物联网学报 ›› 2022, Vol. 6 ›› Issue (4): 169-182.doi: 10.11959/j.issn.2096-3750.2022.00304

• 理论与技术 • 上一篇    下一篇

物联网环境下基于区块链技术的私有数据访问控制模型

蒋伟进1,2,3, 罗田甜2,4, 杨莹1,3, 李恩1,3, 周文颖1,3   

  1. 1 数据智能与智慧社会国家重点实验室(培育)基地,湖南 长沙 410205
    2 新零售虚拟现实技术湖南省重点实验室,湖南 长沙 410205
    3 湖南工商大学计算机学院,湖南 长沙 410205
    4 湖南工商大学前沿交叉学院,湖南 长沙 410205
  • 修回日期:2022-10-17 出版日期:2022-12-30 发布日期:2022-12-01
  • 作者简介:蒋伟进(1964- ),男,博士,湖南工商大学计算机学院二级教授,主要研究方向为网络安全、社会计算、区块链技术和群体智能感知
    罗田甜(1998- ),女,湖南工商大学前沿交叉学院硕士生,主要研究方向为区块链技术、网络安全和社会计算
    杨莹(1999- ),女,湖南工商大学计算机学院硕士生,主要研究方向为复杂网络、网络安全和区块链技术
    李恩(1995- ),男,湖南工商大学计算机学院硕士生,主要研究方向为网络安全和区块链技术
    周文颖(1999- ),女,湖南工商大学计算机学院硕士生,主要研究方向为网络安全、区块链技术和社会计算
  • 基金资助:
    国家自然科学基金资助项目(61772196);湖南省自然科学基金资助项目(2020JJ4249);湖南省研究生科研创新项目(CX20221139);湖南省教育厅科学研究重点项目(21A0374)

Private data access control model based on block chain technology in the internet of things environment

Weijin JIANG1,2,3, Tiantian LUO2,4, Ying YANG1,3, En LI1,3, Wenying ZHOU1,3   

  1. 1 State Key Laboratory of Data Intelligence and Smart Society Laboratory(Cultivating) Base, Changsha 410205, China
    2 Key Laboratory of Hunan Province for New Retail Virtual Reality Technology, Changsha 410205, China
    3 School of Computer Science, Hunan University of Technology and Business, Changsha 410205, China
    4 School of Advanced Interdisciplinary Studies, Hunan University of Technology and Business, Changsha 410205, China
  • Revised:2022-10-17 Online:2022-12-30 Published:2022-12-01
  • Supported by:
    The National Natural Science Foundation of China(61772196);The National Natural Science Foundation of Hunan Province(2020JJ4249);The Hunan Provincial Innovation Foundation for Postgraduate(CX20221139);The Key Scientific Research Project of Hunan Provincial Department of Education(21A0374)

摘要:

基于传统“中心化”的访问控制技术已经无法保证当前物联网环境中私有数据访问控制的安全性问题。以基于属性的访问控制(ABAC, attribute-based access control)模型为基础,提出了一种基于区块链的物联网访问控制框架和私有数据访问控制模型。首先,对访问控制的基本框架与流程进行了详细的阐述与分析,并提出了可审计的访问控制模型,通过存储在区块链网络中的请求、响应和访问记录,对私有数据的访问控制策略进行系统管理;接着,提出了一种基于区块链技术的可审计访问控制系统,可以在物联网中提供分布式、细粒度和动态性的访问控制管理,实现了对数据的有效管理和可审计访问,并采用基于智能合约的访问控制方法实现对物联网资源全程透明、可追溯、自动化的访问控制。最后,通过仿真实验和性能测试验证了该访问控制模型和系统的有效性和安全性。

关键词: 区块链, 物联网, 访问控制, 智能合约, 数据安全

Abstract:

The traditional “centralized” access control technology can no longer guarantee the security of private data access control in the current internet of things environment.Based on the ABAC (attribute-based access control) model, a blockchain based access control framework for the internet of things and a private data access control model were proposed.Firstly, the basic framework and process of access control were described and analyzed in detail, and an auditable access control model was proposed to systematically manage the access control policies of private data through the requests, responses and access records stored in the blockchain network.Then, an auditable access control system based on blockchain technology was proposed, which can provide distributed, fine-grained and dynamic access control management in the internet of things, realize the effective management and auditable access to data, and adopt the access control method based on smart contract to realize the transparent, traceable and automatic access control over the internet of things resources.Finally, simulation experiments and performance tests verify the effectiveness and security of the access control model and system.

Key words: blockchain, IoT, access control, smart contract, data security

中图分类号: 

No Suggested Reading articles found!