基于智能合约的物联网访问控制建模

doi:10.3976/j.issn.1002-4026.2022.01.017

山东科学 ›› 2022, Vol. 35 ›› Issue (1): 128-134.doi: 10.3976/j.issn.1002-4026.2022.01.017

基于智能合约的物联网访问控制建模

徐龙(),李杨()

齐鲁工业大学(山东省科学院) 山东省科学院自动化研究所, 山东济南 250014

收稿日期:2021-03-09 出版日期:2022-02-20 发布日期:2022-01-25
通信作者: 李杨 E-mail:2573543480@qq.com;liyang@sdas.org
作者简介:徐龙(1995—),男,硕士,研究方向为物联网安全、区块链。E-mail: 2573543480@qq.com
基金资助:
国家重点研发计划(2018YFE0197700);2020年山东省重大创新工程(2020CXGC010203);山东省政府留学基金(201802026)

Smart contract-based access control architectural modeling

XU Long(),LI Yang()

Institute of Automation,Qilu University of Technology(Shandong Academy of Sciences), Jinan 250014, China

Received:2021-03-09 Online:2022-02-20 Published:2022-01-25
Contact: Yang LI E-mail:2573543480@qq.com;liyang@sdas.org

摘要/Abstract

摘要：

数字化经济迅速崛起,以物联网技术为代表的新一代信息技术正推动着数字经济快速发展,但物联网中设备资源受限、安全性差和连接数量庞大等特点,不完全适用于传统的集中式访问控制技术。针对上述问题,提出一种新的基于权能的访问控制模型(novel-capability-based access control, NCBAC)建模方法。该模型利用基于权能访问控制模型的访问控制政策制定优势,在采用智能合约的基础上引入角色集合和属性集合,构建出适用于物联网系统的分布式、灵活、高扩展性和高细粒度的访问控制模型,并采用令牌机制来提高系统性能。最后,通过仿真实验验证了该模型的可行性和有效性。

关键词: 物联网, 区块链, 智能合约, 访问控制, 令牌

Abstract:

The rise of digital economy is attributed to the rapid development of a new generation of information technology, represented by the Internet of Things technology. However, the huge number of sensors, limited resources, and lack of robust security mechanism results in great challenges for the traditional centralized access control system. To deal with these challenges, a novel-capability-based access control model, which uses the advantages of the capability-based access control decision-making mechanism and introduces a role set and an attribute set based on smart contract. This model is built to provide a decentralized, flexible, highly scalable, and high-granularity access control system. Furthermore, a token mechanism is adopted in the access control model to enhance the system's capability. Finally, simulation experiment results verified the feasibility and effectiveness of the system.

Key words: Internet of Things, blockchain, smart contract, access control, token

中图分类号:

TP391

徐龙,李杨. 基于智能合约的物联网访问控制建模[J]. 山东科学, 2022, 35(1): 128-134.

XU Long,LI Yang. Smart contract-based access control architectural modeling[J]. Shandong Science, 2022, 35(1): 128-134.

图/表 7

图1

图2

图3

图4

图5

图6

图7

参考文献 9

[1]	MANYIKA J, CHUI M. By 2025, Internet of things applications could have $11 trillion impact [EB/OL]. [2021-02-10]. https://fortune.com/2015/07/22/mckinsey-internet-of-things/.
[2]	XU L D, HE W, LI S C. Internet of Things in industries: A survey[J]. IEEE Transactions on Industrial Informatics, 2014, 10(4):2233-2243. DOI: 10.1109/TII.2014.2300753. doi: 10.1109/TII.2014.2300753
[3]	LIN J, YU W, ZHANG N, et al. A survey on Internet of Things: Architecture, enabling technologies, security and privacy, and applications[J]. IEEE Internet of Things Journal, 2017, 4(5):1125-1142. DOI: 10.1109/JIOT.2017.2683200. doi: 10.1109/JIOT.2017.2683200
[4]	房梁, 殷丽华, 郭云川, 等. 基于属性的访问控制关键技术研究综述[J]. 计算机学报, 2017, 40(7):1680-1698. DOI: 10.11897/SP.J.1016.2017.01680. doi: 10.11897/SP.J.1016.2017.01680
[5]	SANDHU R S. Role-based accesscontrol[J]. Advances in Computers, 1998, 46:237-286. DOI: 10.1016/S0065-2458(08)60206-5. doi: 10.1016/S0065-2458(08)60206-5
[6]	HU V C, KUHN D R, FERRAIOLO D F, et al. Attribute-based access control[J]. Computer, 2015, 48(2):85-88. DOI: 10.1109/MC.2015.33. doi: 10.1109/MC.2015.33
[7]	SANDHU R S, SAMARATI P. Access control: Principle and practice[J]. IEEE Communications Magazine, 1994, 32(9):40-48. DOI: 10.1109/35.312842. doi: 10.1109/35.312842
[8]	YAVARI A, PANAH A S, GEORGAKOPOULOS D, et al. Scalable role-based data disclosure control for the Internet of Things[C]// 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS). Atlanta, USA:IEEE, 2017: 2226-2233. DOI: 10.1109/ICDCS.2017.307. doi: 10.1109/ICDCS.2017.307
[9]	LIU Q, ZHANG H, WAN J F, et al. An access control model for resource sharing based on the role-based access control intended for multi-domain manufacturing Internet of Things[J]. IEEE Access, 2017, 5:7001-7011. DOI: 10.1109/ACCESS.2017.2693380. doi: 10.1109/ACCESS.2017.2693380

基于智能合约的物联网访问控制建模

Smart contract-based access control architectural modeling

RichHTML

PDF (PC)

赞

可视化

摘要/Abstract

引用本文

使用本文

图/表 7

参考文献 9

相关文章 7

Metrics

本文评价

推荐阅读 0

[1]	穆超, 杨明, 杨明曌, 王彪, 王继志. 基于数字证书识别及校验的物联网固件安全检测系统的设计与实现[J]. 山东科学, 2020, 33(4): 131-135.
[2]	朱曦, 吴浩. 基于区块链技术的云身份管理信任模型设计[J]. 山东科学, 2020, 33(3): 100-108.
[3]	李振阳, 曹慧, 马金刚, 宋晓瑞. RBAC模型在中医药信息资源管理平台中的应用研究[J]. 山东科学, 2011, 24(6): 84-87.
[4]	蒲海涛, 林金娇. 物联网环境下的智能交互架构研究[J]. J4, 2011, 24(5): 67-70.
[5]	侯培虎, 付晓宁, 王颖, 程智勇, 倪家升, 刘统玉, 王红春. 矿井光纤物联网云连接平台技术的研究[J]. J4, 2011, 24(2): 41-46.
[6]	刘君, 曹宝香. 基于本体的面向服务的属性访问控制模型[J]. J4, 2010, 23(6): 78-81.
[7]	李良, 王毅. web信息系统中访问控制策略的研究与实现[J]. J4, 2010, 23(2): 76-78.