{"title":"基于区块链的跨域访问控制机制","authors":"Ming Tan, Xiaohan Wang, Siyuan Shang, Aodi Liu","doi":"10.1109/ICICSP55539.2022.10050706","DOIUrl":null,"url":null,"abstract":"In view of the problems of high application cost, opaque permission judgment process, mutual trust between domains, and difficulty in coordinating access control information of data resources in distributed environment, this paper proposes a blockchain-based cross-domain access control mechanism that supports inter-domain policy privacy protection, so as to achieve cross-domain secure sharing of data in the centerless mode. First, based on attribute-based access control, access control information such as policies and attributes is stored on the blockchain to achieve efficient distributed permission management; At the same time, an inter-domain policy privacy protection method based on SM4 and CP-ABE is designed to protect the privacy of access control policies between domains. Subsequently, the smart contract is used to realize the distributed trusted judgment of access control based on the on-chain permission information; Finally, compared with the existing cross-domain access control mechanism, it is verified that the proposed mechanism in this paper has certain advantages and good scalability, and can provide strong support for cross-domain data security access in a distributed environment.","PeriodicalId":281095,"journal":{"name":"2022 5th International Conference on Information Communication and Signal Processing (ICICSP)","volume":"42 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Blockchain-Based Cross-domain Access Control Mechanism\",\"authors\":\"Ming Tan, Xiaohan Wang, Siyuan Shang, Aodi Liu\",\"doi\":\"10.1109/ICICSP55539.2022.10050706\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In view of the problems of high application cost, opaque permission judgment process, mutual trust between domains, and difficulty in coordinating access control information of data resources in distributed environment, this paper proposes a blockchain-based cross-domain access control mechanism that supports inter-domain policy privacy protection, so as to achieve cross-domain secure sharing of data in the centerless mode. First, based on attribute-based access control, access control information such as policies and attributes is stored on the blockchain to achieve efficient distributed permission management; At the same time, an inter-domain policy privacy protection method based on SM4 and CP-ABE is designed to protect the privacy of access control policies between domains. Subsequently, the smart contract is used to realize the distributed trusted judgment of access control based on the on-chain permission information; Finally, compared with the existing cross-domain access control mechanism, it is verified that the proposed mechanism in this paper has certain advantages and good scalability, and can provide strong support for cross-domain data security access in a distributed environment.\",\"PeriodicalId\":281095,\"journal\":{\"name\":\"2022 5th International Conference on Information Communication and Signal Processing (ICICSP)\",\"volume\":\"42 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-11-26\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 5th International Conference on Information Communication and Signal Processing (ICICSP)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICICSP55539.2022.10050706\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 5th International Conference on Information Communication and Signal Processing (ICICSP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICICSP55539.2022.10050706","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Blockchain-Based Cross-domain Access Control Mechanism
In view of the problems of high application cost, opaque permission judgment process, mutual trust between domains, and difficulty in coordinating access control information of data resources in distributed environment, this paper proposes a blockchain-based cross-domain access control mechanism that supports inter-domain policy privacy protection, so as to achieve cross-domain secure sharing of data in the centerless mode. First, based on attribute-based access control, access control information such as policies and attributes is stored on the blockchain to achieve efficient distributed permission management; At the same time, an inter-domain policy privacy protection method based on SM4 and CP-ABE is designed to protect the privacy of access control policies between domains. Subsequently, the smart contract is used to realize the distributed trusted judgment of access control based on the on-chain permission information; Finally, compared with the existing cross-domain access control mechanism, it is verified that the proposed mechanism in this paper has certain advantages and good scalability, and can provide strong support for cross-domain data security access in a distributed environment.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
