The rise of digital economy is attributed to the rapid development of a new generation of information technology, represented by the Internet of Things technology. However, the huge number of sensors, limited resources, and lack of robust security mechanism results in great challenges for the traditional centralized access control system. To deal with these challenges, a novel-capability-based access control model, which uses the advantages of the capability-based access control decision-making mechanism and introduces a role set and an attribute set based on smart contract. This model is built to provide a decentralized, flexible, highly scalable, and high-granularity access control system. Furthermore, a token mechanism is adopted in the access control model to enhance the system's capability. Finally, simulation experiment results verified the feasibility and effectiveness of the system.

A trust model of cloud identity management based on blockchain technology is proposed. The trust model allows cloud service providers to manage their trust relationship in a dynamic and distributed way without the need for centralized management organizations such as IDP. Through an effective authentication mechanism, the model allows data distributed across multiple domains to use identity information to streamline the opeartions and optimize user experience. It provides a referential solution for the security and privacy of cloud identity management. By comparing with the traditional cloud identity management model, the stability of the design is proved.