Roberto Di Pietro,Xavier Salleras,Matteo Signorini,Erez Waisbard

DOI: https://doi.org/10.1145/3205977.3205993

2018-06-07

Abstract:One of the biggest challenges for the Internet of Things (IoT) is to bridge the currently fragmented trust domains. The traditional PKI model relies on a common root of trust and does not fit well with the heterogeneous IoT ecosystem where constrained devices belong to independent administrative domains. In this work we describe a distributed trust model for the IoT that leverages the existing trust domains and bridges them to create end-to-end trust between IoT devices without relying on any common root of trust. Furthermore we define a new cryptographic primitive, denoted as obligation chain designed as a credit-based Blockchain with a built-in reputation mechanism. Its innovative design enables a wide range of use cases and business models that are simply not possible with current Blockchain-based solutions while not experiencing traditional blockchain delays. We provide a security analysis for both the obligation chain and the overall architecture and provide experimental tests that show its viability and quality.

Naoki Takegawa,Noriyuki Furuichi

DOI: https://doi.org/10.3390/s23031673

IF: 3.9

2023-02-04

Sensors

Abstract:Metrological traceability is essential to ensure the reliability of calibration tests. Calibration certificates usually include information on only one upper-level reference standard. As metrological traceability is multi-layered, generally there is no method available for end users to instantly confirm the traceability from the reference standard to a primary standard. This study focuses on the Ethereum blockchain, which has both tamper resistance and high availability, as a digital data management method. To improve the transparency and reliability of calibration tests, a smart contract that traces back to the primary standard is proposed. Consequently, it is confirmed that end users can instantly obtain traceability information. In addition, the execution of smart contracts requires transaction fees. Here, the calculation of the transaction fees is organized, and the traceability management system is discussed from a cost-effective perspective in the field of metrology.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Giulio Caldarelli

DOI: https://doi.org/10.48550/arXiv.2202.13930

2022-03-02

Abstract:Blockchain technology truly opened the gate to a wave of unparalleled innovations; however, despite the rapidly growing load of hype, the integration into the business, apart from a few applications, seems to be coming at a slower rate. One reason for that delay may be the need in the real-world applications for the so-called trust model. Trust models are rarely mentioned in blockchain application proposals despite their importance, which creates skepticism about their successful developments. To promote trust model implementation and help practitioners in its redaction, this article provides an outline of what a trust model is, why it is essential, and an example of how it is elaborated. The discussed example comes from a case study of a dairy company that implemented blockchain for the traceability of its products. Despite being tailored on a traceability project, the redaction and elements of the trust model, with few adjustments, could be easily readapted for other applications.

General Economics,Computer Science and Game Theory,Information Theory

Shantanu Pal,Ambrose Hill,Tahiry Rabehaja,Michael Hitchens

DOI: https://doi.org/10.48550/arXiv.2106.04885

2021-06-09

Abstract:There has been tremendous interest in the development of formal trust models and metrics through the use of analytics (e.g., Belief Theory and Bayesian models), logics (e.g., Epistemic and Subjective Logic) and other mathematical models. The choice of trust metric will depend on context, circumstance and user requirements and there is no single best metric for use in all circumstances. Where different users require different trust metrics to be employed the trust score calculations should still be based on all available trust evidence. Trust is normally computed using past experiences but, in practice (especially in centralised systems), the validity and accuracy of these experiences are taken for granted. In this paper, we provide a formal framework and practical blockchain-based implementation that allows independent trust providers to implement different trust metrics in a distributed manner while still allowing all trust providers to base their calculations on a common set of trust evidence. Further, our design allows experiences to be provably linked to interactions without the need for a central authority. This leads to the notion of evidence-based trust with provable interactions. Leveraging blockchain allows the trust providers to offer their services in a competitive manner, charging fees while users are provided with payments for recording experiences. Performance details of the blockchain implementation are provided.

