Cross-Domain Trust Evaluation Model for IoT Based on Blockchain and Domain Trust Degree

doi:10.19678/j.issn.1000-3428.0065270

Abstract

Abstract: The trust relationships between different trust domains must be evaluated when cross-domain access occurs between them.The application of existing trust evaluation relationships is limited to terminals.However，in actual application scenarios，domain communication partially occurs in the form of domains and the access permission is granted according to their overall trust evaluation relationship.To implement cross-domain access efficiently and safely in the form of domains and ensure the credibility of trust evaluation environment，this paper introduces the concept of domain trust，combines blockchain with domain trust，and proposes a cross-domain trust evaluation model based on blockchain and domain trust for Internet of Things （IoT）.First，the system architecture of the cross-domain trust evaluation model of the IoT and network structure in the multi-domain environment are constructed according to the cross-domain access requirements of the IoT.Then，based on these，a multi-dimensional evaluation method of user node trust and domain trust is proposed.Furthermore，a cross-domain access contract based on blockchain and domain trust is designed.Finally，the reliability，security，and performance of the blockchain network are analyzed and tested experimentally.The results show that，compared to BC-RBAC，the proposed model is more delicate in terms of user trust evaluation，effective prevention of time switch attack，which ensures that the trust degree of the domain is in a stable level.Compared to the EigenTrust and PeerTrust models，the detection rate of malicious user nodes was higher by 8% and 12%，respectively，and more malicious user nodes were detected in a shorter time.Thus，the proposed method can effectively address the security concern in the evaluation of cross-domain trust in the IoT.

Key words: Internet of Things（IoT）, blockchain, cross-domain, trust assessment, domain trust degree

摘要： 不同信任域发生跨域访问时需要评估不同域之间的信任关系，现有的信任评估关系仅针对终端设备，但在实际应用场景中，部分通信往往以域形式出现，并根据域整体的信任评估关系给予其访问权限。为高效安全地实现跨域访问，保证信任评估环境的可信度，引入域信任度的概念，将区块链与域信任度相结合，建立基于区块链和域信任度的物联网跨域信任评估模型。根据物联网跨域访问需求，构建物联网跨域信任评估模型系统架构和多域环境下的网络结构。在此基础上，提出多维度用户节点信任度及域信任度评估方法，设计基于区块链和域信任度的跨域访问合约，并对模型的信任度、安全性和区块链网络性能等进行实验分析和性能测试。实验结果表明，与BC-RBAC相比，该评估模型用户信任度评估更加细腻，能有效防止时间开关攻击，保证域信任度处于较稳定的水平，与EigenTrust、PeerTrust模型相比，恶意用户节点检测率提升了8%和12%，能在更短时间内检测出更多的恶意用户节点，可有效解决物联网跨域信任评估中的安全性问题。

关键词: 物联网, 区块链, 跨域, 信任评估, 域信任度

CLC Number:

TP309.2

PAN Xue, YUAN Lingyun, HUANG Minmin. Cross-Domain Trust Evaluation Model for IoT Based on Blockchain and Domain Trust Degree[J]. Computer Engineering, 2023, 49(5): 181-190.

潘雪, 袁凌云, 黄敏敏. 基于区块链和域信任度的物联网跨域信任评估模型[J]. 计算机工程, 2023, 49(5): 181-190.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.19678/j.issn.1000-3428.0065270

