Houshyar Honar Pajooh,Mohammed A. Rashid,Fakhrul Alam,Serge Demidenko

DOI: https://doi.org/10.1186/s40537-021-00505-y

2021-08-30

Journal Of Big Data

Abstract:Abstract The diversity and sheer increase in the number of connected Internet of Things (IoT) devices have brought significant concerns associated with storing and protecting a large volume of IoT data. Storage volume requirements and computational costs are continuously rising in the conventional cloud-centric IoT structures. Besides, dependencies of the centralized server solution impose significant trust issues and make it vulnerable to security risks. In this paper, a layer-based distributed data storage design and implementation of a blockchain-enabled large-scale IoT system are proposed. It has been developed to mitigate the above-mentioned challenges by using the Hyperledger Fabric (HLF) platform for distributed ledger solutions. The need for a centralized server and a third-party auditor was eliminated by leveraging HLF peers performing transaction verifications and records audits in a big data system with the help of blockchain technology. The HLF blockchain facilitates storing the lightweight verification tags on the blockchain ledger. In contrast, the actual metadata are stored in the off-chain big data system to reduce the communication overheads and enhance data integrity. Additionally, a prototype has been implemented on embedded hardware showing the feasibility of deploying the proposed solution in IoT edge computing and big data ecosystems. Finally, experiments have been conducted to evaluate the performance of the proposed scheme in terms of its throughput, latency, communication, and computation costs. The obtained results have indicated the feasibility of the proposed solution to retrieve and store the provenance of large-scale IoT data within the Big Data ecosystem using the HLF blockchain. The experimental results show the throughput of about 600 transactions, 500 ms average response time, about 2–3% of the CPU consumption at the peer process and approximately 10–20% at the client node. The minimum latency remained below 1 s however, there is an increase in the maximum latency when the sending rate reached around 200 transactions per second (TPS).

Wenjuan Li,Qifei Zhang,Shuiguang Deng,Bin Zhou,Ben Wang,Jian Cao

DOI: https://doi.org/10.1109/jiot.2023.3294265

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:Security and trust have become the key issues in the Internet of Things (IoT) environment. Characterized by the centralized control and high-energy consumption, the traditional trust management schemes are not suitable for the IoT systems, in which most of the interactions are short-duration, random and maybe one-time, and the terminal devices always have resource constraints. Therefore, this article proposes a distributed and two-layered trust management framework based on blockchain architecture for IoT. The hierarchical architecture of the cloud, the edge, the IoT subgroups, and devices solves the resource limitation problem and improves the privacy protection of the IoT applications. And a novel lightweight $Q$ -learning improved DPoS consensus algorithm named QV-DPoS is proposed to solve the problems of large energy consumption and high complexity of consensus mechanism of blockchain. Ethereum is used to build a blockchain-based IoT prototype system, and some experiments were designed to verify whether the proposed platform can successfully conduct trust management and achieve identity and behavior authentication between the IoT entities. Moreover, the simulation experiments based on NetLogo is also designed to test the performance of the trust and consensus mechanisms. The results of the experiments show that the proposed mechanisms can effectively enhance the credibility of the interactions in the IoT environments, improve the transaction success rate, and reduce energy consumption at least 10% compared with the traditional algorithms.

Asma Jodeiri Akbarfam,Hoda Maleki

2024-07-25

Abstract:Provenance, which traces data from its creation to manipulation, is crucial for ensuring data integrity, reliability, and trustworthiness. It is valuable for single-user applications, collaboration within organizations, and across organizations. Blockchain technology has become a popular choice for implementing provenance due to its distributed, transparent, and immutable nature. Numerous studies on blockchain designs are specifically dedicated to provenance, and specialize in this area. Our goal is to provide a new perspective in blockchain based provenance field by identifying the challenges faced and suggesting future research directions. In this paper, we categorize the problem statement into three main research questions to investigate key issues comprehensively and propose a new outlook on the use of blockchains. The first focuses on challenges in non-collaborative, single-source environments, the second examines implications in collaborative environments and different domains such as supply chain, scientific collaboration and digital forensic, and the last one analyzes communication and data exchange challenges between organizations using different blockchains. The interconnected nature of these research questions ensures a thorough exploration of provenance requirements, leading to more effective and secure systems. After analyzing the requirements of provenance in different environments, we provide future design considerations for provenance-based blockchains, including blockchain type, query mechanisms, provenance capture methods, and domain-specific considerations. We also discuss future work and possible extensions in this field.

Cryptography and Security,Distributed, Parallel, and Cluster Computing

Dan Liao,Hui Li,Wentao Wang,Xiong Wang,Ming Zhang,Xue Chen

DOI: https://doi.org/10.1007/s12083-020-01042-w

2021-01-29

Abstract:Security in Internet of Things (IoT) remains a significant concern within academia and industry. With the great potential of IoT data, the traditional centralized architecture of IoT system is limited and cannot afford security solutions. In this paper, to address the issue of IoT data security, we propose a blockchain-based data acquisition and processing architecture. The proposed architecture ensures IoT data security through data consistency. It supports distributed IoT nodes to negotiate consensus on the processed data, and decides to write the consensus data to blockchain ledger. Since distributed nodes are non-peer and have different voting weights in the proposed architecture, traditional consensus algorithms are not applicable. Therefore, we design a novel consensus algorithm for data consistency between non-peer nodes: Byzantine Fault-Tolerant consensus algorithm based on Dynamic Permission Adjustment (DPA-PBFT) algorithm. The DPA-PBFT algorithm works in the consensus domain of different weight nodes with the ability of self-optimize. It improves consensus efficiency and reduces communication overhead for data consistency. Finally, we conduct numerous experiments to evaluate the performance improvement of the DPA-PBFT algorithm under the proposed distributed architecture.

computer science, information systems,telecommunications

Xiangke Mao,Chao Li,Guigang Zhang,Xin Wei,Chunxiao Xing

DOI: https://doi.org/10.1109/qrs-c57518.2022.00024

2022-01-01

Abstract:Data provenance is a basic requirement for trusted data management in the era of big data. Before the emergence of blockchain technology, data provenance mainly used a centralized database to store data records, log records, etc., to facilitate subsequent audit tracking, but database has the security problem of data tampering. After the emergence of blockchain technology, researchers have conducted a lot of research on trusted data provenance in the Internet of Things (IoT), product supply chain, medical health and other fields based on the characteristics of blockchain decentralization, tamper resistance, and traceability, etc., to ensure the security and trustworthiness of data provenance results. This paper will sort out the research on the use of blockchain technology for data provenance in different fields in recent years, and analyze the similarities and differences between existing blockchain based data provenance methods as a whole. Finally, the possible challenges in data provenance based on blockchain technology are pointed out and the possible solutions are given.

Changlin Yang,Ying Liu,Kwan-Wu Chin,Jiguang Wang,Huawei Huang,Zibin Zheng

DOI: https://doi.org/10.48550/arXiv.2304.05094

2023-04-11

Abstract:Many applications, e.g., digital twins, rely on sensing data from Internet of Things (IoT) networks, which is used to infer event(s) and initiate actions to affect an environment. This gives rise to concerns relating to data integrity and provenance. One possible solution to address these concerns is to employ blockchain. However, blockchain has high resource requirements, thereby making it unsuitable for use on resource-constrained IoT devices. To this end, this paper proposes a novel approach, called two-layer directed acyclic graph (2LDAG), whereby IoT devices only store a digital fingerprint of data generated by their neighbors. Further, it proposes a novel proof-of-path (PoP) protocol that allows an operator or digital twin to verify data in an on-demand manner. The simulation results show 2LDAG has storage and communication cost that is respectively two and three orders of magnitude lower than traditional blockchain and also blockchains that use a DAG structure. Moreover, 2LDAG achieves consensus even when 49\% of nodes are malicious.

