Cargando…

Blockchain-Based Data Access Control and Key Agreement System in IoT Environment

Recently, with the increasing application of the Internet of Things (IoT), various IoT environments such as smart factories, smart homes, and smart grids are being generated. In the IoT environment, a lot of data are generated in real time, and the generated IoT data can be used as source data for v...

Descripción completa

Detalles Bibliográficos
Autores principales: Lee, JoonYoung, Kim, MyeongHyun, Park, KiSung, Noh, SungKee, Bisht, Abhishek, Das, Ashok Kumar, Park, Youngho
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10255739/
https://www.ncbi.nlm.nih.gov/pubmed/37299901
http://dx.doi.org/10.3390/s23115173
_version_ 1785056945322852352
author Lee, JoonYoung
Kim, MyeongHyun
Park, KiSung
Noh, SungKee
Bisht, Abhishek
Das, Ashok Kumar
Park, Youngho
author_facet Lee, JoonYoung
Kim, MyeongHyun
Park, KiSung
Noh, SungKee
Bisht, Abhishek
Das, Ashok Kumar
Park, Youngho
author_sort Lee, JoonYoung
collection PubMed
description Recently, with the increasing application of the Internet of Things (IoT), various IoT environments such as smart factories, smart homes, and smart grids are being generated. In the IoT environment, a lot of data are generated in real time, and the generated IoT data can be used as source data for various services such as artificial intelligence, remote medical care, and finance, and can also be used for purposes such as electricity bill generation. Therefore, data access control is required to grant access rights to various data users in the IoT environment who need such IoT data. In addition, IoT data contain sensitive information such as personal information, so privacy protection is also essential. Ciphertext-policy attribute-based encryption (CP-ABE) technology has been utilized to address these requirements. Furthermore, system structures applying blockchains with CP-ABE are being studied to prevent bottlenecks and single failures of cloud servers, as well as to support data auditing. However, these systems do not stipulate authentication and key agreement to ensure the security of the data transmission process and data outsourcing. Accordingly, we propose a data access control and key agreement scheme using CP-ABE to ensure data security in a blockchain-based system. In addition, we propose a system that can provide data nonrepudiation, data accountability, and data verification functions by utilizing blockchains. Both formal and informal security verifications are performed to demonstrate the security of the proposed system. We also compare the security, functional aspects, and computational and communication costs of previous systems. Furthermore, we perform cryptographic calculations to analyze the system in practical terms. As a result, our proposed protocol is safer against attacks such as guessing attacks and tracing attacks than other protocols, and can provide mutual authentication and key agreement functions. In addition, the proposed protocol is more efficient than other protocols, so it can be applied to practical IoT environments.
format Online
Article
Text
id pubmed-10255739
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-102557392023-06-10 Blockchain-Based Data Access Control and Key Agreement System in IoT Environment Lee, JoonYoung Kim, MyeongHyun Park, KiSung Noh, SungKee Bisht, Abhishek Das, Ashok Kumar Park, Youngho Sensors (Basel) Article Recently, with the increasing application of the Internet of Things (IoT), various IoT environments such as smart factories, smart homes, and smart grids are being generated. In the IoT environment, a lot of data are generated in real time, and the generated IoT data can be used as source data for various services such as artificial intelligence, remote medical care, and finance, and can also be used for purposes such as electricity bill generation. Therefore, data access control is required to grant access rights to various data users in the IoT environment who need such IoT data. In addition, IoT data contain sensitive information such as personal information, so privacy protection is also essential. Ciphertext-policy attribute-based encryption (CP-ABE) technology has been utilized to address these requirements. Furthermore, system structures applying blockchains with CP-ABE are being studied to prevent bottlenecks and single failures of cloud servers, as well as to support data auditing. However, these systems do not stipulate authentication and key agreement to ensure the security of the data transmission process and data outsourcing. Accordingly, we propose a data access control and key agreement scheme using CP-ABE to ensure data security in a blockchain-based system. In addition, we propose a system that can provide data nonrepudiation, data accountability, and data verification functions by utilizing blockchains. Both formal and informal security verifications are performed to demonstrate the security of the proposed system. We also compare the security, functional aspects, and computational and communication costs of previous systems. Furthermore, we perform cryptographic calculations to analyze the system in practical terms. As a result, our proposed protocol is safer against attacks such as guessing attacks and tracing attacks than other protocols, and can provide mutual authentication and key agreement functions. In addition, the proposed protocol is more efficient than other protocols, so it can be applied to practical IoT environments. MDPI 2023-05-29 /pmc/articles/PMC10255739/ /pubmed/37299901 http://dx.doi.org/10.3390/s23115173 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Lee, JoonYoung
Kim, MyeongHyun
Park, KiSung
Noh, SungKee
Bisht, Abhishek
Das, Ashok Kumar
Park, Youngho
Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title_full Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title_fullStr Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title_full_unstemmed Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title_short Blockchain-Based Data Access Control and Key Agreement System in IoT Environment
title_sort blockchain-based data access control and key agreement system in iot environment
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10255739/
https://www.ncbi.nlm.nih.gov/pubmed/37299901
http://dx.doi.org/10.3390/s23115173
work_keys_str_mv AT leejoonyoung blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT kimmyeonghyun blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT parkkisung blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT nohsungkee blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT bishtabhishek blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT dasashokkumar blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment
AT parkyoungho blockchainbaseddataaccesscontrolandkeyagreementsysteminiotenvironment