Blockchain-based Multi-domain Authentication And Data Security Sharing Mechanism For The Internet Of Things

Cross-domain authentication and secure data sharing of sensing information between Io T smart sensing devices has become a research hotspot in Io T.However,due to the openness and dynamism among Io T smart sensing devices,the security and privacy of sensing information are often difficult to guarantee.To solve these problems,this thesis proposes a blockchain-based multi-domain authentication and data security sharing mechanism for Io T.Through this mechanism,secure and efficient cross-domain authentication and data sharing between Io T smart sensing devices of different domains is achieved.The main contributions of this thesis are as follows.(1)A blockchain-based multi-domain collaborative authentication strategy for the Internet of Things(Io T)is proposed to address the difficulty of secure and efficient mutual authentication between smart sensing devices in different domains in the Io T.In this strategy,a domain manager is built inside each domain.The domain manager is mainly used to manage the registration,information update and device withdrawal of Io T smart sensor devices.In the cross-domain authentication process,one party sends its identity information to the other party.After receiving the information sent by the other party,the other party will first authenticate its identity.If the authentication is successful,the authentication information is cached locally and an expiry time is then set.This avoids,on the one hand,repeated authentication within the valid time and,on the other hand,avoiding that the authentication is still valid outside the validity period.Security analysis and simulation experiments show that our mechanism is resistant to common attacks,consumes fewer resources and has a higher authentication efficiency compared to other existing resolution mechanisms.(2)A blockchain-based secure data sharing strategy for Io T multi-domain data is proposed,which aims to address the problem of personal privacy leakage in data sharing.The security strategy introduces a trusted regulator to protect the interests of both buyers and sellers.At the data transaction stage,a ring signature algorithm is used to sign and validate the buyer’s licence in order to protect the buyer’s privacy from being compromised.Once validated,the regulator will generate an anonymous address for the buyer.The cloud storage service will then share data with the buyer through this anonymous address,thus effectively preventing the buyer’s information from being leaked to the cloud storage service.In addition,an anonymous evaluation method is proposed that allows the buyer to anonymously evaluate the transaction and monitor the seller’s behaviour without revealing their identity.It is shown through security analysis and simulation experiments that the strategy is proven to be secure,correct and cost effective,and meets the requirements of a secure Io T data sharing scenario.