Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/54767' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/54767' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Blockchain Based Access Control Service | IIT - CNR - Istituto di Informatica e Telematica
IIT Home Page CNR Home Page

Blockchain Based Access Control Service

This paper presents a new design approach forAccess Control services leveraging smart contracts providedby blockchain technology. The key idea of our proposal is tocodify Access Control policies as executable smart contracts ona blockchain. This transforms the policy evaluation process intocompletely distributed smart contract executions. In our fullyblockchain based approach also the Attribute Managers requiredfor the evaluation of the Access Control policies are managed bythe blockchain, i.e., they are implemented as smart contracts aswell. To study the feasibility of our proposal we present a workingreference implementation using XACML policies and Soliditywritten smart contracts deployed on Ethereum. Finally weevaluate the advantages and drawbacks of the proposal, makingalso use of experimental results of our reference implementation.


The 2018 IEEE International Conference on Blockchain, Halifax, Canada, 2018

Autori esterni: Laura Ricci (Dipartimento di Informatica, Università di Pisa)
Autori IIT:

Damiano Di Francesco Maesa

Foto di Damiano Di Francesco Maesa

Tipo: Contributo in atti di convegno
Area di disciplina: Information Technology and Communication Systems

File: blockchain-based-access.pdf

Attività: Sicurezza nel Cloud Computing