Enabling Opportunistic Users in Multi-Tenant IoT Systems using   Decentralized Identifiers and Permissioned Blockchains

Nikos Fotiou; Iakovos Pittaras; Vasilios A. Siris; George C. Polyzos

arXiv:1911.05539·cs.CR·November 14, 2019

Enabling Opportunistic Users in Multi-Tenant IoT Systems using Decentralized Identifiers and Permissioned Blockchains

Nikos Fotiou, Iakovos Pittaras, Vasilios A. Siris, George C. Polyzos

PDF

TL;DR

This paper presents a novel decentralized authentication and authorization framework for multi-tenant IoT systems, enabling secure, privacy-preserving access for opportunistic users across untrusted entities using blockchain and decentralized identifiers.

Contribution

It introduces a flexible, privacy-enhanced authorization mechanism leveraging decentralized identifiers and permissioned blockchains for multi-tenant IoT environments.

Findings

01

Supports fast revocation of access rights

02

Enables authorization of untrusted guest users

03

Provides privacy-preserving user management

Abstract

In this work, we leverage advances in decentralized identifiers and permissioned blockchains to build a flexible user authentication and authorization mechanism that offers enhanced privacy, achieves fast revocation, and supports distributed "policy decision points" executed in mutually untrusted entities. The proposed solution can be applied in multi-tenant "IoT hubs" that interconnect diverse IoT silos and enable authorization of "guest" users, i.e., opportunistic users that have no trust relationship with the system, which has not encountered or known them before.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.