Privacy-aware decentralized and scalable access control management for IoT environment
Other Title(s)
الخصوصية-و إدارة التحكم في الوصول اللامركزية و القابلة للتطوير لبيئة عمليات إنترنت الأشياء
Joint Authors
al-Khamisi, Abrar Umar
al-Burai, Fathi
Source
Journal of King Abdulaziz University : Computing and Information Technology Sciences
Issue
Vol. 8, Issue 1 (30 Jun. 2019), pp.71-84, 14 p.
Publisher
King Abdul Aziz University Faculty of Computing and Information Technology
Publication Date
2019-06-30
Country of Publication
Saudi Arabia
No. of Pages
14
Main Subjects
Information Technology and Computer Science
Topics
Abstract EN
In recent years, the Internet of Things (IoT) plays a vital role in our daily activities .Owing to the increased number of vulnerabilities on the IoT devices, security becomes critical in the untrustworthy IoT environment.
Access control is one of the top security concerns, however, implementing the traditional access control mechanisms in the resource-constrained nature of the IoT devices is a challenging task.
With the emergence of blockchain technology, several recent research works have focused on the adoption of blockchain in IoT to resolve the security concerns.
Despite, integrating the blockchain in the resource-constrained IoT context is difficult.
To overcome these obstacles, the proposed work presents a privacy-aware IoT security architecture to ensure the access control based on Smart contract for resource-constrained and distributed IoT devices.
The design of the proposed architecture incorporates three main components such as the contextual blockchain gateway, decentralized revocation manager, and non-interactive zero-knowledge proof based validation.
By modeling the contextual blockchain gateway, the proposed architecture ensures the dynamic authentication and authorization based on the contextual information and access policies.
Instead of integrating the blockchain technology into resource-constrained IoT devices, the smart contract-based distributed access control system with the contextual blockchain gateway provides the scalable solution.
With the association of decentralized revocation manager in the smart contract, it prevents the resource access from the unauthorized users by dynamically generating and updating the revoked user list of all the nodes in the smart contract.
Moreover, the proposed architecture employs the non-interactive zero-knowledge proof cryptographic protocol to ensure the transaction privacy within the smart contract.
Consequently, it maintains the trade-off between the transparency and privacy while ensuring the security for the distributed IoT environment.
American Psychological Association (APA)
al-Khamisi, Abrar Umar& al-Burai, Fathi. 2019. Privacy-aware decentralized and scalable access control management for IoT environment. Journal of King Abdulaziz University : Computing and Information Technology Sciences،Vol. 8, no. 1, pp.71-84.
https://search.emarefa.net/detail/BIM-932932
Modern Language Association (MLA)
al-Khamisi, Abrar Umar& al-Burai, Fathi. Privacy-aware decentralized and scalable access control management for IoT environment. Journal of King Abdulaziz University : Computing and Information Technology Sciences Vol. 8, no. 1 (2019), pp.71-84.
https://search.emarefa.net/detail/BIM-932932
American Medical Association (AMA)
al-Khamisi, Abrar Umar& al-Burai, Fathi. Privacy-aware decentralized and scalable access control management for IoT environment. Journal of King Abdulaziz University : Computing and Information Technology Sciences. 2019. Vol. 8, no. 1, pp.71-84.
https://search.emarefa.net/detail/BIM-932932
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references : p. 82-83
Record ID
BIM-932932