Blockchain-envisioned access control for internet of things applications: a comprehensive survey and future directions

Palak Bagga; Ashok Kumar Das; Vinay Chamola; Mohsen Guizani

doi:10.1007/s11235-022-00938-7

Blockchain-envisioned access control for internet of things applications: a comprehensive survey and future directions

Telecommun Syst. 2022;81(1):125-173. doi: 10.1007/s11235-022-00938-7. Epub 2022 Jul 20.

Authors

Palak Bagga¹, Ashok Kumar Das^{1

2}, Vinay Chamola³, Mohsen Guizani⁴

Affiliations

¹ Center for Security, Theory and Algorithmic Research, International Institute of Information Technology, Hyderabad, 500 032 India.
² Virginia Modeling, Analysis and Simulation Center, Old Dominion University, Suffolk, VA 23435 USA.
³ Department of Electrical and Electronics Engineering and Anuradha and Prashanth Palakurthi Centre for Artificial Intelligence Research (APPCAIR), BITS-Pilani, Pilani Campus, Pilani, 333 031 India.
⁴ Mohamed Bin Zayed University of Artificial Intelligence (MBZUAI), Masdar City, Abu Dhabi United Arab Emirates.

Abstract

With rapid advancements in the technology, almost all the devices around are becoming smart and contribute to the Internet of Things (IoT) network. When a new IoT device is added to the network, it is important to verify the authenticity of the device before allowing it to communicate with the network. Hence, access control is a crucial security mechanism that allows only the authenticated node to become the part of the network. An access control mechanism also supports confidentiality, by establishing a session key that accomplishes secure communications in open public channels. Recently, blockchain has been implemented in access control protocols to provide a better security mechanism. The foundation of this survey article is laid on IoT, where a detailed description on IoT, its architecture and applications is provided. Further, various security challenges and issues, security attacks possible in IoT and their countermeasures are also provided. We emphasize on the blockchain technology and its evolution in IoT. A detailed description on existing consensus mechanisms and how blockchain can be used to overpower IoT vulnerabilities is highlighted. Moreover, we provide a comprehensive description on access control protocols. The protocols are classified into certificate-based, certificate-less and blockchain-based access control mechanisms for better understanding. We then elaborate on each use case like smart home, smart grid, health care and smart agriculture while describing access control mechanisms. The detailed description not only explains the implementation of the access mechanism, but also gives a wider vision on IoT applications. Next, a rigorous comparative analysis is performed to showcase the efficiency of all protocols in terms of computation and communication costs. Finally, we discuss open research issues and challenges in a blockchain-envisioned IoT network.

Keywords: Access control; Authentication; Blockchain; Internet of things (IoT); Key agreement; Security.

Publication types

Review