Distributed, Parallel, and Cluster Computing

Eric Ke Wang,RuiPei Sun,Chien-Ming Chen,Zuodong Liang,Saru Kumari,Muhammad Khurram Khan

DOI: https://doi.org/10.1016/j.cose.2020.101871

2020-08-01

Abstract:<p>Recently, blockchain technology has been used to address the security issues of Internet of things (IoT) applications. However, some issues particular to blockchain should be solved to meet the security requirements of IoT systems. The core of blockchain technology is distributed computing, along with the collaboration mechanism of group trust under the distributed computing environment, which can solve the scalability, collaboration ability, trust relationship, and security protection challenges faced by the IoT. The existing blockchain consensus protocol can only solve the trust cooperation problem with limited credibility. Although distributed trust relationship management has advantages over centralized trust relationship management, several risks exist. Here, the most critical issue is the credibility of the blockchain consensus protocol. Based on the characteristics of the traditional public chain, we propose a repute-based consensus protocol for blockchain-enabled IoT systems. In the protocol, two methods are designed to enable the blockchain system to reach a consensus rapidly and safely. The repute rewards and punishments method settles the repute values of nodes; nodes with satisfactory behavior receive repute rewards. The repute mining method proposes repute requirements for consensus nodes; nodes with high repute value produce blocks more easily. Security analysis has been conducted using a theory model and experimental evaluation. The establishment of our repute system can improve the consensus protocol, resisting stronger attacks, and giving several users with lower computing power a greater opportunity to participate in consensus. The experimental results show that the repute-based consensus protocol has advantages in terms of security and that its resistance capability against attacks is improved.</p>

computer science, information systems

Omair Faraj,David Megias,Joaquin Garcia-Alfaro

2024-07-04

Abstract:The Internet of Things (IoT) relies on resource-constrained devices deployed in unprotected environments. Different types of risks may be faced during data transmission in single-hop and multi-hop scenarios. Addressing these vulnerabilities is crucial. A systematic literature review of data provenance in IoT is presented, exploring existing techniques, practical implementations, security requirements, and performance metrics. Respective contributions and shortcomings are compared. A taxonomy related to the development of data provenance in IoT is proposed. Open issues are identified, and future research directions are presented, providing useful insights for the evolution of data provenance research in the context of the IoT.

Cryptography and Security

Jingwei Ye,Xin Kang,Ying-Chang Liang,Sumei Sun

DOI: https://doi.org/10.48550/arXiv.2106.13958

2021-06-26

Abstract:In this paper, we propose a trust-centric privacy-preserving blockchain for dynamic spectrum access in IoT networks. To be specific, we propose a trust evaluation mechanism to evaluate the trustworthiness of sensing nodes and design a Proof-of-Trust (PoT) consensus mechanism to build a scalable blockchain with high transaction-per-second (TPS). Moreover, a privacy protection scheme is proposed to protect sensors' real-time geolocatioin information when they upload sensing data to the blockchain. Two smart contracts are designed to make the whole procedure (spectrum sensing, spectrum auction, and spectrum allocation) run automatically. Simulation results demonstrate the expected computation cost of the PoT consensus algorithm for reliable sensing nodes is low, and the cooperative sensing performance is improved with the help of trust value evaluation <a class="link-external link-http" href="http://mechanism.In" rel="external noopener nofollow">this http URL</a> addition, incentivization and security are also analyzed, which show that our design not only can encourage nodes' participation, but also resist to many kinds of attacks which are frequently encountered in trust-based blockchain systems.

Cryptography and Security,Systems and Control

Sabah Suhail,Rasheed Hussain,Choong Seon Hong,Abid Khan

DOI: https://doi.org/10.48550/arXiv.1902.04314

2019-02-12

Cryptography and Security

Abstract:"Trustworthy data" is the fuel for ensuring transparent traceability, precise decision-making, and cogent coordination in the supply chain (SC) space. However, the disparate data silos act as a trade barrier in orchestrating the provenance of product story starting from the transformation of raw materials into the circuit board to the assembling of electronic components into end products available on the store shelf for customers. Therefore, to bridge the fragmented siloed information across global supply chain partners, the diffusion of blockchain (BC) as one of the advanced distributed ledger technology (DLT) takeover the on-premise legacy systems. Nevertheless, the challenging constraints of blockchain including scalability, accessing off-line data, fee-less microtransactions and many more lead to the third wave of blockchain called IOTA. In this paper, we propose a framework for supporting provenance in the electronic supply chain (ECS) by using permissioned IOTA ledger. Realizing the crucial requirement of trustworthy data, we use Masked Authenticated Messaging (MAM) channel provided by IOTA that allows the SC players to procure distributed information while keeping confidential trade flows, tamper-proof data, and fine-grained accessibility rights. To identify operational disruption, we devise a transparent product ledger through transaction data and consignment information to keep track of the complete product journey at each intermediary step during SC processes. Furthermore, we evaluate the secure provenance data construction time for varying payload size.

