improved latency and throughput relative to selected baselines and enables dynamic policy management with delegation and revocation. The study provides a practical blueprint for integrating ABAC with a permissioned blockchain in IoT contexts, with demonstrated performance benefits and a clear path toward production deployment, though it notes current limitations such as single-machine evaluation and scope restrictions for consensus and data storage integrations.

Abstract

Recently, the Internet of Things (IoT) environment has become increasingly fertile for malicious users to break the security and privacy of IoT users. Access control is a paramount necessity to forestall illicit access. Traditional access control mechanisms are designed and managed in a centralized manner, thus rendering them unfit for decentralized IoT systems. To address the distributed IoT environment, blockchain is viewed as a promising decentralised data management technology. In this thesis, we investigate the state-of-art works in the domain of distributed blockchain-based access control. We establish the most important requirements and assess related works against them. We propose a Distributed Blockchain and Attribute-based Access Control model for IoT entitled (DBC-ABAC) that merges blockchain technology with the attribute-based access control model. A proof-of-concept implementation is presented using Hyperledger Fabric. To validate performance, we experimentally evaluate and compare our work with other recent works using Hyperledger Caliper tool. Results indicate that the proposed model surpasses other works in terms of latency and throughput with considerable efficiency.

Paper Structure

This paper contains 30 sections, 19 figures, 5 tables.

Table of Contents

  1. Introduction
  2. Problem Definition and Motivation
  3. Research Objectives
  4. Contributions
  5. Paper Organization
  6. Related Works
  7. Public blockchain-based models
  8. Private blockchain-based models
  9. Consortium blockchain-based models
  10. Hybrid blockchain-based models
  11. Comparing distributed blockchain-based access control models
  12. Proposed Model
  13. DBC-ABAC Model
  14. System Architecture
  15. Domain Layered View
  16. ...and 15 more sections

Figures (19)

  • Figure 1: (a,b) Traditional vs blockchain-based access control
  • Figure 2: Taxonomy of the related works
  • Figure 3: system architecture
  • Figure 4: Domain layered view
  • Figure 5: ABAC functional nodes
  • ...and 14 more figures