| As the combination between the Internet of Things and a larger number of new technologies strengthened,many life convenient devices had been produced.During the usage of these devices,a large number of privacy and sensitive data have been generated.At the same time,the collection and leakage of those private data are becoming more and more concealed and common.Therefore,the security access control of Io T resources has become an urgent problem to be solved.Access control technology is a commonly used key technology to ensure information security in Io T systems.However,traditional access control system is prone to single point of failure,and data leakage occurs more easily when access control operations are carried out in an untrusted environment.The combination of blockchain and access control technology can achieve a distributed and high security access control.However,existing researches on the combination of blockchain and access control have shortcomings in managing access rights,inefficiency,and supporting lightweight Io T devices.Due to the above problems,a new access control model based on the characteristics of blockchain and traditional access control is proposed.The model is composed of three types of entities(attribute authority,access subject and resource owner)and two types of functional modules(access control module and security functional module).The attribute authority assigns attributes to access devices and resources.The access control module performs access control according to access control policies as well as the attributes of access devices and resources.The security function module can monitor and regulate the behavior of the access subject in the process of access control.The contributions of this paper are as follows: 1)By Introducing the concept of attribute,and by further dividing the attributes,a fine grained access control which solved the problem in access permission managements is achieved;2)By writing the access control policies into smart contracts and deploying them on the blockchain,the system computing pressure is reduced;3)The access efficiency is improved by introducing the concept of the Token where the access subject apply for the Token in advance,and then verifying the authenticity and permission information of the Token instead of the permission adjudication;4)in addition,the signature algorithm is introduced to solve the problem of identity counterfeiting;5)a simulation system is built,and the effiency of the access control model is proved through case analysis and security analysis.The model can be used as a reference for other Io T applications with access control security requirements. |
PDF Full Text Request