Enabling Attribute Revocation for Fine-Grained Access Control in Blockchain-IoT Systems

Citations Over TimeTop 1% of 2020 papers

Abstract

The attribute-based encryption (ABE) has drawn a lot of attention for fine-grained access control in blockchains, especially in blockchain-enabled tampering-resistant Internet-of-Things (IoT) systems. However, its adoption has been severely hindered by the incompatibility between the immutability of typical blockchains and the attribute updates/revocations of ABE. In this article, we propose a new blockchain-based IoT system, which is compatible with the ABE technique, and fine-grained access control is implemented with the attribute update enabled by integrating Chameleon Hash algorithms into the blockchains. We design and implement a new verification scheme over a multilayer blockchain architecture to guarantee the tamper resistance against malicious and abusive tampering. The system can provide an update-oriented access control, where historical on-chain data can only be accessible to new members and inaccessible to the revoked members. This is distinctively different from existing solutions, which are threatened by data leakage toward the revoked members. We also provide analysis and simulations showing that our system outperforms other solutions in terms of overhead, searching complexity, security, and compatibility.

Related Papers

• → Auditing and Revocation Enabled Role-Based Access Control over Outsourced Private EHRs(2015)31 cited
• → Modified Ciphertext‐Policy Attribute‐Based Encryption Scheme with Efficient Revocation for PHR System(2017)12 cited
• → Ciphertext-Policy Attribute-Based Encryption with User Revocation Support(2013)11 cited
• → Generic attribute revocation systems for attribute-based encryption in cloud storage(2019)5 cited
• → Directly revocable Attribute Based Encryption scheme under Ciphertext-policy(2017)2 cited