{"title":"DAcc:基于分布式账本的企业应用访问控制","authors":"Isaac M. Markus, Lei Xu, I. Subhod, N. Nayab","doi":"10.1109/BLOC.2019.8751479","DOIUrl":null,"url":null,"abstract":"Access control is one of the fundamental security mechanisms of IT systems. Most existing access control schemes rely on a centralized party to manage and enforce access control policies. As decentralized ledger technologies, especially permissioned networks, find more applicability beyond cryptocurrencies in enterprise solutions is expected that the security requirements will increase. Therefore, it is necessary to develop an access control system that works in a decentralized environment without compromising the unique features of a decentralized ledger. Decentralized ledger based access control schemes have been proposed but have limitations such as lack of capability to protect the access history and detect/tolerate malicious participants. In order to address these concerns, we propose a novel decentralized ledger based access control system that utilizes cryptography. The newly proposed system is flexible and works with various storage system. The proposed system also provides verifiability for end users to detect compromised nodes in the decentralized ledger and high level privacy. We implement the scheme using Hyperledger Fabric and give detailed information of the prototype, and also assess its performance to show that it is practical for real world applications.","PeriodicalId":314490,"journal":{"name":"2019 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)","volume":"41 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"DAcc: Decentralized Ledger based Access Control for Enterprise Applications\",\"authors\":\"Isaac M. Markus, Lei Xu, I. Subhod, N. Nayab\",\"doi\":\"10.1109/BLOC.2019.8751479\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Access control is one of the fundamental security mechanisms of IT systems. Most existing access control schemes rely on a centralized party to manage and enforce access control policies. As decentralized ledger technologies, especially permissioned networks, find more applicability beyond cryptocurrencies in enterprise solutions is expected that the security requirements will increase. Therefore, it is necessary to develop an access control system that works in a decentralized environment without compromising the unique features of a decentralized ledger. Decentralized ledger based access control schemes have been proposed but have limitations such as lack of capability to protect the access history and detect/tolerate malicious participants. In order to address these concerns, we propose a novel decentralized ledger based access control system that utilizes cryptography. The newly proposed system is flexible and works with various storage system. The proposed system also provides verifiability for end users to detect compromised nodes in the decentralized ledger and high level privacy. We implement the scheme using Hyperledger Fabric and give detailed information of the prototype, and also assess its performance to show that it is practical for real world applications.\",\"PeriodicalId\":314490,\"journal\":{\"name\":\"2019 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)\",\"volume\":\"41 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-05-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/BLOC.2019.8751479\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/BLOC.2019.8751479","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
DAcc: Decentralized Ledger based Access Control for Enterprise Applications
Access control is one of the fundamental security mechanisms of IT systems. Most existing access control schemes rely on a centralized party to manage and enforce access control policies. As decentralized ledger technologies, especially permissioned networks, find more applicability beyond cryptocurrencies in enterprise solutions is expected that the security requirements will increase. Therefore, it is necessary to develop an access control system that works in a decentralized environment without compromising the unique features of a decentralized ledger. Decentralized ledger based access control schemes have been proposed but have limitations such as lack of capability to protect the access history and detect/tolerate malicious participants. In order to address these concerns, we propose a novel decentralized ledger based access control system that utilizes cryptography. The newly proposed system is flexible and works with various storage system. The proposed system also provides verifiability for end users to detect compromised nodes in the decentralized ledger and high level privacy. We implement the scheme using Hyperledger Fabric and give detailed information of the prototype, and also assess its performance to show that it is practical for real world applications.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
