Enabling Attribute Revocation for Fine-Grained Access Control in Blockchain-IoT Systems

Publication Type:
Journal Article
IEEE Transactions on Engineering Management, 2020, 67, (4), pp. 1213-1230
Issue Date:
Filename Description Size
08989788.pdfPublished version4.77 MB
Adobe PDF
Full metadata record
© 1988-2012 IEEE. The attribute-based encryption (ABE) has drawn a lot of attention for fine-grained access control in blockchains, especially in blockchain-enabled tampering-resistant Internet-of-Things (IoT) systems. However, its adoption has been severely hindered by the incompatibility between the immutability of typical blockchains and the attribute updates/revocations of ABE. In this article, we propose a new blockchain-based IoT system, which is compatible with the ABE technique, and fine-grained access control is implemented with the attribute update enabled by integrating Chameleon Hash algorithms into the blockchains. We design and implement a new verification scheme over a multilayer blockchain architecture to guarantee the tamper resistance against malicious and abusive tampering. The system can provide an update-oriented access control, where historical on-chain data can only be accessible to new members and inaccessible to the revoked members. This is distinctively different from existing solutions, which are threatened by data leakage toward the revoked members. We also provide analysis and simulations showing that our system outperforms other solutions in terms of overhead, searching complexity, security, and compatibility.
Please use this identifier to cite or link to this item: