TY - JOUR
T1 - A Blockchain-Based Access Control Framework for Cyber-Physical-Social System Big Data
AU - Tan, Liang
AU - Shi, Na
AU - Yang, Caixia
AU - Yu, Keping
N1 - Funding Information:
This work was supported in part by the National Natural Science Foundation of China under Grant 61373162, in part by the Sichuan Science and Technology Support Project under Grant 2019YFG0183, and in part by the Japan Society for the Promotion of Science (JSPS) Grants-in-Aid for Scientific Research (KAKENHI) under Grant JP18K18044.
Publisher Copyright:
© 2013 IEEE.
PY - 2020
Y1 - 2020
N2 - Cyber-Physical-Social System (CPSS) big data is specified as the global historical data which is usually stored in cloud, the local real-time data which is usually stored in the fog-edge server (FeS) of the mobile terminal devices or sensors, and the social data which is usually stored in the social data server (SdS), moreover adopts a centralized access control mechanism to offer users' access strategy which can easily cause CPSS big data to be tampered with and to be leaked. Therefore, a blockchain-based access control scheme called BacCPSS for CPSS big data is proposed. In BacCPSS, account address of the node in blockchain is used as the identity to access CPSS big data, the access control permission for CPSS big data is redefined and stored in blockchain, and processes of authorization, authorization revocation, access control and audit in BacCPSS are designed, and then a lightweight symmetric encryption algorithm is used to achieve privacy-preserving. Finally, a credible experimental model on EOS and Aliyun cloud is built. Results show that BacCPSS is feasible and effective, and can achieve secure access in CPSS while protecting privacy.
AB - Cyber-Physical-Social System (CPSS) big data is specified as the global historical data which is usually stored in cloud, the local real-time data which is usually stored in the fog-edge server (FeS) of the mobile terminal devices or sensors, and the social data which is usually stored in the social data server (SdS), moreover adopts a centralized access control mechanism to offer users' access strategy which can easily cause CPSS big data to be tampered with and to be leaked. Therefore, a blockchain-based access control scheme called BacCPSS for CPSS big data is proposed. In BacCPSS, account address of the node in blockchain is used as the identity to access CPSS big data, the access control permission for CPSS big data is redefined and stored in blockchain, and processes of authorization, authorization revocation, access control and audit in BacCPSS are designed, and then a lightweight symmetric encryption algorithm is used to achieve privacy-preserving. Finally, a credible experimental model on EOS and Aliyun cloud is built. Results show that BacCPSS is feasible and effective, and can achieve secure access in CPSS while protecting privacy.
KW - CPS
KW - CPSS
KW - access control
KW - blockchain
KW - transaction
UR - http://www.scopus.com/inward/record.url?scp=85084931470&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85084931470&partnerID=8YFLogxK
U2 - 10.1109/ACCESS.2020.2988951
DO - 10.1109/ACCESS.2020.2988951
M3 - Article
AN - SCOPUS:85084931470
SN - 2169-3536
VL - 8
SP - 77215
EP - 77226
JO - IEEE Access
JF - IEEE Access
M1 - 9075974
ER -