Blockchain-Based IoT Access Control System: Towards Security, Lightweight, and Cross-Domain

Most IoT devices cannot afford to be a blockchain node due the high computation and storage loads. Thus, is usually deployed on one delegate node, e.g., edge device or cloud, which may encounters three drawbacks: (1) The becomes single failure point when number of notes are limited. (2) replicating data can lead privacy information leak. (3) vulnerable Distributed Denial Service (DDoS) attack. To tackle these drawbacks, we consider minimize redundant make as specialized nodes. In this paper, integrate permissioned (HLF), an attribute-based access control (ABAC) identity-based signature (IBS) build security, lightweight, cross-domain blockchain-based system. Specifically, divided system into different function domains, named domains. Then, establish local ledger for each domain enable more records entities' attributes, policy files' digests, decisions. Meanwhile, use channel technology HLF realize IBS filter legal requests prevent DDoS attacks. We also design decision (PDP) selection algorithm that select multiple (blockchain nodes) achieve real-time distributed decisions (off-chain). Finally, implement evaluate proposed demonstrate its practicality.