Xingliang Yuan,Chengjun Cai,Cong Wang,Qian Wang

DOI: https://doi.org/10.1007/s42045-020-00038-7

2020-08-18

CCF Transactions on Networking

Abstract:Massive amount of IoT data poses unique challenges in centralized data management systems. Specifically, IoT data can originate from heterogeneous and distributed sources, and commonly regulations forbid data from different IoT stakeholders to be managed via central governance. To serve for IoT applications, recent proposals leverage distributed ledgers (e.g., blockchains) to function on top of distributed data storage with improved data interoperability. Unfortunately, most of them do not consider data security and privacy in the first place. Along with this transformative paradigm, in this paper, we propose a ledger-assisted architecture for secure distributed IoT data management. This architecture adapts searchable encryption to decentralized storage network to enable encrypted query processing. Meanwhile, it is designed to leverage the distributed ledger to harden both data and query integrity. To deal with continuously generated IoT data, we further devise an efficient secure data insertion protocol, and employ a recent variant of blockchain for users to validate updated query results in a scalable manner. Evaluations on Azure blockchain service confirm the practicality of our proposed architecture.

Dan Liao,Hui Li,Wentao Wang,Xiong Wang,Ming Zhang,Xue Chen

DOI: https://doi.org/10.1007/s12083-020-01042-w

2021-01-29

Abstract:Security in Internet of Things (IoT) remains a significant concern within academia and industry. With the great potential of IoT data, the traditional centralized architecture of IoT system is limited and cannot afford security solutions. In this paper, to address the issue of IoT data security, we propose a blockchain-based data acquisition and processing architecture. The proposed architecture ensures IoT data security through data consistency. It supports distributed IoT nodes to negotiate consensus on the processed data, and decides to write the consensus data to blockchain ledger. Since distributed nodes are non-peer and have different voting weights in the proposed architecture, traditional consensus algorithms are not applicable. Therefore, we design a novel consensus algorithm for data consistency between non-peer nodes: Byzantine Fault-Tolerant consensus algorithm based on Dynamic Permission Adjustment (DPA-PBFT) algorithm. The DPA-PBFT algorithm works in the consensus domain of different weight nodes with the ability of self-optimize. It improves consensus efficiency and reduces communication overhead for data consistency. Finally, we conduct numerous experiments to evaluate the performance improvement of the DPA-PBFT algorithm under the proposed distributed architecture.

computer science, information systems,telecommunications

Jinyang Yu,Xiao Zhang,Jinjiang Wang,Yuchen Zhang,Yulong Shi,Linxuan Su,Leijie Zeng

DOI: https://doi.org/10.32604/cmc.2024.047340

2024-01-01

Abstract:The proliferation of Internet of Things (IoT) systems has resulted in the generation of substantial data, presenting new challenges in reliable storage and trustworthy sharing. Conventional distributed storage systems are hindered by centralized management and lack traceability, while blockchain systems are limited by low capacity and high latency. To address these challenges, the present study investigates the reliable storage and trustworthy sharing of IoT data, and presents a novel system architecture that integrates on-chain and off-chain data manage systems. This architecture, integrating blockchain and distributed storage technologies, provides high-capacity, high-performance, traceable, and verifiable data storage and access. The on-chain system, built on Hyperledger Fabric, manages metadata, verification data, and permission information of the raw data. The off-chain system, implemented using IPFS Cluster, ensures the reliable storage and efficient access to massive files. A collaborative storage server is designed to integrate on-chain and off-chain operation interfaces, facilitating comprehensive data operations. We provide a unified access interface for user-friendly system interaction. Extensive testing validates the system's reliability and stable performance. The proposed approach significantly enhances storage capacity compared to standalone blockchain systems. Rigorous reliability tests consistently yield positive outcomes. With average upload and download throughputs of roughly 20 and 30 MB/s, respectively, the system's throughput surpasses the blockchain system by a factor of 4 to 18.

