IIT Home Page CNR Home Page

Blockchain Based Access Control

Access Control systems are used in computer security to regulate the access to critical or valuable resources. The rights of subjects to access such resources are typically expressed through access control policies, which are evaluated at access request time against the current access context. This paper proposes a new approach based on blockchain technology to publish the policies expressing the right to access a resource and to allow the distributed transfer of such right among users. In our proposed protocol the policies and the rights exchanges are publicly visible on the blockchain, consequently any user can know at any time the policy paired with a resource and the subjects who currently have the rights to access the resource. This solution allows distributed auditability, preventing a party from fraudulently denying the rights granted by an enforceable policy. We also show a possible working implementation based on XACML policies, deployed on the Bitcoin blockchain


17th IFIP International Conference on Distributed Applications and Interoperable Systems, Neuchâtel, Switzerland, 2017

Autori esterni: Damiano Di Francesco Maesa (Dipartimento di Informatica, Università di Pisa), Laura Ricci (Dipartimento di Informatica, Università di Pisa)
Autori IIT:

Tipo: Contributo in atti di convegno
Area di disciplina: Information Technology and Communication Systems

File: main.pdf

Attività: Sicurezza nel Cloud Computing
Architetture, protocolli e meccanismi di sicurezza per sistemi e servizi distribuiti