A Blockchain-Based Cross-Domain Authentication Management System for IoT DevicesShow others and affiliations
2024 (English)In: IEEE Transactions on Network Science and Engineering, E-ISSN 2327-4697, Vol. 11, no 1, p. 115-127Article in journal (Refereed) Published
Abstract [en]
With the emergence of the resource and equipment sharing concept, many enterprises and organizations begin to implement cross-domain sharing of devices, especially in the field of the Internet of Things (IoT). However, there are many problems in the cross-domain usage process of devices, such as access control, authentication, and privacy protection. In this paper, we make the following contributions. First, we propose a blockchain-based cross-domain authentication management system for IoT devices. The sensitive device information is stored in a Merkle tree structure where only the Merkle root is uploaded to the smart contract. Second, a detailed security and performance analysis is given. We prove that our system is secure against several potential security threats and satisfies validity and liveness. Compared to existing schemes, our schemes realize decentralization, privacy, scalability, fast off-chain authentication, and low on-chain storage. Third, we implement the system on Ethereum with varying parameters known as domain number, concurrent authentication request number, and Merkle tree leaf number. Experimental results show that our solution supports the management of millions of devices in a domain and can process more than 10,000 concurrent cross-domain authentication requests, consuming only 5531 ms. Meanwhile, the gas costs are shown to be acceptable. © IEEE
Place, publisher, year, edition, pages
Piscataway, NJ: IEEE Computer Society, 2024. Vol. 11, no 1, p. 115-127
Keywords [en]
Authentication, Blockchains, cross-domain authentication, Internet of Things, IoT device management, Merkle tree, Organizations, Peer-to-peer computing, Scalability, smart contract, Smart contracts
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:hh:diva-51427DOI: 10.1109/TNSE.2023.3292624Scopus ID: 2-s2.0-85164391552OAI: oai:DiVA.org:hh-51427DiVA, id: diva2:1788831
Note
Funding: National Key R&D Program of China (Grant Number: 2021YFB2700200); Natural Science Foundation of China (Grant Number: U21A20467, U21B2021, U22B2008, U2241213, 62202027, 61932011, 61972019, 61972018, 61972017, 62172025 and 61932014); Young Elite Scientists Sponsorship Program by CAST (Grant Number: 2022QNRC001); Beijing Natural Science Foundation (Grant Number: M23016, M21031, L222050 and M22038); CCF-Huawei Huyanglin Foundation (Grant Number: CCF-HuaweiBC2021009); Yunnan Key Laboratory of Blockchain Application Technology Open Project (Grant Number: 202105AG070005 and YNB202206)
2023-08-172023-08-172024-01-16Bibliographically approved