Hua Zhang,Xin Zhang,Ziqing Guo,Huawei Wang,Dong Cui,Qiaoyan Wen

DOI: https://doi.org/10.1109/jiot.2021.3121482

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:With the rapid development of the Internet of Things (IoT), more IoT devices are connected in the same network and communicate frequently for sharing data and switching instructions. So that the traditional centralized security architecture of IoT will be limited in terms of data storage space, data reliability, scalability, and operating costs. In this article, we propose a novel communication data management model based on blockchain technology. Specifically, all encrypted IoT communication data files are uploaded to the public cloud server for obtaining enough storage space, but the key information extracted from these data files (called “communication logs”) will be recorded in an “IoT ledger” maintained by all IoT devices. In fact, the IoT ledger is a kind of blockchain structured distributed database, which can solve the problem of data reliability, scalability and would not involve high operating costs. Besides, in order to efficiently search communication logs and not reveal any sensitive information of communication data, we design a secure search scheme over such blockchain database, the asymmetric scalar-product-preserving encryption (ASPE) approach is exploited to guarantee the data security, and the two layers index improves the search efficiency. Security analysis and experiments on synthetic data set show that our scheme is secure and efficient.

computer science, information systems,telecommunications,engineering, electrical & electronic

CHENG Guanjie,HUANG Zhengjie,DENG Shuiguang

DOI: https://doi.org/10.11959/j.issn.2096-3750.2020.00165

2020-01-01

Abstract:The popularity of smart devices has driven the development of the application of Internet of things (IoT) technology,and the resulting massive amount of IoT data has brought challenges to traditional centralized data management methods,such as performance,privacy,and security.Therefore,a data management framework of IoT based on blockchain and edge computing was proposed to support the distributed IoT data management.The distributed storage and access control could be provided by the framework for the IoT data.At the same time,a set of the built-in encryption scheme was designed to protect the data security and privacy and safeguard the data ownership.By introducing edge computing,the scalability bottleneck of the blockchain the system was relieved.The processes of data storage and data access based on this framework were given,and the algorithm of the system implementation based on the smart contract technology was explained in detail.Experiments show that the IoT data management system based on this framework outperforms the traditional cloud-based data management systems.

Hossein Shafagh,Lukas Burkhalter,Anwar Hithnawi,Simon Duquennoy

DOI: https://doi.org/10.48550/arXiv.1705.08230

2017-11-14

Abstract:Today the cloud plays a central role in storing, processing, and distributing data. Despite contributing to the rapid development of IoT applications, the current IoT cloud-centric architecture has led into a myriad of isolated data silos that hinders the full potential of holistic data-driven analytics within the IoT. In this paper, we present a blockchain-based design for the IoT that brings a distributed access control and data management. We depart from the current trust model that delegates access control of our data to a centralized trusted authority and instead empower the users with data ownership. Our design is tailored for IoT data streams and enables secure data sharing. We enable a secure and resilient access control management, by utilizing the blockchain as an auditable and distributed access control layer to the storage layer. We facilitate the storage of time-series IoT data at the edge of the network via a locality-aware decentralized storage system that is managed with the blockchain technology. Our system is agnostic of the physical storage nodes and supports as well utilization of cloud storage resources as storage nodes.

Distributed, Parallel, and Cluster Computing

Yawei Wang,Chenxu Wang,Xiapu Luo,Kaixiang Zhang,Huizhong Li

DOI: https://doi.org/10.1007/978-3-030-36938-5_10

2019-01-01

Abstract:At present, the centralized architecture for the Internet of Things (IoT) data management faces the risks of data leakage, single-point failure, and vulnerability to malicious attacks. Recently, many researchers and security analysts are focusing on the blockchain technology to solve the security and privacy issues of the IoT data management. However, current blockchain technologies are unable to meet the highly concurrent IoT data transactions and the fast expansion of IoT devices due to the decentralized architecture. Moreover, there is a lack of useful solutions for effective data sharing between public and private networks, and networks with different services (e.g., smart grid and intelligent transportation). In this paper, we propose a decentralized data access model for IoT data storage and sharing based on the FISCO-BCOS blockchain. In the model, we divide the IoT devices that handle different services into different set-chains. These set-chains share data with each other through an elaborate access control model. Experimental results show that the proposed model fits the characteristics of the IoT data management, guaranteeing the privacy and security requirements with better scalability. Our model can be used as a solution for smart cities.