http://www.ecice06.com/EN/Y2023/V49/I5/181

Figures/Tables 11

References

[1] CORICI A A,EMMELMANN M,LUO J J,et al.IoT inter-security domain trust transfer and service dispatch solution[C]//Proceedings of the 3rd IEEE World Forum on Internet of Things.Washington D.C.,USA:IEEE Press,2017:694-699.
[2] 周治平,邵楠楠.基于贝叶斯的改进WSNs信任评估模型[J].传感技术学报,2016,29(6):927-933. ZHOU Z P,SHAO N N.An improved trust evaluation model based on Bayesian for WSNs[J].Chinese Journal of Sensors and Actuators,2016,29(6):927-933.(in Chinese)
[3] AHMAD AWAN K,DIN I U,ZAREEI M,et al.HoliTrust:a holistic cross-domain trust management mechanism for service-centric Internet of things[J].IEEE Access,2019,7:52191-52201.
[4] MATHAS C M,VASSILAKIS C,KOLOKOTRONIS N.A trust management system for the IoT domain[C]//Proceedings of IEEE World Congress on Services.Washington D.C.,USA:IEEE Press,2020:183-188.
[5] YUAN J,LI X Y.A reliable and lightweight trust computing mechanism for IoT edge devices based on multi-source feedback information fusion[J].IEEE Access,2018,6:23626-23638.
[6] FRAHAT R T,MONOWAR M M,BUHARI S M.Secure and scalable trust management model for IoT P2P network[C]//Proceedings of the 2nd International Conference on Computer Applications & Information Security.Washington D.C.,USA:IEEE Press,2019:1-6.
[7] DEDEOGLU V,JURDAK R,PUTRA G D,et al.A trust architecture for blockchain in IoT[C]//Proceedings of the 16th EAI International Conference on Mobile and Ubiquitous Systems:Computing,Networking and Services.New York,USA:ACM Press,2019:190-199.
[8] WU Y L,DAI H N,WANG H.Convergence of blockchain and edge computing for secure and scalable IoT critical infrastructures in industry 4.0[J].IEEE Internet of Things Journal,2021,8(4):2300-2317.
[9] XIONG L,LIU L.PeerTrust:supporting reputation-based trust for peer-to-peer electronic communities[J].IEEE Transactions on Knowledge and Data Engineering,2004,16(7):843-857.
[10] KAMVAR S D,SCHLOSSER M T,GARCIA-MOLINA H.The Eigentrust algorithm for reputation management in P2P networks[C]//Proceedings of the 12th International Conference on World Wide Web.New York,USA:ACM Press,2003:640-651.
[11] MENDOZA C V L,KLEINSCHMIDT J H.Mitigating on-off attacks in the Internet of things using a distributed trust management scheme[J].International Journal of Distributed Sensor Networks,2015,2015:233.
[12] 苏耀鑫,高秀峰,卢昱.基于信任度的WSN信任模型研究[J].电光与控制,2018,25(3):32-36. SU Y X,GAO X F,LU Y.Credibility based WSN trust model[J].Electronics Optics & Control,2018,25(3):32-36.(in Chinese)
[13] BEN ABDERRAHIM O,ELHEDHILI M H,SAIDANE L.CTMS-SIOT:a context-based trust management system for the social Internet of things[C]//Proceedings of the 13th International Wireless Communications and Mobile Computing Conference.Washington D.C.,USA:IEEE Press,2017:1903-1908.
[14] 郁宁,王高才.基于可信期望的跨域访问安全性研究[J].计算机应用研究,2020,37(11):3406-3410,3416. YU N,WANG G C.Study on cross-domain access security based on trusted expectations[J].Application Research of Computers,2020,37(11):3406-3410,3416.(in Chinese)
[15] 于汶平,吴旭.物联网环境下域间实体信任评估模型[J].计算机与数字工程,2020,48(6):1386-1392. YU W P,WU X.Inter-domain entity trust assessment model in the Internet of things environment[J].Computer & Digital Engineering,2020,48(6):1386-1392.(in Chinese)
[16] AHMAD AWAN K,UD DIN I,ALMOGREN A,et al.RobustTrust:a pro-privacy robust distributed trust management mechanism for Internet of things[J].IEEE Access,2019,7:62095-62106.
[17] YANG G Y,WANG Y L,WANG Z J,et al.IPBSM:an optimal bribery selfish mining in the presence of intelligent and pure attackers[J].International Journal of Intelligent Systems,2020,35(11):1735-1748.
[18] 王海勇,潘启青,郭凯璇.基于区块链和用户信用度的访问控制模型[J].计算机应用,2020,40(6):1674-1679. WANG H Y,PAN Q Q,GUO K X.Access control model based on blockchain and user credit[J].Journal of Computer Applications,2020,40(6):1674-1679.(in Chinese)
[19] 刘敖迪,杜学绘,王娜,等.基于区块链的大数据访问控制机制[J].软件学报,2019,30(9):2636-2654. LIU A D,DU X H,WANG N,et al.Big data access control mechanism based on blockchain[J].Journal of Software,2019,30(9):2636-2654.(in Chinese)
[20] PUTRA G D,DEDEOGLU V,KANHERE S S,et al.Trust management in decentralized IoT access control system[C]//Proceedings of IEEE International Conference on Blockchain and Cryptocurrency.Washington D.C.,USA:IEEE Press,2020:1-9.
[21] LI F Y,WANG D F,WANG Y L,et al.Wireless communications and mobile computing blockchain-based trust management in distributed Internet of things[J].Wireless Communications and Mobile Computing,2020,2020:1-12.
[22] GANERIWAL S,BALZANO L K,SRIVASTAVA M B.Reputation-based framework for high integrity sensor networks[J].ACM Transactions on Sensor Networks,2008,4(3):1-37.
[23] 胡军,肖德育,陈灿.基于信任度变化趋势的云服务选择模型[J].湖南大学学报(自然科学版),2016,43(10):126-133. HU J,XIAO D Y,CHEN C.Cloud service selection model based on trust trend[J].Journal of Hunan University(Natural Sciences),2016,43(10):126-133.(in Chinese)
[24] 蔡晓晴,邓尧,张亮,等.区块链原理及其核心技术[J].计算机学报,2021,44(1):84-131. CAI X Q,DENG Y,ZHANG L,et al.The principle of blockchain and its core technology[J].Journal of Computer,2021,44(1):84-131.(in Chinese)
[25] 孙丽玫,王迎春,唐利莉,等.网络时延对数据中心布局的影响研究[J].邮电设计技术,2020(1):55-58. SUN L M,WANG Y C,TANG L L,et al.Research on the impact of network delay on data center layout[J].Designing Techniques of Posts and Telecommunications,2020(1):55-58.(in Chinese)

Please choose a citation manager

Content to export