An extended access control model for permissioned blockchain frameworks
- PDF / 1,093,447 Bytes
- 12 Pages / 595.276 x 790.866 pts Page_size
- 42 Downloads / 281 Views
(0123456789().,-volV)(0123456789().,-volV)
An extended access control model for permissioned blockchain frameworks Muhammad Yasar Khan1 • Megat F. Zuhairi1
•
Toqeer Ali2 • Turki Alghamdi2 • Jose Antonio Marmolejo-Saucedo3
Springer Science+Business Media, LLC, part of Springer Nature 2019
Abstract In distributed environment, a digital transaction or operation requires transparency and trust among multiple stakeholders. Several approches address such issues however, among these blockchain provides a viable solution which has received wide acceptance in the recent past. Permissioned blockchain solutions adopt more efficient consensus algorithms and smart contracts. There are many smart-contract solutions exists (such as, etherium, IBM blockchain, hyperledger fabric), however, much of them mainly follow traditional access control models. A role-based access control model provides controlled access of resources to members. This research work presents an extended usage control model known as DistU (Distributed Usage Control). DistU is proposed to capture all possible access control models required by a business for permissioned blockchain frameworks. DistU can monitor a resource continuously during the operation and update the attributes accordingly, performing different actions, such as denying or revoking permissions. We believe that the proposed DistU usage control model can provide a fine-grained control for blockchain resource management. The paper also contributes to provide a protoype implementation of fine-grained permission model on Hyperledger Fabric. The reason of selecting Fabric for this research is that, it is the first execute-order achitecture blockchain that provides a platform to develop general business applciations. Secondly, it is an opensource operating system of permissioned blockchain with huge industry support. Keywords Permissioned blockchain System chaincode Access control Usage control Continuous monitoring
1 Introduction The conception of blockchain is introduced by an anonymous researcher in 2009 [1]. The initial idea of such technology is to offer a digital currency that is completely decentralized. By using cryptography techniques and consensus algorithms [2], known as Proof-of-Work (PoW) [3], a trust paradigm between untrusted members can be developed. Each transaction of the block must link to its previous generated block, and because of this structure, a blockchain can traverse back to the origin block. As such, a blockchain contains immutable records of every transaction made.
& Megat F. Zuhairi [email protected] 1
Universiti Kuala Lumpur, Kuala Lumpur, Malaysia
2
Islamic University of Madinah, Medina, Saudi Arabia
3
Panamerican University, Mexico City, Mexico
Beside the cryptocurrency, Blockchain functionality can be adapted to any distributed business environment. Bitcoin established the building blocks for a new era of computing. However, Bitcoin is a public blockchain and works on a PoW consensus algorithm. The PoW is a highly scalable algorithm, but th
Data Loading...