Cryptography and Security,Distributed, Parallel, and Cluster Computing

Seyed Amid Moeinzadeh Mirhosseini,Ali Fanian,T. Aaron Gulliver

DOI: https://doi.org/10.48550/arXiv.2111.13500

2021-11-26

Abstract:The advent of Bitcoin, and consequently Blockchain, has ushered in a new era of decentralization. Blockchain enables mutually distrusting entities to work collaboratively to attain a common objective. However, current Blockchain technologies lack scalability, which limits their use in Internet of Things (IoT) applications. Many devices on the Internet have the computational and communication capabilities to facilitate decision-making. These devices will soon be a 50 billion node network. Furthermore, new IoT business models such as Sensor-as-a-Service (SaaS) require a robust Trust and Reputation System (TRS). In this paper, we introduce an innovative distributed ledger combining Tangle and Blockchain as a TRS framework for IoT. The combination of Tangle and Blockchain provides maintainability of the former and scalability of the latter. The proposed ledger can handle large numbers of IoT device transactions and facilitates low power nodes joining and contributing. Employing a distributed ledger mitigates many threats, such as whitewashing attacks. Along with combining payments and rating protocols, the proposed approach provides cleaner data to the upper layer reputation algorithm.

Distributed, Parallel, and Cluster Computing,Cryptography and Security

Lijun Wei,Jing Wu,Chengnian Long

DOI: https://doi.org/10.1109/cac51589.2020.9326856

2020-01-01

Abstract:Social Internet of Things (SIoT) integrates the social concept into the Internet of Things (IoT) for enhancing the efficiency of services. Due to the increasing scale of the network and the intellectualization of IoT objects, the development of SIoT has also been accompanied by the issue of trust management which is crucial to the security and reliability of the system. The definition and evaluation of the trustworthiness of objects are vital to build cooperation among objects. In this paper, we employ the blockchain technology to address the trust management issue in SIoT. Blockchain will be adopted as an underlying support technology for trust-related data storage and retrieval. Moreover, we present a flexible and adaptive trust computation method to enhance the reliability of objects’ trustworthiness evaluation. The simulated experiment results demonstrate that the proposed blockchain-based method enhances the effectiveness and security of trust management in SIoT.

Hajar Moudoud,Soumaya Cherkaoui,Lyes Khoukhi

DOI: https://doi.org/10.1109/ICC42927.2021.9500535

2022-01-27

Abstract:Recently, blockchain has gained momentum as a novel technology that gives rise to a plethora of new decentralized applications (e.g., Internet of Things (IoT)). However, its integration with the IoT is still facing several problems (e.g., scalability, flexibility). Provisioning resources to enable a large number of connected IoT devices implies having a scalable and flexible blockchain. To address these issues, we propose a scalable and trustworthy blockchain (STB) architecture that is suitable for the IoT; which uses blockchain sharding and oracles to establish trust among unreliable IoT devices in a fully distributed and trustworthy manner. In particular, we design a Peer-To-Peer oracle network that ensures data reliability, scalability, flexibility, and trustworthiness. Furthermore, we introduce a new lightweight consensus algorithm that scales the blockchain dramatically while ensuring the interoperability among participants of the blockchain. The results show that our proposed STB architecture achieves flexibility, efficiency, and scalability making it a promising solution that is suitable for the IoT context.

Cryptography and Security,Networking and Internet Architecture

Guntur Dharma Putra,Volkan Dedeoglu,Salil S. Kanhere,Raja Jurdak

DOI: https://doi.org/10.48550/arXiv.1912.10247

2020-03-09

Abstract:Heterogeneous and dynamic IoT environments require a lightweight, scalable, and trustworthy access control system for protection from unauthorized access and for automated detection of compromised nodes. Recent proposals in IoT access control systems have incorporated blockchain to overcome inherent issues in conventional access control schemes. However, the dynamic interaction of IoT networks remains uncaptured. Here, we develop a blockchain based Trust and Reputation System (TRS) for IoT access control, which progressively evaluates and calculates the trust and reputation score of each participating node to achieve a self-adaptive and trustworthy access control system. Trust and reputation are explicitly incorporated in the attribute-based access control policy, so that different nodes can be assigned to different access right levels, resulting in dynamic access control policies. We implement our proposed architecture in a private Ethereum blockchain comprised of a Docker container network. We benchmark our solution using various performance metrics to highlight its applicability for IoT contexts.

Cryptography and Security,Networking and Internet Architecture

Davide Margaria,Alberto Carelli,Andrea Vesco

DOI: https://doi.org/10.1109/CCGridW63211.2024.00006

2024-10-14

Abstract:Nowadays, Internet of Things platforms are being deployed in a wide range of application domains. Some of these include use cases with security requirements, where the data generated by an IoT node is the basis for making safety-critical or liability-critical decisions at system level. The challenge is to develop a solution for data exchange while proving and verifying the authenticity of the data from end-to-end. In line with this objective, this paper proposes a novel solution with the proper protocols to provide Trust in Data, making use of two Roots of Trust that are the IOTA Distributed Ledger Technology and the Trusted Platform Module. The paper presents the design of the proposed solution and discusses the key design aspects and relevant trade-offs. The paper concludes with a Proof-of-Concept implementation and an experimental evaluation to confirm its feasibility and to assess the achievable performance.

Cryptography and Security

Lijun Wei,Jing Wu,Chengnian Long

DOI: https://doi.org/10.1145/3460537.3460544

2021-01-01

Abstract:With the development of information and computer technology, internet of things (IoT) technology has brought tremendous changes to people's production and life. The emergence of IoT creates new opportunities to stimulate innovative services that better converge the information resources of IoT objects. However, due to the increasing scale of the network and the intelligence of devices, the development of the service-oriented IoT has also been accompanied by the issue of trust which is crucial to the security and stability of the system. Blockchain, as an emerging distributed ledger technology, is considered to be a driving force to improve the trust management of the service-oriented IoT. This research is a systematic analysis with the goal of illustrating and analyzing how the blockchain contributes to addressing the issue of trust management in service-oriented IoT. The objective of this paper is to understand the trust issue in the service-oriented IoT and analyze the potential blockchain-based solution, thereby motivating further research interest in this field.

Zheng Zhang,Liang Huang,Renzhong Tang,Tao Peng,Lihang Guo,Xingwei Xiang

DOI: https://doi.org/10.1109/case48305.2020.9216817

2020-01-01

Abstract:Industrial Internet of Things (IIoT) is regarded as a promising transformation technology for manufacturing industry. We expect the information flow through along the process of material flow, gauging and collective devices feed IIoT platform with essential data. AI and big data analytical techniques can then be used to process the data to support a series of decision-making. Users at both managerial and operational levels can take actions accordingly, which significantly improve management efficiency in one organization, enhance supply chain coordination, and attract investment, etc. Powerful as bigdata and AI technology, they cannot operate without data. In centralized, third-party-managed IIoT platform, few manufactures are willing to share their critical data. This study extends IIoT framework with blockchain technology to provide a solution for trustless data sharing. The solution embeds encrypted ledger to avoid credential data tampering, employs m- in-n-out smart contracts to secure data exchange, and utilizes consensus mechanism to improve cyber security. The proposed framework integrates blockchain with IIoT to operate the entire industrial data exchange in a decentralized network, namely Industrial Blockchain of Things (IBoT).

Sidra Malik,Volkan Dedeoglu,Salil S. Kanhere,Raja Jurdak

DOI: https://doi.org/10.1109/blockchain.2019.00032

2019-07-01

Abstract:Traceability and integrity are major challenges for the increasingly complex supply chains of today's world. Although blockchain technology has the potential to address these challenges through providing a tamper-proof audit trail of supply chain events and data associated with a product life-cycle, it does not solve the trust problem associated with the data itself. Reputation systems are an effective approach to solve this trust problem. However, current reputation systems are not suited to the blockchain based supply chain applications as they are based on limited observations, they lack granularity and automation, and their overhead has not been explored. In this work, we propose TrustChain, as a three-layered trust management framework which uses a consortium blockchain to track interactions among supply chain participants and to dynamically assign trust and reputation scores based on these interactions. The novelty of Trustchain stems from: (a) the reputation model that evaluates the quality of commodities, and the trustworthiness of entities based on multiple observations of supply chain events, (b) its support for reputation scores that separate between a supply chain participant and products, enabling the assignment of product-specific reputations for the same participant, (c) the use of smart contracts for transparent, efficient, secure, and automated calculation of reputation scores, and (d) its minimal overhead in terms of latency and throughput when compared to a simple blockchain based supply chain model.

Yuan Liu,Chuang Zhang,Yu Yan,Xin Zhou,Zhihong Tian,Jie Zhang

DOI: https://doi.org/10.1109/tsc.2022.3181668

IF: 11.019

2023-04-12

IEEE Transactions on Services Computing

Abstract:IoT data exchange plays a vital role in supporting various applications and services with massive IoT devices. However, the existence of malicious devices threatens the integrity and reliability of the exchanged data. Trust management has been used to mitigate the impact of malicious devices in centralized and decentralized architectures. However, most of these traditional trust management systems bear computation, storage, and communication challenges. In this study, we propose a semi-centralized trust management system architecture based on blockchain in both single and multiple domains. The IoT devices are centralized organized by cloud servers who coordinately sustain a rating data ledger within each domain based the proposed rotation based consensus protocol in a decentralized manner to support cross-domain data exchange. A computational trust model is proposed by aggregating the direct and indirect trust information, where we elaborately design decay function, recommendation credibility and adaptable weights so as to calculate the trust value of dynamic malicious devices. Finally, we evaluate the proposed system model in various situations through simulation based experiments and compare it with two classical models in the literature. The experimental results demonstrate the effectiveness of the proposed trust model in identifying malicious devices and mitigating the influence of malicious devices.

computer science, information systems, software engineering

Zhiyuan Wang,Mingan Gao,Gehao Lu

DOI: https://doi.org/10.3390/s24020502

IF: 3.9

2024-01-14

Sensors

Abstract:In the realm of IoT sensor data security, particularly in areas like agricultural product traceability, the challenges of ensuring product origin and quality are paramount. This research presents a novel blockchain oracle solution integrating an enhanced MTAS signature algorithm derived from the Schnorr signature algorithm. The key improvement lies in the automatic adaptation of flexible threshold values based on the current scenario, catering to diverse security and efficiency requirements. Utilizing the continuously increasing block height of the blockchain as a pivotal blinding parameter, our approach strengthens signature verifiability and security. By combining the block height with signature parameters, we devise a distinctive signing scheme reliant on a globally immutable timestamp. Additionally, this study introduces a reliable oracle reputation mechanism for monitoring and assessing oracle node performance, maintaining both local and global reputations. This mechanism leverages smart contracts to evaluate each oracle's historical service, penalizing or removing nodes engaged in inappropriate behaviors. Experimental results highlight the innovative contributions of our approach to enhancing on-chain efficiency and fortifying security during the on-chain process, offering promising advancements for secure and efficient IoT sensor data transmission.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Giacomo Maculotti,Manuel Marschall,Gertjan Kok,Brahim Ahmed Chekh,Marcel van Dijk,Jon Flores,Gianfranco Genta,Pablo Puerto,Maurizio Galetto,Sonja Schmelter

DOI: https://doi.org/10.3390/metrology4030021

2024-07-17

Metrology

Abstract:Virtual experiments (VEs) and digital twins (DTs), pivotal for realizing European strategic policies on sustainability and digitalization within Industry 4.0 and the European Green Deal, simulate physical systems and characteristics in a virtual environment, with DTs incorporating dynamic inputs from and outputs to the real-world counterpart. To ensure confidence in their use and outcomes, traceability and methods to evaluate measurement uncertainty are needed, topics that are hardly covered by the literature so far. This paper provides a harmonized definition of VEs and DTs and introduces a framework for evaluating measurement uncertainty. Furthermore, it discusses how to propagate the uncertainty of the contributions coming from the different parts of the DT. For the core part of the DT, the framework derived for VEs can be used. For the physical-to-virtual (P2V) connection and the virtual-to-physical (V2P) connection, additional sources of uncertainty need to be considered. This paper provides a metrological framework for taking all these uncertainty contributions into account while describing a framework to establish traceability for DTs. Two case studies are presented to demonstrate the proposed methodology considering industrially relevant measuring instruments and devices, namely, a coordinate measuring machine (CMM) and a collaborative robot arm (cobot).

Marco Arazzi,Serena Nicolazzo,Antonino Nocera

DOI: https://doi.org/10.1016/j.pmcj.2024.101889

IF: 3.848

2024-02-10

Pervasive and Mobile Computing

Abstract:The pervasiveness and high number of Internet of Things (IoT) applications in people's daily lives make this context a very critical attack surface for cyber threats. The high heterogeneity of involved entities, both in terms of hardware and software characteristics, does not allow the definition of uniform, global, and efficient security solutions. Therefore, researchers have started to investigate novel mechanisms, in which a super node (a gateway, a hub, or a router) analyzes the interactions of the target node with other peers in the network, to detect possible anomalies. The most recent of these strategies base such an analysis on the modeling of the fingerprint of a node behavior in an IoT; nevertheless, existing solutions do not cope with the fully distributed nature of the referring scenario. In this paper, we try to provide a contribution in this setting, by designing a novel and fully distributed trust model exploiting point-to-point devices' behavioral fingerprints, a distributed consensus mechanism, and Blockchain technology. In our solution we tackle the non-trivial issue of equipping smart things with a secure mechanism to evaluate, also through their neighbors, the trustworthiness of an object in the network before interacting with it. Beyond the detailed description of our framework, we also illustrate the security model associated with it and the tests carried out to evaluate its correctness and performance.

computer science, information systems,telecommunications

Guntur Dharma Putra,Changhoon Kang,Salil S. Kanhere,James Won-Ki Hong

DOI: https://doi.org/10.48550/arXiv.2203.05769

2022-03-11

Cryptography and Security

Abstract:Blockchain has the potential to enhance supply chain management systems by providing stronger assurance in transparency and traceability of traded commodities. However, blockchain does not overcome the inherent issues of data trust in IoT enabled supply chains. Recent proposals attempt to tackle these issues by incorporating generic trust and reputation management, which does not entirely address the complex challenges of supply chain operations and suffers from significant drawbacks. In this paper, we propose DeTRM, a decentralised trust and reputation management solution for supply chains, which considers complex supply chain operations, such as splitting or merging of product lots, to provide a coherent trust management solution. We resolve data trust by correlating empirical data from adjacent sensor nodes, using which the authenticity of data can be assessed. We design a consortium blockchain, where smart contracts play a significant role in quantifying trustworthiness as a numerical score from different perspectives. A proof-of-concept implementation in Hyperledger Fabric shows that DeTRM is feasible and only incurs relatively small overheads compared to the baseline.

Fabrizio Messina,Domenico Rosaci,Giuseppe M. L. Sarnè

DOI: https://doi.org/10.3390/electronics13112107

IF: 2.9

2024-05-29

Electronics

Abstract:Key aspects of communities of the Internet of Things (IoT) smart objects presenting social aspects are represented by trust and reputation relationships between the objects. Several trustworthiness models have been presented in the literature in the context of multi-smart object community that could be adopted in the IoT scenario; however, most of these approaches represent the different dimensions of trust using scalar measures, then integrating these measures in a global trustworthiness value. In this paper, we discuss the limitation of this approach in the IoT context, highlighting the necessity of modeling complex trust relationships that cannot be captured by a vector-based model, and we propose a new trust model in which the trust perceived by an object with respect to another object is modeled by a directed, weighted graph whose vertices are trust dimensions and whose arcs represent relationships between trust dimensions. By using this new model, we provide the IoT community with the possibility of representing also situations in which an object does not know a trust dimension, e.g., reliability, but it is able to derive it from another one, e.g., honesty. The introduced model can represent any trust structure of the type illustrated above, in which several trust dimensions are mutually dependent.

engineering, electrical & electronic,physics, applied,computer science, information systems

Mayra Samaniego

DOI: https://doi.org/10.48550/arXiv.2205.14806

2022-05-30

Abstract:People IoT surroundings have become valuable information sources that can positively impact individuals and society. A user IoT data can be used for different purposes. For instance, research and improvement of public services. However, individuals lack the governance power to share their IoT data. Data trust is a concept that brings opportunities to address data sharing in IoT. This research reviews the idea of data trust. Then, we review IoT and its unique characteristics that implement data trust a challenge. We further discuss blockchain technology and how it can be used to enable data trust in IoT. Finally, we introduce a blockchain-based solution for data trust in IoT.

Cryptography and Security