Lupeng Zhang,Fengqi Li,Pingchuan Wang,Rui Su,Zongzheng Chi

DOI: https://doi.org/10.1109/jiot.2021.3049674

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Due to the vigorous development of wireless communication technology, massive sensors have been gradually connected to the Internet of Things (IoT) and generate a massive quantity of valuable IoT data from large-scale wireless sensor networks (WSNs) controlled by different owners. Massive IoT data need to be collected and circulated among multiple data owners and data users. However, existing data collection frameworks may cause heavy computational overhead or rely on trusted third parties, since sensors have constrained resources. Consequently, massive IoT data are transformed among different parties, causing severe trust and security issues. In this article, we propose a blockchain-assisted massive IoT data collection (MIDC) intelligent framework to support the security, trust and efficiency of massive data collection for large-scale heterogeneous WSNs. In particular, we propose a series of novel technologies for the framework: 1) we design a large-scale heterogeneous WSNs collaborative identity verification protocol to ensure reliable data sources; 2) we build a hierarchical massive data aggregation scheme to collect massive IoT data efficiently and securely; and 3) we depict a blockchain-based massive IoT data management method to construct trust among different parties. Extensive simulation and prototype experimental results prove the effectiveness of our framework.

Jiangfeng Li,Shili Hu,Yang Shi,Chenxi Zhang

DOI: https://doi.org/10.1007/978-981-15-2777-7_27

2019-01-01

Abstract:As the use of Internet of Things (IoT) devices is increasing dramatically, it is necessary to provide a trustable framework when IoT data are stored and used inside or outside IoT devices. Blockchains and smart contracts provide solutions to construct trustable environments in data storage and access. Unfortunately, current blockchain technology only suits for situations that a small or medium amount of data is stored and used, but it has a very low performance when a large amount of data gathered by IoT devices needs to be stored and accessed. This paper proposes a three-layer blockchain-based trustable framework for IoT data storage and access. In the framework, users, roles, permissions, data objects, and their relationships are formally defined. Based on these definitions, smart contracts with role-based access control (RBAC) model are developed. Additionally, a snapshot mechanism is designed to collect IoT data in order of time stamps and put it into files stored in the inter-planetary file system (IPFS). We developed a prototype of supply chain tracing system on Ethereum and IPFS for feasibility verification and performance evaluation of the proposed framework. The framework not only guarantees data integrity in storing IoT data, but also ensures data confidentiality when the IoT data is used. Moreover, simulation results illustrate that the prototype system has high performances in time, space, and gas consumption.

Yongfeng Qian,Yingying Jiang,Jing Chen,Yu Zhang,Jeungeun Song,Ming Zhou,Matevz Pustisek

DOI: https://doi.org/10.1016/j.compeleceng.2018.08.021

IF: 4.152

2018-01-01

Computers & Electrical Engineering

Abstract:With the rapid development of internet of things (IoT), it has brought great convenience to users in different fields, such as smart home, smart transportation and so on. However, it also carries potential security risks. In order to solve this challenge, in this paper, we first introduce three layers of IoT, i.e., perception layer, network layer and application layer, then corresponding security problems of three layers are introduced. Second, we propose a high-level security management scheme based on blockchain for different IoT devices in the full life cycle. Finally, we give open research problems and future work.

Chenglong Fu,Qiang Zeng,Xiaojiang Du

DOI: https://doi.org/10.48550/arXiv.1912.00264

2019-12-01

Abstract:The booming Internet of Things (IoT) market has drawn tremendous interest from cyber attackers. The centralized cloud-based IoT service architecture has serious limitations in terms of security, availability, and scalability, and is subject to single points of failure (SPOF). Recently, accommodating IoT services on blockchains has become a trend for better security, privacy, and reliability. However, blockchain's shortcomings of high cost, low throughput, and long latency make it unsuitable for IoT applications. In this paper, we take a retrospection of existing blockchain-based IoT solutions and propose a framework for efficient blockchain and IoT integration. Following the framework, we design a novel blockchain-assisted decentralized IoT remote accessing system, RS-IoT, which has the advantage of defending IoT devices against zero-day attacks without relying on any trusted third-party. By introducing incentives and penalties enforced by smart contracts, our work enables "an economic approach" to thwarting the majority of attackers who aim to achieve monetary gains. Our work presents an example of how blockchain can be used to ensure the fairness of service trading in a decentralized environment and punish misbehaviors objectively. We show the security of RS-IoT via detailed security analyses. Finally, we demonstrate its scalability, efficiency, and usability through a proof-of-concept implementation on the Ethereum testnet blockchain.

Cryptography and Security,Distributed, Parallel, and Cluster Computing,Networking and Internet Architecture

Hongliang Tian,Guangtao Huang

DOI: https://doi.org/10.3390/electronics13234812

IF: 2.9

2024-12-07

Electronics

Abstract:The conventional centralized Industrial Internet of Things (IIoT) framework is plagued by issues like subpar security performance and challenges related to storage expansion. This paper proposes a two-tier distributed secure storage framework based on blockchain for IIoT data. The authors first introduce the two-layer framework, which includes the edge network layer and the blockchain storage layer. The nodes in the edge network layer are classified into administrator nodes and ordinary nodes. It provides a lower latency network environment compared to cloud computing to preprocess raw industrial data. The blockchain storage layer provides storage space to keep data secure and traceable. Secondly, the authors propose a differentiated storage solution. Based on the timestamps of industrial data and the specific media access control (MAC) address, the Universally Unique Identifier (UUID) of the raw data is generated and uploaded to the blockchain for secure storage. Encrypt the corresponding raw data using the elliptic curve cryptography algorithm, and then upload it to InterPlanetary File System (IPFS) to expand the storage capacity of the blockchain. Deploy a smart contract on the blockchain to compare UUIDs for consistency in an automated, lightweight method to determine data integrity. Finally, we analyze the advantages brought by the integration of blockchain and IIoT. Additionally, the authors design comparative tests on different storage methods. The results prove that the security of this paper's scheme is improved, and the storage performance is extended. Noteworthy enhancements include heightened throughput of data uploaded to the blockchain and minimized delay overhead.

engineering, electrical & electronic,computer science, information systems,physics, applied

Zhendong Liu,Liang Meng,Qingyuan Zhao,Fei Li,Manrui Song,Dongxu Dai,Xiujuan Yang,Song Guan,Yue Wang,Hongliang Tian

DOI: https://doi.org/10.1155/2022/2381365

2022-10-16

Wireless Communications and Mobile Computing

Abstract:With the dramatically increasing deployment of intelligent devices, the Internet of Things (IoT) has attracted more attention and developed rapidly. It effectively collects and shares data from the surrounding environment to achieve better IoT services. For data sharing, the publish-subscribe (PS) paradigm provides a loosely coupled and scalable communication model. However, due to the loosely coupled nature, it is vulnerable to many attacks, resulting in some security threats to the IoT system, but it cannot provide the basic security mechanisms such as authentication and confidentiality to ensure the data security. Thus, in order to protect the system security and users' privacy, this paper presents a secure blockchain-based privacy-preserving access control scheme for the PS system, which adopt the fully homomorphic encryption (FHE) to ensure the confidentiality of the publishing events and leverage the ledger to store the large volume of data events and access crossdomain information. Finally, we analyze the correctness and security of our scheme; moreover, we deploy our proposed prototype system on two computers and evaluate its performance. The experimental results show that our PS system can efficiently achieve the equilibrium between the system cost and the security requirement.

computer science, information systems,telecommunications,engineering, electrical & electronic

Volkan Dedeoglu,Raja Jurdak,Guntur D. Putra,Ali Dorri,Salil S. Kanhere

DOI: https://doi.org/10.48550/arXiv.1906.11461

2019-06-27

Abstract:Blockchain is a promising technology for establishing trust in IoT networks, where network nodes do not necessarily trust each other. Cryptographic hash links and distributed consensus mechanisms ensure that the data stored on an immutable blockchain can not be altered or deleted. However, blockchain mechanisms do not guarantee the trustworthiness of data at the origin. We propose a layered architecture for improving the end-to-end trust that can be applied to a diverse range of blockchain-based IoT applications. Our architecture evaluates the trustworthiness of sensor observations at the data layer and adapts block verification at the blockchain layer through the proposed data trust and gateway reputation modules. We present the performance evaluation of the data trust module using a simulated indoor target localization and the gateway reputation module using an end-to-end blockchain implementation, together with a qualitative security analysis for the architecture.

Cryptography and Security,Distributed, Parallel, and Cluster Computing

Tianyi Xu,Zhao Fu,Mei Yu,Jianrong Wang,Hongwei Liu,Tie Qiu

DOI: https://doi.org/10.1109/CSCWD49262.2021.9437831

2021-01-01

Abstract:With the continuous growth of the number of Internet of things(IoT) devices, more and more data are generated by IoT devices. IoT terminal devices need to transfer the data to the edge server for storage, so protecting the security of IoT data has become a huge challenge. As a new technology, blockchain has the characteristics of distributed, tamper-resistant. Smart contract running on the blockchain can automatically perform tasks. Because of these characteristics, blockchain can solve the data security problem of the IoT. In this paper, a blockchain-based data protection framework for the IoT in untrusted storage is proposed. Lightweight streaming authenticated data structures are also used to reduce the storage burden of the blockchain system and improve the efficiency of the framework. Finally, simulation results show that our work can reduce the storage burden of blockchain.

Wenbing Zhao,Shunkun Yang,Xiong Luo

DOI: https://doi.org/10.1145/3390566.3391672

2020-01-01

Abstract:Recently, we have seen increasing popularity of using the blockchain technology to secure sensing data generated by traditional wireless sensor networks and Internet of Things (IoT). One of the biggest obstacles for integrating the IoT and blockchain technologies is the limited throughput of the current distributed ledgers. In this paper, we propose a novel method for hierarchical processing and logging of potentially large amount of sensing data with the blockchain technology, which could drastically address the issue of limited throughput in blockchains. Depending on the scale of the sensing need, two or more levels of processing and logging could be involved, where only the highest level of summative sensor data are placed on the blockchain or a secure distributed ledger. By establishing a strong linkage between different level of data, all lower-level and raw data are also made immutable once the highest level of summative data are placed on the blockchain.

Li Da Xu,Yang Lu,Ling Li

DOI: https://doi.org/10.1109/jiot.2021.3060508

IF: 10.6

2021-07-01

IEEE Internet of Things Journal

Abstract:In recent years, the Internet of Things (IoT) has made great progress. The interconnection between IoT and the Internet enables real-time information processing and transaction implementation through heterogeneous intelligent devices. But the security, the privacy, and the reliability of IoT are key challenges that limit its development. The features of the blockchain, such as decentralization, consensus mechanism, data encryption, and smart contracts, are suitable for building distributed IoT systems to prevent potential attacks and to reduce transaction costs. As a decentralized and transparent database platform, blockchain has the potential to raise the performance of IoT security to a higher level. This article systematically analyzes state of the art of IoT security based on the blockchain, paying special attention to the security features, issues, technologies, approaches, and related scenarios in blockchain-embedded IoT. The integration and interoperation of blockchain and IoT is an important and foreseeable development in the computational communication system.

computer science, information systems,telecommunications,engineering, electrical & electronic

Na Wang,Junsong Fu,Shancheng Zhang,Zheng Zhang,Jiawen Qiao,Jianwei Liu,Bharat K. Bhargava

DOI: https://doi.org/10.1109/tnet.2022.3218933

2022-01-01

IEEE/ACM Transactions on Networking

Abstract:With the rapid development of 5G/6G, most Internet of Things (IoT) devices will embrace wireless connection in the near future. A public concern is how to securely organize, store and retrieve data generated from IoT devices. Many cloud-based IoT data storage schemes have been proposed recently. However, for an untrusted or vulnerable cloud server, the stored IoT data can be easily accessed, modified and even destroyed given that the IoT data are stored in total centralization. Moreover, the servers in a cloud are generally homogeneous and thus vulnerable to attacks. For improvements, we design a novel framework for secure and efficient IoT data storage based on secret sharing and a collaborative blockchain. First, an ultra-lightweight secret sharing algorithm is designed to map original messages generated by IoT devices to a set of shorter message shares. Second, all the shares of IoT messages are separately delivered to different clouds for storage. To guarantee the security of shares, the delivery is notarized on a proposed blockchain. Specifically, both hash values of the shares and their information of location are embedded in blocks which are then chained to form a blockchain. Third, we create a balanced index structure about the shares for each cloud storage node based on the information in the blockchain, and we also propose a depth-first data search algorithm to improve IoT data retrieval efficiency. Theoretical analysis and simulation results illustrate that our scheme can store and retrieve the IoT data securely and efficiently.

Benjamin Agbo,Yongrui Qin,Richard Hill

DOI: https://doi.org/10.5220/0007751203850391

2019-01-01

Abstract:The significant growth and adoption of Internet of Things (IoT) solutions has led to tremendous increase in the generation of data. The need for high speed data processing has become very important to meet with the ever increasing volume and velocity of IoT data, due to the large scale and distributed nature of IoT infrastructure and networks. Present cloud based technologies are struggling to meet up with these needs for real time data processing in the midst of enormous amounts of data. The success of bitcoin has inspired more research in the application of Distributed ledger technologies in various domains. The decentralized nature of these platforms have enabled security and privacy of data in previous research and their architecture has a potential for enabling large scale decentralized data processing. In this paper, we identify some open areas of research in the use of distributed ledger technology and propose a framework for storing, analyzing and ensuring the security of large volumes of IoT data.

Jing Wang,Xi Lin,Yulei Wu,Jun Wu

DOI: https://doi.org/10.1109/jiot.2023.3306606

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:With the rapid development of the Internet of Things (IoT), millions of IoT devices are constantly generating massive amounts of data. The development of artificial intelligence (AI) and edge computing makes it possible to conduct data analysis and knowledge mining efficiently among IoT edge devices. Knowledge, including intermediate results and training models obtained by large amounts of redundant data, is the core and foundation of edge intelligence. However, the sharing and utilization of knowledge still face a series of security and privacy issues, such as illegal knowledge access, knowledge tampering, and privacy leakage. To address these issues, in this paper, we propose a blockchain-based knowledge storage and sharing architecture that enables secure knowledge management in intelligent IoT. We first design a permissioned blockchain-based decentralized and trusted knowledge storage scheme, which includes the on-chain encrypted knowledge storage and an improved Delegated Proof of Stake (DPoS) consensus protocol. Besides, we propose a lightweight attribute-based searchable encrypted knowledge sharing mechanism, in which fine-grained and privacy-preserving knowledge collaboration is achieved through smart contracts and keyword search. Moreover, we reduce the computing overhead of edge devices through the design of partial outsourcing decryption. Finally, we analyze the security performance of our system as well as verify its practicality and ability to reject dishonest servers by simulation.

computer science, information systems,telecommunications,engineering, electrical & electronic