Lightweight blockchain-based access control with efficient revocation for fog-enabled IoT

Lightweight blockchain-based access control with efficient revocation for fog-enabled IoT

연구 분야: Verification

학회: Innovations in Systems and Software Engineering

This paper tackles security challenges in distributed and resource-constrained IoT environments, where traditional solutions often struggle with efficient device revocation due to complex key management and embedded access policies, leading to scalability issues and delays. We introduce a novel approach using fog computing to process data closer to edge devices, reducing latency and enhancing real-time decision-making. Building on this architecture, we propose a lightweight blockchain-based access control scheme designed specifically for IoT systems. This scheme manages access provisioning and revocation through content identifiers and leverages the interplanetary file system for data encryption and storage. Key innovations include threshold proxy re-encryption managed by Ethereum smart contracts, and the use of the BLS12-381 elliptic curve and Shamir’s secret sharing. These elements collectively simplify key management, enhance resource efficiency, reduce response time, and improve scalability. The novelty of our approach is its integration of access control with decentralized content management, which significantly reduces overhead compared to conventional systems. Our paper also includes a comprehensive security and performance evaluation, with practical insights demonstrated through the MediBlockIoMT system in the healthcare domain.