Neo C.K. Yiu

DOI: https://doi.org/10.48550/arXiv.2102.01456

2021-02-02

Computers and Society

Abstract:An interesting research problem in supply chain industry is evaluating and determining provenance of physical goods - demonstrating authenticity of luxury goods. Yet, there have been a few innovative software solutions addressing product anti-counterfeiting and record provenance of today's goods that are produced and transported in complex and internationally-spanning supply chain networks. However, these supply chain systems have been implemented with centralized system architecture, relying on centralized authorities or any form of intermediaries, and leading to issues such as single-point processing, storage and failure, which could be susceptible to malicious modifications of product records or various potential attacks to system components by dishonest participant nodes traversing along the supply chain. Blockchain technology has evolved from being merely a decentralized, distributed and immutable ledger of cryptocurrency transactions to a programmable interactive environment for building decentralized and reliable applications addressing different use cases and existing problems in the world. In this research, the Decentralized NFC-Enabled Anti-Counterfeiting System (dNAS) is proposed and developed, decentralizing a legacy anti-counterfeiting system of supply chain industry using Blockchain technology, to facilitate trustworthy data provenance retrieval, verification and management, as well as strengthening capability of product anti-counterfeiting in supply chain industry. The proposed dNAS utilizes decentralized blockchain network on a consensus protocol compatible with the concept of enterprise consortium, programmable smart contracts and a distributed file storage system to develop a secure and immutable scientific data provenance tracking and management platform on which provenance records, providing compelling properties on data integrity, are validated automatically.

Abdullah Al-Mamun,Dongfang Zhao

DOI: https://doi.org/10.48550/arXiv.2002.00141

2020-02-01

Abstract:The state-of-the-art for auditing and reproducing scientific applications on high-performance computing (HPC) systems is through a data provenance subsystem. While recent advances in data provenance lie in reducing the performance overhead and improving the user's query flexibility, the fidelity of data provenance is often overlooked: there is no such a way to ensure that the provenance data itself has not been fabricated or falsified. This paper advocates to leverage blockchains to deliver immutable and autonomous data provenance services such that scientific data are trustworthy. The challenges for adopting blockchains to HPC include designing a new blockchain architecture compatible with the HPC platforms and, more importantly, a set of new consensus protocols for scientific applications atop blockchains. To this end, we have designed the proof-of-scalable-traceability (POST) protocol and implemented it in a blockchain prototype, namely SciChain, the very first blockchain system for HPC. We evaluated SciChain by comparing it with multiple state-of-the-art systems; Experimental results showed that SciChain guaranteed trustworthy data while incurring orders of magnitude lower overhead.

Distributed, Parallel, and Cluster Computing

Chien-Lung Hsu,Wei-Xin Chen,Tuan-Vinh Le

DOI: https://doi.org/10.3390/s20226471

IF: 3.9

2020-11-12

Sensors

Abstract:As the Internet of Things (IoT) has become prevalent, a massive number of logs produced by IoT devices are transmitted and processed every day. The logs should contain important contents and private information. Moreover, these logs may be used as evidences for forensic investigations when cyber security incidents occur. However, evidence legality and internal security issues in existing works were not properly addressed. This paper proposes an autonomous log storage management protocol with blockchain mechanism and access control for the IoT. Autonomous model allows sensors to encrypt their logs before sending it to gateway and server, so that the logs are not revealed to the public during communication process. Along with blockchain, we introduce the concept “signature chain”. The integration of blockchain and signature chain provides efficient management functions with valuable security properties for the logs, including robust identity verification, data integrity, non-repudiation, data tamper resistance, and the legality. Our work also employs attribute-based encryption to achieve fine-grained access control and data confidentiality. The results of security analysis using AVSIPA toolset, GNY logic and semantic proof indicate that the proposed protocol meets various security requirements. Providing good performance with elliptic curve small key size, short BLS signature, efficient signcryption method, and single sign-on solution, our work is suitable for the IoT.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Fei Tong,Xing Chen,Cheng Huang,Yujian Zhang,Xuemin Shen

DOI: https://doi.org/10.1109/JIOT.2022.3229676

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Multidomain Internet of Things (IoT) is faced with serious domain interoperability (DI) and compatibility issues since different intradomain authorization and authentication (A&A) mechanisms are deployed without the consideration of interdomain A&A. This article proposes a blockchain-assisted scheme to achieve flexible intra- and inter-domain A&A simultaneously and seamlessly. Specifically, we first design a contract-based mutual access control agreement on top of a consortium blockchain, where domain managers can manage their access permission without any trusted parties. Based on the agreement, a secure and privacy-preserving authentication protocol is further proposed by tailoring one-out-of-many proof techniques, which enables IoT devices to anonymously access authorized IoT domains. We additionally design a voting-based protocol by using a threshold-based cryptosystem. The protocol allows domain managers to transparently audit resource access with the assistance of the blockchain. Detailed security analysis demonstrates that the proposed scheme achieves the security properties, such as DI, privacy protection, and accountability. Finally, we develop two proof-of-concept prototypes in a physical testbed and virtual machine, respectively, based on an open-source blockchain platform to show our scheme's efficiency in terms of computation and communication overhead.

Aravind Ramachandran,Dr. Murat Kantarcioglu

DOI: https://doi.org/10.48550/arXiv.1709.10000

2017-09-28

Cryptography and Security

Abstract:Blockchain technology has evolved from being an immutable ledger of transactions for cryptocurrencies to a programmable interactive the environment for building distributed reliable applications. Although, blockchain technology has been used to address various challenges, to our knowledge none of the previous work focused on using blockchain to develop a secure and immutable scientific data provenance management framework that automatically verifies the provenance records. In this work, we leverage blockchain as a platform to facilitate trustworthy data provenance collection, verification, and management. The developed system utilizes smart contracts and open provenance model (OPM) to record immutable data trails. We show that our proposed framework can efficiently and securely capture and validate provenance data, and prevent any malicious modification to the captured data as long as the majority of the participants are honest.

Mahmoud Elkhodr,Zuhaib Bari Mufti

DOI: https://doi.org/10.5121/ijwmn.2019.11304

2019-07-17

Abstract:The IoT is described as a smart interactive environment where devices communicate together ubiquitously sometimes in the background, performing functions on behalf of the users and offering many advanced services to them. Examples range from simple smart home applications such as ambient intelligence and remote controlling functionalities to more advanced smart cities setups. A smart IoT city for instance will encompass a network of many interconnected networks where various sensors and actuators distributed across many areas of the city share information, create knowledge and trigger actuation events. In such a dynamic and rich environment, it is vital for security to trace the source of data and verify its origin. This where data provenance in the IoT come to play. This work attempts to explore requirements and applications of data provenance in the IoT and the challenges pertaining to its realisation.

Cryptography and Security

Lulu Li,Huan Qu,Huaizhen Wang,Junyu Wang,Bozhi Wang,Wei Wang,Jinfei Xu,Zhihui Wang

DOI: https://doi.org/10.3390/s22228680

IF: 3.9

2022-01-01

Sensors

Abstract:Blockchain-based traceability systems are a promising approach because they are decentralized, transparent, and tamper proof; however, if all traceability data are uploaded to a blockchain platform, it may affect the efficiency or even lead to data explosion. Additionally, it is difficult to guarantee the reliability of the original data source of massive Internet of Things (IoT) devices. Furthermore, when different enterprise nodes adopt different data storage structures, the costs that are associated with data sharing will increase. In this paper, we have proposed a trustworthy product traceability system that is based on hyperledger fabric and Electronic Product Code Information Service (EPCIS), which is not only capable of making products traceable, but it can also authenticate and authorize the IoT devices that are used for data collection. First, we adopted the on-chain and off-chain collaborative management mechanism in order to alleviate data explosion on the chain. Second, we proposed a scheme to authenticate and authorize devices based on blockchain. Third, we complied with EPCIS and Core Business Vocabulary (CBV) standards and provided the EPCIS location discovery service in order to improve the interactivity. Finally, we implemented and tested the proposed traceability system and compared it with the existing research. The proposed solution provides product information traceability, data tamper proofing, data confidentiality, and data source reliability.

