CD-BISHAC: Cross-Domain Scheme for Blockchain-Based Industrial Internet of Things Security Hybrid Access Control

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS IEEE Internet of Things Journal Pub Date : 2024-11-06 DOI:10.1109/JIOT.2024.3492279

Buzhen He;Tao Feng;Chunyan Liu;Chunhua Su

{"title":"CD-BISHAC: Cross-Domain Scheme for Blockchain-Based Industrial Internet of Things Security Hybrid Access Control","authors":"Buzhen He;Tao Feng;Chunyan Liu;Chunhua Su","doi":"10.1109/JIOT.2024.3492279","DOIUrl":null,"url":null,"abstract":"The Industrial Internet of Things (IIoT) is currently confronted with significant security challenges, including the complexities associated with cross-domain device permission management, the risks of privacy breaches during data transmission, and the vulnerabilities inherent in centralized security architectures to various forms of attack. Existing access control schemes are inadequate for addressing the dynamic and intricate nature of industrial environments, often falling short of meeting the IIoT system’s flexibility, security, and scalability requirements. This article introduces a novel hybrid access control scheme based on blockchain technology within a cross-domain context to tackle these issues. This approach synergizes the simplicity of role-based access control (RBAC) with the adaptability offered by attribute-based access control (ABAC) while harnessing blockchain’s decentralization, immutability, and transparency to bolster system security, autonomy, and capabilities for cross-domain management. We assessed this scheme’s effectiveness in defending against various threats through comprehensive security analysis. Furthermore, experimental results indicate that our proposed solution provides robust security guarantees and surpasses traditional approaches regarding efficiency and performance. Consequently, the scheme presented herein signifies a substantial innovation in IIoT security practices—offering a feasible and reliable solution tailored for complex cross-domain environments.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 6","pages":"7164-7179"},"PeriodicalIF":8.9000,"publicationDate":"2024-11-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10745559/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

The Industrial Internet of Things (IIoT) is currently confronted with significant security challenges, including the complexities associated with cross-domain device permission management, the risks of privacy breaches during data transmission, and the vulnerabilities inherent in centralized security architectures to various forms of attack. Existing access control schemes are inadequate for addressing the dynamic and intricate nature of industrial environments, often falling short of meeting the IIoT system’s flexibility, security, and scalability requirements. This article introduces a novel hybrid access control scheme based on blockchain technology within a cross-domain context to tackle these issues. This approach synergizes the simplicity of role-based access control (RBAC) with the adaptability offered by attribute-based access control (ABAC) while harnessing blockchain’s decentralization, immutability, and transparency to bolster system security, autonomy, and capabilities for cross-domain management. We assessed this scheme’s effectiveness in defending against various threats through comprehensive security analysis. Furthermore, experimental results indicate that our proposed solution provides robust security guarantees and surpasses traditional approaches regarding efficiency and performance. Consequently, the scheme presented herein signifies a substantial innovation in IIoT security practices—offering a feasible and reliable solution tailored for complex cross-domain environments.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

CD-BISHAC：基于区块链的工业物联网安全混合访问控制跨域方案

工业物联网（IIoT）目前面临着重大的安全挑战，包括跨域设备权限管理的复杂性、数据传输过程中隐私泄露的风险，以及集中式安全架构固有的易受各种形式攻击的漏洞。现有的访问控制方案不足以解决工业环境的动态性和复杂性，通常无法满足工业物联网系统的灵活性、安全性和可扩展性要求。本文介绍了一种基于区块链技术的跨域混合访问控制方案来解决这些问题。这种方法将基于角色的访问控制（RBAC）的简单性与基于属性的访问控制（ABAC）提供的适应性相结合，同时利用区块链的去中心化、不变性和透明性来增强系统安全性、自主性和跨域管理的能力。我们通过全面的安全分析评估了该方案在防御各种威胁方面的有效性。此外，实验结果表明，我们提出的解决方案提供了强大的安全保证，并且在效率和性能方面优于传统方法。因此，本文提出的方案标志着工业物联网安全实践的重大创新-为复杂的跨域环境提供了可行且可靠的解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.