Abstract
Unauthorized resource access represents a typical security threat in the Internet of Things (IoT), while distributed ledger technologies (e.g., blockchain and IOTA) hold great promise to address this threat. Although blockchain-based IoT access control schemes have been the most popular ones, they suffer from several significant limitations, such as high monetary cost and low throughput of processing access requests. To overcome these limitations, this paper proposes a novel IoT access control scheme by combining the fee-less IOTA technology and the Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology. To control the access to a resource, a token, which records access permissions to this resource, is encrypted by the CP-ABE technology and uploaded to the IOTA Tangle (i.e., the underlying database of IOTA). Any user can fetch the encrypted token from the Tangle, while only those who can decrypt this token are authorized to access the resource. In this way, the proposed scheme enables not only distributed, fee-less and scalable access control thanks to the IOTA but also fine-grained attribute-based access control thanks to the CP-ABE. We show the feasibility of our scheme by implementing a proof-of-concept prototype system using smart phones (Google Pixel 3XL) and a commercial IoT gateway (NEC EGW001). We also evaluate the performance of the proposed scheme in terms of access request processing throughput. The experimental results show that our scheme enables object owners to authorize access rights to a large number of subjects in a much (about 5 times) shorter time than the existing access control scheme called Decentralized Capability-based Access Control framework using IOTA (DCACI), significantly improving the access request processing throughput.
Highlights
Thanks to the rapid advancement of the Internet of Things (IoT), an unprecedented number of devices are connected to the Internet today, from sensors to home appliances, as well as automobiles [1,2]
We propose a novel access control framework based on IOTA and the Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology to realize more flexible and scalable access control
We have proposed an IOTA-based access control framework in which
Summary
Thanks to the rapid advancement of the Internet of Things (IoT), an unprecedented number of devices are connected to the Internet today, from sensors to home appliances, as well as automobiles [1,2]. Smart contracts transform the blockchain system from a mere database to a distributed and trustworthy computing platform [30], making them appropriate for the computation tasks in access control such as managing access rights and processing access requests This has given rise to various smart-contract-based access control schemes for the IoT [10,11,12,13,14,15,16,17,18,19,20,21,22,23]. Blockchain-based access control schemes have overcome the limitations in conventional access control schemes, they have given rise to two main drawbacks deriving from the underlying blockchains They incur monetary cost to users, since users need to pay some fee to the peers who manage and update the blockchain [31], i.e., verify the validity of the access rights/policies stored on the blockchain and execute smart contracts for processing access requests.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
