Exploiting Blockchain and Secure Access Control Scheme to Enhance Privacy-Preserving of IoT Publish-Subscribe System

2021 ◽  
Author(s):  
Hongliang Tian ◽  
Xiaonan Ge ◽  
Jiayue Wang ◽  
Chenxi Li
Keyword(s):  
Access Control ◽  
Homomorphic Encryption ◽  
Privacy Preserving ◽  
Prototype System ◽  
Communication Model ◽  
Loosely Coupled ◽  
Cross Domain ◽  
Control Scheme ◽  
Intelligent Devices ◽  
Scalable Communication

Abstract With the dramatically increasing deployment of intelligent devices, the Internet of Things (IoT) has attracted more attention and developed rapidly. It effectively collects and shares data from the surrounding environment to achieve better IoT services. For data sharing, the publish-subscribe (PS) paradigm provides a loosely-coupled and scalable communication model. However, due to the loosely-coupled nature, it is vulnerable to many attacks, resulting in some security threats to the IoT system, but it cannot provide the basic security mechanisms such as authentication and confidentiality to ensure the data security. Thus, in order to protect the system security and users’ privacy, this paper presents a secure blockchain based privacy-preserving access control scheme for PS system, which adopt the fully homomorphic encryption (FHE) to ensure the confidentiality of the publishing events, and leverage the ledger to store the large volume of data events and access cross-domain information. Finally, we analyze the correctness and security of our scheme, moreover, we deploy our proposed prototype system on two computers, and evaluate its performance. The experimental results show that our PS system can efficiently achieve the equilibrium between the system cost and the security requirement.

Privacy-preserving policy evaluation in multi-party access control

2021 ◽  
pp. 1-38
Author(s):  
Mina Sheikhalishahi ◽  
Ischa Stork ◽  
Nicola Zannone
Keyword(s):  
Access Control ◽  
Homomorphic Encryption ◽  
Privacy Preserving ◽  
Secure Computation ◽  
Sensitive Information ◽  
Functional Evaluation ◽  
Collaborative Systems ◽  
New Paradigm ◽  
Access Control Policies ◽  
The Individual

Recent years have seen an increasing popularity of online collaborative systems like social networks and web-based collaboration platforms. Collaborative systems typically offer their users a digital environment in which they can work together and share resources and information. These resources and information might be sensitive and, thus, they should be protected from unauthorized accesses. Multi-party access control is emerging as a new paradigm for the protection of co-owned and co-managed resources, where the policies of all users involved in the management of a resource should be accounted for collaborative decision making. Existing approaches, however, only focus on the jointly protection of resources and do not address the protection of the individual user policies themselves, whose disclosure might leak sensitive information. In this work, we propose a privacy-preserving mechanism for the evaluation of multi-party access control policies, which preserves the confidentiality of user policies while remaining capable of making collaborative decisions. To this end, we design secure computation protocols for the evaluation of policies in protected form against an access query and realize such protocols using two privacy-preserving techniques, namely Homomorphic Encryption and Secure Functional Evaluation. We show the practical feasibility of our mechanism in terms of computation and communication costs through an experimental evaluation.

scholarly journals EPDA: Efficient and Privacy-Preserving Data Collection and Access Control Scheme for Multi-Recipient AMI Networks

IEEE Access ◽  
2019 ◽  
Vol 7 ◽  
pp. 27829-27845 ◽  
Author(s):  
Ahmad Alsharif ◽  
Mahmoud Nabil ◽  
Mohamed M. E. A. Mahmoud ◽  
Mohamed Abdallah
Keyword(s):  
Data Collection ◽  
Access Control ◽  
Privacy Preserving ◽  
Control Scheme
Sign in / Sign up

Export Citation Format

Share Document