Enabling Attribute Revocation for Fine-Grained Access Control in Blockchain-IoT Systems

Yu, G; Zha, X; Wang, X; Ni, W; Yu, K; Yu, P; Zhang, JA; Liu, RP; Guo, YJ

Enabling Attribute Revocation for Fine-Grained Access Control in Blockchain-IoT Systems

Yu, G Zha, X Wang, X

Ni, W

Yu, K Yu, P Zhang, JA Liu, RP Guo, YJ

Permalink

Publisher:: IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC
Publication Type:: Journal Article
Citation:: IEEE Transactions on Engineering Management, 2020, 67, (4), pp. 1213-1230
Issue Date:: 2020-11-01

Closed Access

	Filename	Description	Size
	08989788.pdf	Published version	4.77 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Yu, G
dc.contributor.author	Zha, X
dc.contributor.author	Wang, X https://orcid.org/0000-0001-9439-6437
dc.contributor.author	Ni, W https://orcid.org/0000-0002-4933-594X
dc.contributor.author	Yu, K
dc.contributor.author	Yu, P
dc.contributor.author	Zhang, JA
dc.contributor.author	Liu, RP
dc.contributor.author	Guo, YJ
dc.date.accessioned	2020-12-27T23:08:14Z
dc.date.available	2020-12-27T23:08:14Z
dc.date.issued	2020-11-01
dc.identifier.citation	IEEE Transactions on Engineering Management, 2020, 67, (4), pp. 1213-1230
dc.identifier.issn	0018-9391
dc.identifier.issn	1558-0040
dc.identifier.uri	http://hdl.handle.net/10453/144967
dc.description.abstract	© 1988-2012 IEEE. The attribute-based encryption (ABE) has drawn a lot of attention for fine-grained access control in blockchains, especially in blockchain-enabled tampering-resistant Internet-of-Things (IoT) systems. However, its adoption has been severely hindered by the incompatibility between the immutability of typical blockchains and the attribute updates/revocations of ABE. In this article, we propose a new blockchain-based IoT system, which is compatible with the ABE technique, and fine-grained access control is implemented with the attribute update enabled by integrating Chameleon Hash algorithms into the blockchains. We design and implement a new verification scheme over a multilayer blockchain architecture to guarantee the tamper resistance against malicious and abusive tampering. The system can provide an update-oriented access control, where historical on-chain data can only be accessible to new members and inaccessible to the revoked members. This is distinctively different from existing solutions, which are threatened by data leakage toward the revoked members. We also provide analysis and simulations showing that our system outperforms other solutions in terms of overhead, searching complexity, security, and compatibility.
dc.language	English
dc.publisher	IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC
dc.relation.ispartof	IEEE Transactions on Engineering Management
dc.relation.isbasedon	10.1109/TEM.2020.2966643
dc.rights	info:eu-repo/semantics/closedAccess
dc.rights	© 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.	en_US
dc.subject	08 Information and Computing Sciences, 09 Engineering, 15 Commerce, Management, Tourism and Services
dc.subject.classification	Business & Management
dc.title	Enabling Attribute Revocation for Fine-Grained Access Control in Blockchain-IoT Systems
dc.type	Journal Article
utslib.citation.volume	67
utslib.for	08 Information and Computing Sciences
utslib.for	09 Engineering
utslib.for	15 Commerce, Management, Tourism and Services
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Strength - GBDTC - Global Big Data Technologies
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
pubs.organisational-group	/University of Technology Sydney
utslib.copyright.status	closed_access	*
dc.date.updated	2020-12-27T23:07:51Z
pubs.issue	4
pubs.publication-status	Published
pubs.volume	67
utslib.citation.issue	4

Abstract:

© 1988-2012 IEEE. The attribute-based encryption (ABE) has drawn a lot of attention for fine-grained access control in blockchains, especially in blockchain-enabled tampering-resistant Internet-of-Things (IoT) systems. However, its adoption has been severely hindered by the incompatibility between the immutability of typical blockchains and the attribute updates/revocations of ABE. In this article, we propose a new blockchain-based IoT system, which is compatible with the ABE technique, and fine-grained access control is implemented with the attribute update enabled by integrating Chameleon Hash algorithms into the blockchains. We design and implement a new verification scheme over a multilayer blockchain architecture to guarantee the tamper resistance against malicious and abusive tampering. The system can provide an update-oriented access control, where historical on-chain data can only be accessible to new members and inaccessible to the revoked members. This is distinctively different from existing solutions, which are threatened by data leakage toward the revoked members. We also provide analysis and simulations showing that our system outperforms other solutions in terms of overhead, searching complexity, security, and compatibility.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/144967