TY - GEN
T1 - Decentralized access control for IoT data using blockchain and trusted oracles
AU - Al Breiki, Hamda
AU - Al Qassem, Lamees
AU - Salah, Khaled
AU - Habib Ur Rehman, Muhammad
AU - Sevtinovic, Davor
N1 - Funding Information:
This publication is based upon work supported by the Khalifa University of Science and Technology under Award No. CIRA-2019-001.
Funding Information:
ACKNOWLEDGMENT This publication is based upon work supported by the Khalifa University of Science and Technology under Award No. CIRA-2019-001.
Publisher Copyright:
© 2019 IEEE.
PY - 2019/11
Y1 - 2019/11
N2 - The Internet of Things (IoT) is a network of connected electromechanical devices that have limited computational, networking, and storage capabilities. IoT is now widely used in healthcare, smart cars, smart grids, smart homes, smart manufacturing, and smart cities. IoT devices sense, monitor, and collect data where it can be shared with legitimate users. IoT data can be aggregated, stored and made available by multiple IoT data hosting providers. IoT data storage, management, and access involve multiple stakeholders that many include admins, owners of IoT devices, data repository hosts and providers, normal users, etc. Decentralized control and trusted management of such IoT data become critical, in which the management and access control of data is not centralized, i.e., under the control of a single entity. To date, the available methods for for access control in IoT systems are mainly centralized. In this paper, we propose a decentralized access control system for IoT data using blockchain and trusted oracles. We use features of blockchain and smart contracts to propose a decentralized, scalable, and secure management solution for accessing IoT data. In addition, we use oracles as gateways that interface with the blockchain, IoT data hosts, and remote users to provide decentralized, trusted, and uniform source feeds for IoT data. The paper also presents architectural design, interactions, logic flow, algorithms, implementation details, along with cost, computation, and security evaluation. The full code of the developed smart contracts is made publicly available at GitHub.
AB - The Internet of Things (IoT) is a network of connected electromechanical devices that have limited computational, networking, and storage capabilities. IoT is now widely used in healthcare, smart cars, smart grids, smart homes, smart manufacturing, and smart cities. IoT devices sense, monitor, and collect data where it can be shared with legitimate users. IoT data can be aggregated, stored and made available by multiple IoT data hosting providers. IoT data storage, management, and access involve multiple stakeholders that many include admins, owners of IoT devices, data repository hosts and providers, normal users, etc. Decentralized control and trusted management of such IoT data become critical, in which the management and access control of data is not centralized, i.e., under the control of a single entity. To date, the available methods for for access control in IoT systems are mainly centralized. In this paper, we propose a decentralized access control system for IoT data using blockchain and trusted oracles. We use features of blockchain and smart contracts to propose a decentralized, scalable, and secure management solution for accessing IoT data. In addition, we use oracles as gateways that interface with the blockchain, IoT data hosts, and remote users to provide decentralized, trusted, and uniform source feeds for IoT data. The paper also presents architectural design, interactions, logic flow, algorithms, implementation details, along with cost, computation, and security evaluation. The full code of the developed smart contracts is made publicly available at GitHub.
KW - Access control
KW - Blockchain
KW - IoT
KW - IoT data
KW - Smart contracts
KW - Trusted oracles
UR - http://www.scopus.com/inward/record.url?scp=85082662878&partnerID=8YFLogxK
U2 - 10.1109/ICII.2019.00051
DO - 10.1109/ICII.2019.00051
M3 - Conference contribution
AN - SCOPUS:85082662878
T3 - Proceedings - IEEE International Conference on Industrial Internet Cloud, ICII 2019
SP - 248
EP - 257
BT - Proceedings - IEEE International Conference on Industrial Internet Cloud, ICII 2019
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2nd IEEE International Conference on Industrial Internet Cloud, ICII 2019
Y2 - 10 November 2019 through 12 November 2019
ER -