Blockchain-based cross-domain authorization system for user-centric resource sharing
User-centric data sharing is essential to encourage citizens' active participation in the digital economy. One key to smart cities, a form of the digital economy, is the promotion of public use of citizen data. Nevertheless, it is not easy to utilize data without citizens’ consent. In this stud...
Main Authors: | , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Elsevier
2023-06-01
|
Series: | Blockchain: Research and Applications |
Subjects: | |
Online Access: | http://www.sciencedirect.com/science/article/pii/S2096720923000015 |
_version_ | 1797795261599186944 |
---|---|
author | Yuki Ezawa Shohei Kakei Yoshiaki Shiraishi Masami Mohri Masakatu Morii |
author_facet | Yuki Ezawa Shohei Kakei Yoshiaki Shiraishi Masami Mohri Masakatu Morii |
author_sort | Yuki Ezawa |
collection | DOAJ |
description | User-centric data sharing is essential to encourage citizens' active participation in the digital economy. One key to smart cities, a form of the digital economy, is the promotion of public use of citizen data. Nevertheless, it is not easy to utilize data without citizens’ consent. In this study, we took a technological approach to these issues. User-managed access (UMA) is a well-known framework for delegating resource access rights to others on the Internet. In UMA, authorization mechanisms are designed to be centralized so that resource owners can centrally manage access rights for various resources stored in different domains. However, the lack of transparency in the authorization mechanism is a barrier to its implementation in large-scale systems such as smart cities. In this study, we developed a blockchain-based cross-domain authorization architecture that enables a resource-sharing ecosystem in which organizations that wish to utilize data can freely trade with each other. The proposed architecture solves the transparency problem that conventional authorization systems have had by designing the authorization mechanism on blockchain technology. We implemented the proposed architecture as smart contracts and evaluated its processing performance. The resultant time required for delegating access rights and accessing resources was less than 500 ms. Furthermore, we found that the fluctuation in the processing time overhead was small. Based on these results, we concluded that performance degradation with the proposed architecture is minor. |
first_indexed | 2024-03-13T03:15:17Z |
format | Article |
id | doaj.art-ae6fa00fff064f0ca1b728fd81996869 |
institution | Directory Open Access Journal |
issn | 2666-9536 |
language | English |
last_indexed | 2024-03-13T03:15:17Z |
publishDate | 2023-06-01 |
publisher | Elsevier |
record_format | Article |
series | Blockchain: Research and Applications |
spelling | doaj.art-ae6fa00fff064f0ca1b728fd819968692023-06-26T04:13:59ZengElsevierBlockchain: Research and Applications2666-95362023-06-0142100126Blockchain-based cross-domain authorization system for user-centric resource sharingYuki Ezawa0Shohei Kakei1Yoshiaki Shiraishi2Masami Mohri3Masakatu Morii4Department of Electrical and Electronic Engineering, Kobe University, Kobe, Hyogo, 657-8501, JapanDepartment of Computer Science, Nagoya Institute of Technology, Nagoya, Aichi, 466-8555, Japan; Corresponding author.Department of Electrical and Electronic Engineering, Kobe University, Kobe, Hyogo, 657-8501, JapanFaculty of Informatics, Kindai University, Higashi-Osaka, Osaka, 577-8502, JapanDepartment of Electrical and Electronic Engineering, Kobe University, Kobe, Hyogo, 657-8501, JapanUser-centric data sharing is essential to encourage citizens' active participation in the digital economy. One key to smart cities, a form of the digital economy, is the promotion of public use of citizen data. Nevertheless, it is not easy to utilize data without citizens’ consent. In this study, we took a technological approach to these issues. User-managed access (UMA) is a well-known framework for delegating resource access rights to others on the Internet. In UMA, authorization mechanisms are designed to be centralized so that resource owners can centrally manage access rights for various resources stored in different domains. However, the lack of transparency in the authorization mechanism is a barrier to its implementation in large-scale systems such as smart cities. In this study, we developed a blockchain-based cross-domain authorization architecture that enables a resource-sharing ecosystem in which organizations that wish to utilize data can freely trade with each other. The proposed architecture solves the transparency problem that conventional authorization systems have had by designing the authorization mechanism on blockchain technology. We implemented the proposed architecture as smart contracts and evaluated its processing performance. The resultant time required for delegating access rights and accessing resources was less than 500 ms. Furthermore, we found that the fluctuation in the processing time overhead was small. Based on these results, we concluded that performance degradation with the proposed architecture is minor.http://www.sciencedirect.com/science/article/pii/S2096720923000015Access controlAuthorizationBlockchainHyperledger fabricUser-managed access |
spellingShingle | Yuki Ezawa Shohei Kakei Yoshiaki Shiraishi Masami Mohri Masakatu Morii Blockchain-based cross-domain authorization system for user-centric resource sharing Blockchain: Research and Applications Access control Authorization Blockchain Hyperledger fabric User-managed access |
title | Blockchain-based cross-domain authorization system for user-centric resource sharing |
title_full | Blockchain-based cross-domain authorization system for user-centric resource sharing |
title_fullStr | Blockchain-based cross-domain authorization system for user-centric resource sharing |
title_full_unstemmed | Blockchain-based cross-domain authorization system for user-centric resource sharing |
title_short | Blockchain-based cross-domain authorization system for user-centric resource sharing |
title_sort | blockchain based cross domain authorization system for user centric resource sharing |
topic | Access control Authorization Blockchain Hyperledger fabric User-managed access |
url | http://www.sciencedirect.com/science/article/pii/S2096720923000015 |
work_keys_str_mv | AT yukiezawa blockchainbasedcrossdomainauthorizationsystemforusercentricresourcesharing AT shoheikakei blockchainbasedcrossdomainauthorizationsystemforusercentricresourcesharing AT yoshiakishiraishi blockchainbasedcrossdomainauthorizationsystemforusercentricresourcesharing AT masamimohri blockchainbasedcrossdomainauthorizationsystemforusercentricresourcesharing AT masakatumorii blockchainbasedcrossdomainauthorizationsystemforusercentricresourcesharing |