Multi-Authority Attribute-Based Access Control with Smart Contract
| Autor: | Chien-Chung Shen, Hao Guo, Ehsan Meamari |
|---|---|
| Jazyk: | angličtina |
| Rok vydání: | 2019 |
| Předmět: |
Scheme (programming language)
FOS: Computer and information sciences Computer Science - Cryptography and Security Smart contract business.industry Computer science Access control Attribute-based access control Computer security computer.software_genre Object (computer science) Component (UML) Solidity Key (cryptography) business computer Cryptography and Security (cs.CR) computer.programming_language |
| Zdroj: | ICBCT |
| Popis: | Attribute-based access control makes access control decisions based on the assigned attributes of subjects and the access policies to protect objects by mediating operations from the subjects. Authority, which validates attributes of subjects, is one key component to facilitate attribute-based access control. In an increasingly decentralized society, multiple attributes possessed by subjects may need to be validated by multiple different authorities. This paper proposes a multi-authority attribute-based access control scheme by using Ethereum's smart contracts. In the proposed scheme, Ethereum smart contracts are created to define the interactions between data owner, data user, and multiple attribute authorities. A data user presents its attributes to different attribute authorities, and after successful validation of attributes, obtains attribute tokens from respective attribute authorities. After collecting enough attribute tokens, a smart contract will be executed to issue secret key to the data user to access the requested object. The smart contracts for multi-authority attribute-based access control have been prototyped in Solidity, and their performance has been evaluated on the Rinkeby Ethereum Testnet. This paper has been accepted by ACM Proceedings of the 2019 International Conference on Blockchain Technology |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|