Jie Yin,Yang Xiao,Qingqi Pei,Ying Ju,Lei Liu,Ming Xiao,Celimuge Wu

DOI: https://doi.org/10.1109/jiot.2022.3145089

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:Internet of Things (IoT) applications have penetrated into all aspects of human life. Millions of IoT users and devices, online services, and applications combine to create a complex and heterogeneous network, which complicates the digital identity management. Distributed identity is a promising paradigm to solve IoT identity problems and allows users to have soverignty over their private data. However, the existing state-of-the-art methods are unsuitable for IoT due to continuing issues regarding resource limitations for IoT devices, security and privacy issues, and lack of a systematic proof system. Accordingly, in this article, we propose SmartDID, a novel blockchain-based distributed identity aimed at establishing a self-sovereign identity and providing strong privacy preservation. First, we configure IoT devices as light nodes and design a Sybil-resistant, unlinkable, and supervisable distributed identity that does not rely on central identity providers. We further develop a dual-credential model based on commitment and zero-knowledge proofs to protect the privacy of sensitive attributes, on-chain identity data, and linkage of credentials. Moreover, we combine the basic credential proofs to prove the knowledge of solutions to more complex problems and create a systematic proof system. We go on to provide the security analysis of SmartDID. Experimental analysis shows that our scheme achieves better performance in terms of both credential generation and proof generation when compared with CanDID.

computer science, information systems,telecommunications,engineering, electrical & electronic

Henry M. Kim,Marek Laskowski

DOI: https://doi.org/10.48550/arXiv.1610.02922

2016-08-28

Computers and Society

Abstract:An interesting research problem in our age of Big Data is that of determining provenance. Granular evaluation of provenance of physical goods--e.g. tracking ingredients of a pharmaceutical or demonstrating authenticity of luxury goods--has often not been possible with today's items that are produced and transported in complex, inter-organizational, often internationally-spanning supply chains. Recent adoption of Internet of Things and Blockchain technologies give promise at better supply chain provenance. We are particularly interested in the blockchain as many favoured use cases of blockchain are for provenance tracking. We are also interested in applying ontologies as there has been some work done on knowledge provenance, traceability, and food provenance using ontologies. In this paper, we make a case for why ontologies can contribute to blockchain design. To support this case, we analyze a traceability ontology and translate some of its representations to smart contracts that execute a provenance trace and enforce traceability constraints on the Ethereum blockchain platform.

Wei Liu,Haojun Huang,Hao Yin,Geyong Min,Yunhao Yuan,Dapeng Wu

DOI: https://doi.org/10.1109/mcom.001.2200954

IF: 9.03

2023-01-01

IEEE Communications Magazine

Abstract:Internet of Things (IoT) as a ubiquitous networking paradigm has been experiencing serious security and privacy challenges with the increasing data in diversified applications. Fortunately, this will be, to a great extent, alleviated with the emerging blockchain, which is a decentralized digital ledger based on cryptography and offers potential benefits for IoT. Currently, the resource limitations of IoT devices have prevented blockchain from flexibly storing the ever-increasing IoT data. To address this challenge, in this article, we introduce a scalable blockchain paradigm with cloud/fog/edge services and virtualization technology. They also develop an innovative scalable blockchain-based architecture of IoT data storage (SBIT) to tackle its security and scalability concerns through on-chain block validation in IoT, and off-chain data storage in cloud/fog/edge servers. We start by investigating the traditional IoT and identifying the existing issues related to its security and scalability. Then, we explicitly present the details of the scalable blockchain and SBIT, along with a case study. Finally, we summarize the emerging challenges and discuss the future directions for further research on blockchain-based IoT.