Blockchain's immutability can resist unauthorized changes of ledgers, thus it can be used as a trust enhancement mechanism to a shared system. Indeed, blockchain has been considered to solve the security and privacy issues of the Internet of Things (IoT). In this regard, most researches currently focus on the realization of various access control models and architectures, and are working towards making full use of the blockchain to secure IoT systems. It is worth noting that there has been an increasingly heavy pressure on the blockchain storage caused by dealing with massive IoT data and handling malicious access behaviors in the system, and not many countermeasures have been seen to curb the increase. However, this problem has not been paid enough attention. In this paper, we implement an attribute-based access control scheme using smart contracts in Quorum blockchain. It provides basic access control functions and conserves storage by reducing the number of smart contracts. In addition, a reputation-based technique is introduced to cope with malicious behaviors. Certain illegal transactions can be blocked by the credit-assessment algorithm, which deters possibly malicious nodes and gives more chance to well-behaved nodes. The feasibility of our proposed scheme is demonstrated by doing experiment on a testbed and conducting a case study. Finally, the system performance is assessed based on experimental measurement.
翻译:276. 值得指出的是,由于处理大量IOT数据和处理系统中的恶意访问行为,供应链的不可移动性可以抵制未经授权的分类账变化,因此可以将其作为共同系统的一种增强信任的机制。事实上,已经考虑将这一链条用于解决Tings Internet的安全和隐私问题。在这方面,大多数研究目前侧重于实现各种访问控制模型和结构,并努力充分利用链条来保障IOT系统的安全。值得指出的是,由于处理大规模IOT数据和处理系统中的恶意访问行为,对链条储存造成了日益沉重的压力,而且没有看到许多对策来遏制增长。然而,这一问题没有得到足够的重视。在本文中,我们采用基于属性的接入控制计划,在Quorum 区链中采用智能合同的智能合同。它提供了基本的访问控制功能,并通过减少智能合同的数量来保存储存。此外,还采用了以声誉为基础的技术来应对恶意行为。某些非法交易可能受到信用评估算法的阻碍,而信用评估算法可能阻止恶意的节点,并给良好访问机会。我们没有足够关注这一问题。在本文件中,我们应用了基于实验性测试计划的可行性。